000028000)}, 0x0) 2033/05/18 03:36:38 executing program 4: r0 = socket$inet(0x2, 0x3, 0x7f) r1 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x6600, 0x551000) ioctl$KVM_SET_IDENTITY_MAP_ADDR(r1, 0x4008ae48, &(0x7f0000000040)=0x10002) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000280)=@nat={'nat\x00', 0x19, 0x1, 0x160, [0x20000100, 0x0, 0x0, 0x20000190, 0x20000160], 0x0, &(0x7f00000000c0), &(0x7f0000000100)=[{}, {}, {}, {0x0, '\x00', 0x0, 0x0, 0x1, [{{{0x11, 0x0, 0x0, 'bcsh0\x00', 'ip6tnl0\x00', 'yam0\x00', 'bpq0\x00', @empty, [], @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, [], 0x70, 0x70, 0xa0}}, @common=@redirect={'redirect\x00', 0x8}}]}]}, 0x1d8) 2033/05/18 03:36:38 executing program 5: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext3\x00', &(0x7f0000000080)='./file0/bus\x00', 0x0, 0x0, &(0x7f0000001280), 0x0, &(0x7f00000012c0)) mount(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0/bus\x00', &(0x7f0000000140)='cgroup2\x00', 0x0, &(0x7f0000000200)="e3a2b51e8ce988e3db3c38eb4ded60328ede5fad4b6134b4dc3c74974e76fafc42d91b51e13ed1b0b980a76cb53637e5ada8f52d53659827c9d6b73e7a4eb5765631518b208d80f31bfd51c5a82226b2bf42a78c6d167d1904b018aebe1387a0c536c126a01d98e6e6b8d79ba5bc38bc4f84e354702a5d97f89d2514f45b6a9ac7ab7b73bde93a1e90d43fc3fbbc9105f37d05c809c706f03cd3fad84ce06381e34bb488410f6e2e9f9bc2a951a0ce47285355fbfe7ccca95eccdcdcf262274b60d6eda6e5ef09489ea9dddca120a2109ab7dacf00000000000000000000000000") syz_mount_image$nfs4(&(0x7f0000000180)='nfs4\x00', &(0x7f00000001c0)='./file0\x00', 0x1, 0x4, &(0x7f00000006c0)=[{&(0x7f0000000300)="b9c784a2ddf4370f18bb98ab9f4a6be9940d23babf703f19473d96a08ce941a21ffd92ae9cf67a8c0c0f6b051e8d7980a7d64e01374227cee8e52837f357ff7483e1cb4604d6f894b1d6065fa2140bc841fc0eb9b58574adde3a7e131aa9270313e9df16abb0f1da9294bc51bf82188845b219465961097a88091cbdff682e713c34f87ce1b5eeabdd34fd8104fdc6f59096b1c970b50234f47014369fc9a473aa352d80f9cd1aee363ba94fbdb4aa999504c43b1bbad0fc6a4d806b59", 0xbd, 0xfffffffffffffffd}, {&(0x7f00000003c0)="dd6ea5a2cf66d138a5387933f906a91cf9bbad86576f26551a47ba05626e1bfe7b18b46bcacb86e8909a7a69a1bb375140eb20506cde0e882f040f38687a7584464ca2f597181d18f35f7915a364a898266f36b9d5ff1ac7789408d3c315caceda458bac217be01e3d8f1c14fcf4f96fbcd063f4b1d66b0166affef52efe1af5f5cef07701e80cc8d5b601fe5af9dc1914fa9114bb9478bb7d2ffe94ac1d3946ba7301c4bd8be5340f32b67089fe36cd76de3ecf3940403c7f495e55fddd018f4056a3e395daeb5a8fb021af19a8e92eb4c76397a00a88621a2bc69caccf10007ee60c3386", 0xe5, 0x5}, {&(0x7f00000004c0)="a2c56fdd50a7ac8c5d96c3a9c0cdd7b85ab243c2d7c2bb8006bd91ee9e033fb5c29e929fa81e9abd298624d7fc963d3016580dfb058693825801ca2d109038d78e452669d890810b327192d44eef80d64d637a0718b5c2ce6c05f5201ef65ea4b89634565176a974ee566d06c3fde269c1b44d418439461146548cdaea85e2d1256e85bf1b6ea98db4ff7776de9b093ad9a2a7e59f843bdd16e3af46a0fcf2bb255260b3d54412469d2f0c994cf4f373bbc6de9bb90d4b0aa9d0533f1806e81892a1cfd8f8b6f98c4802542c721d50d4d66e1cacd3c3f06a4adea5455ec9f9c9062b4bde", 0xe4, 0x1}, {&(0x7f00000005c0)="bd11dfb28e24a590e5efee05ac5b146ea6692a7725f40899bb89c586f393ea6e0493aa4bde97f78ba585890098861ff253156842e65ffe0dcb8a1b39cc36080fda4eed0732b1f1f7960f805d0d469a5e83a5dcf95d32c1ad0ad76cba89c877c91600ccd935ac81c373a663a5ab70426e1ae292029a1a6c5227b523d285be39ba856079ed01249bb2821a34c01c4c445528a5acfb771662c85d693b3fe7cc68b57ae2f4313fe834938a843a332315577f866007791572dc95d9f9268aa58c4af5f13776a50b2a239f", 0xc8, 0xffffffff}], 0x10000, &(0x7f0000000740)='ext3\x00') 2033/05/18 03:36:38 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ppp\x00', 0x4000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$KVM_GET_NR_MMU_PAGES(r0, 0xae45, 0x2) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f00000000c0)=""/174) 2033/05/18 03:36:38 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x8000000000) [ 313.080641] FAULT_INJECTION: forcing a failure. [ 313.080641] name failslab, interval 1, probability 0, space 0, times 0 [ 313.091967] CPU: 0 PID: 22828 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 313.099248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 313.108596] Call Trace: [ 313.111178] dump_stack+0x1b9/0x294 [ 313.114796] ? dump_stack_print_info.cold.2+0x52/0x52 [ 313.119973] ? __save_stack_trace+0x7e/0xd0 [ 313.124291] should_fail.cold.4+0xa/0x1a [ 313.128360] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 313.133454] ? kasan_kmalloc+0xc4/0xe0 [ 313.137327] ? __kmalloc_track_caller+0x14a/0x760 [ 313.142167] ? memdup_user+0x2c/0xa0 [ 313.145866] ? strndup_user+0x77/0xd0 [ 313.149650] ? graph_lock+0x170/0x170 [ 313.153436] ? lock_downgrade+0x8e0/0x8e0 [ 313.157569] ? find_held_lock+0x36/0x1c0 [ 313.161631] ? check_same_owner+0x320/0x320 [ 313.165935] ? lock_release+0xa10/0xa10 [ 313.169898] ? check_same_owner+0x320/0x320 [ 313.174212] ? rcu_note_context_switch+0x710/0x710 [ 313.179126] ? __check_object_size+0x95/0x5d9 [ 313.183609] __should_failslab+0x124/0x180 [ 313.187838] should_failslab+0x9/0x14 [ 313.191624] kmem_cache_alloc_trace+0x2cb/0x780 [ 313.196279] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 313.201804] ? _copy_from_user+0xdf/0x150 [ 313.205940] copy_mount_options+0x5f/0x380 [ 313.210175] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 313.215700] ksys_mount+0xd0/0x140 [ 313.219228] __x64_sys_mount+0xbe/0x150 [ 313.223188] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 313.228192] do_syscall_64+0x1b1/0x800 [ 313.232065] ? finish_task_switch+0x1ca/0x810 [ 313.236547] ? syscall_return_slowpath+0x5c0/0x5c0 [ 313.241464] ? syscall_return_slowpath+0x30f/0x5c0 [ 313.246381] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 313.251734] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 313.256564] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 313.261744] RIP: 0033:0x455979 [ 313.264914] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 313.272608] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 313.279864] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 313.287116] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 313.294371] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 313.301648] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 313.316474] kernel msg: ebtables bug: please report to author: Hook order must be followed [ 313.320671] EXT4-fs (loop5): VFS: Can't find ext4 filesystem 2033/05/18 03:36:38 executing program 6: r0 = syz_open_procfs(0x0, &(0x7f0000000040)="2f65786500000000000035abe1e80d903e0d717ac1889a45e581c9e14a5c8f95f5d2968ae8c767e9d18fd69a") sysfs$3(0x3) setsockopt$inet_tcp_TLS_RX(r0, 0x6, 0x2, &(0x7f0000000000)={0x303, 0x33}, 0x4) 2033/05/18 03:36:38 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0xfffffffe, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:38 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080), 0x0) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti0\x00'}) [ 313.358497] cgroup: cgroup2: unknown option "㢵<8M`2_Ka4Ѱl67孨-Se'ַ>zNvV1Q QŨ"&Bm}6&כ8OTp*]%[jǫ{s:?} Ѱl67孨-Se'ַ>zNvV1Q QŨ"&Bm}6&כ8OTp*]%[jǫ{s:?} 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x600000000000000) 2033/05/18 03:36:38 executing program 4: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendto$inet(r0, &(0x7f0000000140)='p{', 0xfe6d, 0x4000040, &(0x7f0000000200)={0x2, 0x1, @dev={0xac, 0x14, 0x14, 0xd}}, 0x10) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x0, 0x0) ioctl$TIOCLINUX7(r1, 0x541c, &(0x7f0000000040)={0x7, 0x7f}) [ 313.848132] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:36:39 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080), 0x0) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:39 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0xf000000) 2033/05/18 03:36:39 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) setsockopt$IP_VS_SO_SET_TIMEOUT(r0, 0x0, 0x48a, &(0x7f0000000040)={0x100000001, 0x3, 0x75b87eb0}, 0xc) ioctl$DRM_IOCTL_ADD_CTX(r0, 0xc0086420, &(0x7f0000000140)) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) getsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, &(0x7f0000000240), &(0x7f0000000280)=0xc) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x4008240b, &(0x7f00000000c0)={0x0, 0x70, 0x0, 0x1ff, 0xeaa, 0xffffffffffffffff, 0x0, 0x80000001, 0x1050, 0x2, 0x0, 0x5, 0x4, 0x5, 0x101, 0x2, 0xd4c1, 0x1, 0x9, 0x8, 0x1, 0xfffffffffffffc01, 0x2, 0x5, 0x4, 0x4, 0xfffffffffffffffe, 0x1, 0x9, 0x8, 0x5, 0x100000001, 0xffffffffffff8001, 0x7, 0x3, 0x80000001, 0x6, 0xfffffffffffffffc, 0x0, 0x8, 0x1, @perf_config_ext={0x80000000, 0x5}, 0x2001, 0x8000, 0x2, 0x6, 0x40, 0x4, 0x100}) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) sendmsg$alg(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f0000000180)=[@iv={0x68, 0x117, 0x2, 0x54, "38ef0365b61e49e3016dcbf158f97fc49980c676db06f5ebd58fa1135b79410d60a5ebfd68087facb32cdad55f68e057fc35010c2611aba0ec81be5fa16d8f572f30b92725bf3b723f9412779daebe17266293c5"}], 0x68}, 0x4008040) 2033/05/18 03:36:39 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0xffffffff00000000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:39 executing program 5: bpf$MAP_CREATE(0x0, &(0x7f0000346fd4)={0x0, 0x0, 0x0, 0x85, 0x2}, 0x2c) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='io.stat\x00', 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0xe, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="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"], &(0x7f0000f6bffb)='GPL\x00', 0xfffffffffffffffc, 0xfb, &(0x7f00001a7f05)=""/251}, 0x48) 2033/05/18 03:36:39 executing program 6: r0 = socket$inet6(0xa, 0x6, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bind$inet6(r0, &(0x7f0000c67000)={0xa, 0x4e20}, 0x1c) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='oom_score_adj\x00') getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000100)=@sack_info={0x0, 0x1, 0x28000000000}, &(0x7f0000000140)=0xc) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f0000000180)=@sack_info={r2, 0x9e01, 0x40}, &(0x7f00000001c0)=0xc) listen(r0, 0x1000008000) r3 = socket$inet_dccp(0x2, 0x6, 0x0) connect$inet(r3, &(0x7f00002f7ff0)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10) recvmsg(r3, &(0x7f0000000700)={&(0x7f0000000300)=@pppol2tp={0x0, 0x0, {0x0, 0xffffffffffffffff, {0x0, 0x0, @multicast1}}}, 0x80, &(0x7f0000000640), 0x0, &(0x7f00000006c0)=""/54, 0x36}, 0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000d1bf10), 0x0, 0x0) accept(r0, &(0x7f0000000000)=@l2, &(0x7f00000000c0)=0xffffffffffffffd4) 2033/05/18 03:36:39 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snapshot\x00', 0x220000, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], &(0x7f0000000240)=0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000de9000)=[@text32={0x20, &(0x7f0000f59fc6)="0fc75fedc4c3c968fb6c0f9cfbb9040100c00f3266b842008ee80f230064672ec015dec4e245bea5d41e6082f9440f20c03506000000440f22c0", 0x3a}], 0x1, 0x0, &(0x7f0000000180), 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 2033/05/18 03:36:39 executing program 0 (fault-call:0 fault-nth:12): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) [ 314.081897] FAULT_INJECTION: forcing a failure. [ 314.081897] name failslab, interval 1, probability 0, space 0, times 0 [ 314.093207] CPU: 1 PID: 22920 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 314.100488] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 314.109933] Call Trace: [ 314.112531] dump_stack+0x1b9/0x294 [ 314.116172] ? dump_stack_print_info.cold.2+0x52/0x52 [ 314.121373] ? perf_trace_lock_acquire+0xe3/0x980 [ 314.126226] ? find_held_lock+0x36/0x1c0 [ 314.130305] should_fail.cold.4+0xa/0x1a [ 314.134386] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 314.139513] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 314.144720] ? find_held_lock+0x36/0x1c0 [ 314.148822] ? check_same_owner+0x320/0x320 [ 314.153162] ? rcu_note_context_switch+0x710/0x710 [ 314.158103] ? save_stack+0xa9/0xd0 [ 314.161743] __should_failslab+0x124/0x180 [ 314.165990] should_failslab+0x9/0x14 [ 314.169806] kmem_cache_alloc+0x2af/0x760 [ 314.173954] ? find_held_lock+0x36/0x1c0 [ 314.178034] getname_flags+0xd0/0x5a0 [ 314.181847] user_path_at_empty+0x2d/0x50 [ 314.185998] do_mount+0x172/0x3070 [ 314.189540] ? do_raw_spin_unlock+0x9e/0x2e0 [ 314.193946] ? copy_mount_string+0x40/0x40 [ 314.198174] ? rcu_pm_notify+0xc0/0xc0 [ 314.202058] ? copy_mount_options+0x5f/0x380 [ 314.206454] ? rcu_read_lock_sched_held+0x108/0x120 [ 314.211473] ? kmem_cache_alloc_trace+0x616/0x780 [ 314.216309] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 314.221838] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 314.227363] ? copy_mount_options+0x285/0x380 [ 314.231848] ksys_mount+0x12d/0x140 [ 314.235464] __x64_sys_mount+0xbe/0x150 [ 314.239435] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 314.244441] do_syscall_64+0x1b1/0x800 [ 314.248316] ? finish_task_switch+0x1ca/0x810 [ 314.252803] ? syscall_return_slowpath+0x5c0/0x5c0 [ 314.257720] ? syscall_return_slowpath+0x30f/0x5c0 [ 314.262643] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 314.267999] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 314.272852] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 314.278032] RIP: 0033:0x455979 [ 314.281208] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 314.288904] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 314.296157] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 314.303419] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 314.310672] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 314.317925] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:36:39 executing program 4: r0 = syz_open_dev$amidi(&(0x7f0000000140)='/dev/amidi#\x00', 0xa12, 0x880) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x84000, 0x0) open_by_handle_at(r2, &(0x7f0000000000)={0x95, 0x3f, "02932c4bc6b189a91f8f3b1100d6efeae154665acc2968c150efb9d9a4c243878f9bea0577623491f1da0fbde0508268663affdcbfb31b310f363bf79fc90840c7ed6af391cef8a64e95b2d717afa3eb5946702cb403d10e8b6a7f2e2e9487f6e130aa5eee48acbcdd342582f5be0f43ccd784e0355c19c441ba6d7e7e0cfa9b54c305928bebe572afc0bc34ed"}, 0x80000) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$DMA_BUF_IOCTL_SYNC(r0, 0x40086200, &(0x7f0000000240)=0x4) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$GIO_UNISCRNMAP(r0, 0x4b69, &(0x7f0000000340)=""/106) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2) r4 = dup3(r1, r0, 0x80004) ioctl$VT_RESIZE(r4, 0x5609, &(0x7f0000000300)={0x2, 0x101, 0x4}) ioctl$KVM_SET_MSRS(r4, 0x4008ae89, &(0x7f0000000100)={0x38b, 0x0, [{0xc0010058, 0x0, 0x8}]}) epoll_pwait(r0, &(0x7f0000000180)=[{}, {}, {}, {}, {}], 0x5, 0x4, &(0x7f00000001c0)={0x100000000}, 0x8) setsockopt$IPT_SO_SET_ADD_COUNTERS(r4, 0x0, 0x41, &(0x7f0000000280)={'filter\x00', 0x4, [{}, {}, {}, {}]}, 0x68) ioctl$FUSE_DEV_IOC_CLONE(r0, 0x8004e500, &(0x7f0000000200)=r4) 2033/05/18 03:36:39 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)='OF', 0x2) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:39 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0xfec00000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:39 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f000065ffa8)={0x26, 'skcipher\x00', 0x0, 0x0, 'ctr-twofish-3way\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00001ec000)="0a0775b0d5e383e5b3b60ced5c54dbb7", 0x10) r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000f74fc8)={0x0, 0x0, &(0x7f00007e0ff0), 0x0, &(0x7f00005e2fd0)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0) readv(r1, &(0x7f0000000340)=[{&(0x7f0000000300)=""/34, 0x22}], 0x1) r2 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000200)='/dev/urandom\x00', 0x20000, 0x0) setsockopt$bt_BT_RCVMTU(r2, 0x112, 0xd, &(0x7f0000000240)=0x5, 0x2) 2033/05/18 03:36:39 executing program 0 (fault-call:0 fault-nth:13): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:36:39 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) getsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100), &(0x7f0000000140)=0xb) ioctl$EVIOCRMFF(r0, 0x40044581, &(0x7f0000000040)=0x4) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) ioctl$DMA_BUF_IOCTL_SYNC(r0, 0x40086200, &(0x7f00000000c0)=0x3) 2033/05/18 03:36:39 executing program 6: socketpair$inet_icmp(0x2, 0x2, 0x1, &(0x7f0000000040)={0xffffffffffffffff}) write$binfmt_script(r0, &(0x7f0000000100)={'#! ', './file0', [{0x20}, {0x20, 'user^'}, {0x20}, {0x20, '!$:'}, {0x20, '*-user#keyring-'}, {0x20, '-}@GPL[cpuset$vmnet0system\'ppp1md5summime_type'}, {0x20}, {0x20, '@#!'}], 0xa, "7e3e1f629e31ea3a7b4a09688f2eb145bae91703b9df372d8a89220ed18af500fd023f9e739e1ea8791936741f61ca8402b32728b33fce42e21f012622ea7054ce39b3dd47829c6d229471302628018cc0e5a7417228b46d2ef319c8ec3204ce7a5dc12629083d92069007b895f363eb53674ff53fc618b7c3013ca0eae72262a7238ab6f927da28754bf8b26194ec7db7800fa8dfcf786bc56e691a740d263873d6265052c212dda84bb52f6f3c90a0a7bf808343ed804b1dac884806b069f94b7f8d43c41d69e0928932cba270c5d21f92811e6145b3eb8fb2f99eab6862ce21d2950b7d04d74534bd2673440c01fd17c02df3b273acc7a27240a71bce1e02f3b0f52186fc6ca480176011162e5866662062eec2aa6fec6df1ab29250e786488476b1584f18009fec6cad5d745da6ed456561a4561dd2954fa02a8a2ddf856da07dadbcf06a06cbd6e0cb04200a38ec74912ea888c800d4ace9474388da64e8e5f4425026f5d28ea32db0fd0722e8f7fea8e1ef72f1313eee84f69fb8901faecb646940b3543031843acaa5037cd3f150c62fd4b0012c878df001ddc8ea717301f3d9a51e7e35e98a3ee10d81a7aeaba30efc9c7a66ed5ca360e04e8304cece77371ed21e29ba63546a238c3ca2b698e80c5875e8ef4eb1236537bf6403cafc67219c4b7695d76dd5dd51c96a0f14b1a209c40f66c1c3c86907f33b0b4fb49125acc44c266a0f9c8078f5e9d0d0bbc3c6d91214452a57afc91d23fd1e87734da1de5177cd2e3d8a2390a44284bc202f200a7b59a544b8fe7e6d63f9b0b1eb04cb673b1b09753154669343e8162df7edd062847c04db389667041b4ac1e9121cce6abb01b72c6fb57543723a3ead36038a663fe04399ce8b20c41ad99c5722c91bf8901bc16d88c2c255c6fcbc50e04ad14def9d4d97825221a69ce95c08c9b79c9eaa97fe86d355cea0f2645dd1a68fdd860afc206551152b26bdb43dde8f5477b5618d104387565d1eea3f84b1ba0533769b0b339995fa771e78d1fe52cd38d1836bfae39b669370be8b510e3bdf430d61bf99330d422e547784a2abcd865214171ef02094ac4883cbfee6f4055a20892de103242b1bda5514f960e0706563bcab0563ead3337032f5d74b096bb96c65c3c465d2fbd738a9cd8b5ac8b19e3d4870c25ba7199804d0e591b4b9d0935717aa926255d5ff58787104f0da064d32fd328ae432cf234a1c68257e20585f7422fd46d5b8b5f34ec027e5d311b4e5ba8a3bbe8ef85439aae7de218f273344682e8d9cf639a3f2d872fcefe4dc31be90c88efae00744636932fcaabcf394e53e48bb37236fff5b803f15e47b4eb2ca8c842fd631e202f3f442dc13b4d726c68dfd69a4e48e518265db53be92df945085699cc74e6f73cb2a2541c37c5ed2542e0f01682bfc1012f483829c443b7fbee136d706ce1778e6dc5d3575164a5a69296100a399671de14fa9641a81fbc2c3d167a80fff3cee9e704488a12603a7194d601510ee43299466d57aa54b4ed468108e020f4afbaa69bd160b96e559ed6340471c80391d6ae2010cc4109d047e61b903ebf6b8cc55628fc17e6ae5c185ca140c1f46c01e9a6eec5730653405a3960152747513f3f63026ef647a7a8f41d415c4f59553c3b142a8085bc7d24112481fdf6998a66b6af8696bb6d4f602c42f9f034cfb0fcb3fdaca7d5e477ca605a1b3a903bcfe5fdfa4d0c3b140231874c644f2b40029cba08e14c85db5a01bf9efd2768d857642071444cb92506ae3cfef31c3593a04d5f1d5fcc0b23b2f751889e0bca9a956a2df65e1a575e6fa15e1ff9c6741c33733688e11f30af9a2e4c9aee0eec29dc3dcfe644e6e93a39f33b5c80747f2a34398c2d9059ecd6aaf88d0effad0dc000479b9cd152550dbb3772e1765823d9b42484dc8be249aae32a2e04f7757561ca0cdc9b375cd0bbb14925e9eeae6e4ef2ae3e83fc7a4badf5b6636f986bf017331a3420aa1d23e7b6e9fbf000bc516da481fdb2ee9e46acf432c1d7f2c9697413c7d6bb6138d9a1081a2d4695fca61cbfe7c6ac370da70b7befc50071cc18e213dceee79f72292dc67c4f589d4b0ffd975a4431e7508a98461d80e2f5080a133087df54b75e2e9dcdce350620e501383bf1a44df9741ab873caca250a7b0ce394149396b18f97b7f2eb46a56d29bf3dd09560e5fa4f799f135bcd07e73bc3d73b54a375cd0fe06cfc0c9ab579c4a83b71c156f544fa21d268333943b21a40f3112b763ecfe476249c971dcfeeefc38f80c149cbe5097b1950723361f4e4c890ba2cb3f1a25f3a9b0e88d1c09a0880aef73cebf096cd9e78da6d7662ff682e6e42c097258745045e0e2f27f8459abcfffc66b47a8d01c8779ca3307df9e1dd461d5e2898834e57b5029308f6dc64916c06ea75f6cc2e7ae2714f0149d7d3bb12a9843eeea94ef45668934c674032c085e4fc82ddad12797c6d20b6af6dc492603dd6be46a0de9732403a3bc23f4461604f6b9b0ad43d1bacc2def2b703177f8b9ef2a12be3b4e26919a00cc3153f4bbce047123f3d86730e82534662e0fd658e22cd90aef235647bd19aa73256137cc673f65c85c152ea3b6dbcaa98dce29cff9f92339a42fd202881a4312d60e7ade0407149d60bdb08281cee20bcdab98959f9adb8a8e53c68eabbaf922c276801fc04f1b59411d30ed5c95b22c0cf87315cecc62330d67f08d76c15c9f6d77e9362a7ceed287e741baf579b3e27a6535bbd47970285cce30e83af0f85a7d51dbb926aa13bb37acdf93ae03097006b51c55c79e286ad539de92b2c9739eff74522adc1e7073b68f5fce90ccb02e5d2314af49f181d2cfbd0fa2f666811b76cbf3237e23a89ade5e68b8c6402122d8ba8b975272527fd42aede24c6f02588b3aa343e73659ed8398bc05d59dfa07e902d225f99ce2fb1b266b33a8bd1abe3adeffbfde967ff77fe7dcdaa98527d9c3a6126ac4d534b14e4f0f0b70aa3c2cb7ede1ad8f044df2c0e5cb693f24bca3ca96ccb41f5d407fa65a293fa1362938de69af659ee5a93b2f75edc7b4589b67a68eb403c50a76682a3f23f0be264119c8477c2a31e42bc672af851700aa6597c101872a58d1e0dbd0df598b846756a2d166ae2dc7e9162e78f48fd5ff6e270798b9eae76be1d93dd13b56908c3b1f13208eb00bd9864d31c7af116c499a3f9395825b4646d590d8f806d530b1934c4487f8e30465a5393aa2ec34796d397e50b98490650950ad30dfb3c9c8d1f6cf8ee921c15bf609d1cf42bbd914f74c739fd5b6ebcddc3b25347272de128f0a646e0b150b3065b1babddc32be2205a428119a73f5038d3a8ae9f5696af0ee4d314bce19cc17518e95d2051ff9cb296fd5ac6e3fd69b9ca916fc3e1f0c6cf33fe0fdf7bf429ab8907144481d9b1164d59c4738b4c2918277f0885e85bd9ad16edbc0d8de4b1b333ad2d28d48d2dadc78dfcee7e2176623552ddfe644b20d2153cd3b963bef8b216d7f41999151db4a6673145e69fc3dc8937394824f832b90e890e97e28c9ab36773b2a4b0218a3264e571c0b93a48ed84bb95a99b82c882da629ad1b8ec875b335b818c049c1daaa6575b6a9bdb4c77dd5dd9608e3c47f6a5583ebb2854dc70f1d0bd4edbf5777cbdb66c634058798ea2e64a6f9115e8bee6adb730427e1c7dc5cbedbc3d2416edf4f38b1811fb44521e7848a6adbe5b49896cf9edd9da7632735d559386e1221310f701a0649a11e99b3fe69fce2f2463a3bc850d70173bdc1e696aa84fa14d1fafd37d9f0d9d53c279b9b8c6aa35133ce7f93c71638649127f26f60602b6057100938af66eb491ff067ec11119c545385089587acc99fa67a6157eec5a1bdf121edf787c262f00ed871dd15abc2c10301739f518dfdcf8b2361ce930a600747842c504778322c9eb5bcdf55697ef2d6c967582f6377cdd67304023c0a1edf3d32933deabe92a91157940188e819c54641f118471d57eb7ca09404468a88b9c3ed915d2c959d7ca9a8e85add10344fd3a2eafe9754f411512f37503c560a7d98161e0e61055f6e28ad6d35b6e2a902f2f22b83c0ba742419fa6b223776af5542fe06f779237df2a0c3c466a51d0226e418008e593bc7a5a7286b734125d607f982bdcb9e17c2cf4ff8e72b191d630c93ec5f5b42ef0c1a4afde25967cf28d556d7e6912e4b1b3bf1dbb2ec54d9db1c4ea4514506b922f2aa9e8639e1211b578dc35ab503b773553c5f916d960dd21eb13112dbff4714fda89f59b6153336d425e89dbad806408f51f323ea2d28c7fae8a65fed2915b35d6fc9888f6cae3c59cf4f993630018aede13b90e3f870bc2c0090ffced4269e1dda7ec6e5ab1a49f51facb51576a10995a400242886960db44abc7e7adb556f48a310e412a5ef38d766220a06fa2af982e99ce881f9f48292ab4e4fcb19efcdc5215e558605f0b473bd6867d23d7e6f3ba1ffc7f12b2b3b1ecfa871e2aa0e6144f1cddfa944546479e2cf8ed6c26eb3608fd58d127c527451e6646e30cfc5f98aabaca7c2feeb6ec1dbd32510ec6293513c32727cb433a4ed6dfd97857ebbe28e5327a10c14b2ebfc5d5e146b4b506a419c5e9cf036c4235191b98bab9c052b312722e63bf28012b409ae78ecccd92c5125442ad620c8846aa2a57c64d1007ad1b75462844a48892f1ae1ef0f54146ec34dd7a5a990f8f29fded7e520d2f9a1215852938fa9aa3ebd5dfe98779137169cf64c5bec816deb5cf6834c0693747094b905deb732e6ad4538770cb5e30d720dfe5ff0397c14d20fa0dd7a296a71e8dff5edaf148c18c3cfc53e7c3a79ac98ef1cc56fee7e2fc60ab5be70beff8559dbec36041e8bb3d50f0c5105ae88377b0afdea18bcb98894482cddbe163bc670148fc735b97876d00c780472df361f34122818e25ea5a7fe51c40766e5cb5086bd4b9754b9e36388f7db64e510a8fcbe8352279e462916d9d0146dec7da712f61169f7d1de160ccc2ce44f7529b35ed47b2a1e5e0f59559cb6a06909bbdbc8e3674f079d8295599deb429946aaaffc3c6cbd7a30b76e2564c7d36c36e5b887070961d40186caac507063298ce8d8565edd70e9b0399d8bb8efee60ca87ceb634cf3c4ff2711fb8321135944e141ce403d297dceffbdffae195fb986435dba65ae1c786df5ce7b87ea14f3a13aa3af55fda0b96d197954834d450c50d506117ca636dd3bb0b08c814d5b77ad3e760091afdec005e8aa489682fbb7adbd0f3f7801e2bd1fcce9be2500a6a36d4b841254969a168492fadfb197b4ac7cf8ccf03d455708d9ee84f6a1bbbba2bd994543a9c28bd03988fd52e8248905d578f1f1a31b04121c0e2aa8d90cc9fa344aedc6a7385f6f71a4e308a6eb291427034efbce97027d1d14ceab8176899c579e61e6f2a2f99c18451c64a370bd8ea1eb566928a9f945e76557a4a11b225e7d7723622c89357fec4485afdfde229fed528ee039775f06725a2c9b04fc28e575d9760eb175a1367262339a422d4c6b2091f2487c5bb26fa613a44692a0c77da97c84a3a79a8b97d207055da484d89245ae6a3ec26b82caf267b31c3f582c2e94c9e8787b4c0afb9b03c68e4150b58f371775bd09dd403cac7817141dea0a6c830ceee75f57e7e1c1b68e37de1f0e7e4604f3a39f54f57507cd54871caeea9c702493957e2f12ae06c1d080564d17a2aead929be06785eb1121433ba2d8ea995fbefc68a252f9a69de7a6b3ed5cdaa5db970655c7f034d2cb082c50096e6b70421b64413c"}, 0x105b) capset(&(0x7f0000fc1ff8)={0x4000019980330}, &(0x7f0000001fe8)) mkdir(&(0x7f0000000080)='./file0\x00', 0x0) rename(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='../file0\x00') 2033/05/18 03:36:39 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0xf00) [ 314.908574] FAULT_INJECTION: forcing a failure. [ 314.908574] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 314.920561] CPU: 0 PID: 22941 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 314.927843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 314.937197] Call Trace: [ 314.939794] dump_stack+0x1b9/0x294 [ 314.943446] ? dump_stack_print_info.cold.2+0x52/0x52 [ 314.948656] should_fail.cold.4+0xa/0x1a [ 314.952732] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 314.957853] ? pcpu_balance_workfn+0x16d0/0x16d0 [ 314.962619] ? find_held_lock+0x36/0x1c0 [ 314.966711] ? check_same_owner+0x320/0x320 [ 314.971041] ? __lockdep_init_map+0x105/0x590 [ 314.975549] ? rcu_note_context_switch+0x710/0x710 [ 314.980493] ? lockdep_init_map+0x9/0x10 [ 314.984571] ? __might_sleep+0x95/0x190 [ 314.988555] __alloc_pages_nodemask+0x34e/0xd70 [ 314.993222] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 314.998243] ? kasan_check_read+0x11/0x20 [ 315.002384] ? rcu_pm_notify+0xc0/0xc0 [ 315.006258] ? trace_hardirqs_off+0xd/0x10 [ 315.010485] ? putname+0xf2/0x130 [ 315.013952] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 315.019481] alloc_pages_current+0x10c/0x210 [ 315.023877] __get_free_pages+0xf/0x40 [ 315.027759] get_zeroed_page+0x11/0x20 [ 315.031632] mount_fs+0x210/0x328 [ 315.035082] ? mpi_free.cold.1+0x19/0x19 [ 315.039131] vfs_kern_mount.part.34+0xd4/0x4d0 [ 315.043700] ? may_umount+0xb0/0xb0 [ 315.047314] ? _raw_read_unlock+0x22/0x30 [ 315.051446] ? __get_fs_type+0x97/0xc0 [ 315.055336] do_mount+0x564/0x3070 [ 315.058866] ? copy_mount_string+0x40/0x40 [ 315.063088] ? rcu_pm_notify+0xc0/0xc0 [ 315.066966] ? copy_mount_options+0x5f/0x380 [ 315.071360] ? rcu_read_lock_sched_held+0x108/0x120 [ 315.076361] ? kmem_cache_alloc_trace+0x616/0x780 [ 315.081193] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 315.086716] ? _copy_from_user+0xdf/0x150 [ 315.090865] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 315.096387] ? copy_mount_options+0x285/0x380 [ 315.100872] ksys_mount+0x12d/0x140 [ 315.104488] __x64_sys_mount+0xbe/0x150 [ 315.108449] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 315.113456] do_syscall_64+0x1b1/0x800 [ 315.117327] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 315.122170] ? syscall_return_slowpath+0x5c0/0x5c0 [ 315.127087] ? syscall_return_slowpath+0x30f/0x5c0 [ 315.132006] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 315.137362] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 315.142195] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 315.147366] RIP: 0033:0x455979 [ 315.150539] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 2033/05/18 03:36:40 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x5c, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:40 executing program 4: r0 = accept4(0xffffffffffffff9c, &(0x7f0000000180)=@l2, &(0x7f0000000200)=0x80, 0x0) bind$can_raw(r0, &(0x7f0000000240)={0x1d}, 0x10) r1 = syz_open_dev$sndtimer(&(0x7f00000000c0)='/dev/snd/timer\x00', 0x0, 0x0) r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000300)='/dev/rfkill\x00', 0x80, 0x0) getsockopt$inet_mreqn(r1, 0x0, 0x23, &(0x7f0000000900)={@empty, @remote, 0x0}, &(0x7f0000000940)=0xc) setsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000000980)={r3, @rand_addr=0x400, @loopback=0x7f000001}, 0xc) fcntl$getown(r1, 0x9) ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000001000)={{0x100000001}}) ioctl$sock_inet_tcp_SIOCOUTQNSD(r2, 0x894b, &(0x7f0000000140)) r4 = socket$netlink(0x10, 0x3, 0xf) r5 = syz_genetlink_get_family_id$fou(&(0x7f00000007c0)='fou\x00') ioctl$SG_SET_FORCE_PACK_ID(r2, 0x227b, &(0x7f0000000100)=0x1) sendmsg$FOU_CMD_ADD(r4, &(0x7f00000008c0)={&(0x7f0000000780)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000880)={&(0x7f0000000800)={0x64, r5, 0x0, 0x70bd28, 0x25dfdbfe, {0x1}, [@FOU_ATTR_TYPE={0x8, 0x4, 0x1}, @FOU_ATTR_TYPE={0x8, 0x4, 0x1}, @FOU_ATTR_AF={0x8, 0x2, 0xa}, @FOU_ATTR_TYPE={0x8, 0x4, 0x2}, @FOU_ATTR_IPPROTO={0x8, 0x3, 0xff}, @FOU_ATTR_IPPROTO={0x8, 0x3}, @FOU_ATTR_AF={0x8, 0x2, 0xa}, @FOU_ATTR_IPPROTO={0x8, 0x3, 0x7f}, @FOU_ATTR_PORT={0x8, 0x1, 0x4e22}, @FOU_ATTR_PORT={0x8, 0x1, 0x4e20}]}, 0x64}, 0x1, 0x0, 0x0, 0x40}, 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r1, 0x40345410, &(0x7f0000000000)={{0x0, 0x3}}) ioctl$TIOCLINUX2(r2, 0x541c, &(0x7f0000000280)={0x2, 0x2, 0x6, 0xffffffffffffffc1, 0x0, 0x4}) ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000040)=0x105000) 2033/05/18 03:36:40 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)='OF', 0x2) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:40 executing program 3: r0 = perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000340)={0x0}, &(0x7f0000000200)=0xfffffffffffffff3) perf_event_open(&(0x7f0000000140)={0x0, 0x70, 0x40, 0x20, 0x4, 0x5, 0x0, 0x2, 0x410, 0x9, 0x606, 0x2, 0x4, 0x0, 0x1, 0x3fc0000, 0x3, 0x0, 0xfffffffffffffffe, 0x8, 0x0, 0x9, 0x5a8, 0x4, 0x2, 0x23, 0x7, 0x4, 0x8c6a, 0xffffffffffffffff, 0x7, 0x3, 0x2, 0x401, 0x7, 0x4, 0xf5cc, 0x6, 0x0, 0x400, 0x1, @perf_bp={&(0x7f0000000040), 0x3}, 0x4020, 0x188, 0x3, 0x1, 0x7fff, 0x6, 0x3}, r2, 0xb, r0, 0x9) ioctl$EVIOCGPROP(r1, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r1, 0x4010744d, &(0x7f0000000440)=""/174) ioctl$KVM_GET_MSRS(r1, 0xc008ae88, &(0x7f00000000c0)={0x6, 0x0, [{}, {}, {}, {}, {}, {}]}) socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r1, 0x84, 0x8, &(0x7f0000000240), &(0x7f0000000280)=0x4) [ 315.158232] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 315.165487] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 315.172739] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 315.180002] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 315.187274] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:36:40 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x4) sendmsg$nl_generic(r0, &(0x7f0000005000)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000040)={&(0x7f00000002c0)={0x28, 0x14, 0x7, 0x0, 0x0, {0x1}, [@typed={0x8, 0x0, @pid}, @generic="0bf0a8de5ec8d2aa00"]}, 0x28}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) 2033/05/18 03:36:40 executing program 6: r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect(r0, &(0x7f0000002000)=@ethernet, 0x10) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000006000)={'vcan0\x00', 0x0}) sendmsg$can_bcm(r0, &(0x7f0000000000)={&(0x7f0000004000)={0x1d, r1}, 0x10, &(0x7f0000002ff0)={&(0x7f000000afb8)={0x1, 0x0, 0x0, {}, {0x0, 0x7530}, {}, 0x7ffff, @can={{}, 0x0, 0x0, 0x0, 0x0, "8e15adecfc04aba1"}}, 0x48}, 0x1}, 0x0) 2033/05/18 03:36:40 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x900, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:40 executing program 0 (fault-call:0 fault-nth:14): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:36:40 executing program 4: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000616ff8)={0xffffffffffffffff, 0xffffffffffffffff}) mmap(&(0x7f0000f9d000/0x4000)=nil, 0x4000, 0x0, 0x32, 0xffffffffffffffff, 0x0) getsockopt$sock_int(r0, 0x1, 0x5, &(0x7f0000000080), &(0x7f00000000c0)=0x4) sendmsg$unix(r2, &(0x7f0000bba000)={&(0x7f0000c57ff8)=@abs, 0x8, &(0x7f00006c6ff0), 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000000100000001008a0d09a10590b3a9960000", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00'], 0x18}, 0x0) recvmsg(r1, &(0x7f00003d6fc8)={&(0x7f0000698000)=@generic, 0x80, &(0x7f000081afd0), 0x0, &(0x7f0000f9fff8)=""/90, 0x5a}, 0x0) 2033/05/18 03:36:40 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)='OF', 0x2) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:40 executing program 5: sendmsg$unix(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f0000564000)=@abs, 0x6e, &(0x7f0000451ff0)=[{&(0x7f0000007000)="002a932f01000000cf960802e02348f800000000001c0003f2a576", 0x1b}], 0x1, &(0x7f00001f9fe0)}, 0x0) r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000140)='/dev/uinput\x00', 0x802, 0x0) fcntl$getownex(0xffffffffffffff9c, 0x10, &(0x7f00000015c0)={0x0, 0x0}) fstat(0xffffffffffffff9c, &(0x7f0000001600)={0x0, 0x0, 0x0, 0x0, 0x0}) r3 = getegid() r4 = accept4$ax25(0xffffffffffffffff, &(0x7f0000001680), &(0x7f00000016c0)=0x10, 0x800) socketpair$inet_udp(0x2, 0x2, 0x0, &(0x7f0000001700)={0xffffffffffffffff}) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000001740)='/dev/loop-control\x00', 0x20000, 0x0) r8 = syz_open_dev$sndseq(&(0x7f0000001780)='/dev/snd/seq\x00', 0x0, 0x2482) r9 = socket$unix(0x1, 0x1, 0x0) r10 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r11 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) r12 = syz_open_dev$vcsa(&(0x7f00000017c0)='/dev/vcsa#\x00', 0x57, 0x50002) r13 = socket$inet_icmp(0x2, 0x2, 0x1) r14 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000001800)='/dev/sequencer\x00', 0x4040, 0x0) r15 = inotify_init1(0x800) r16 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001940)='/dev/ppp\x00', 0x0, 0x0) r17 = accept4$inet6(0xffffffffffffff9c, &(0x7f0000001980)={0x0, 0x0, 0x0, @dev}, &(0x7f00000019c0)=0x1c, 0x800) socketpair$inet6_udp(0xa, 0x2, 0x0, &(0x7f0000001a00)={0xffffffffffffffff, 0xffffffffffffffff}) r19 = perf_event_open$cgroup(&(0x7f0000001a80)={0x5, 0x70, 0x6, 0xd0, 0x4ad4, 0x0, 0x0, 0x3, 0x10, 0x5, 0x1f, 0x0, 0x2, 0x1f, 0xc472, 0x5, 0x10000, 0xffff, 0x800, 0x6, 0x2, 0x5, 0x45f1, 0x1, 0x200, 0x1b0, 0x5, 0x93c, 0x5, 0x7ca2, 0x7ff, 0x80c7, 0x7, 0xfffffffffffff801, 0x80, 0x2, 0x0, 0x1f, 0x0, 0x4, 0x3, @perf_bp={&(0x7f0000001a40)}, 0x2a0, 0x100, 0xfffffffffffffffa, 0x0, 0x2, 0x401, 0x4}, 0xffffffffffffffff, 0x5, 0xffffffffffffffff, 0x0) r20 = socket$pppoe(0x18, 0x1, 0x0) r21 = signalfd(0xffffffffffffff9c, &(0x7f0000001b00)={0x6}, 0x8) r22 = syz_open_dev$sndpcmc(&(0x7f0000001b40)='/dev/snd/pcmC#D#c\x00', 0x15b800, 0x40) r23 = socket$alg(0x26, 0x5, 0x0) r24 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) r25 = socket$inet_tcp(0x2, 0x1, 0x0) r26 = openat$mixer(0xffffffffffffff9c, &(0x7f0000001b80)='/dev/mixer\x00', 0x2200, 0x0) sendmsg$unix(r0, &(0x7f0000001cc0)={&(0x7f0000000180)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000001540)=[{&(0x7f0000000200)="1bce9c3298d4a340d44f7806e082b2c7b5e6a1bb307223762c85423a23e619a8e171d791b630cb33b903de8faec9ec8d093eb23d6cee2a145b569acde9e3208fc1d3fc505055d2ea7b86a0ac778c4db0c80eb109fbe373949e180cc7905783a325c90a3a5cd2f0ab8f0b519f217c75adade98e4dee13bbde4d0fdb6f9bf9406cdfae8eb76230b97ffbeff66ad2a09ded649d5dbc180137277f8b2ee207e518ab26887393024e57b12ee9af33bfd1269411f405a215f3e03e968af7335477342f9b1f001a49ecfbbd8a3bce12dc93fc7ef9859d83e337e631639dec1022804a7b33644f7139c93287db7c7b5092de706bc9fc849f17bf235c", 0xf8}, {&(0x7f0000000300)="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", 0x1000}, {&(0x7f0000001300)='Bw', 0x2}, {&(0x7f0000001340)="e631b98830b002caf751d3e9f17b1bacdad311ab8598ecafab566ebd8a2b332fcf3197d13da29896d5de28324fed7e60d057fa98a3ee289079524135abf984f4bcdd4cff75d33362b8961f73", 0x4c}, {&(0x7f00000013c0)="7b6e40832edb3401058993d86be23518dff1f4983846c3564f2fbcf24448a0", 0x1f}, {&(0x7f0000001400)="40cb05ec3babee3bd1708aaf517b34367e0869415a3f5eaf9f3a7de9efac37a4320372a0b744ee793f32b1759e20f137b62553f06d94cb68e1328111c4eeb558479228439402f30b7c8f845705db394a213b416d76df1f88672885aec70e6dc1ebd88bf3aee9403db7db2f2f3f85170378222623ff6188d958000bf3f86ba599c5e871915de9b7d3", 0x88}, {&(0x7f00000014c0)="fede0564d2a8f81af8e88a8a6c7a62bcd263e93b701982732a79d9a6e91ee776736ea1dcb905066595368f2cf837470a7c531de071b7245708d4fde049a3611a41c1f092d881b21dbc68b26f8f7a2d395172e1efba7e2897", 0x58}], 0x7, &(0x7f0000001e40)=ANY=[@ANYBLOB="240000000001d5a857148a0b0000000100000002000000", @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r3, @ANYBLOB="0000000018000000000000000100000001000000", @ANYRES32=r4, @ANYRES32=r5, @ANYBLOB="28000000000000000100000001000000", @ANYRES32=r6, @ANYRES32=r7, @ANYRES32=r8, @ANYRES32=r9, @ANYRES32=r10, @ANYRES32=r11, @ANYBLOB="20000000000000000100000001000000", @ANYRES32=r12, @ANYRES32=r13, @ANYRES32=r14, @ANYRES32=r15, @ANYBLOB="18000000000000000100000001000000", @ANYRES32=r16, @ANYRES32=r17, @ANYBLOB="38000000000000000100000001000000", @ANYRES32=r18, @ANYRES32=r19, @ANYRES32=r20, @ANYRES32=r21, @ANYRES32=r22, @ANYRES32=r23, @ANYRES32=r24, @ANYRES32=r25, @ANYRES32=r26, @ANYBLOB="738e0000abb4c68f2572de7a8ed329b712e7d800af79f666585cca65f3fadc3a4f9946825a6da9ede258c9861594f3aece1ce51b8fe1b109c2fa1c89e4023887455845bc5ff12f6e"], 0xd0, 0x40000}, 0x20004010) r27 = syz_open_dev$sg(&(0x7f00000c5ff7)='/dev/sg#\x00', 0x0, 0x0) perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0x3e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r28 = getuid() r29 = getegid() syz_fuseblk_mount(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', 0xc000, r28, r29, 0xfffffffffffffff9, 0x44, 0x208820) ioctl$EVIOCSABS0(0xffffffffffffffff, 0x401845c0, &(0x7f0000007000)={0x0, 0x0, 0x80da14, 0x8001}) ioctl(r27, 0x2285, &(0x7f0000007000)='S') [ 315.388470] FAULT_INJECTION: forcing a failure. [ 315.388470] name failslab, interval 1, probability 0, space 0, times 0 [ 315.399897] CPU: 1 PID: 22981 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 315.407183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 315.416543] Call Trace: [ 315.419151] dump_stack+0x1b9/0x294 [ 315.422801] ? dump_stack_print_info.cold.2+0x52/0x52 [ 315.428006] ? perf_trace_lock_acquire+0xe3/0x980 [ 315.432861] ? kernel_text_address+0x79/0xf0 [ 315.437288] ? __unwind_start+0x166/0x330 [ 315.441453] should_fail.cold.4+0xa/0x1a [ 315.445531] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 315.450647] ? perf_trace_lock+0xd6/0x900 [ 315.454806] ? perf_trace_lock_acquire+0xe3/0x980 [ 315.459662] ? zap_class+0x720/0x720 [ 315.463391] ? find_held_lock+0x36/0x1c0 [ 315.467493] ? check_same_owner+0x320/0x320 [ 315.471834] ? rcu_note_context_switch+0x710/0x710 [ 315.476781] __should_failslab+0x124/0x180 [ 315.481033] should_failslab+0x9/0x14 [ 315.484847] __kmalloc_track_caller+0x2c4/0x760 [ 315.489534] ? kasan_check_read+0x11/0x20 [ 315.493696] ? do_raw_spin_unlock+0x9e/0x2e0 [ 315.498114] ? kstrdup_const+0x66/0x80 [ 315.501998] kstrdup+0x39/0x70 [ 315.505189] kstrdup_const+0x66/0x80 [ 315.508898] alloc_vfsmnt+0x1b3/0x9d0 [ 315.512688] ? mnt_free_id.isra.27+0x60/0x60 [ 315.517087] ? kasan_check_read+0x11/0x20 [ 315.521223] ? graph_lock+0x170/0x170 [ 315.525014] ? rcu_pm_notify+0xc0/0xc0 [ 315.528892] ? trace_hardirqs_off+0xd/0x10 [ 315.533115] ? putname+0xf2/0x130 [ 315.536559] ? putname+0xf2/0x130 [ 315.540005] ? find_held_lock+0x36/0x1c0 [ 315.544067] ? lock_downgrade+0x8e0/0x8e0 [ 315.548202] ? module_unload_free+0x5b0/0x5b0 [ 315.552689] ? lock_release+0xa10/0xa10 [ 315.556653] ? mpi_free.cold.1+0x19/0x19 [ 315.560706] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 315.566230] vfs_kern_mount.part.34+0x88/0x4d0 [ 315.570809] ? may_umount+0xb0/0xb0 [ 315.574426] ? _raw_read_unlock+0x22/0x30 [ 315.578558] ? __get_fs_type+0x97/0xc0 [ 315.582436] do_mount+0x564/0x3070 [ 315.585968] ? copy_mount_string+0x40/0x40 [ 315.590190] ? rcu_pm_notify+0xc0/0xc0 [ 315.594073] ? copy_mount_options+0x5f/0x380 [ 315.598469] ? rcu_read_lock_sched_held+0x108/0x120 [ 315.603473] ? kmem_cache_alloc_trace+0x616/0x780 [ 315.608304] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 315.613827] ? _copy_from_user+0xdf/0x150 [ 315.617965] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 315.623489] ? copy_mount_options+0x285/0x380 [ 315.627973] ksys_mount+0x12d/0x140 [ 315.631591] __x64_sys_mount+0xbe/0x150 [ 315.635550] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 315.640553] do_syscall_64+0x1b1/0x800 [ 315.644437] ? finish_task_switch+0x1ca/0x810 [ 315.648921] ? syscall_return_slowpath+0x5c0/0x5c0 [ 315.653838] ? syscall_return_slowpath+0x30f/0x5c0 [ 315.658759] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 315.664111] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 315.668944] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 315.674120] RIP: 0033:0x455979 [ 315.677294] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 315.684989] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 315.692250] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 315.699512] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 315.706765] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 315.714033] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:36:41 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x103, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:41 executing program 6: r0 = socket$inet_sctp(0x2, 0x5, 0x84) recvfrom$inet6(r0, &(0x7f0000000000)=""/81, 0x51, 0x2101, 0x0, 0x0) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000080)={0x0, @in6={{0xa, 0x0, 0x0, @ipv4={[], [0xff, 0xff], @remote={0xac, 0x14, 0x14, 0xbb}}}}, 0x3, 0xfffffffffffffffd, 0xffffffffffffffff, 0x0, 0x40000}, 0x82) 2033/05/18 03:36:41 executing program 4: r0 = syz_open_dev$vcsn(&(0x7f0000000280)='/dev/vcs#\x00', 0x8, 0x40000) setsockopt$l2tp_PPPOL2TP_SO_LNSMODE(r0, 0x111, 0x4, 0x1, 0x4) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c642d, &(0x7f00000002c0)={0x0, 0x0, 0xffffffffffffff9c}) ioctl$DRM_IOCTL_GEM_FLINK(0xffffffffffffff9c, 0xc008640a, &(0x7f0000000300)={0x0, 0x0}) ioctl$DRM_IOCTL_GEM_FLINK(r2, 0xc008640a, &(0x7f0000000340)={r1, r3}) r4 = socket(0x2, 0x3, 0x1) getsockopt(r4, 0xff, 0x1, &(0x7f000091b000), &(0x7f0000000000)=0xfffffffffffffe20) r5 = add_key(&(0x7f0000000040)='keyring\x00', &(0x7f0000000080)={0x73, 0x79, 0x7a, 0x2}, &(0x7f00000000c0)="f813f93b9a9a59e156f4947dc877dc8dea370e9af106ff9de68227337f5c0e0abe9c050b1170785cf44c46b458bd1c085c1408cab36e5503698153ce16083a992e39daf51bb783f20162bf6356587bf956db120cfe57f9f18c453d6d2f25e45d4fa7a8a0edfc0007ff791f5e8ed29dcc5b752d419a819e5bdb9f2ed8c47e7296f88971dcfc0d42f241062830cf5f0f5204c2ed457df284721e66365bc9e67fa0d6abbad72ea0c779f4a5", 0xaa, 0xfffffffffffffff9) r6 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x10040, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffff9c, 0xc00c642d, &(0x7f00000001c0)={0x0, 0x80000, 0xffffffffffffff9c}) ioctl$DRM_IOCTL_GEM_FLINK(0xffffffffffffffff, 0xc008640a, &(0x7f0000000200)={0x0, 0x0}) ioctl$DRM_IOCTL_GEM_FLINK(r6, 0xc008640a, &(0x7f0000000240)={r7, r8}) keyctl$get_keyring_id(0x0, r5, 0x2) 2033/05/18 03:36:41 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x2) 2033/05/18 03:36:41 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610", 0x3) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:41 executing program 0 (fault-call:0 fault-nth:15): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:36:41 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/ppp\x00', 0x8000, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCSABS2F(r0, 0x401845ef, &(0x7f0000000140)={0x3, 0x0, 0x6, 0x40, 0x3, 0x7fff}) setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000180)={0x1, 0x2, 0x4, 0x1ff, 0x5}, 0x14) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) accept$unix(r0, &(0x7f00000000c0), &(0x7f0000000040)=0x6e) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f00000001c0)={0x0, 0x400, 0x4, [0x4, 0x6, 0x7fff, 0x81]}, &(0x7f0000000200)=0x10) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000240)={r1, 0x8a, "d689ac31ab13d2f208c1c5211c3ce79a78df19182b14d8145b434c2d4a261bf22af05b673483cc4e75733af9331e204cb08820dbcb197ff752c6f94b4bc1da82bb89a396318bc696be33948c65a9a4c8c34c3fc45f123bc84c9656742b87891e4f7a2c5986fa5145a652c2d6dda4e8d55a176c55fb07f112b2b4dd2c8b9e049eda1ad73300022251980e"}, &(0x7f0000000300)=0x92) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000400)={'team0\x00', 0x0}) bind$packet(r0, &(0x7f0000000440)={0x11, 0x1f, r2, 0x1, 0x2e19f00b, 0x6, @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}}, 0x14) ioctl$EVIOCGABS2F(r0, 0x8018456f, &(0x7f0000000340)=""/170) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) bind$can_raw(r0, &(0x7f0000000480)={0x1d, r2}, 0x10) 2033/05/18 03:36:41 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x10) ioctl$sock_FIOSETOWN(r0, 0x8901, &(0x7f0000000100)) socketpair$inet6(0xa, 0xb, 0x0, &(0x7f0000001800)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_inet6_tcp_SIOCOUTQNSD(r2, 0x894b, &(0x7f0000001840)) sendmsg$nl_generic(r0, &(0x7f0000023000)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f0000023ff0)={&(0x7f0000000140)={0x1014, 0x25, 0xaff, 0x0, 0x0, {0x2}, [@generic="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"]}, 0x1014}, 0x1}, 0x0) getsockopt$inet_sctp6_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f00000013c0)=@assoc_value={0x0, 0x7ff}, &(0x7f0000001400)=0x8) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r2, 0x84, 0x72, &(0x7f0000001540)={r3, 0x100, 0x10}, &(0x7f0000001580)=0xc) sendmsg(r0, &(0x7f00000017c0)={&(0x7f0000001180)=@in6={0xa, 0x4e20, 0x7, @remote={0xfe, 0x80, [], 0xbb}, 0x1ff}, 0x80, &(0x7f0000001600)=[{&(0x7f0000001200)="729a4ee52f39e1f97376921e101dcde04ea3a13f74621c29815455f542e9637b1d252f809e2d49944cc665d6679dec80abdff2feb1ed321b16b3ca7f5a3f418b2e", 0x41}, {&(0x7f0000001280)="49e14e7c5d3425037db178bfdf757359229586e936c684ca64f9dd17eb46075c98ea22dc8cb3738dc02e8d0eb146e00b8339bb051c1bf567733c53dd8d0055b2fd856ed9ea2892410db6594114b39067a1c810a37992629429bc76295c270fd44102bd2ca79157a82af45f4d5032d603d289857f1c2be0021aed6d9b7183049aad7f345d2e5b5cb28621bdfad5df37370284b77ccc79469011201bf1e227cd7398c12ccc3178dd36893a86e80c7e6e0e1123998171e1ffe39637446c99a705469c3a8e646ddec82276f0ece177b0d68003e6f914469c921a92", 0xd9}, {&(0x7f0000001440)="392149870246c8fa8293cd714c1f1f3bbbe4ce8789738de4e02014c1d124605fd3510ad3d41aae93f9ddbf52e4f0000c2a17ce03e27c1fb463177c2b9507411fe8350e493973d8c3c5933cfdbf57a90c9fe398b8b16de0646d9029b76bdbe45587a8510ee4b041f0eab31e6e64bd8eb36dbcf19cb0347623f97cb2f6f8bad0757e7af0630ef4004d2054873058f8299cfadeb6d7db4264fe2c7ebb37ecddc3635283a77d6bc7405fd1a78f76ceb05e47a25cb261cdf55a3317877efb73e81e90b38ef0e6fdaf1493d6", 0xc9}], 0x3, &(0x7f0000001680)=[{0xa8, 0x0, 0x9, "a4d92087440d40a6bc9586d136d75bda6f3cd66738ad1d773748bc42479563c327d093e309ff8c120beb499062d5c29470ee7e86de4b8855c7a7698875c6601a49eaa2d5d58760094489d71e2983c4a91341a953159d428bb64a48d70f5de200a54efe926bee13188419c3e1842d4e6c5db01cd82904c1ecd19b8a1cd2c0a77e3becbcf47ba7993817daa0dd11655959a72a8348bad19c"}], 0xa8, 0x8004}, 0x20040041) r4 = syz_open_dev$sndpcmc(&(0x7f0000000000)='/dev/snd/pcmC#D#c\x00', 0xfb1, 0x204080) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0xfffffffffffffffc}, &(0x7f00000000c0)=0x8) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER_VALUE(r4, 0x84, 0x7c, &(0x7f0000001380)={r5, 0x1, 0xffffffff}, 0x8) [ 316.342955] FAULT_INJECTION: forcing a failure. [ 316.342955] name failslab, interval 1, probability 0, space 0, times 0 [ 316.354277] CPU: 0 PID: 23005 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 316.361561] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 316.370918] Call Trace: [ 316.373521] dump_stack+0x1b9/0x294 [ 316.377159] ? dump_stack_print_info.cold.2+0x52/0x52 [ 316.382358] ? perf_trace_lock_acquire+0xe3/0x980 [ 316.387210] ? kernel_text_address+0x79/0xf0 [ 316.391629] ? __unwind_start+0x166/0x330 [ 316.395788] ? __kernel_text_address+0xd/0x40 [ 316.400304] should_fail.cold.4+0xa/0x1a [ 316.404382] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 316.409496] ? perf_trace_lock_acquire+0xe3/0x980 [ 316.414350] ? save_stack+0x43/0xd0 [ 316.417989] ? find_held_lock+0x36/0x1c0 [ 316.422077] ? check_same_owner+0x320/0x320 [ 316.426416] ? rcu_note_context_switch+0x710/0x710 [ 316.431363] __should_failslab+0x124/0x180 [ 316.435614] should_failslab+0x9/0x14 [ 316.439419] __kmalloc_track_caller+0x2c4/0x760 [ 316.444097] ? kasan_check_read+0x11/0x20 [ 316.448254] ? do_raw_spin_unlock+0x9e/0x2e0 [ 316.452675] ? kstrdup_const+0x66/0x80 [ 316.456565] kstrdup+0x39/0x70 [ 316.459752] kstrdup_const+0x66/0x80 [ 316.463453] alloc_vfsmnt+0x1b3/0x9d0 [ 316.467250] ? mnt_free_id.isra.27+0x60/0x60 [ 316.471648] ? kasan_check_read+0x11/0x20 [ 316.475783] ? graph_lock+0x170/0x170 [ 316.479571] ? rcu_pm_notify+0xc0/0xc0 [ 316.483444] ? trace_hardirqs_off+0xd/0x10 [ 316.487677] ? putname+0xf2/0x130 [ 316.491118] ? putname+0xf2/0x130 [ 316.494557] ? find_held_lock+0x36/0x1c0 [ 316.498614] ? lock_downgrade+0x8e0/0x8e0 [ 316.502747] ? module_unload_free+0x5b0/0x5b0 [ 316.507233] ? lock_release+0xa10/0xa10 [ 316.511196] ? mpi_free.cold.1+0x19/0x19 [ 316.515417] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 316.520940] vfs_kern_mount.part.34+0x88/0x4d0 [ 316.525507] ? may_umount+0xb0/0xb0 [ 316.529121] ? _raw_read_unlock+0x22/0x30 [ 316.533252] ? __get_fs_type+0x97/0xc0 [ 316.537128] do_mount+0x564/0x3070 [ 316.540660] ? copy_mount_string+0x40/0x40 [ 316.544883] ? rcu_pm_notify+0xc0/0xc0 [ 316.548759] ? copy_mount_options+0x5f/0x380 [ 316.553152] ? rcu_read_lock_sched_held+0x108/0x120 [ 316.558156] ? kmem_cache_alloc_trace+0x616/0x780 [ 316.562985] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 316.568511] ? _copy_from_user+0xdf/0x150 [ 316.572647] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 316.578179] ? copy_mount_options+0x285/0x380 [ 316.582670] ksys_mount+0x12d/0x140 [ 316.586290] __x64_sys_mount+0xbe/0x150 [ 316.590248] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 316.595254] do_syscall_64+0x1b1/0x800 [ 316.599127] ? finish_task_switch+0x1ca/0x810 [ 316.603610] ? syscall_return_slowpath+0x5c0/0x5c0 [ 316.608534] ? syscall_return_slowpath+0x30f/0x5c0 [ 316.613454] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 316.618807] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 316.623649] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 316.628824] RIP: 0033:0x455979 [ 316.631998] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 2033/05/18 03:36:41 executing program 5: unshare(0x8000400) write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000200)={[0x39]}, 0x1) r0 = accept4$inet6(0xffffffffffffff9c, &(0x7f0000000040), &(0x7f0000000080)=0x1c, 0x80000) setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f00000000c0)={0x40b, 0x3f, 0x8, 0x7ff, 0x24c, 0x2, 0x5000000000000, 0x1, 0x1f, 0x1, 0x400}, 0xb) poll(&(0x7f0000000000)=[{}], 0x3bd, 0x0) r1 = syz_open_dev$admmidi(&(0x7f0000000100)='/dev/admmidi#\x00', 0x3, 0x400) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000180)={r1, 0x3, 0x1, 0x9, &(0x7f0000000140)=[0x0, 0x0, 0x0], 0x3}, 0x20) 2033/05/18 03:36:41 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610", 0x3) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:41 executing program 6: r0 = socket$inet(0x2, 0x80003, 0x3) ioctl$void(r0, 0x5450) getsockopt$inet_mtu(r0, 0x0, 0xa, &(0x7f00000001c0), &(0x7f0000000200)=0x4) r1 = fcntl$dupfd(r0, 0x406, r0) setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r1, 0x84, 0xc, &(0x7f0000000240)=0x4, 0x4) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000340)=@broute={'broute\x00', 0x20, 0x2, 0x3b0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200007c0], 0x0, &(0x7f0000000300), &(0x7f00000007c0)=[{0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, [{{{0x3, 0x0, 0x0, 'bpq0\x00', 'vlan0\x00', 'gre0\x00', 'gretap0\x00', @link_local={0x1, 0x80, 0xc2}, [], @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [], 0xa0, 0x1d0, 0x218, [@connlabel={'connlabel\x00', 0x8, {{0x0, 0x81def1bbcea2b153}}}]}, [@common=@SECMARK={'SECMARK\x00', 0x108, {{0x0, 0x0, 'system_u:object_r:systemd_logind_exec_t:s0\x00'}}}]}, @common=@RATEEST={'RATEEST\x00', 0x20, {{'syz0\x00'}}}}, {{{0x11, 0x0, 0x0, 'bond0\x00', 'ipddp0\x00', 'yam0\x00', 'eql\x00', @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, [], @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [], 0x70, 0xa0, 0xd8}, [@common=@CLASSIFY={'CLASSIFY\x00', 0x8}]}, @common=@dnat={'dnat\x00', 0x10, {{@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}}}}}]}, {0x0, '\x00', 0x2, 0xffffffffffffffff}, {0x0, '\x00', 0x2, 0xfffffffffffffffc}, {0x0, '\x00', 0x2, 0xffffffffffffffff}]}, 0x428) lstat(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)) fcntl$addseals(r1, 0x409, 0x5) ioctl$KDMKTONE(r1, 0x4b30, 0xffff) getpeername$inet(r0, &(0x7f0000000000), &(0x7f0000000080)=0x10) 2033/05/18 03:36:41 executing program 4: sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000289000)={&(0x7f0000cf1ff4)={0x10}, 0xc, &(0x7f0000703000)={&(0x7f0000000480)=ANY=[@ANYBLOB="84000000000000bfd8f5a37964f04d000046659a62290ffc380c2d3bb351f0c3eee3907dbfc75e89e106ba4206274d760d040000000617e101000006000000001cb4e2bf501db1bb7f1fecc833776d63cc8769c29c4d91b00ffff0be48b748d3050bc1700612dbc3080c91125fa15820d2cf0d70309f7f1906008262d732940142ab1cf90b0040ff47"], 0x83}, 0x1}, 0x0) r0 = syz_open_dev$vcsn(&(0x7f0000000080)='/dev/vcs#\x00', 0xfffffffffffffff8, 0x400000) sendmsg$netrom(r0, &(0x7f00000002c0)={&(0x7f00000000c0)=@ax25={0x3, {"a356a880b78d6f"}, 0x8}, 0x10, &(0x7f0000000280)=[{&(0x7f0000000100)="927b191fba03794faebec451b44f306de0359766cd6eb15245e41d7c50c91542550ffd9f8dbd2808f562d351b10e168f982acf87404da4fb7e12020257aced8498f0c0b42d36ac103e5e83dfc606ead80cf05465957a41a036ef8f39b0aa8a7a70ddabff42994c93aedd751e850fc1fe16d931f1971d88e045e59701750e71ad759ac8ea4e3332fa5ed8bfe78597a9b3005fcc7ebaa5c8ed6f55362ef9783e795e7fdf178a165179b3795c14f81dad8675e29392afbfd19d1b5a14262e276dc4236f8978cf19ee54a6", 0xc9}, {&(0x7f0000000200)="04560d92d680a3a2f8e6e0aa91690dcdd942b10b1ef6697f31f8f1bf0e27e89da3ee1f4e1591ccda3390ed722367ed9a5c8db478008aa21b06ac01fbb0e34a19fcd45b538755d7b8874fdfe7d6", 0x4d}], 0x2, 0x0, 0x0, 0x8044}, 0x40448c0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x2000000000000020, &(0x7f000023f000)=0xa, 0x20b) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4) r1 = syz_open_dev$midi(&(0x7f0000000a00)='/dev/midi#\x00', 0x4, 0x8000) sendmsg$kcm(r1, &(0x7f0000000d40)={&(0x7f0000000a40)=@un=@abs={0x1, 0x0, 0x4e20}, 0x80, &(0x7f0000000c00)=[{&(0x7f0000000ac0)="609805e24116000e6568a361e0c44a289cfd49848410b93e518127706f80f3f585a9be1873bd6def4daf208f0df574031a3f3c23d68b579e6b86a8f800b26d72e9fa8999fa6adf1386f5c35728fab2f8826f230dee44e47e67f1d1a55d48906673f5fb7f0e2dccfef01704a11613c4dbbc1ee11ff763650bac3bcda93ed4af996518923a894c54896021d2dbd089c50893efe30729f03f6a33df21b1d8be110c87ad37438bb88b", 0xa7}, {&(0x7f0000000b80)="7f123f737dd3ec5f9368ae86900b6698b2ca3094f23ae0e2f0c6486cf99c212c0c7410068887928174363d1fbdd80790cbdd", 0x32}, {&(0x7f0000000bc0)}], 0x3, &(0x7f0000000c40)=[{0xd8, 0x117, 0x200, "f49b5e86bf3311ff7a41249251010b3f0f97b3ccd359fff1cae3e7bb45a2542fde430919482e8677231c33bac9796b7960c10f66392dbc2ead0856222c145378af4fde33a3637efd78d806c864173d51062d21e47518a513251dce67f5646c45c859031ea8d7f21af27b580992c7b02ae3e3a53d8b7ed3b500117f11abd119c37f851d5dd333827aa2fd7bbf101717eceb5ff49e699b93436dc106ce01bb72117a7ef9774009ee5b0d324507f90f9bbf39a44341a7ba466953ee37e8f1bf3ee32ee0"}], 0xd8, 0x10}, 0x4000000) fcntl$setsig(r0, 0xa, 0x15) ioctl$BLKTRACESTART(r0, 0x1274, 0x0) r2 = syz_open_dev$dmmidi(&(0x7f0000000040)='/dev/dmmidi#\x00', 0x0, 0x41) getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r2, 0x84, 0xc, &(0x7f0000000400), &(0x7f0000000440)=0x4) connect$inet6(r2, &(0x7f000053b000)={0xa, 0x1000000004e24, 0x10000}, 0xffffffffffffff40) connect$vsock_stream(r2, &(0x7f0000000300)={0x28, 0x0, 0x0, @host=0x2}, 0x10) [ 316.639711] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 316.646968] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 316.654223] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 316.661476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 316.668727] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:36:41 executing program 3: r0 = perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000380)={[0x80000001, 0x10b, 0x100000000, 0xfffffffffffffff9, 0xfffffffffffffff8, 0x0, 0x0, 0x0, 0x2, 0x0, 0xffffffff80000001, 0xbbb5, 0x8, 0xffffffff, 0x101, 0x400], 0x100000, 0x10010}) vmsplice(0xffffffffffffffff, &(0x7f0000000500), 0x0, 0x0) ioctl$int_out(r0, 0x2, &(0x7f0000000440)) ioctl$EVIOCGPROP(r1, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r1, 0x4010744d, &(0x7f0000001000)=""/174) poll(&(0x7f0000000480)=[{r1}, {r1, 0x200}, {r0, 0x500}, {r0, 0x80}], 0x4, 0xa6) syz_mount_image$ocfs2(&(0x7f0000000040)='ocfs2\x00', &(0x7f00000000c0)='./file0\x00', 0x3f, 0x3, &(0x7f00000002c0)=[{&(0x7f0000000100)="38c4567e9a081c43805b0fb0614efea4095a675f3124cc4ec1999fab86938c7ef9a81faaef165cf2ef57223fcb75d570357dbb0b437c11292aa20e1e1c9a12322122e1204139c2ac570ed254ce58efed44c1cd1760b33ae3b4b473f2181f84d357d4a2630e94ae1d", 0x68, 0x100000001}, {&(0x7f0000000180)="f63b1dcb0cd8f91ebf04b3ed7600be3c816e196163f8aca52a2874c8f201cbdfb36f8ce69ccfaf38b23ef35fd9d2c0994cdac3ed9201c72682e497d16ee9b464fd92f52786602c506d96ec1493853c3bcf93ed562a645d49e9c0afa5dd2e81608ef74ba8cf1ca18928bee48098a5ee600cca06ae09dc107eb5f9dc5ead15131fab8c14f1eb8fceaa9c50c35130ce8551d1e41f61f698818604011d496f0c6ef406bcd455ae71ce9119c1b908dabbd05bd4c0755d918f26251c22037596d2c98dd32b2f3282b7a1337c9c89cd539d68de31fb9ed7472a168a0843ba3a32f4af6d756d4f2c465c2bed9db27507d79ba664607eba0036", 0xf5, 0x7fff}, {&(0x7f0000000280)="9817d6995020ee24e91669", 0xb, 0x5}], 0x100000, &(0x7f0000000340)='/dev/ppp\x00') eventfd(0x10000) 2033/05/18 03:36:41 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x300000000000000) 2033/05/18 03:36:41 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:41 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610", 0x3) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti0\x00'}) [ 316.784152] Unknown options in mask b153 2033/05/18 03:36:41 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000240)={&(0x7f0000000100)={0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000280)={0x14, 0x2000000000000027, 0x331, 0x0, 0x0, {0x10}}, 0x14}, 0x1}, 0x0) perf_event_open(&(0x7f0000fdef88)={0x2, 0x70, 0xe3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x0, 0x0, 0xffffffffffffffff, 0x0) recvmsg(r0, &(0x7f0000002700)={&(0x7f0000000000)=@pppoe={0x0, 0x0, {0x0, @random}}, 0x80, &(0x7f0000001640), 0x0, &(0x7f0000001700)=""/4096, 0x1000}, 0x0) [ 316.810628] Unknown options in mask b153 2033/05/18 03:36:42 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x10) write(r0, &(0x7f00000000c0)="1f000000c85d0900d7e8cb751f86261c65767ad8571eadfafeed93e033000000f7fbaae914f93ba246f37ec05654b9451f5a6f89d9f9234a1a581765b9abeb5abeef3c5b1e001a18e927e332f4f31a84f64937106843b2c60970f8fd33915818f730548bc3a74866277b1d3a84213950fd534034ef06105259dc409215bae9ae5ec6377cf9556d6d411a097a3167e92a0477f4089d251a000000000000000000000000000000", 0xfffffffffffffebd) 2033/05/18 03:36:42 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x500000000000000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:42 executing program 6: r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dsp\x00', 0x805, 0x0) read(r1, &(0x7f0000000040)=""/33, 0x21) io_setup(0x3, &(0x7f0000000000)=0x0) io_submit(r2, 0x2, &(0x7f0000000240)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x1ff, r0, &(0x7f00000000c0)="94f9f27e27fe100a4c40749950f7fd2cdd9795f7e609637a7c25fc84d09e1e3d566fe88154f2d0d20b9d964b141d918b23b39b5680d64b3d9ac24a1d408456132a693659b51371fcf00a5a57e31988a73fc37e602b005a3e3684f8cc2c34b95f098d1abbd2c29715b56e54021068317f49bda31135ef91a98749a4c3efb46d478ba0ec78fa2644", 0x87, 0x1, 0x0, 0x1, r1}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x8, 0x6, r0, &(0x7f00000001c0)="22e0", 0x2, 0xe123, 0x0, 0x1, r1}]) 2033/05/18 03:36:42 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(0xffffffffffffffff, 0x8004745a, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:42 executing program 0 (fault-call:0 fault-nth:16): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:36:42 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0xf00000000000000) 2033/05/18 03:36:42 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'cts(cbc(blowfish))\x00'}, 0x58) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000200)='/dev/mixer\x00', 0x101000, 0x0) ioctl$BLKROGET(r1, 0x125e, &(0x7f0000000240)) r2 = accept$alg(r0, 0x0, 0x0) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000100)=0x0) ioctl$sock_SIOCSPGRP(r0, 0x8902, &(0x7f0000000140)=r3) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00003bcfd0)="d3ab2719", 0x4) sendmsg$alg(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000280), 0x2e4, &(0x7f0000000040)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0) ioctl$TIOCEXCL(r1, 0x540c) recvmsg(r2, &(0x7f0000158000)={&(0x7f0000000180)=@nfc_llcp, 0x253, &(0x7f0000000000)=[{&(0x7f000080f000)=""/4096, 0x20810000}], 0x1, &(0x7f0000da2000)}, 0x0) 2033/05/18 03:36:42 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x3e2, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ppp\x00', 0x400000000000801, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) [ 317.032157] l2tp_ppp: sess 4/0: set debug=cf10464f 2033/05/18 03:36:42 executing program 4: r0 = socket$inet_sctp(0x2, 0x5, 0x84) sendmmsg(r0, &(0x7f0000006b40)=[{{&(0x7f0000000040)=@in={0x2, 0x0, @loopback=0x7f000001}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000480)="b9", 0x1}], 0x1, &(0x7f0000000540)}}, {{&(0x7f00000052c0)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "51cc17ac2524de76606e0ed7f1d7ae142f6216ddd9a976821fd5fdcfaca40fbef0ec9a60f94b9213f86b706aeea31524611fd9c785497e49aff19cd53ae364"}, 0x80, &(0x7f0000006600)=[{&(0x7f0000005600)="f4", 0x1}], 0x1, &(0x7f0000006680)}}], 0x2, 0x0) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x501, 0x0) getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000180)={{{@in6=@loopback, @in=@rand_addr, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@dev}, 0x0, @in6=@mcast2}}, &(0x7f0000000280)=0xe8) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r0, 0x84, 0x6c, &(0x7f0000000300)={0x0, 0x15, "891de53b8523dac9b273e15070325967690a1e6367"}, &(0x7f0000000340)=0x1d) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f0000000380)=@sack_info={r3, 0x4, 0xb08}, &(0x7f00000003c0)=0xc) recvfrom$packet(r1, &(0x7f00000000c0)=""/175, 0xaf, 0x2, &(0x7f00000002c0)={0x11, 0x18, r2, 0x1, 0x18, 0x6}, 0x14) 2033/05/18 03:36:42 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0xfe80000000000000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:42 executing program 6: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$can_bcm(0x1d, 0x2, 0x2) getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1f, &(0x7f00000001c0)={@empty, 0x0}, &(0x7f0000000200)=0x14) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000180)={'irlan0\x00', r1}) connect$can_bcm(r0, &(0x7f0000001ff0)={0x1d, r2}, 0x10) getsockname(r0, &(0x7f0000000080)=@alg, &(0x7f0000000100)=0x80) r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000240)='/dev/full\x00', 0x0, 0x0) ioctl$KDGKBMODE(r3, 0x4b44, &(0x7f0000000340)) sendmsg$can_raw(r0, &(0x7f0000001fc8)={&(0x7f000000a000)={0x1d}, 0xffd1, &(0x7f0000000ff0)={&(0x7f000000a000)=@canfd={{0x1}, 0x0, 0x0, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5f700000000000000004e2f9663a918fa1efd9b0b"}, 0xfeb8}, 0x1}, 0x0) r4 = syz_open_dev$amidi(&(0x7f0000000040)='/dev/amidi#\x00', 0x4, 0x800) ioctl$KVM_IRQ_LINE(r4, 0x4008ae61, &(0x7f0000000140)={0x3ff, 0x3f}) 2033/05/18 03:36:42 executing program 2 (fault-call:3 fault-nth:0): r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:42 executing program 5: r0 = syz_open_dev$midi(&(0x7f0000000080)='/dev/midi#\x00', 0x1, 0x402080) getsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0x7, &(0x7f00000000c0)=0x2, &(0x7f0000000100)=0x4) r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getsockopt$bt_l2cap_L2CAP_OPTIONS(r1, 0x6, 0x1, &(0x7f0000000000), &(0x7f0000000040)=0xc) 2033/05/18 03:36:42 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x5000000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 317.170742] FAULT_INJECTION: forcing a failure. [ 317.170742] name failslab, interval 1, probability 0, space 0, times 0 [ 317.182455] CPU: 1 PID: 23085 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 317.189746] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 317.199100] Call Trace: [ 317.201703] dump_stack+0x1b9/0x294 [ 317.205351] ? dump_stack_print_info.cold.2+0x52/0x52 [ 317.208131] l2tp_ppp: sess 4/0: set debug=cf10464f [ 317.210548] ? perf_trace_lock_acquire+0xe3/0x980 [ 317.220353] ? kernel_text_address+0x79/0xf0 [ 317.224776] ? __unwind_start+0x166/0x330 [ 317.228939] should_fail.cold.4+0xa/0x1a [ 317.233013] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 317.238112] ? graph_lock+0x170/0x170 [ 317.241902] ? save_stack+0x43/0xd0 [ 317.245519] ? kasan_kmalloc+0xc4/0xe0 [ 317.249389] ? __list_lru_init+0xdd/0x790 [ 317.253523] ? find_held_lock+0x36/0x1c0 [ 317.257571] ? __lock_is_held+0xb5/0x140 [ 317.261628] ? check_same_owner+0x320/0x320 [ 317.265941] ? rcu_note_context_switch+0x710/0x710 [ 317.270873] __should_failslab+0x124/0x180 [ 317.275099] should_failslab+0x9/0x14 [ 317.278886] kmem_cache_alloc_node_trace+0x26f/0x770 [ 317.283973] ? mark_held_locks+0xc9/0x160 [ 317.288111] ? __raw_spin_lock_init+0x1c/0x100 [ 317.292682] __kmalloc_node+0x33/0x70 [ 317.296472] kvmalloc_node+0x6b/0x100 [ 317.300259] __list_lru_init+0x559/0x790 [ 317.304307] ? list_lru_destroy+0x4c0/0x4c0 [ 317.308612] ? mark_held_locks+0xc9/0x160 [ 317.312750] ? __raw_spin_lock_init+0x1c/0x100 [ 317.317316] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 317.322315] ? __lockdep_init_map+0x105/0x590 [ 317.326795] ? lockdep_init_map+0x9/0x10 [ 317.330844] sget_userns+0x73a/0xf00 [ 317.334541] ? kill_litter_super+0x90/0x90 [ 317.338765] ? ns_test_super+0x50/0x50 [ 317.342638] ? destroy_unused_super.part.11+0x110/0x110 [ 317.347986] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 317.352579] ? kasan_check_write+0x14/0x20 [ 317.356801] ? do_raw_spin_lock+0xc1/0x200 [ 317.361032] ? blkdev_get+0xc0/0xb30 [ 317.364735] ? cap_capable+0x1f9/0x260 [ 317.368613] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 317.374134] ? security_capable+0x99/0xc0 [ 317.378269] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 317.383790] ? ns_capable_common+0x13f/0x170 [ 317.388187] ? kill_litter_super+0x90/0x90 [ 317.392406] sget+0x10b/0x150 [ 317.395497] ? ns_test_super+0x50/0x50 [ 317.399370] mount_bdev+0x111/0x3e0 [ 317.402986] ? fuse_get_root_inode+0x190/0x190 [ 317.407555] fuse_mount_blk+0x34/0x40 [ 317.411341] mount_fs+0xae/0x328 [ 317.414695] vfs_kern_mount.part.34+0xd4/0x4d0 [ 317.419265] ? may_umount+0xb0/0xb0 [ 317.422879] ? _raw_read_unlock+0x22/0x30 [ 317.427012] ? __get_fs_type+0x97/0xc0 [ 317.430889] do_mount+0x564/0x3070 [ 317.434420] ? copy_mount_string+0x40/0x40 [ 317.438638] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 317.443639] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 317.448390] ? retint_kernel+0x10/0x10 [ 317.452267] ? copy_mount_options+0x1a1/0x380 [ 317.456748] ? copy_mount_options+0x1b2/0x380 [ 317.461228] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 317.466751] ? copy_mount_options+0x285/0x380 [ 317.471233] ksys_mount+0x12d/0x140 [ 317.474849] __x64_sys_mount+0xbe/0x150 [ 317.478809] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 317.483811] do_syscall_64+0x1b1/0x800 [ 317.487686] ? finish_task_switch+0x1ca/0x810 [ 317.492170] ? syscall_return_slowpath+0x5c0/0x5c0 [ 317.497085] ? syscall_return_slowpath+0x30f/0x5c0 [ 317.502002] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 317.507359] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 317.512192] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 317.517366] RIP: 0033:0x455979 [ 317.520537] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 317.528231] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 317.535484] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 317.542736] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 317.549991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 317.557247] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:36:42 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) syz_open_dev$sndctrl(&(0x7f0000000040)='/dev/snd/controlC#\x00', 0xe60b, 0x0) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) 2033/05/18 03:36:42 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0xff000000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 317.583804] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:36:42 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:42 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x40000000) 2033/05/18 03:36:42 executing program 0 (fault-call:0 fault-nth:17): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) [ 317.662667] l2tp_ppp: sess 4/0: set debug=cf10464f 2033/05/18 03:36:42 executing program 5: r0 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0xfff, 0x10000) getsockopt$IP6T_SO_GET_ENTRIES(r0, 0x29, 0x41, &(0x7f0000000040)={'mangle\x00', 0x43, "426e7fba8475716da117c32247710c860664681cf7b0e9ca09037607bf92e6a536c00f0311d715d93b46a21da118cd60f487934aff0421a80138d3b0181d60c0311f62"}, &(0x7f00000000c0)=0x67) syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = getpid() ptrace$setregs(0xd, r1, 0x8, &(0x7f0000000100)="6943e097fea213db65ed76a3086e65d6858fe5cbdb9354eb1713817dc6bcb54fcbf3c099a10a819dd1835650705ec95ee89f39bc6aefc0e1eb05c40e2b8e81b97b91e38d3fca27c0fff0fd0fd0051742ae08abd2c64367fbd969d7cf0dfeb7faf521d60ac4f8c1a58e66be68e9db3b0a8ddf802fcbff4969429813e0d952eb874ad3cca95c8829123838376b2bd2a9a3") sync() 2033/05/18 03:36:42 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x5c000000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 317.686823] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:36:42 executing program 5: request_key(&(0x7f0000000000)='encrypted\x00', &(0x7f0000000040)={0x73, 0x79, 0x7a, 0x3}, &(0x7f0000000140)='\x00', 0xfffffffffffffffe) add_key(&(0x7f00000000c0)='encrypted\x00', &(0x7f0000000100)={0x73, 0x79, 0x7a, 0x3}, &(0x7f0000000200), 0x0, 0xfffffffffffffffe) [ 317.796268] FAULT_INJECTION: forcing a failure. [ 317.796268] name failslab, interval 1, probability 0, space 0, times 0 [ 317.807674] CPU: 1 PID: 23126 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 317.814959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 317.824311] Call Trace: [ 317.826910] dump_stack+0x1b9/0x294 [ 317.830551] ? dump_stack_print_info.cold.2+0x52/0x52 [ 317.835753] ? perf_trace_lock_acquire+0xe3/0x980 [ 317.840607] should_fail.cold.4+0xa/0x1a [ 317.844663] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 317.849766] ? pcpu_balance_workfn+0x16d0/0x16d0 [ 317.854512] ? find_held_lock+0x36/0x1c0 [ 317.858575] ? check_same_owner+0x320/0x320 [ 317.862887] ? rcu_note_context_switch+0x710/0x710 [ 317.867809] __should_failslab+0x124/0x180 [ 317.872033] should_failslab+0x9/0x14 [ 317.875819] kmem_cache_alloc+0x2af/0x760 [ 317.879958] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 317.884971] getname_kernel+0x54/0x370 [ 317.888853] kern_path+0x1e/0x40 [ 317.892213] lookup_bdev+0xfa/0x240 [ 317.895828] ? blkdev_open+0x280/0x280 [ 317.899720] blkdev_get_by_path+0x1f/0xe0 [ 317.903854] mount_bdev+0x5d/0x3e0 [ 317.907380] ? fuse_get_root_inode+0x190/0x190 [ 317.911952] fuse_mount_blk+0x34/0x40 [ 317.915739] mount_fs+0xae/0x328 [ 317.919097] vfs_kern_mount.part.34+0xd4/0x4d0 [ 317.923670] ? may_umount+0xb0/0xb0 [ 317.927285] ? _raw_read_unlock+0x22/0x30 [ 317.931418] ? __get_fs_type+0x97/0xc0 [ 317.935306] do_mount+0x564/0x3070 [ 317.938834] ? copy_mount_string+0x40/0x40 [ 317.943056] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 317.948061] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 317.952806] ? retint_kernel+0x10/0x10 [ 317.956689] ? copy_mount_options+0x1f0/0x380 [ 317.961172] ? copy_mount_options+0x1fa/0x380 [ 317.965669] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 317.971193] ? copy_mount_options+0x285/0x380 [ 317.975679] ksys_mount+0x12d/0x140 [ 317.979294] __x64_sys_mount+0xbe/0x150 [ 317.983254] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 317.988267] do_syscall_64+0x1b1/0x800 [ 317.992141] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 317.996969] ? syscall_return_slowpath+0x5c0/0x5c0 [ 318.001883] ? syscall_return_slowpath+0x30f/0x5c0 [ 318.006800] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 318.012152] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 318.016984] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 318.022159] RIP: 0033:0x455979 [ 318.025333] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 318.033031] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 318.040284] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 2033/05/18 03:36:43 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x301, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 318.047538] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 318.054793] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 318.062046] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:36:43 executing program 6: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00003e0000)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = accept(r0, &(0x7f0000000100)=@l2, &(0x7f00000001c0)=0x80) bind$bt_l2cap(r1, &(0x7f0000000200)={0x1f, 0x0, {0x4, 0x8, 0x3, 0xffff, 0xfffffffffffffffe, 0x10000}, 0xee9d}, 0xe) r2 = syz_open_pts(r0, 0x0) r3 = socket$nl_xfrm(0x11, 0x3, 0x6) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f00000000c0)={0x0, 0x0}, &(0x7f0000000180)=0x7) setreuid(0x0, r4) getsockname(r3, &(0x7f0000000000)=@rc, &(0x7f0000000080)=0x80) ioctl$TIOCSETD(r2, 0x5412, &(0x7f0000fe0000)) 2033/05/18 03:36:43 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0xc0189436, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:43 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0xf401, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:43 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x7000000) 2033/05/18 03:36:43 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) set_mempolicy(0x4000, &(0x7f0000000040)=0x4, 0x800) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) connect$unix(r0, &(0x7f00000002c0)=@abs={0x0, 0x0, 0x4e23}, 0x6e) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000340)={0x0, @in={{0x2, 0x4e23}}, 0xfffffffffffffff9, 0x8001, 0x1, 0x3ff, 0x18}, &(0x7f0000000400)=0x98) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000440)={r1, 0x6}, &(0x7f0000000480)=0x8) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000180)={0x0, @in6={{0xa, 0x4e24, 0x8, @mcast2={0xff, 0x2, [], 0x1}}}, 0xfffffffffffffffd, 0x20, 0x5f, 0x200}, &(0x7f0000000240)=0x98) setsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000280)={r2, 0x4, 0x1, 0xfffffffffffffffe, 0x5, 0x7}, 0x14) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f00000000c0)=""/174) 2033/05/18 03:36:43 executing program 4: r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpu.stat\x00', 0x0, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x15}}, 0x10) r1 = socket(0x40000000015, 0x5, 0x0) ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r0, 0x40505331, &(0x7f0000000080)={{0x6, 0x9}, {0x8, 0xb2900}, 0x200, 0x0, 0x3}) bind$inet(r1, &(0x7f0000fc4ff0)={0x2, 0x0, @loopback=0x7f000001}, 0x10) setsockopt(r1, 0x20000100000114, 0xa, &(0x7f00003cbffc)="02000000", 0x4) setsockopt$sock_int(r1, 0x1, 0x2a, &(0x7f0000008000)=0x58, 0xffffffffffffff74) connect$inet(r1, &(0x7f0000adf000)={0x2, 0x0, @loopback=0x7f000001}, 0x366) read(r1, &(0x7f0000000140)=""/1, 0xffffffffffffff26) sendmsg$alg(r1, &(0x7f0000159fc8)={0x0, 0x0, &(0x7f0000fc8000), 0x0, &(0x7f0000000e8e)}, 0x0) 2033/05/18 03:36:43 executing program 0 (fault-call:0 fault-nth:18): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:36:43 executing program 5: r0 = openat$dsp(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dsp\x00', 0x2, 0x0) setrlimit(0x7, &(0x7f0000becff0)={0x16, 0x105}) syz_open_dev$tun(&(0x7f000051fff3)='/dev/net/tun\x00', 0x0, 0x0) getsockopt$inet_udp_int(r0, 0x11, 0x64, &(0x7f0000000000), &(0x7f0000000040)=0x4) r1 = openat$ion(0xffffffffffffff9c, &(0x7f00008b4ff7)='/dev/ion\x00', 0x0, 0x0) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000140)=0x0) r3 = gettid() setpgid(r2, r3) ioctl$sock_ipx_SIOCAIPXITFCRT(r0, 0x89e0, &(0x7f0000000080)=0xf2f1) ioctl$ION_IOC_ALLOC(r1, 0xc0184900, &(0x7f0000000100)={0x401, 0x6}) [ 318.346731] l2tp_ppp: sess 4/0: set debug=cf10464f [ 318.348852] FAULT_INJECTION: forcing a failure. [ 318.348852] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 318.363501] CPU: 1 PID: 23146 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 318.370781] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 318.380124] Call Trace: [ 318.382704] dump_stack+0x1b9/0x294 [ 318.386320] ? dump_stack_print_info.cold.2+0x52/0x52 [ 318.391504] should_fail.cold.4+0xa/0x1a [ 318.395549] ? find_next_bit+0x104/0x130 [ 318.399596] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 318.404698] ? debug_check_no_locks_freed+0x310/0x310 [ 318.409875] ? wait_for_completion+0x870/0x870 [ 318.414448] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 318.419461] ? find_next_zero_bit+0x111/0x140 [ 318.423948] ? perf_trace_lock_acquire+0xe3/0x980 [ 318.428779] ? perf_trace_lock_acquire+0xe3/0x980 [ 318.433613] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 318.439146] ? should_fail+0x21b/0xbcd [ 318.443044] __alloc_pages_nodemask+0x34e/0xd70 [ 318.447708] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 318.452714] ? find_held_lock+0x36/0x1c0 [ 318.456779] ? check_same_owner+0x320/0x320 [ 318.461093] cache_grow_begin+0x72/0x6c0 [ 318.465147] kmem_cache_alloc+0x689/0x760 [ 318.469293] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 318.474310] getname_kernel+0x54/0x370 [ 318.478186] kern_path+0x1e/0x40 [ 318.481544] lookup_bdev+0xfa/0x240 [ 318.485156] ? blkdev_open+0x280/0x280 [ 318.489043] blkdev_get_by_path+0x1f/0xe0 [ 318.493178] mount_bdev+0x5d/0x3e0 [ 318.496704] ? fuse_get_root_inode+0x190/0x190 [ 318.501276] fuse_mount_blk+0x34/0x40 [ 318.505065] mount_fs+0xae/0x328 [ 318.508861] vfs_kern_mount.part.34+0xd4/0x4d0 [ 318.513432] ? may_umount+0xb0/0xb0 [ 318.517053] ? _raw_read_unlock+0x22/0x30 [ 318.521187] ? __get_fs_type+0x97/0xc0 [ 318.525064] do_mount+0x564/0x3070 [ 318.528593] ? copy_mount_string+0x40/0x40 [ 318.532818] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 318.537821] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 318.542575] ? retint_kernel+0x10/0x10 [ 318.546453] ? copy_mount_options+0x1f0/0x380 [ 318.550933] ? copy_mount_options+0x1f6/0x380 [ 318.555415] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 318.560947] ? copy_mount_options+0x285/0x380 [ 318.565433] ksys_mount+0x12d/0x140 [ 318.569050] __x64_sys_mount+0xbe/0x150 [ 318.573184] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 318.578187] do_syscall_64+0x1b1/0x800 [ 318.582059] ? finish_task_switch+0x1ca/0x810 [ 318.586541] ? syscall_return_slowpath+0x5c0/0x5c0 [ 318.591457] ? syscall_return_slowpath+0x30f/0x5c0 [ 318.596373] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 318.601725] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 318.606556] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 318.611729] RIP: 0033:0x455979 [ 318.614901] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 318.622595] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 318.629850] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 318.637107] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 2033/05/18 03:36:43 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x100000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 318.644361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 318.651616] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:36:43 executing program 5: r0 = socket$inet6(0xa, 0x3, 0xff) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2={0xff, 0x2, [], 0x1}, 0xd}, 0x1c) sendmsg$key(r0, &(0x7f0000000040)={0x20480, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="6b6c56c080f2b284ed2c1bf57193d1b42f7473c56eadfb60668fe05879fc8c414a51b56d3f00bdac"], 0x28}, 0x1}, 0x0) 2033/05/18 03:36:43 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x89a0, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:43 executing program 0 (fault-call:0 fault-nth:19): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:36:43 executing program 3: r0 = perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r1, 0xc004743e, &(0x7f00000006c0)=""/246) getsockopt$inet6_dccp_int(r1, 0x21, 0x11, &(0x7f0000000040), &(0x7f00000000c0)=0x4) ioctl$EVIOCGREP(r1, 0x4010744d, &(0x7f0000001000)=""/174) dup(r0) 2033/05/18 03:36:43 executing program 6: fcntl$getownex(0xffffffffffffff9c, 0x10, &(0x7f0000000000)) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000100)={0x0}, &(0x7f0000000140)=0xc) r1 = syz_open_procfs(r0, &(0x7f0000000040)='a^tr\x00') syz_mount_image$hfs(&(0x7f00000001c0)='hfs\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x0, &(0x7f0000001240), 0x8000, &(0x7f0000001280)) fchdir(r1) syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r1, 0xc0a85352, &(0x7f0000000180)={{0x5, 0x6}, 'port0\x00', 0x10, 0x5, 0x7, 0x4, 0xcb4b, 0x2, 0xcde, 0x0, 0x2, 0x1}) 2033/05/18 03:36:43 executing program 4: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x15, 0x5, 0x0) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000180)={{{@in=@multicast1, @in6=@dev}}, {{@in=@dev}, 0x0, @in6=@remote}}, &(0x7f0000000280)=0xe8) sendto$inet(r0, &(0x7f0000000300)="9ab24432fee5f8160f3408502293d113d5d871490277cbe05b8ec4d1a4ee00e484ef637e98fab447d38ba53be184dc8b298a9f64025e4666e3c8f2dba2280beb65b8f6b4a92acaf5e14f30380c11c371b7bf5fe2afd3422a85a62a271d1f36ace9ac0652ef2a1aaf9c2fa4db40c1511f9cb63b55a20b0f5e136a80734ad112c84079545eac1286a304ff454ec66d3f26fcfe5f6fbdf7741908547486c19573fdb952111628b8925ded25ef5935debcfea179905def7fbfaf274accbd7fc748f925ee3e676c519b4d33671326415ecf93041507fef162d36a1e18", 0xda, 0x15, &(0x7f0000000400)={0x2, 0x4e24, @loopback=0x7f000001}, 0x10) recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000440)=""/251, 0xfb}], 0x1, &(0x7f0000000580)=""/40, 0x28, 0x6}, 0x3}, {{0x0, 0x0, &(0x7f00000005c0), 0x0, &(0x7f0000000600)=""/155, 0x9b, 0xe992}, 0x113619a3}, {{&(0x7f00000006c0)=@pppol2tpv3in6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @dev}}}, 0x80, &(0x7f0000001a80)=[{&(0x7f0000000740)=""/4096, 0x1000}, {&(0x7f0000001740)=""/241, 0xf1}, {&(0x7f0000001840)}, {&(0x7f0000001880)=""/105, 0x69}, {&(0x7f0000001900)=""/43, 0x2b}, {&(0x7f0000001940)=""/97, 0x61}, {&(0x7f00000019c0)=""/112, 0x70}, {&(0x7f0000001a40)=""/12, 0xc}], 0x8, &(0x7f0000001b00)=""/107, 0x6b, 0xfffffffffffffffe}, 0x9}, {{&(0x7f0000001b80)=@pppoe={0x0, 0x0, {0x0, @random}}, 0x80, &(0x7f0000002d00)=[{&(0x7f0000001c00)=""/215, 0xd7}, {&(0x7f0000001d00)=""/4096, 0x1000}], 0x2, &(0x7f0000002d40)=""/57, 0x39, 0x2e55}, 0xffffffff}], 0x4, 0x1, 0x0) getsockopt$inet_sctp6_SCTP_RECVNXTINFO(r1, 0x84, 0x21, &(0x7f0000002e80), &(0x7f0000002ec0)=0x4) getsockopt$inet_mreqn(r0, 0x114, 0x200002718, &(0x7f0000000000)={@remote, @remote}, &(0x7f0000000080)=0x6) socketpair$inet6_tcp(0xa, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) sendto$inet(r0, &(0x7f00000002c0)="0110113295ff6576daed2aea17116c9c5a26dfc3e99549b192b9393ca778ee902784da9acebc021ef11d86362d015745f2fdc97a", 0x34, 0x0, 0x0, 0x0) getsockopt$IP6T_SO_GET_INFO(r2, 0x29, 0x40, &(0x7f00000000c0)={'nat\x00'}, &(0x7f0000000140)=0x54) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f00000005c0)={0x0, 0xa0, &(0x7f0000002f00)=[@in={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x18}}, @in6={0xa, 0x4e23, 0x2, @empty, 0x6}, @in={0x2, 0x4e24, @multicast2=0xe0000002}, @in6={0xa, 0x4e24, 0xae8, @ipv4={[], [0xff, 0xff], @local={0xac, 0x14, 0x14, 0xaa}}, 0xcd28}, @in={0x2, 0x4e23, @broadcast=0xffffffff}, @in6={0xa, 0x4e23, 0x9, @loopback={0x0, 0x1}, 0x2}, @in6={0xa, 0x4e22, 0x80000001, @loopback={0x0, 0x1}, 0x1}]}, &(0x7f0000001840)=0x10) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000002fc0)={r3, @in={{0x2, 0x4e22, @rand_addr=0x400000000}}, 0x2, 0x8000, 0x7f, 0x202, 0x1}, &(0x7f0000003080)=0x98) 2033/05/18 03:36:43 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x4000000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 318.801654] l2tp_ppp: sess 4/0: set debug=cf10464f [ 318.815508] FAULT_INJECTION: forcing a failure. [ 318.815508] name failslab, interval 1, probability 0, space 0, times 0 [ 318.826809] CPU: 1 PID: 23180 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 318.834084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 318.843429] Call Trace: [ 318.846014] dump_stack+0x1b9/0x294 [ 318.849644] ? dump_stack_print_info.cold.2+0x52/0x52 [ 318.854825] ? __save_stack_trace+0x7e/0xd0 [ 318.859136] should_fail.cold.4+0xa/0x1a [ 318.863183] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 318.868270] ? save_stack+0x43/0xd0 [ 318.871884] ? kasan_kmalloc+0xc4/0xe0 [ 318.875756] ? kmem_cache_alloc_trace+0x152/0x780 [ 318.880581] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 318.885772] ? __list_lru_init+0x456/0x790 [ 318.889992] ? sget_userns+0x73a/0xf00 [ 318.893868] ? graph_lock+0x170/0x170 [ 318.897654] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 318.902392] ? do_mount+0x564/0x3070 [ 318.906095] ? ksys_mount+0x12d/0x140 [ 318.909884] ? __x64_sys_mount+0xbe/0x150 [ 318.914021] ? do_syscall_64+0x1b1/0x800 [ 318.918072] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 318.923424] ? find_held_lock+0x36/0x1c0 [ 318.927474] ? __lock_is_held+0xb5/0x140 [ 318.931528] ? check_same_owner+0x320/0x320 [ 318.935837] ? rcu_note_context_switch+0x710/0x710 [ 318.940753] __should_failslab+0x124/0x180 [ 318.944975] should_failslab+0x9/0x14 [ 318.948760] kmem_cache_alloc_trace+0x2cb/0x780 [ 318.953410] ? __kmalloc_node+0x33/0x70 [ 318.957368] ? __kmalloc_node+0x33/0x70 [ 318.961329] ? rcu_read_lock_sched_held+0x108/0x120 [ 318.966335] __memcg_init_list_lru_node+0x17d/0x2c0 [ 318.971337] ? kvfree_rcu+0x20/0x20 [ 318.974948] ? __kmalloc_node+0x47/0x70 [ 318.978909] __list_lru_init+0x456/0x790 [ 318.982960] ? list_lru_destroy+0x4c0/0x4c0 [ 318.987265] ? mark_held_locks+0xc9/0x160 [ 318.991399] ? __raw_spin_lock_init+0x1c/0x100 [ 318.995965] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 319.000967] ? __lockdep_init_map+0x105/0x590 [ 319.005448] ? lockdep_init_map+0x9/0x10 [ 319.009495] sget_userns+0x73a/0xf00 [ 319.013191] ? kill_litter_super+0x90/0x90 [ 319.017410] ? ns_test_super+0x50/0x50 [ 319.021294] ? destroy_unused_super.part.11+0x110/0x110 [ 319.026640] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 319.031207] ? kasan_check_write+0x14/0x20 [ 319.035428] ? do_raw_spin_lock+0xc1/0x200 [ 319.039654] ? blkdev_get+0xc0/0xb30 [ 319.043352] ? cap_capable+0x1f9/0x260 [ 319.047226] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 319.052748] ? security_capable+0x99/0xc0 [ 319.056882] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 319.062402] ? ns_capable_common+0x13f/0x170 [ 319.066794] ? kill_litter_super+0x90/0x90 [ 319.071016] sget+0x10b/0x150 [ 319.074113] ? ns_test_super+0x50/0x50 [ 319.077983] mount_bdev+0x111/0x3e0 [ 319.081597] ? fuse_get_root_inode+0x190/0x190 [ 319.086166] fuse_mount_blk+0x34/0x40 [ 319.089955] mount_fs+0xae/0x328 [ 319.093320] vfs_kern_mount.part.34+0xd4/0x4d0 [ 319.097889] ? may_umount+0xb0/0xb0 [ 319.101500] ? _raw_read_unlock+0x22/0x30 [ 319.105633] ? __get_fs_type+0x97/0xc0 [ 319.109510] do_mount+0x564/0x3070 [ 319.113041] ? copy_mount_string+0x40/0x40 [ 319.117261] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 319.122015] ? retint_kernel+0x10/0x10 [ 319.125894] ? copy_mount_options+0x1e3/0x380 [ 319.130374] ? __sanitizer_cov_trace_pc+0x14/0x50 [ 319.135200] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 319.140723] ? copy_mount_options+0x285/0x380 [ 319.145223] ksys_mount+0x12d/0x140 [ 319.148837] __x64_sys_mount+0xbe/0x150 [ 319.152797] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 319.157797] do_syscall_64+0x1b1/0x800 [ 319.161671] ? syscall_return_slowpath+0x5c0/0x5c0 [ 319.166584] ? syscall_return_slowpath+0x30f/0x5c0 [ 319.171498] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 319.176848] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 319.181678] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 319.186851] RIP: 0033:0x455979 [ 319.190031] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 2033/05/18 03:36:44 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000240)='/exe\x00\x00\x00\x00\x00\x00') mkdir(&(0x7f0000027000)='./file0\x00', 0x0) mount(&(0x7f0000018000)='./file0\x00', &(0x7f000001c000)='./file0\x00', &(0x7f0000000100)='ramfs\x00', 0x0, &(0x7f000000a000)) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$bt_sco_SCO_CONNINFO(r0, 0x11, 0x2, &(0x7f0000000040)=""/149, &(0x7f0000000140)=0x95) fcntl$setstatus(r0, 0x4, 0x0) ioctl$fiemap(r0, 0x6609, &(0x7f0000000000)) [ 319.197724] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 319.204975] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 319.212226] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 319.219829] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 319.227081] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:36:44 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x80487436, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:44 executing program 0 (fault-call:0 fault-nth:20): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) [ 319.387012] l2tp_ppp: sess 4/0: set debug=cf10464f [ 319.400683] FAULT_INJECTION: forcing a failure. [ 319.400683] name failslab, interval 1, probability 0, space 0, times 0 [ 319.412091] CPU: 1 PID: 23206 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 319.419370] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 319.428729] Call Trace: [ 319.431320] dump_stack+0x1b9/0x294 [ 319.434943] ? dump_stack_print_info.cold.2+0x52/0x52 [ 319.440124] ? perf_trace_lock_acquire+0xe3/0x980 [ 319.444957] ? __save_stack_trace+0x7e/0xd0 [ 319.449274] should_fail.cold.4+0xa/0x1a [ 319.453328] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 319.458420] ? save_stack+0x43/0xd0 [ 319.462039] ? kasan_kmalloc+0xc4/0xe0 [ 319.465912] ? kmem_cache_alloc_trace+0x152/0x780 [ 319.470741] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 319.475916] ? __list_lru_init+0x456/0x790 [ 319.480137] ? sget_userns+0x73a/0xf00 [ 319.484016] ? graph_lock+0x170/0x170 [ 319.487816] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 319.492562] ? do_mount+0x564/0x3070 [ 319.496263] ? ksys_mount+0x12d/0x140 [ 319.500053] ? __x64_sys_mount+0xbe/0x150 [ 319.504189] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 319.509548] ? find_held_lock+0x36/0x1c0 [ 319.513603] ? __lock_is_held+0xb5/0x140 [ 319.517664] ? check_same_owner+0x320/0x320 [ 319.521977] ? rcu_note_context_switch+0x710/0x710 [ 319.527853] __should_failslab+0x124/0x180 [ 319.532079] should_failslab+0x9/0x14 [ 319.535871] kmem_cache_alloc_trace+0x2cb/0x780 [ 319.540531] ? __kmalloc_node+0x33/0x70 [ 319.544494] ? __kmalloc_node+0x33/0x70 [ 319.548457] ? rcu_read_lock_sched_held+0x108/0x120 [ 319.553464] __memcg_init_list_lru_node+0x17d/0x2c0 [ 319.558469] ? kvfree_rcu+0x20/0x20 [ 319.562084] ? __kmalloc_node+0x47/0x70 [ 319.566055] __list_lru_init+0x456/0x790 [ 319.570107] ? list_lru_destroy+0x4c0/0x4c0 [ 319.574416] ? mark_held_locks+0xc9/0x160 [ 319.578554] ? __raw_spin_lock_init+0x1c/0x100 [ 319.583125] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 319.588129] ? __lockdep_init_map+0x105/0x590 [ 319.592616] ? lockdep_init_map+0x9/0x10 [ 319.596667] sget_userns+0x73a/0xf00 [ 319.600367] ? kill_litter_super+0x90/0x90 [ 319.604591] ? ns_test_super+0x50/0x50 [ 319.608467] ? destroy_unused_super.part.11+0x110/0x110 [ 319.613817] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 319.618390] ? kasan_check_write+0x14/0x20 [ 319.622612] ? do_raw_spin_lock+0xc1/0x200 [ 319.626840] ? blkdev_get+0xc0/0xb30 [ 319.630545] ? cap_capable+0x1f9/0x260 [ 319.634425] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 319.639952] ? security_capable+0x99/0xc0 [ 319.644089] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 319.649622] ? ns_capable_common+0x13f/0x170 [ 319.654038] ? kill_litter_super+0x90/0x90 [ 319.658271] sget+0x10b/0x150 [ 319.661367] ? ns_test_super+0x50/0x50 [ 319.665247] mount_bdev+0x111/0x3e0 [ 319.668865] ? fuse_get_root_inode+0x190/0x190 [ 319.673439] fuse_mount_blk+0x34/0x40 [ 319.677228] mount_fs+0xae/0x328 [ 319.680590] vfs_kern_mount.part.34+0xd4/0x4d0 [ 319.685160] ? may_umount+0xb0/0xb0 [ 319.688777] ? _raw_read_unlock+0x22/0x30 [ 319.692911] ? __get_fs_type+0x97/0xc0 [ 319.696790] do_mount+0x564/0x3070 [ 319.700323] ? copy_mount_string+0x40/0x40 [ 319.704548] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 319.709294] ? retint_kernel+0x10/0x10 [ 319.713176] ? copy_mount_options+0x213/0x380 [ 319.717670] ? write_comp_data+0x70/0x70 [ 319.721719] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 319.727242] ? copy_mount_options+0x285/0x380 [ 319.731727] ksys_mount+0x12d/0x140 [ 319.735344] __x64_sys_mount+0xbe/0x150 [ 319.739305] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 319.744309] do_syscall_64+0x1b1/0x800 [ 319.748182] ? finish_task_switch+0x1ca/0x810 [ 319.752665] ? syscall_return_slowpath+0x5c0/0x5c0 [ 319.757582] ? syscall_return_slowpath+0x30f/0x5c0 [ 319.762502] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 319.767858] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 319.772693] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 319.777866] RIP: 0033:0x455979 [ 319.781044] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 319.788739] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 319.796002] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 319.803265] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 319.810521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 319.817778] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 319.840692] l2tp_ppp: sess 4/0: get L2TP stats 2033/05/18 03:36:44 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x300) 2033/05/18 03:36:44 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000000c0)=""/246) syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0x5, 0x400) ioperm(0x4, 0x9, 0x8) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) 2033/05/18 03:36:44 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/icmp\x00') getsockopt$inet_sctp_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000040)=@sack_info={0x0, 0x6, 0x3}, &(0x7f0000000080)=0xc) setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r1, 0x84, 0x78, &(0x7f00000000c0)=r2, 0x4) sendmsg$nl_generic(r0, &(0x7f0000a2efc8)={&(0x7f0000f74000)={0x10}, 0xc, &(0x7f0000007000)={&(0x7f0000481000)={0x14, 0x1d, 0x10b, 0x0, 0x0, {0x1b}}, 0x14}, 0x1}, 0x0) 2033/05/18 03:36:44 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x89a1, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:44 executing program 0 (fault-call:0 fault-nth:21): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:36:44 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0xe8030000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:44 executing program 4: capset(&(0x7f0000000000)={0x19980330}, &(0x7f00000000c0)) bpf$MAP_CREATE(0x0, &(0x7f0000000600)={0x3, 0x8000000000004, 0x4, 0x3}, 0x2c) prctl$void(0x3b) 2033/05/18 03:36:44 executing program 6: perf_event_open(&(0x7f000000a000)={0x2, 0x70, 0x9, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000100)='./file0\x00', 0x0) r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x800, 0x0) accept4$unix(r0, 0x0, &(0x7f0000000040), 0x80800) mknod(&(0x7f0000000840)='./file0\x00', 0x0, 0x0) r1 = syz_fuse_mount(&(0x7f0000000080)='./file0\x00', 0x8000, 0x0, 0x0, 0x0, 0x0) r2 = dup(r1) read$eventfd(r2, &(0x7f0000000280), 0x8) umount2(&(0x7f0000000200)='./file0\x00', 0x0) ioctl$KVM_X86_SET_MCE(r0, 0x4040ae9e, &(0x7f00000000c0)={0x800000100000000, 0x3001, 0x6, 0x10000000002, 0xa}) 2033/05/18 03:36:45 executing program 4: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x80487436, &(0x7f0000000000)={'ip6_vti0\x00'}) [ 319.930789] FAULT_INJECTION: forcing a failure. [ 319.930789] name failslab, interval 1, probability 0, space 0, times 0 [ 319.932208] l2tp_ppp: sess 4/0: set debug=cf10464f [ 319.942085] CPU: 1 PID: 23227 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 319.942096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 319.942105] Call Trace: [ 319.966221] dump_stack+0x1b9/0x294 [ 319.969874] ? dump_stack_print_info.cold.2+0x52/0x52 [ 319.975080] ? perf_trace_lock_acquire+0xe3/0x980 2033/05/18 03:36:45 executing program 4: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x80487436, &(0x7f0000000000)={'ip6_vti0\x00'}) [ 319.979944] ? kernel_text_address+0x79/0xf0 [ 319.984361] ? __unwind_start+0x166/0x330 [ 319.988527] should_fail.cold.4+0xa/0x1a [ 319.992603] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 319.997718] ? graph_lock+0x170/0x170 [ 320.001531] ? save_stack+0x43/0xd0 [ 320.005167] ? kasan_kmalloc+0xc4/0xe0 [ 320.009061] ? __list_lru_init+0xdd/0x790 [ 320.013219] ? find_held_lock+0x36/0x1c0 [ 320.017292] ? __lock_is_held+0xb5/0x140 [ 320.021374] ? check_same_owner+0x320/0x320 [ 320.025709] ? rcu_note_context_switch+0x710/0x710 2033/05/18 03:36:45 executing program 4: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x80487436, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:45 executing program 4: r0 = getpgid(0x0) sched_setattr(r0, &(0x7f0000000000)={0x0, 0x1, 0x0, 0x0, 0x3}, 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r1 = userfaultfd(0x0) ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000001fe8)={0xaa}) r2 = epoll_create1(0x0) ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f00000000c0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) close(r1) flock(r2, 0x3) r3 = memfd_create(&(0x7f0000a98000)='y#\x00W', 0x0) pwritev(r3, &(0x7f0000000000)=[{&(0x7f0000012000)="ca", 0x1}], 0x1, 0x0) write(r2, &(0x7f0000000180)="f6", 0x1) fremovexattr(r2, &(0x7f0000000040)=@known='system.posix_acl_access\x00') close(r1) [ 320.030647] __should_failslab+0x124/0x180 [ 320.034896] should_failslab+0x9/0x14 [ 320.038707] kmem_cache_alloc_node_trace+0x26f/0x770 [ 320.043818] ? mark_held_locks+0xc9/0x160 [ 320.047982] ? __raw_spin_lock_init+0x1c/0x100 [ 320.052576] __kmalloc_node+0x33/0x70 [ 320.056389] kvmalloc_node+0x6b/0x100 [ 320.060195] __list_lru_init+0x559/0x790 [ 320.064264] ? list_lru_destroy+0x4c0/0x4c0 [ 320.068596] ? mark_held_locks+0xc9/0x160 [ 320.072747] ? __raw_spin_lock_init+0x1c/0x100 [ 320.077319] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 320.082323] ? __lockdep_init_map+0x105/0x590 [ 320.086810] ? lockdep_init_map+0x9/0x10 [ 320.090861] sget_userns+0x73a/0xf00 [ 320.094560] ? kill_litter_super+0x90/0x90 [ 320.098784] ? ns_test_super+0x50/0x50 [ 320.102661] ? destroy_unused_super.part.11+0x110/0x110 [ 320.108012] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 320.112585] ? kasan_check_write+0x14/0x20 [ 320.116810] ? do_raw_spin_lock+0xc1/0x200 [ 320.121043] ? blkdev_get+0xc0/0xb30 [ 320.124748] ? cap_capable+0x1f9/0x260 [ 320.128625] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 320.134147] ? security_capable+0x99/0xc0 [ 320.138281] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 320.143807] ? ns_capable_common+0x13f/0x170 [ 320.148203] ? kill_litter_super+0x90/0x90 [ 320.152432] sget+0x10b/0x150 [ 320.155524] ? ns_test_super+0x50/0x50 [ 320.159399] mount_bdev+0x111/0x3e0 [ 320.163017] ? fuse_get_root_inode+0x190/0x190 [ 320.167590] fuse_mount_blk+0x34/0x40 [ 320.171378] mount_fs+0xae/0x328 [ 320.174735] vfs_kern_mount.part.34+0xd4/0x4d0 [ 320.179303] ? may_umount+0xb0/0xb0 [ 320.182917] ? _raw_read_unlock+0x22/0x30 [ 320.187048] ? __get_fs_type+0x97/0xc0 [ 320.190923] do_mount+0x564/0x3070 [ 320.194451] ? copy_mount_string+0x40/0x40 [ 320.198677] ? rcu_pm_notify+0xc0/0xc0 [ 320.202553] ? copy_mount_options+0x5f/0x380 [ 320.206946] ? rcu_read_lock_sched_held+0x108/0x120 [ 320.211946] ? kmem_cache_alloc_trace+0x616/0x780 [ 320.216780] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 320.222304] ? _copy_from_user+0xdf/0x150 [ 320.226439] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 320.231959] ? copy_mount_options+0x285/0x380 [ 320.236443] ksys_mount+0x12d/0x140 [ 320.240058] __x64_sys_mount+0xbe/0x150 [ 320.244022] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 320.249033] do_syscall_64+0x1b1/0x800 [ 320.252905] ? finish_task_switch+0x1ca/0x810 [ 320.257386] ? syscall_return_slowpath+0x5c0/0x5c0 [ 320.262301] ? syscall_return_slowpath+0x30f/0x5c0 [ 320.267217] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 320.272570] ? trace_hardirqs_off_thunk+0x1a/0x1c 2033/05/18 03:36:45 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1b, &(0x7f00000000c0)=ANY=[@ANYBLOB="001b7c182e"], &(0x7f0000000440)=0x1) getsockopt$IPT_SO_GET_ENTRIES(r3, 0x0, 0x41, &(0x7f0000000100)=ANY=[@ANYBLOB="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"], &(0x7f0000000040)=0x10b) r4 = dup3(r3, r2, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x1000, &(0x7f0000fff000/0x1000)=nil}) ioctl$KVM_SMI(r3, 0xaeb7) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_X86_SETUP_MCE(r2, 0x4008ae9c, &(0x7f0000000080)={0x1d, 0x2, 0x7fff}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000300)=[@text32={0x20, &(0x7f0000000240)="0f0097fd050000c4c2fd38407cb8010000000f01d9b9800000c00f3235000800000f3066ba420066b8c00066eff326f4b9800000c00f3235004000000f30660f3881a7621c96dd66baf80cb8385d3080ef66bafc0cedb9800000c00f3235004000000f30", 0x64}], 0x1, 0x0, &(0x7f0000000200), 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) [ 320.277401] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 320.282575] RIP: 0033:0x455979 [ 320.285757] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 320.293452] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 320.300706] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 320.307960] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 320.315213] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 320.322470] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:36:45 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0xfc00, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:45 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8981, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:45 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x7, 0x2000) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00') sendmsg$IPVS_CMD_SET_SERVICE(r0, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x80, r1, 0x400, 0x70bd2b, 0x25dfdbff, {0x2}, [@IPVS_CMD_ATTR_DEST={0x2c, 0x2, [@IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x3}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x4}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0xa}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e23}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x9}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x8}, @IPVS_CMD_ATTR_DAEMON={0x4, 0x3}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xffff}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xfff}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x3f}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7fffffff}, @IPVS_CMD_ATTR_SERVICE={0xc, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x4}]}]}, 0x80}, 0x1, 0x0, 0x0, 0x40}, 0x1122783a745dacdc) r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r2, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r2, 0x4010744d, &(0x7f0000001000)=""/174) [ 320.486243] l2tp_ppp: sess 4/0: set debug=cf10464f 2033/05/18 03:36:45 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x18) 2033/05/18 03:36:45 executing program 5: r0 = socket(0x40000000015, 0x5, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000001c0)={0x0, 0x0}, &(0x7f0000000200)=0xc) setreuid(0x0, r1) r2 = semget$private(0x0, 0x3, 0x0) semctl$IPC_STAT(r2, 0x0, 0x2, &(0x7f0000000100)=""/129) 2033/05/18 03:36:45 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x5460, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:45 executing program 3: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) 2033/05/18 03:36:45 executing program 6: r0 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x62000)=nil, 0x62000, 0x0, 0x11, r0, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000140)='/dev/net/tun\x00', 0x0, 0x0) getsockopt$netrom_NETROM_IDLE(r0, 0x103, 0x7, &(0x7f0000000040)=0x2, &(0x7f0000000080)=0x4) r2 = socket$unix(0x1, 0x2, 0x0) r3 = dup2(r2, r1) ioctl$KDGKBDIACR(r0, 0x4b4a, &(0x7f0000000180)=""/4096) r4 = fcntl$getown(r2, 0x9) mq_notify(r3, &(0x7f00000000c0)={0x0, 0x2b, 0x4, @tid=r4}) 2033/05/18 03:36:45 executing program 4: mlockall(0x2) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f000000a000)='./file0\x00', &(0x7f0000026ff8)='./file0\x00', &(0x7f000000c000)='ramfs\x00', 0x0, &(0x7f000032e000)) r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x200000, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000280)={0x8, 0x0, &(0x7f00000001c0)=[@decrefs={0x40046307, 0x3}], 0x68, 0x0, &(0x7f0000000200)="565f5e606757bfdba436b54a0f02cfb756a75332c885101a23f2e166e996ebac03b019386616f2d0025e6b930e6f0d3c6a63b3d29b14266468b98b7df21cd55639ab9603c7232a8c6addb5c0f3f8ae3ebee26ecf683b8be00d3fd5859c001e9b0d2d45fd1cc0fb67"}) getsockopt$inet_sctp6_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000002c0)={0x0, 0x8}, &(0x7f0000000300)=0x8) getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(r0, 0x84, 0x1a, &(0x7f0000000340)={r1, 0x55, "85a4a52ede6d34ef5ff0692d6a5c80e78bc73e46159707684089bb4b93568d0b514bfb5398c04d2986a24293a59a016ce2533222222333029bee7bf00ae5f4893add2cf9b4ce1ae04608ff02650fbdf409c67005fe"}, &(0x7f00000003c0)=0x5d) chdir(&(0x7f0000000040)='./bus\x00') r2 = open(&(0x7f00000000c0)='./bus\x00', 0x141042, 0x0) pwritev(r2, &(0x7f0000001580)=[{&(0x7f0000000140)='W', 0x1}], 0x1, 0x0) ftruncate(r2, 0x7fff) r3 = open(&(0x7f000000fffa)='./bus\x00', 0x141042, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x2, 0x11, r3, 0x0) mbind(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x0, &(0x7f0000000100), 0x1ff, 0x2) ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(r3, 0xc0105303, &(0x7f0000000080)={0x6, 0x70}) 2033/05/18 03:36:45 executing program 0 (fault-call:0 fault-nth:22): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:36:45 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0xa00, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 320.617658] FAULT_INJECTION: forcing a failure. [ 320.617658] name failslab, interval 1, probability 0, space 0, times 0 [ 320.628974] CPU: 1 PID: 23278 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 320.636257] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 320.645605] Call Trace: [ 320.648193] dump_stack+0x1b9/0x294 [ 320.651812] ? dump_stack_print_info.cold.2+0x52/0x52 [ 320.656998] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 320.662183] should_fail.cold.4+0xa/0x1a [ 320.666227] ? is_bpf_text_address+0xd7/0x170 [ 320.670707] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 320.675810] ? unwind_get_return_address+0x61/0xa0 [ 320.680730] ? __save_stack_trace+0x7e/0xd0 [ 320.685041] ? graph_lock+0x170/0x170 [ 320.688829] ? find_held_lock+0x36/0x1c0 [ 320.692875] ? __lock_is_held+0xb5/0x140 [ 320.696919] ? blkdev_reset_zones+0x360/0x4a0 [ 320.701407] ? check_same_owner+0x320/0x320 [ 320.705726] ? rcu_note_context_switch+0x710/0x710 [ 320.710642] __should_failslab+0x124/0x180 [ 320.714866] should_failslab+0x9/0x14 [ 320.718653] kmem_cache_alloc_trace+0x2cb/0x780 [ 320.723306] ? __kmalloc_node+0x33/0x70 [ 320.727263] ? __kmalloc_node+0x33/0x70 [ 320.731221] ? rcu_read_lock_sched_held+0x108/0x120 [ 320.736232] __memcg_init_list_lru_node+0x17d/0x2c0 [ 320.741233] ? kvfree_rcu+0x20/0x20 [ 320.744845] ? __kmalloc_node+0x47/0x70 [ 320.748807] __list_lru_init+0x456/0x790 [ 320.752852] ? list_lru_destroy+0x4c0/0x4c0 [ 320.757158] ? mark_held_locks+0xc9/0x160 [ 320.761291] ? __raw_spin_lock_init+0x1c/0x100 [ 320.765858] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 320.770858] ? __lockdep_init_map+0x105/0x590 [ 320.775338] ? lockdep_init_map+0x9/0x10 [ 320.779386] sget_userns+0x73a/0xf00 [ 320.783081] ? kill_litter_super+0x90/0x90 [ 320.787300] ? ns_test_super+0x50/0x50 [ 320.791172] ? destroy_unused_super.part.11+0x110/0x110 [ 320.796519] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 320.801088] ? kasan_check_write+0x14/0x20 [ 320.805306] ? do_raw_spin_lock+0xc1/0x200 [ 320.809529] ? blkdev_get+0xc0/0xb30 [ 320.813227] ? cap_capable+0x1f9/0x260 [ 320.817103] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 320.822622] ? security_capable+0x99/0xc0 [ 320.826764] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 320.832295] ? ns_capable_common+0x13f/0x170 [ 320.836690] ? kill_litter_super+0x90/0x90 [ 320.840908] sget+0x10b/0x150 [ 320.844000] ? ns_test_super+0x50/0x50 [ 320.847879] mount_bdev+0x111/0x3e0 [ 320.851492] ? fuse_get_root_inode+0x190/0x190 [ 320.856060] fuse_mount_blk+0x34/0x40 [ 320.859845] mount_fs+0xae/0x328 [ 320.863201] vfs_kern_mount.part.34+0xd4/0x4d0 [ 320.867767] ? may_umount+0xb0/0xb0 [ 320.871380] ? _raw_read_unlock+0x22/0x30 [ 320.875520] ? __get_fs_type+0x97/0xc0 [ 320.879394] do_mount+0x564/0x3070 [ 320.882924] ? copy_mount_string+0x40/0x40 [ 320.887147] ? rcu_pm_notify+0xc0/0xc0 [ 320.891029] ? copy_mount_options+0x5f/0x380 [ 320.895423] ? rcu_read_lock_sched_held+0x108/0x120 [ 320.900437] ? kmem_cache_alloc_trace+0x616/0x780 [ 320.905267] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 320.910802] ? _copy_from_user+0xdf/0x150 [ 320.914937] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 320.920459] ? copy_mount_options+0x285/0x380 [ 320.924941] ksys_mount+0x12d/0x140 [ 320.928553] __x64_sys_mount+0xbe/0x150 [ 320.932512] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 320.937514] do_syscall_64+0x1b1/0x800 [ 320.941385] ? finish_task_switch+0x1ca/0x810 [ 320.945868] ? syscall_return_slowpath+0x5c0/0x5c0 [ 320.950783] ? syscall_return_slowpath+0x30f/0x5c0 [ 320.955700] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 320.961050] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 320.965882] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 320.971055] RIP: 0033:0x455979 [ 320.974227] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 320.981919] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 320.989171] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 320.996423] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 321.003674] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 321.010927] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:36:46 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0xf5ffffff00000000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:46 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0xe, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ppp\x00', 0x400001, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_REM(r0, 0x84, 0x65, &(0x7f00000000c0)=[@in6={0xa, 0x4e24, 0xe9, @empty, 0x4}, @in={0x2, 0x4e24, @broadcast=0xffffffff}, @in6={0xa, 0x4e24, 0x5, @ipv4={[], [0xff, 0xff], @remote={0xac, 0x14, 0x14, 0xbb}}}], 0x48) ioctl$EVIOCGKEY(r0, 0x80404518, &(0x7f0000000180)=""/62) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000140)='\x00\x00\x00', 0x6d}], 0x100000000000016d, 0x5) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) syz_open_dev$sndpcmc(&(0x7f0000000080)='/dev/snd/pcmC#D#c\x00', 0x5d, 0x8002) ioctl$EVIOCGREP(r1, 0x4010744d, &(0x7f0000001000)=""/174) [ 321.033979] l2tp_ppp: sess 4/0: set debug=cf10464f 2033/05/18 03:36:46 executing program 5: r0 = accept4$ax25(0xffffffffffffff9c, &(0x7f0000000040), &(0x7f0000000080)=0x10, 0x800) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000140)={'bond_slave_1\x00', &(0x7f0000000100)=@ethtool_rxfh={0x47, 0x356, 0x0, 0x375, 0x4, "a9d0be", 0x2, [0x2, 0x80000000, 0x1, 0x400]}}) perf_event_open(&(0x7f0000223000)={0x2, 0x78, 0xe3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCETHTOOL(r1, 0x8946, &(0x7f00000001c0)={'bond0\x00', &(0x7f0000000380)=@ethtool_rxnfc={0x0, 0x0, 0x0, {0x0, @ether_spec={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}}, {'\bu', @link_local={0x1, 0x80, 0xc2}}, @esp_ip6_spec={@ipv4={[], [0xff, 0xff], @local={0xac, 0x14, 0x14, 0xaa}}}, {'8\\', @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 0x1}}}}) 2033/05/18 03:36:46 executing program 0 (fault-call:0 fault-nth:23): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:36:46 executing program 6: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ASSIGN_DEV_IRQ(r1, 0x4040ae70, &(0x7f0000000000)={0x5, 0x0, 0xcd, 0x204}) name_to_handle_at(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000000300)=ANY=[@ANYBLOB="bf00000005010000382200ff000000000000002f8cb1"], &(0x7f0000000200), 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000de9000)=[@text32={0x20, &(0x7f0000f59fc6)="0fc75fedc4c3c968fb6c0f9cfbb9040100c00f3266b842008ee80f230064672ec015dec4e245bea5d41e6082f9440f20c03506000000440f22c0", 0x3a}], 0x1, 0x0, &(0x7f0000000180), 0x39) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:36:46 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x894c, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:46 executing program 4: perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)={0xffffffffffffffff}) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000080)={r0, &(0x7f0000000140)="94ab503fb6a546fa1787de03bda236dcaccc1d2ff66bf651e003f70c95382f8aa4cddece9bba58ba349ef997842cc75744309fd88a92d31d176fd3316f16bcfecb9e541993c9bd53ff896484b3e7d4fda2a36e3f67b4480d9879db40d9f6c10e5289d208f37caa7a512f59d443cc23291f68190d5dde825b6a738194af736dfb27025caf1c90de8e40a110376cf5475304674c7c9042c8a556c4d9ca15683634c0f7c08c294638e5b9d7370428ad9279ec6f1ed9b19cd3c653412511d1ccdb2dc4ec3f0f8880ce280850a2fd3743fcf3bc630788dd58", &(0x7f0000000240)=""/114}, 0x18) bpf$MAP_CREATE(0x0, &(0x7f0000000100)={0x6, 0x0, 0x0, 0x1, 0x0, 0xffffffffffffffff, 0x75}, 0x2c) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x5, &(0x7f0000000100)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0xffffff9f}, [@ldst={0x7}], {0x95}}, &(0x7f0000003ff6)='syzkaller\x00', 0x5, 0x450, &(0x7f000000cf3d)=""/195}, 0x48) 2033/05/18 03:36:46 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0xffffff7f00000000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 321.164960] FAULT_INJECTION: forcing a failure. [ 321.164960] name failslab, interval 1, probability 0, space 0, times 0 [ 321.176262] CPU: 1 PID: 23303 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 321.183541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 321.192900] Call Trace: [ 321.195501] dump_stack+0x1b9/0x294 [ 321.199142] ? dump_stack_print_info.cold.2+0x52/0x52 [ 321.204345] ? __save_stack_trace+0x7e/0xd0 [ 321.208680] should_fail.cold.4+0xa/0x1a [ 321.212752] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 321.217863] ? save_stack+0x43/0xd0 [ 321.221490] ? kasan_kmalloc+0xc4/0xe0 [ 321.225371] ? kmem_cache_alloc_trace+0x152/0x780 [ 321.230209] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 321.235402] ? __list_lru_init+0x456/0x790 [ 321.239630] ? sget_userns+0x73a/0xf00 [ 321.243512] ? graph_lock+0x170/0x170 [ 321.247299] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 321.252044] ? do_mount+0x564/0x3070 [ 321.255745] ? ksys_mount+0x12d/0x140 [ 321.259531] ? __x64_sys_mount+0xbe/0x150 [ 321.263666] ? do_syscall_64+0x1b1/0x800 [ 321.267716] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 321.273080] ? find_held_lock+0x36/0x1c0 [ 321.277133] ? __lock_is_held+0xb5/0x140 [ 321.281194] ? check_same_owner+0x320/0x320 [ 321.285506] ? rcu_note_context_switch+0x710/0x710 [ 321.290430] __should_failslab+0x124/0x180 [ 321.294659] should_failslab+0x9/0x14 [ 321.298449] kmem_cache_alloc_trace+0x2cb/0x780 [ 321.303103] ? __kmalloc_node+0x33/0x70 [ 321.307063] ? __kmalloc_node+0x33/0x70 [ 321.311031] ? rcu_read_lock_sched_held+0x108/0x120 [ 321.316048] __memcg_init_list_lru_node+0x17d/0x2c0 [ 321.321058] ? kvfree_rcu+0x20/0x20 [ 321.324676] ? __kmalloc_node+0x47/0x70 [ 321.328654] __list_lru_init+0x456/0x790 [ 321.332704] ? list_lru_destroy+0x4c0/0x4c0 [ 321.337016] ? mark_held_locks+0xc9/0x160 [ 321.341159] ? __raw_spin_lock_init+0x1c/0x100 [ 321.345729] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 321.350738] ? __lockdep_init_map+0x105/0x590 [ 321.355225] ? lockdep_init_map+0x9/0x10 [ 321.359280] sget_userns+0x73a/0xf00 [ 321.362979] ? kill_litter_super+0x90/0x90 [ 321.367205] ? ns_test_super+0x50/0x50 [ 321.371081] ? destroy_unused_super.part.11+0x110/0x110 [ 321.376434] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 321.381008] ? kasan_check_write+0x14/0x20 [ 321.385236] ? do_raw_spin_lock+0xc1/0x200 [ 321.389467] ? blkdev_get+0xc0/0xb30 [ 321.393170] ? cap_capable+0x1f9/0x260 [ 321.397054] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 321.402578] ? security_capable+0x99/0xc0 [ 321.406718] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 321.412239] ? ns_capable_common+0x13f/0x170 [ 321.416640] ? kill_litter_super+0x90/0x90 [ 321.420880] sget+0x10b/0x150 [ 321.423972] ? ns_test_super+0x50/0x50 [ 321.427849] mount_bdev+0x111/0x3e0 [ 321.431465] ? fuse_get_root_inode+0x190/0x190 [ 321.436042] fuse_mount_blk+0x34/0x40 [ 321.439835] mount_fs+0xae/0x328 [ 321.443193] vfs_kern_mount.part.34+0xd4/0x4d0 [ 321.447767] ? may_umount+0xb0/0xb0 [ 321.451388] ? _raw_read_unlock+0x22/0x30 [ 321.455521] ? __get_fs_type+0x97/0xc0 [ 321.459402] do_mount+0x564/0x3070 [ 321.462934] ? copy_mount_string+0x40/0x40 [ 321.467155] ? rcu_pm_notify+0xc0/0xc0 [ 321.471044] ? copy_mount_options+0x5f/0x380 [ 321.475440] ? rcu_read_lock_sched_held+0x108/0x120 [ 321.480443] ? kmem_cache_alloc_trace+0x616/0x780 [ 321.485276] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 321.490802] ? _copy_from_user+0xdf/0x150 [ 321.494940] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 321.500463] ? copy_mount_options+0x285/0x380 [ 321.504951] ksys_mount+0x12d/0x140 [ 321.508567] __x64_sys_mount+0xbe/0x150 [ 321.512527] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 321.517532] do_syscall_64+0x1b1/0x800 [ 321.521407] ? finish_task_switch+0x1ca/0x810 [ 321.525894] ? syscall_return_slowpath+0x5c0/0x5c0 [ 321.530824] ? syscall_return_slowpath+0x30f/0x5c0 [ 321.535744] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 321.541102] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 321.545937] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 321.551113] RIP: 0033:0x455979 [ 321.554286] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 321.561983] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 321.569239] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 321.576492] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 321.583746] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 321.591000] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 321.620309] l2tp_ppp: sess 4/0: set debug=cf10464f 2033/05/18 03:36:46 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x4) 2033/05/18 03:36:46 executing program 3: r0 = perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = memfd_create(&(0x7f00000000c0)='\x00', 0x2) sendto$inet6(r1, &(0x7f00000004c0)="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", 0xffffffffffffffc0, 0x200004000000, 0x0, 0x0) r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0xfffffffffffffffe, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r2, 0xc004743e, &(0x7f00000006c0)=""/246) fstat(r0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) getgroups(0x1, &(0x7f0000000040)=[r3]) ioctl$EVIOCGREP(r0, 0x80084503, &(0x7f0000000140)=""/212) ioctl$EVIOCGREP(r2, 0x4010744d, &(0x7f0000001000)=""/174) 2033/05/18 03:36:46 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x9, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:46 executing program 0 (fault-call:0 fault-nth:24): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:36:46 executing program 5: r0 = socket$packet(0x11, 0x2, 0x300) r1 = syz_open_dev$mice(&(0x7f0000000040)='/dev/input/mice\x00', 0x0, 0x410001) accept$netrom(r1, &(0x7f0000000080), &(0x7f00000000c0)=0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'erspan0\x00', 0x0}) sendto$packet(r0, &(0x7f0000000000), 0x5aa, 0x0, &(0x7f0000000000)={0x11, 0x8100, r2, 0x1, 0x0, 0x6, @random="6807c0c463b8"}, 0x14) 2033/05/18 03:36:46 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0xc020660b, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:46 executing program 6: syz_open_dev$sndseq(&(0x7f0000000340)='/dev/snd/seq\x00', 0x0, 0x0) r0 = syz_open_dev$dspn(&(0x7f0000000040)='/dev/dsp#\x00', 0x8000, 0x80000) ioctl$TUNSETPERSIST(r0, 0x400454cb, 0x0) perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r1 = add_key(&(0x7f0000002000)='dns_resolver\x00', &(0x7f0000000180)={0x73, 0x79, 0x7a, 0x2}, &(0x7f00000000c0)="d4b24f1d1ac3254cb47d1f6619c5f1bf2b9e93e8f3a316091537221e8a8c60bc19ee8718f40007581e4a74ac85944004194ed9b159d1ee5876e3c696bd0da82c0ac224f6931125eff46927f18839c7fb9042f9461fc228f48652c29462428736a9dca854df9eb24915c1f5", 0xffffffffffffff6e, 0xffffffffffffffff) ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0) keyctl$read(0x4, r1, &(0x7f0000000000)=""/22, 0x16) 2033/05/18 03:36:46 executing program 4: r0 = dup3(0xffffffffffffffff, 0xffffffffffffff9c, 0x80000) ioctl$IOC_PR_PREEMPT(r0, 0x401870cb, &(0x7f0000000000)={0x9, 0x1, 0x0, 0x7fff}) r1 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$inet_sctp_SCTP_DELAYED_SACK(r1, 0x84, 0x10, &(0x7f0000004000), &(0x7f0000004000)=0xc) 2033/05/18 03:36:46 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0xfc, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 321.784995] l2tp_ppp: sess 4/0: set debug=cf10464f 2033/05/18 03:36:46 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x1) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) [ 321.866584] FAULT_INJECTION: forcing a failure. [ 321.866584] name failslab, interval 1, probability 0, space 0, times 0 [ 321.877917] CPU: 0 PID: 23341 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 321.885194] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 321.894541] Call Trace: [ 321.897127] dump_stack+0x1b9/0x294 [ 321.900753] ? dump_stack_print_info.cold.2+0x52/0x52 [ 321.905937] ? __save_stack_trace+0x7e/0xd0 [ 321.910252] should_fail.cold.4+0xa/0x1a [ 321.914302] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 321.919394] ? save_stack+0x43/0xd0 [ 321.923009] ? kasan_kmalloc+0xc4/0xe0 [ 321.926888] ? kmem_cache_alloc_trace+0x152/0x780 [ 321.931715] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 321.936891] ? __list_lru_init+0x456/0x790 [ 321.941114] ? sget_userns+0x73a/0xf00 [ 321.944987] ? graph_lock+0x170/0x170 [ 321.948775] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 321.953517] ? do_mount+0x564/0x3070 [ 321.957216] ? ksys_mount+0x12d/0x140 [ 321.961002] ? __x64_sys_mount+0xbe/0x150 [ 321.965143] ? do_syscall_64+0x1b1/0x800 [ 321.969191] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 321.974543] ? find_held_lock+0x36/0x1c0 [ 321.978607] ? __lock_is_held+0xb5/0x140 [ 321.982666] ? check_same_owner+0x320/0x320 [ 321.986978] ? rcu_note_context_switch+0x710/0x710 [ 321.991900] __should_failslab+0x124/0x180 [ 321.996125] should_failslab+0x9/0x14 [ 321.999915] kmem_cache_alloc_trace+0x2cb/0x780 [ 322.004568] ? __kmalloc_node+0x33/0x70 [ 322.008529] ? __kmalloc_node+0x33/0x70 [ 322.012491] ? rcu_read_lock_sched_held+0x108/0x120 [ 322.017499] __memcg_init_list_lru_node+0x17d/0x2c0 [ 322.022503] ? kvfree_rcu+0x20/0x20 [ 322.026119] ? __kmalloc_node+0x47/0x70 [ 322.030087] __list_lru_init+0x456/0x790 [ 322.034136] ? list_lru_destroy+0x4c0/0x4c0 [ 322.038444] ? mark_held_locks+0xc9/0x160 [ 322.042582] ? __raw_spin_lock_init+0x1c/0x100 [ 322.047154] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 322.052160] ? __lockdep_init_map+0x105/0x590 [ 322.056643] ? lockdep_init_map+0x9/0x10 [ 322.060693] sget_userns+0x73a/0xf00 [ 322.064391] ? kill_litter_super+0x90/0x90 [ 322.068615] ? ns_test_super+0x50/0x50 [ 322.072490] ? destroy_unused_super.part.11+0x110/0x110 [ 322.077841] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 322.082412] ? kasan_check_write+0x14/0x20 [ 322.086636] ? do_raw_spin_lock+0xc1/0x200 [ 322.090865] ? blkdev_get+0xc0/0xb30 [ 322.094568] ? cap_capable+0x1f9/0x260 [ 322.098452] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 322.103976] ? security_capable+0x99/0xc0 [ 322.108116] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 322.113639] ? ns_capable_common+0x13f/0x170 [ 322.118038] ? kill_litter_super+0x90/0x90 [ 322.122269] sget+0x10b/0x150 [ 322.125360] ? ns_test_super+0x50/0x50 [ 322.129241] mount_bdev+0x111/0x3e0 [ 322.132858] ? fuse_get_root_inode+0x190/0x190 [ 322.137430] fuse_mount_blk+0x34/0x40 [ 322.141228] mount_fs+0xae/0x328 [ 322.144587] vfs_kern_mount.part.34+0xd4/0x4d0 [ 322.149158] ? may_umount+0xb0/0xb0 [ 322.152774] ? _raw_read_unlock+0x22/0x30 [ 322.156913] ? __get_fs_type+0x97/0xc0 [ 322.160795] do_mount+0x564/0x3070 [ 322.164331] ? copy_mount_string+0x40/0x40 [ 322.168551] ? rcu_pm_notify+0xc0/0xc0 [ 322.172431] ? copy_mount_options+0x5f/0x380 [ 322.176827] ? rcu_read_lock_sched_held+0x108/0x120 [ 322.181833] ? kmem_cache_alloc_trace+0x616/0x780 [ 322.186667] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 322.192191] ? _copy_from_user+0xdf/0x150 [ 322.196330] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 322.201854] ? copy_mount_options+0x285/0x380 [ 322.206340] ksys_mount+0x12d/0x140 [ 322.209956] __x64_sys_mount+0xbe/0x150 [ 322.213918] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 322.218929] do_syscall_64+0x1b1/0x800 [ 322.222807] ? finish_task_switch+0x1ca/0x810 [ 322.227291] ? syscall_return_slowpath+0x5c0/0x5c0 [ 322.232208] ? syscall_return_slowpath+0x30f/0x5c0 [ 322.237138] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 322.242492] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 322.247326] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 322.252510] RIP: 0033:0x455979 [ 322.255683] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 2033/05/18 03:36:47 executing program 6: mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x0, 0x32, 0xffffffffffffffff, 0x0) getsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x43, &(0x7f0000002fe2)=""/30, &(0x7f0000000000)=0x254) 2033/05/18 03:36:47 executing program 4: r0 = socket$vsock_stream(0x28, 0x1, 0x0) sendto(r0, &(0x7f0000000040)="6ed304fea08f9f4ff86ad306f13b2ec0f154e0926b2667001ba903719b91369102022b250302340c7e58bf6f6315bb74d53cd3ceba29c64cf3f4", 0x3a, 0x11, &(0x7f0000000080)=@pppol2tpin6={0x18, 0x1, {0x0, r0, 0x1, 0x3, 0x4, 0x0, {0xa, 0x4e24, 0x6, @mcast2={0xff, 0x2, [], 0x1}, 0x5}}}, 0x80) setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r0, 0x28, 0x2, &(0x7f0000000000)=0x100000001, 0x8) r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000100)='/dev/audio\x00', 0x482001, 0x0) ioctl$SNDRV_TIMER_IOCTL_START(r1, 0x54a0) ioctl$SNDRV_TIMER_IOCTL_TREAD(r1, 0x40045402, &(0x7f0000000180)=0x1) 2033/05/18 03:36:47 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x40049409, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:47 executing program 5: r0 = getpgrp(0x0) r1 = syz_open_procfs(r0, &(0x7f0000000040)='coredump_filter\x00') perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) writev(r1, &(0x7f00000000c0)=[{&(0x7f00000018c0)='+0', 0x2}], 0x1) [ 322.263380] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 322.270636] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 322.277891] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 322.285148] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 322.292405] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:36:47 executing program 6: syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net\x00') exit(0x0) 2033/05/18 03:36:47 executing program 4: mkdir(&(0x7f0000b32000)='./file0\x00', 0x0) mount(&(0x7f000000a000)='./file0\x00', &(0x7f000000aff8)='./file0\x00', &(0x7f0000000080)="130410af19bb026fecc4b1c178cb001329fda264036f7bc723763222d76f9d63957766a2f4e0b51bfd66a1100eadac2834dc7dccd3557827932090fc537ace4df3e173307b2c2da198ae4e472ae47eab302f51d72721fdea6c62ddad08d2cf52995d2aa354752dedb443c75b5f", 0x0, &(0x7f0000000040)="20e0a454a199c9cac4b25d178f313b8fe3d6aa482e42731dc3183b39e17150f1b262f862ddca6fa58e5dc11a478c60216446513868f25a37f5d1fe3fb8ccaa") dup(0xffffffffffffffff) chdir(&(0x7f00002d7000)='./file0\x00') mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x1, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000280)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000001000)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) r1 = creat(&(0x7f0000003ff8)='./file0\x00', 0x0) write$sndseq(r1, &(0x7f0000011fd2)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time={0x0, 0x989680}}], 0x30) ioctl$IOC_PR_PREEMPT(r1, 0x401870cb, &(0x7f0000000180)={0x9, 0x3ff, 0x403, 0x911d}) connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e23, @multicast2=0xe0000002}, 0x10) syz_open_dev$sndpcmc(&(0x7f0000000100)='/dev/snd/pcmC#D#c\x00', 0xc643, 0x40400) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x3, 0x32, 0xffffffffffffffff, 0x0) ioctl$UFFDIO_ZEROPAGE(r0, 0x8010aa02, &(0x7f0000001ff0)={&(0x7f0000011000/0x3000)=nil, 0x3000}) [ 322.392293] l2tp_ppp: sess 4/0: set debug=cf10464f 2033/05/18 03:36:48 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x6) 2033/05/18 03:36:48 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8921, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:48 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGABS20(r0, 0x80184560, &(0x7f0000000040)) msgget$private(0x0, 0x410) r1 = add_key$keyring(&(0x7f0000000040)='keyring\x00', &(0x7f00000000c0)={0x73, 0x79, 0x7a, 0x1}, 0x0, 0x0, 0xffffffffffffffff) keyctl$restrict_keyring(0x1d, r1, &(0x7f0000000100)='.dead\x00', &(0x7f0000000140)='\x00') ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) 2033/05/18 03:36:48 executing program 5: r0 = semget$private(0x0, 0x20000000103, 0x0) semtimedop(r0, &(0x7f0000033816)=[{}, {0x0, 0x8091}], 0x2, &(0x7f0000034000)={0x77359400}) semctl$GETALL(r0, 0x0, 0xd, &(0x7f0000000000)=""/63) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x100, 0x0) getsockopt$inet_mreq(r1, 0x0, 0x23, &(0x7f0000000080)={@multicast1, @rand_addr}, &(0x7f00000000c0)=0x8) 2033/05/18 03:36:48 executing program 0 (fault-call:0 fault-nth:25): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:36:48 executing program 6: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000003c0)={0x26, 'hash\x00', 0x0, 0x0, 'crc32-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000440)="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", 0x1000) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000100), 0x0) 2033/05/18 03:36:48 executing program 4: mkdir(&(0x7f00000fd000)='./file0\x00', 0x0) r0 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) mkdirat(r0, &(0x7f0000033ff8)='./file0\x00', 0x0) getsockopt$inet_dccp_buf(r0, 0x21, 0x0, &(0x7f0000000100)=""/207, &(0x7f0000000040)=0xcf) mount(&(0x7f0000df2000)='./file0/file0\x00', &(0x7f0000a16ff8)='./file0\x00', &(0x7f0000df2ffd)='\x00v\t', 0x1001, &(0x7f0000a06000)) unlinkat(r0, &(0x7f0000000080)='./file0/file0\x00', 0x1fc) syz_fuseblk_mount(&(0x7f0000000200)='./file0\x00', &(0x7f00000000c0)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x801000) 2033/05/18 03:36:48 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x10000000000000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 323.279976] l2tp_ppp: sess 4/0: set debug=cf10464f [ 323.286619] l2tp_ppp: sess 4/0: get mtu=1460 [ 323.288974] FAULT_INJECTION: forcing a failure. [ 323.288974] name failslab, interval 1, probability 0, space 0, times 0 [ 323.302372] CPU: 1 PID: 23394 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 323.309651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 323.319002] Call Trace: [ 323.321602] dump_stack+0x1b9/0x294 [ 323.325232] ? dump_stack_print_info.cold.2+0x52/0x52 [ 323.330416] ? perf_trace_lock_acquire+0xe3/0x980 [ 323.335254] ? __save_stack_trace+0x7e/0xd0 [ 323.339573] should_fail.cold.4+0xa/0x1a [ 323.343625] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 323.348716] ? save_stack+0x43/0xd0 [ 323.352329] ? kasan_kmalloc+0xc4/0xe0 [ 323.356203] ? kmem_cache_alloc_trace+0x152/0x780 [ 323.361038] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 323.366215] ? __list_lru_init+0x456/0x790 [ 323.370436] ? sget_userns+0x73a/0xf00 [ 323.374310] ? graph_lock+0x170/0x170 [ 323.378096] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 323.382836] ? do_mount+0x564/0x3070 [ 323.386533] ? ksys_mount+0x12d/0x140 [ 323.390316] ? __x64_sys_mount+0xbe/0x150 [ 323.394449] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 323.399799] ? find_held_lock+0x36/0x1c0 [ 323.403849] ? __lock_is_held+0xb5/0x140 [ 323.407906] ? check_same_owner+0x320/0x320 [ 323.412222] ? rcu_note_context_switch+0x710/0x710 [ 323.417139] __should_failslab+0x124/0x180 [ 323.421362] should_failslab+0x9/0x14 [ 323.425147] kmem_cache_alloc_trace+0x2cb/0x780 [ 323.429800] ? __kmalloc_node+0x33/0x70 [ 323.433773] ? __kmalloc_node+0x33/0x70 [ 323.437738] __memcg_init_list_lru_node+0x17d/0x2c0 [ 323.442743] ? kvfree_rcu+0x20/0x20 [ 323.446364] ? __kmalloc_node+0x47/0x70 [ 323.450327] __list_lru_init+0x456/0x790 [ 323.454375] ? list_lru_destroy+0x4c0/0x4c0 [ 323.458681] ? mark_held_locks+0xc9/0x160 [ 323.462817] ? __raw_spin_lock_init+0x1c/0x100 [ 323.467385] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 323.472396] ? __lockdep_init_map+0x105/0x590 [ 323.476879] ? lockdep_init_map+0x9/0x10 [ 323.480928] sget_userns+0x73a/0xf00 [ 323.484627] ? kill_litter_super+0x90/0x90 [ 323.488851] ? ns_test_super+0x50/0x50 [ 323.492727] ? destroy_unused_super.part.11+0x110/0x110 [ 323.498087] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 323.502657] ? kasan_check_write+0x14/0x20 [ 323.506877] ? do_raw_spin_lock+0xc1/0x200 [ 323.511104] ? blkdev_get+0xc0/0xb30 [ 323.514806] ? cap_capable+0x1f9/0x260 [ 323.518685] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 323.524208] ? security_capable+0x99/0xc0 [ 323.528346] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 323.533867] ? ns_capable_common+0x13f/0x170 [ 323.538261] ? kill_litter_super+0x90/0x90 [ 323.542482] sget+0x10b/0x150 [ 323.545574] ? ns_test_super+0x50/0x50 [ 323.549453] mount_bdev+0x111/0x3e0 [ 323.553069] ? fuse_get_root_inode+0x190/0x190 [ 323.557636] fuse_mount_blk+0x34/0x40 [ 323.561423] mount_fs+0xae/0x328 [ 323.564779] vfs_kern_mount.part.34+0xd4/0x4d0 [ 323.569347] ? may_umount+0xb0/0xb0 [ 323.572961] ? _raw_read_unlock+0x22/0x30 [ 323.577094] ? __get_fs_type+0x97/0xc0 [ 323.580969] do_mount+0x564/0x3070 [ 323.584498] ? copy_mount_string+0x40/0x40 [ 323.588721] ? rcu_pm_notify+0xc0/0xc0 [ 323.592597] ? copy_mount_options+0x5f/0x380 [ 323.596988] ? rcu_read_lock_sched_held+0x108/0x120 [ 323.601993] ? kmem_cache_alloc_trace+0x616/0x780 [ 323.606827] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 323.612353] ? _copy_from_user+0xdf/0x150 [ 323.616490] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 323.622017] ? copy_mount_options+0x285/0x380 [ 323.626503] ksys_mount+0x12d/0x140 [ 323.630118] __x64_sys_mount+0xbe/0x150 [ 323.634080] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 323.639086] do_syscall_64+0x1b1/0x800 [ 323.642960] ? finish_task_switch+0x1ca/0x810 [ 323.647444] ? syscall_return_slowpath+0x5c0/0x5c0 [ 323.652362] ? syscall_return_slowpath+0x30f/0x5c0 [ 323.657280] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 323.662641] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 323.667475] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 323.672649] RIP: 0033:0x455979 2033/05/18 03:36:48 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x8004020000000000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:48 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x5452, &(0x7f0000000000)={'ip6_vti0\x00'}) [ 323.675823] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 323.683519] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 323.690774] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 323.698033] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 323.705896] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 323.713150] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:36:48 executing program 6: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8921, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:48 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) mq_getsetattr(r0, &(0x7f0000000040)={0x5, 0x88, 0xa45, 0x8, 0x3, 0x2, 0x5, 0x81}, &(0x7f00000000c0)) 2033/05/18 03:36:48 executing program 0 (fault-call:0 fault-nth:26): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) [ 323.774645] l2tp_ppp: sess 4/0: set debug=cf10464f 2033/05/18 03:36:48 executing program 4: setitimer(0x1, &(0x7f0000000500)={{0x77359400}}, &(0x7f0000000540)) r0 = dup(0xffffffffffffffff) ioctl$KVM_SET_XSAVE(r0, 0x5000aea5, &(0x7f0000000d80)={"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"}) getitimer(0x1, &(0x7f00000000c0)) 2033/05/18 03:36:48 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0xffffff7f, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:48 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0xc0045877, &(0x7f0000000000)={'ip6_vti0\x00'}) [ 323.891121] FAULT_INJECTION: forcing a failure. [ 323.891121] name failslab, interval 1, probability 0, space 0, times 0 [ 323.902447] CPU: 0 PID: 23422 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 323.903161] l2tp_ppp: sess 4/0: set debug=cf10464f [ 323.909746] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 323.909753] Call Trace: [ 323.909778] dump_stack+0x1b9/0x294 [ 323.909801] ? dump_stack_print_info.cold.2+0x52/0x52 [ 323.909822] ? finish_task_switch+0x1ca/0x810 [ 323.939938] ? finish_task_switch+0x182/0x810 [ 323.944454] should_fail.cold.4+0xa/0x1a [ 323.948533] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 323.953663] ? __schedule+0x809/0x1e30 [ 323.957559] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 323.962322] ? do_mount+0x564/0x3070 [ 323.966053] ? __sched_text_start+0x8/0x8 [ 323.970210] ? find_held_lock+0x36/0x1c0 [ 323.974290] ? __lock_is_held+0xb5/0x140 [ 323.978374] ? check_same_owner+0x320/0x320 [ 323.982720] __should_failslab+0x124/0x180 [ 323.986969] should_failslab+0x9/0x14 [ 323.990783] kmem_cache_alloc_trace+0x2cb/0x780 [ 323.995480] ? __kmalloc_node+0x33/0x70 [ 323.999461] ? __kmalloc_node+0x33/0x70 [ 324.003446] ? rcu_read_lock_sched_held+0x108/0x120 [ 324.008480] __memcg_init_list_lru_node+0x17d/0x2c0 [ 324.013508] ? kvfree_rcu+0x20/0x20 [ 324.017134] ? __kmalloc_node+0x47/0x70 [ 324.021097] __list_lru_init+0x456/0x790 [ 324.025145] ? list_lru_destroy+0x4c0/0x4c0 [ 324.029464] ? mark_held_locks+0xc9/0x160 [ 324.033607] ? __raw_spin_lock_init+0x1c/0x100 [ 324.038183] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 324.043192] ? __lockdep_init_map+0x105/0x590 [ 324.047671] ? lockdep_init_map+0x9/0x10 [ 324.051718] sget_userns+0x73a/0xf00 [ 324.055416] ? kill_litter_super+0x90/0x90 [ 324.059637] ? ns_test_super+0x50/0x50 [ 324.063518] ? destroy_unused_super.part.11+0x110/0x110 [ 324.068869] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 324.073440] ? kasan_check_write+0x14/0x20 [ 324.077675] ? do_raw_spin_lock+0xc1/0x200 [ 324.081908] ? blkdev_get+0xc0/0xb30 [ 324.085606] ? cap_capable+0x1f9/0x260 [ 324.089485] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 324.095023] ? security_capable+0x99/0xc0 [ 324.099167] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 324.104692] ? ns_capable_common+0x13f/0x170 [ 324.109084] ? kill_litter_super+0x90/0x90 [ 324.113298] sget+0x10b/0x150 [ 324.116395] ? ns_test_super+0x50/0x50 [ 324.120282] mount_bdev+0x111/0x3e0 [ 324.123890] ? fuse_get_root_inode+0x190/0x190 [ 324.128470] fuse_mount_blk+0x34/0x40 [ 324.132267] mount_fs+0xae/0x328 [ 324.135620] vfs_kern_mount.part.34+0xd4/0x4d0 [ 324.140188] ? may_umount+0xb0/0xb0 [ 324.143806] ? _raw_read_unlock+0x22/0x30 [ 324.147935] ? __get_fs_type+0x97/0xc0 [ 324.151809] do_mount+0x564/0x3070 [ 324.155336] ? copy_mount_string+0x40/0x40 [ 324.159554] ? rcu_pm_notify+0xc0/0xc0 [ 324.163444] ? copy_mount_options+0x5f/0x380 [ 324.167856] ? rcu_read_lock_sched_held+0x108/0x120 [ 324.172862] ? kmem_cache_alloc_trace+0x616/0x780 [ 324.177701] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 324.183246] ? _copy_from_user+0xdf/0x150 [ 324.187394] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 324.192913] ? copy_mount_options+0x285/0x380 [ 324.197394] ksys_mount+0x12d/0x140 [ 324.201007] __x64_sys_mount+0xbe/0x150 [ 324.204974] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 324.209984] do_syscall_64+0x1b1/0x800 [ 324.213863] ? finish_task_switch+0x1ca/0x810 [ 324.218344] ? syscall_return_slowpath+0x5c0/0x5c0 [ 324.223261] ? syscall_return_slowpath+0x30f/0x5c0 [ 324.228178] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 324.233527] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 324.238367] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 324.243549] RIP: 0033:0x455979 [ 324.246721] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 324.254413] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 324.261666] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 324.268917] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 324.276169] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 324.283426] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:36:49 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000100)={0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x3, 0x0, 0x6, 0x10000}) ioctl$KDGKBMODE(r0, 0x4b44, &(0x7f0000000000)) r1 = syz_open_pts(r0, 0x20201) fcntl$setstatus(r1, 0x4, 0x2800) ioctl$TCXONC(r1, 0x540a, 0x0) write(r1, &(0x7f0000fd6000)='z', 0x1) ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0x3) ioctl$TCFLSH(r0, 0x540b, 0x0) r2 = dup(r0) setsockopt$EBT_SO_SET_COUNTERS(r2, 0x0, 0x81, &(0x7f0000000040)={'nat\x00', 0x3, [{}, {}, {}]}, 0x58) 2033/05/18 03:36:49 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0xc000000) 2033/05/18 03:36:49 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x4020940d, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:49 executing program 6: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8921, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:49 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$sock_inet_SIOCDARP(r0, 0x8953, &(0x7f00000000c0)={{0x2, 0x4e23, @broadcast=0xffffffff}, {0x307, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xf}}, 0x20, {0x2, 0x4e22, @rand_addr=0xff}, 'bond0\x00'}) setsockopt$inet_sctp_SCTP_HMAC_IDENT(r0, 0x84, 0x16, &(0x7f0000000040)={0x4, [0x2, 0x7, 0x7, 0x3f]}, 0xc) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) 2033/05/18 03:36:49 executing program 4: r0 = socket$bt_cmtp(0x1f, 0x3, 0x5) ioctl$sock_inet_SIOCSIFPFLAGS(r0, 0x8934, &(0x7f0000000040)={'bridge_slave_0\x00', 0x20000000000}) r1 = socket(0x400020000000010, 0x2, 0x0) write(r1, &(0x7f0000000000)="1f00000054000d00000000009059387c07ff1b074200000800000a00070001ff", 0x20) 2033/05/18 03:36:49 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x3e8, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:49 executing program 0 (fault-call:0 fault-nth:27): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) [ 324.358433] l2tp_ppp: sess 4/0: set debug=cf10464f [ 324.371340] FAULT_INJECTION: forcing a failure. [ 324.371340] name failslab, interval 1, probability 0, space 0, times 0 [ 324.380067] netlink: 7 bytes leftover after parsing attributes in process `syz-executor4'. [ 324.382645] CPU: 0 PID: 23450 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 324.391088] PF_BRIDGE: br_mdb_parse() with unknown ifindex [ 324.398311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 324.398318] Call Trace: [ 324.398345] dump_stack+0x1b9/0x294 [ 324.398365] ? dump_stack_print_info.cold.2+0x52/0x52 [ 324.398385] ? perf_trace_lock_acquire+0xe3/0x980 [ 324.429488] ? __save_stack_trace+0x7e/0xd0 [ 324.433802] should_fail.cold.4+0xa/0x1a [ 324.437854] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 324.442944] ? save_stack+0x43/0xd0 [ 324.446555] ? kasan_kmalloc+0xc4/0xe0 [ 324.450430] ? kmem_cache_alloc_trace+0x152/0x780 [ 324.455260] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 324.460435] ? __list_lru_init+0x456/0x790 [ 324.464663] ? sget_userns+0x73a/0xf00 [ 324.468537] ? graph_lock+0x170/0x170 [ 324.472324] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 324.477065] ? do_mount+0x564/0x3070 [ 324.480761] ? ksys_mount+0x12d/0x140 [ 324.484544] ? __x64_sys_mount+0xbe/0x150 [ 324.488679] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 324.494033] ? find_held_lock+0x36/0x1c0 [ 324.498086] ? __lock_is_held+0xb5/0x140 [ 324.502143] ? check_same_owner+0x320/0x320 [ 324.506463] ? rcu_note_context_switch+0x710/0x710 [ 324.511382] __should_failslab+0x124/0x180 [ 324.515637] should_failslab+0x9/0x14 [ 324.519425] kmem_cache_alloc_trace+0x2cb/0x780 [ 324.524079] ? __kmalloc_node+0x33/0x70 [ 324.528040] ? __kmalloc_node+0x33/0x70 [ 324.532001] ? rcu_read_lock_sched_held+0x108/0x120 [ 324.537015] __memcg_init_list_lru_node+0x17d/0x2c0 [ 324.542034] ? kvfree_rcu+0x20/0x20 [ 324.545649] ? __kmalloc_node+0x47/0x70 [ 324.549647] __list_lru_init+0x456/0x790 [ 324.553698] ? list_lru_destroy+0x4c0/0x4c0 [ 324.558009] ? mark_held_locks+0xc9/0x160 [ 324.562149] ? __raw_spin_lock_init+0x1c/0x100 [ 324.566725] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 324.571725] ? __lockdep_init_map+0x105/0x590 [ 324.576215] ? lockdep_init_map+0x9/0x10 [ 324.580262] sget_userns+0x73a/0xf00 [ 324.583961] ? kill_litter_super+0x90/0x90 [ 324.588183] ? ns_test_super+0x50/0x50 [ 324.592057] ? destroy_unused_super.part.11+0x110/0x110 [ 324.597405] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 324.601975] ? kasan_check_write+0x14/0x20 [ 324.606193] ? do_raw_spin_lock+0xc1/0x200 [ 324.610419] ? blkdev_get+0xc0/0xb30 [ 324.614121] ? cap_capable+0x1f9/0x260 [ 324.617998] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 324.623523] ? security_capable+0x99/0xc0 [ 324.627660] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 324.633183] ? ns_capable_common+0x13f/0x170 [ 324.637578] ? kill_litter_super+0x90/0x90 [ 324.641801] sget+0x10b/0x150 [ 324.644892] ? ns_test_super+0x50/0x50 [ 324.648766] mount_bdev+0x111/0x3e0 [ 324.652380] ? fuse_get_root_inode+0x190/0x190 [ 324.656950] fuse_mount_blk+0x34/0x40 [ 324.660736] mount_fs+0xae/0x328 [ 324.664092] vfs_kern_mount.part.34+0xd4/0x4d0 [ 324.668663] ? may_umount+0xb0/0xb0 [ 324.672278] ? _raw_read_unlock+0x22/0x30 [ 324.676772] ? __get_fs_type+0x97/0xc0 [ 324.680652] do_mount+0x564/0x3070 [ 324.684195] ? do_raw_spin_unlock+0x9e/0x2e0 [ 324.688600] ? copy_mount_string+0x40/0x40 [ 324.692822] ? rcu_pm_notify+0xc0/0xc0 [ 324.696709] ? copy_mount_options+0x5f/0x380 [ 324.701101] ? rcu_read_lock_sched_held+0x108/0x120 [ 324.706112] ? kmem_cache_alloc_trace+0x616/0x780 [ 324.710944] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 324.716470] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 324.721990] ? copy_mount_options+0x285/0x380 [ 324.726475] ksys_mount+0x12d/0x140 [ 324.730088] __x64_sys_mount+0xbe/0x150 [ 324.734051] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 324.739057] do_syscall_64+0x1b1/0x800 [ 324.742932] ? syscall_return_slowpath+0x5c0/0x5c0 [ 324.747856] ? syscall_return_slowpath+0x30f/0x5c0 [ 324.752773] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 324.758127] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 324.762959] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 324.768131] RIP: 0033:0x455979 [ 324.771303] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 324.778998] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 324.786265] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 324.793519] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 324.800773] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 2033/05/18 03:36:49 executing program 6: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8921, &(0x7f0000000000)={'ip6_vti0\x00'}) [ 324.808028] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:36:49 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x5451, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:49 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0xc0fe, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:49 executing program 3: r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x800, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x4b80, @loopback={0x0, 0x1}, 0x3}, 0x1c) 2033/05/18 03:36:49 executing program 0 (fault-call:0 fault-nth:28): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:36:49 executing program 4: r0 = socket(0x1e, 0x1, 0x0) setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000080)=@req={0x0, 0x0, 0x1}, 0x5) sendmsg(r0, &(0x7f0000030000)={&(0x7f00004aeb5c)=@generic={0x10000000001e, "02ed01000000000000000001e527cc573c5bf86c483700c71e14dd6a739effea1b48006be61ffe0000e103000000f8000004003f010039d8f9b1ff010003000024e7af50dd0700000000000000e3ad316a19830000000000000006cb24281e2780e503000076c3979ac40023bd07020078a1dfd300881a8365b186827436"}, 0x51, &(0x7f0000000080), 0x358, &(0x7f00008b2000)}, 0x0) close(r0) r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000040)='fou\x00') sendmsg$FOU_CMD_DEL(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100c0000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x50, r1, 0x36, 0x70bd28, 0x25dfdbfc, {0x2}, [@FOU_ATTR_IPPROTO={0x8, 0x3, 0x3f}, @FOU_ATTR_IPPROTO={0x8, 0x3, 0x97}, @FOU_ATTR_IPPROTO={0x8, 0x3, 0x29}, @FOU_ATTR_PORT={0x8, 0x1, 0x4e23}, @FOU_ATTR_PORT={0x8, 0x1, 0x4e21}, @FOU_ATTR_REMCSUM_NOPARTIAL={0x4, 0x5}, @FOU_ATTR_IPPROTO={0x8, 0x3, 0x7f}, @FOU_ATTR_PORT={0x8, 0x1, 0x4e22}]}, 0x50}, 0x1, 0x0, 0x0, 0x1}, 0x10) [ 324.910677] l2tp_ppp: sess 4/0: set debug=cf10464f 2033/05/18 03:36:50 executing program 6: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) r1 = syz_open_dev$sndpcmp(&(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0x9, 0x80000) setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0x7, &(0x7f0000000100)={0x5, 0x9, 0x8, 0xc53}, 0x10) ioctl$KVM_ASSIGN_PCI_DEVICE(r1, 0x8040ae69, &(0x7f00000000c0)={0x1, 0x7f, 0x675e, 0x7, 0x8}) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmsg$nl_xfrm(r0, &(0x7f0000001840)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f0000001800)={&(0x7f0000001700)=@delsa={0x28, 0x11, 0x23, 0x0, 0x0, {@in=@dev={0xac, 0x14, 0x14}, 0x0, 0x0, 0x32}}, 0x28}, 0x1}, 0x0) [ 324.982996] FAULT_INJECTION: forcing a failure. [ 324.982996] name failslab, interval 1, probability 0, space 0, times 0 [ 324.994338] CPU: 0 PID: 23480 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 325.001617] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 325.010970] Call Trace: [ 325.013577] dump_stack+0x1b9/0x294 [ 325.017219] ? dump_stack_print_info.cold.2+0x52/0x52 [ 325.022415] ? __save_stack_trace+0x7e/0xd0 [ 325.026738] should_fail.cold.4+0xa/0x1a [ 325.030797] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 325.035896] ? save_stack+0x43/0xd0 [ 325.039511] ? kasan_kmalloc+0xc4/0xe0 [ 325.043387] ? kmem_cache_alloc_trace+0x152/0x780 [ 325.048216] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 325.053390] ? __list_lru_init+0x456/0x790 [ 325.057611] ? sget_userns+0x73a/0xf00 [ 325.061489] ? graph_lock+0x170/0x170 [ 325.065275] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 325.070024] ? do_mount+0x564/0x3070 [ 325.073727] ? ksys_mount+0x12d/0x140 [ 325.077515] ? __x64_sys_mount+0xbe/0x150 [ 325.081650] ? do_syscall_64+0x1b1/0x800 [ 325.085699] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 325.091056] ? find_held_lock+0x36/0x1c0 [ 325.095111] ? __lock_is_held+0xb5/0x140 [ 325.099173] ? check_same_owner+0x320/0x320 [ 325.103484] ? rcu_note_context_switch+0x710/0x710 [ 325.108407] __should_failslab+0x124/0x180 [ 325.112634] should_failslab+0x9/0x14 [ 325.116422] kmem_cache_alloc_trace+0x2cb/0x780 [ 325.121079] ? __kmalloc_node+0x33/0x70 [ 325.125042] ? __kmalloc_node+0x33/0x70 [ 325.129010] ? rcu_read_lock_sched_held+0x108/0x120 [ 325.134033] __memcg_init_list_lru_node+0x17d/0x2c0 [ 325.139046] ? kvfree_rcu+0x20/0x20 [ 325.142665] ? __kmalloc_node+0x47/0x70 [ 325.146631] __list_lru_init+0x456/0x790 [ 325.150683] ? list_lru_destroy+0x4c0/0x4c0 [ 325.154994] ? mark_held_locks+0xc9/0x160 [ 325.159139] ? __raw_spin_lock_init+0x1c/0x100 [ 325.163718] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 325.168722] ? __lockdep_init_map+0x105/0x590 [ 325.173206] ? lockdep_init_map+0x9/0x10 [ 325.177256] sget_userns+0x73a/0xf00 [ 325.180968] ? kill_litter_super+0x90/0x90 [ 325.185193] ? ns_test_super+0x50/0x50 [ 325.189072] ? destroy_unused_super.part.11+0x110/0x110 [ 325.194424] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 325.198994] ? kasan_check_write+0x14/0x20 [ 325.203220] ? do_raw_spin_lock+0xc1/0x200 [ 325.207447] ? blkdev_get+0xc0/0xb30 [ 325.211150] ? cap_capable+0x1f9/0x260 [ 325.215037] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 325.220564] ? security_capable+0x99/0xc0 [ 325.224701] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 325.230221] ? ns_capable_common+0x13f/0x170 [ 325.234617] ? kill_litter_super+0x90/0x90 [ 325.238840] sget+0x10b/0x150 [ 325.241934] ? ns_test_super+0x50/0x50 [ 325.245813] mount_bdev+0x111/0x3e0 [ 325.249426] ? fuse_get_root_inode+0x190/0x190 [ 325.253998] fuse_mount_blk+0x34/0x40 [ 325.257793] mount_fs+0xae/0x328 [ 325.261151] vfs_kern_mount.part.34+0xd4/0x4d0 [ 325.265720] ? may_umount+0xb0/0xb0 [ 325.269336] ? _raw_read_unlock+0x22/0x30 [ 325.273469] ? __get_fs_type+0x97/0xc0 [ 325.277347] do_mount+0x564/0x3070 [ 325.280884] ? do_raw_spin_unlock+0x9e/0x2e0 [ 325.285282] ? copy_mount_string+0x40/0x40 [ 325.289505] ? rcu_pm_notify+0xc0/0xc0 [ 325.293390] ? copy_mount_options+0x5f/0x380 [ 325.297785] ? rcu_read_lock_sched_held+0x108/0x120 [ 325.302790] ? kmem_cache_alloc_trace+0x616/0x780 [ 325.307625] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 325.313153] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 325.318677] ? copy_mount_options+0x285/0x380 [ 325.323165] ksys_mount+0x12d/0x140 [ 325.326781] __x64_sys_mount+0xbe/0x150 [ 325.330742] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 325.335751] do_syscall_64+0x1b1/0x800 [ 325.339626] ? finish_task_switch+0x1ca/0x810 [ 325.344109] ? syscall_return_slowpath+0x5c0/0x5c0 [ 325.349032] ? syscall_return_slowpath+0x30f/0x5c0 [ 325.353954] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 325.359320] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 325.364156] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 325.369331] RIP: 0033:0x455979 [ 325.372506] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 2033/05/18 03:36:50 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0xfffffff5, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 325.380211] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 325.387466] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 325.394720] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 325.401974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 325.409227] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:36:50 executing program 5: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x1000000000004) socket$vsock_dgram(0x28, 0x2, 0x0) recvmsg(r0, &(0x7f000041bfc8)={&(0x7f0000100000)=@ll={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, 0x14, &(0x7f00007a9f80), 0x0, &(0x7f0000275f7d)=""/131, 0x83}, 0x0) fcntl$setlease(r0, 0x400, 0x3) writev(r0, &(0x7f00000a8000)=[{&(0x7f0000aef000)="580000001400192300bb4b80040d8c562806f0ffffff04106a9643c218fe59a2e04a03ca8164243e890000000a215a0004fbf50dfff90003a5000004001ce1ed5e0000000000221f100001000700f8ffff0000ec6b0f536e", 0x58}], 0x1) r1 = syz_open_dev$audion(&(0x7f0000000040)='/dev/audio#\x00', 0x400, 0x204000) readlinkat(r1, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=""/11, 0xb) 2033/05/18 03:36:50 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) ioctl$KVM_GET_DEBUGREGS(r0, 0x8080aea1, &(0x7f00000000c0)) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) 2033/05/18 03:36:50 executing program 4: ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000040)=0x0) ptrace(0x11, r0) capset(&(0x7f00000fc000)={0x399f1336}, &(0x7f000047efe8)={0x200000000, 0x0, 0x2}) r1 = socket$netlink(0x10, 0x3, 0x18) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r1, 0x10e, 0x1, &(0x7f0000000000)=0x1e, 0x4) 2033/05/18 03:36:50 executing program 0 (fault-call:0 fault-nth:29): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:36:50 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x3400000000000000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:50 executing program 6: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000ac0)={&(0x7f0000000700)={0x10}, 0xc, &(0x7f0000000a80)={&(0x7f00000009c0)=@updpolicy={0xb8, 0x19, 0x303, 0x0, 0x0, {{@in6=@remote={0xfe, 0x80, [], 0xbb}, @in=@loopback=0x7f000001, 0x0, 0x0, 0x0, 0x0, 0xa, 0xa0, 0xa0}}}, 0xb8}, 0x1}, 0x0) getsockopt$sock_int(r0, 0x1, 0xa, &(0x7f0000000000), &(0x7f0000000040)=0x4) 2033/05/18 03:36:50 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0xc00) 2033/05/18 03:36:50 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8902, &(0x7f0000000000)={'ip6_vti0\x00'}) [ 325.547827] FAULT_INJECTION: forcing a failure. [ 325.547827] name failslab, interval 1, probability 0, space 0, times 0 [ 325.559129] CPU: 0 PID: 23496 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 325.566403] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 325.575745] Call Trace: [ 325.578334] dump_stack+0x1b9/0x294 [ 325.581953] ? dump_stack_print_info.cold.2+0x52/0x52 [ 325.587135] ? __save_stack_trace+0x7e/0xd0 [ 325.591453] should_fail.cold.4+0xa/0x1a [ 325.595511] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 325.600606] ? save_stack+0x43/0xd0 [ 325.604224] ? kasan_kmalloc+0xc4/0xe0 [ 325.608100] ? kmem_cache_alloc_trace+0x152/0x780 [ 325.612928] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 325.618103] ? __list_lru_init+0x456/0x790 [ 325.622328] ? sget_userns+0x73a/0xf00 [ 325.626204] ? graph_lock+0x170/0x170 [ 325.629991] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 325.634735] ? do_mount+0x564/0x3070 [ 325.638436] ? ksys_mount+0x12d/0x140 [ 325.642220] ? __x64_sys_mount+0xbe/0x150 [ 325.646354] ? do_syscall_64+0x1b1/0x800 [ 325.650402] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 325.655767] ? find_held_lock+0x36/0x1c0 [ 325.659821] ? __lock_is_held+0xb5/0x140 [ 325.663884] ? check_same_owner+0x320/0x320 [ 325.668198] ? rcu_note_context_switch+0x710/0x710 [ 325.673122] __should_failslab+0x124/0x180 [ 325.677348] should_failslab+0x9/0x14 [ 325.681136] kmem_cache_alloc_trace+0x2cb/0x780 [ 325.685793] ? __kmalloc_node+0x33/0x70 [ 325.689756] ? __kmalloc_node+0x33/0x70 [ 325.693722] ? rcu_read_lock_sched_held+0x108/0x120 [ 325.698730] __memcg_init_list_lru_node+0x17d/0x2c0 [ 325.703736] ? kvfree_rcu+0x20/0x20 [ 325.707351] ? __kmalloc_node+0x47/0x70 [ 325.711319] __list_lru_init+0x456/0x790 [ 325.715370] ? list_lru_destroy+0x4c0/0x4c0 [ 325.719679] ? mark_held_locks+0xc9/0x160 [ 325.723817] ? __raw_spin_lock_init+0x1c/0x100 [ 325.728387] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 325.733393] ? __lockdep_init_map+0x105/0x590 [ 325.737877] ? lockdep_init_map+0x9/0x10 [ 325.741940] sget_userns+0x73a/0xf00 [ 325.745650] ? kill_litter_super+0x90/0x90 [ 325.749874] ? ns_test_super+0x50/0x50 [ 325.753750] ? destroy_unused_super.part.11+0x110/0x110 [ 325.759103] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 325.763675] ? kasan_check_write+0x14/0x20 [ 325.767895] ? do_raw_spin_lock+0xc1/0x200 [ 325.772124] ? blkdev_get+0xc0/0xb30 [ 325.775830] ? cap_capable+0x1f9/0x260 [ 325.779723] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 325.785255] ? security_capable+0x99/0xc0 [ 325.789397] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 325.794925] ? ns_capable_common+0x13f/0x170 [ 325.799324] ? kill_litter_super+0x90/0x90 [ 325.803547] sget+0x10b/0x150 [ 325.806640] ? ns_test_super+0x50/0x50 [ 325.810520] mount_bdev+0x111/0x3e0 [ 325.814135] ? fuse_get_root_inode+0x190/0x190 [ 325.818707] fuse_mount_blk+0x34/0x40 [ 325.822504] mount_fs+0xae/0x328 [ 325.825863] vfs_kern_mount.part.34+0xd4/0x4d0 [ 325.830434] ? may_umount+0xb0/0xb0 [ 325.834050] ? _raw_read_unlock+0x22/0x30 [ 325.838183] ? __get_fs_type+0x97/0xc0 [ 325.842071] do_mount+0x564/0x3070 [ 325.845603] ? copy_mount_string+0x40/0x40 [ 325.849826] ? rcu_pm_notify+0xc0/0xc0 [ 325.853708] ? copy_mount_options+0x5f/0x380 [ 325.858102] ? rcu_read_lock_sched_held+0x108/0x120 [ 325.863108] ? kmem_cache_alloc_trace+0x616/0x780 [ 325.867951] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 325.873480] ? _copy_from_user+0xdf/0x150 [ 325.877620] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 325.883147] ? copy_mount_options+0x285/0x380 [ 325.887633] ksys_mount+0x12d/0x140 [ 325.891253] __x64_sys_mount+0xbe/0x150 [ 325.895216] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 325.900223] do_syscall_64+0x1b1/0x800 [ 325.904098] ? finish_task_switch+0x1ca/0x810 [ 325.908584] ? syscall_return_slowpath+0x5c0/0x5c0 [ 325.913504] ? syscall_return_slowpath+0x30f/0x5c0 [ 325.918425] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 325.923779] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 325.928614] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 325.933788] RIP: 0033:0x455979 [ 325.936974] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 325.944682] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 325.951936] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 325.959191] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 325.966444] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 325.973705] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 325.994131] l2tp_ppp: sess 4/0: set debug=cf10464f 2033/05/18 03:36:51 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x40000000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:51 executing program 6: r0 = socket$inet(0x2, 0xf, 0x4) getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000080)={0x0, 0x2}, &(0x7f00000000c0)=0x8) setsockopt$inet_sctp_SCTP_RESET_ASSOC(r0, 0x84, 0x78, &(0x7f0000000140)=r1, 0x4) ioctl$sock_inet_SIOCGIFBRDADDR(r0, 0x8919, &(0x7f0000000200)={'gretap0\x00', {0x2, 0x0, @local={0xac, 0x14, 0x14, 0xaa}}}) r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x8c2c2, 0x0) ioctl$VT_DISALLOCATE(r2, 0x5608) ioctl$TIOCGETD(r2, 0x5424, &(0x7f0000000100)) io_setup(0xfff, &(0x7f0000000180)=0x0) io_submit(r3, 0x5, &(0x7f0000000700)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x3, r0, &(0x7f0000000240)="b75e95dfd49bd02fd4fa848f4b922726659f15052ad362ec13d7f5f50b2192b51d100379c0971ea4c2a7177891b11c8cc432b2e4f695c97be44ff130763132b2d07e6e7c4d7556aeb6aa3b0330cd5569161e9b5666fe4db20243c833700ab76dbf", 0x61, 0x2, 0x0, 0x1, r2}, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x7, 0x3, r2, &(0x7f00000002c0)="0be68ed87ad1288ba2d281535ca884fd4a308a797e59f147a805bde7ac2e7f4d015495f01b8ecd9bc26d1979df7604c4190e7932b7dce55b6dad657d8de7f17fcd6195fa1a3230c42751587ba82c12ef7a8ea99f5da679dcee1929cce8ab62b09430ccaf109b631b2dbef5a80f8b6a4d871d1caac00ee9ff25738383898715d5f944b0dba1c837148427a38d9a818e4055b09481caf5fd1ad96528b08c3e55aa1a9699e1da3d71d9d1102ff676cce12cbee07e9533c3cc3390c53d92ed5545c20ae08981af370ea7dd7aa9", 0xcb, 0x8, 0x0, 0x1, r2}, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0xe, 0x8, r2, &(0x7f0000000400)="4dc950786c24105489be151c93ce9cde8a20059bdec8b89518b8be16bb4a9c0d65c8ee0564cce02684638847fce2cbe918e7d2eac8ae9484f391ddfdcd5e82968c3fa891f06b3a15ccfbc91c1d427d17d0204bdc6314f0bc53e0799a1d409e64fc7c3cef31376c2a55019a593a1215d3fe4977aed8b03d5fb34f274cbd0261bd21d8454d6f86e2b1", 0x88, 0x0, 0x0, 0x1, r2}, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x7, 0x8, r0, &(0x7f0000000500)="695b3ce949760fbad9693b753a1dbc4bda4949c6fbb1806358a898697ad0c865c13e6bf519b4c8f660d6e01b2a65834573d46513cec09f21162e9d37ba2e7580e2e3a137058186850beab8f4d62c052dab3ab3a6221bdcd754b1fb73eaa134f36042bf5b99fed92d658c38d6b4b2725e85a198974dfb547dc8cb9cb5ac85c6815d56f96436977eb1", 0x88, 0xc12, 0x0, 0x0, r2}, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x7, 0x6, r0, &(0x7f0000000600)="a7d8fa4fcec142707594587b89eb7583de30e84abe73eaec67dde4d7c887227d09b13e52e1a36dda8d6ebd57fb94a838512f9651fbf82d0aa5ae903c6eda9ae360a2717f43cc5f28d1656991e062cc5e935c1b1501b95097b90515ec7f55eb216d8c6d0f732f7995c6a65a9b59d6ca92e8d4b634b557559f060668ad8add7992aac21cc673d6575f23e053cf0fc58812c474d6df5ffb549fadee0a", 0x9b, 0xfff, 0x0, 0x0, r2}]) r4 = fcntl$getown(r0, 0x9) sched_setparam(r4, &(0x7f00000007c0)=0xb4) socket$nl_netfilter(0x10, 0x3, 0xc) io_setup(0x4, &(0x7f0000000740)) ioctl$LOOP_CHANGE_FD(r2, 0x4c06, r2) clock_gettime(0x0, &(0x7f0000000000)={0x0, 0x0}) setsockopt$sock_timeval(r2, 0x1, 0x15, &(0x7f0000000780)={r5, r6/1000+30000}, 0x10) 2033/05/18 03:36:51 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x80047437, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:51 executing program 4: r0 = perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) add_key(&(0x7f00000000c0)='big_key\x00', &(0x7f0000000100)={0x73, 0x79, 0x7a}, &(0x7f0000000140)="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", 0x4d1, 0xfffffffffffffffc) r1 = syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0x200, 0x100) setsockopt$inet_mreq(r1, 0x0, 0x24, &(0x7f0000000700)={@multicast1=0xe0000001, @local={0xac, 0x14, 0x14, 0xaa}}, 0x8) ioctl$DRM_IOCTL_GET_MAGIC(r1, 0x80046402, &(0x7f00000006c0)=0x1) finit_module(r0, &(0x7f0000000080)='/dev/snd/pcmC#D#p\x00', 0x2) ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$PIO_UNIMAPCLR(r1, 0x4b68, &(0x7f0000000640)={0x7, 0xfffffffe, 0x7}) ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000000680)={0xf004, 0x6000, 0x80, 0xf3c, 0xffffffffc80973ee}) 2033/05/18 03:36:51 executing program 3: r0 = perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r1, 0xc004743e, &(0x7f0000000100)=""/246) setsockopt$netrom_NETROM_N2(r1, 0x103, 0x3, &(0x7f0000000040)=0xfffffffffffff314, 0x4) ioctl$VT_GETSTATE(r1, 0x5603, &(0x7f00000000c0)={0xfffffffffffffffa, 0x4, 0x4}) r2 = getpgid(0xffffffffffffffff) capset(&(0x7f0000000240)={0x19980330, r2}, &(0x7f0000000280)={0x8, 0x3, 0xaea8, 0x6, 0x7, 0x1000}) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r1, 0xc0045516, &(0x7f0000000200)) ioctl$EVIOCGREP(r1, 0x4010744d, &(0x7f0000001000)=""/174) syz_mount_image$nfs(&(0x7f00000002c0)='nfs\x00', &(0x7f0000000300)='./file0\x00', 0x100000000, 0x4, &(0x7f0000000500)=[{&(0x7f0000000340)="ca733a2c215ae3935d18120cca1566f31e80b2155dac66387cc858ae4c7a0265ef6d78d75a36916293383c22bafe77be92d11d69a3bd8efac818f7fffca6c8c919185634d54f3aef1c574316e3223311f08f6eaf6f36cd22f526da451bf8f2886ea0e68beeaf6b85bd6cb0214d8d3cf0f7c562d15a1e9f3032d981c44140a7746d332e", 0x83, 0x531e00}, {&(0x7f0000000400)="df2b2df06a03d6bbb53d8cab3c58cee58548cc5e8013e54f3d05fa76b76f5fcc219a9a3d310d123f9b89956736223c44f8076ac0bb56a2c5bd4b402afb6115a6994d549506a99854c9b6b87c72735718e98ecfe370", 0x55, 0x7fff}, {&(0x7f0000000480)="3c33458bba30ec3edf1671d402441dc03275877bdc23da4d48efcbd04c8f33", 0x1f, 0xffff}, {&(0x7f00000004c0)="b60a390bd4ba2fe8fe7301733d9382cc30bce09b6bfe0dc636c6e55e03c1ba5732d51f", 0x23, 0x7fff}], 0x800014, &(0x7f0000000580)='security+posix_acl_accessself\'!\x00') getresuid(&(0x7f0000000600), &(0x7f0000000640)=0x0, &(0x7f0000000680)) sendmsg$nl_generic(r1, &(0x7f0000000b40)={&(0x7f00000005c0)={0x10}, 0xc, &(0x7f0000000b00)={&(0x7f00000006c0)={0x428, 0x1c, 0x205, 0x70bd28, 0x25dfdbff, {0x9}, [@nested={0x1fc, 0x2e, [@generic="8ad946db429ccda768f09030028ead36c03f6aba2c7716f6457083cf238d222377a634978893bf13dea4394891f44a984d5bc7ea1b6e5f19adb0c4a9f9688216d83b11ad72fda69f80382531812361b6874a39e0f6378ae90569210256f138cfb0aec3d2038ef5513ca250a97522987058aa539fc356626eafed9997317122ac280260fdf3af97a3866990f7434453d0e604a32f58297aa84bf8a839ab1841a1dacbfe14b3", @typed={0xc0, 0x90, @binary="8551826e44ca30cae09d07528f98e73b1b7bc70b748f9eeba64826745ca95bb585578685b6e3ddcd1f8101c8a071123f9531e5596aba26a44b3dcb75acf14b1bca25610756eb675b48f9b8ac437257b628e5c9982430080c59585a77e366306c4534f889b51110bfc2ce4335ac29f4171cd6a7ca586a98fcd363f692d05d607e1ae9da778eb628c4f2ed5f697b883868b8cc7c4ac53ab0067b0f9dd62e3a4f48ad44c8a615842db3e42b2b757e0066a9a982e6cb4cc6467590e4"}, @generic="622213d26aeedfd0e4432a7fe6a3d972e5b91a9fdb1965aa428813aeaedae8faacd80b6f00bd080a9548794d5c03db044f5c2de19fca74e1073835d4941917e46df1a4fbd2c60add2b242139b7bce19a6a2ed396a82ccfb7339501166fd08991c6e94e5c6f9e7d15ae9b72a6d63124e75e1d98480723b742967e48cb2c47378e85cf15014f88182f8a1261d6cdd107a7a2", @generic]}, @nested={0xb8, 0x63, [@typed={0x8, 0x4b, @fd=r0}, @typed={0xac, 0x2f, @binary="cd0740b58d2fff4ab4c868dc22394586ceb8849ee62b609a229d8b2655e9662d95b4c2b89b0850ef3609849e332bf8689705db1d1b5d17e177b11ddc10e0d4898ff5d2868ba4e8b151d41bd4bc5b770dae9d69e9eca1f7c4dc3cbb00674c431f85468a799e866764a356082420eb6a66305268faa2038119a1a2c05e7383e2632fefe3ab126b7a073ce7f98682355d27b013b52cd8ab6b1992213b3db51b6dd6a5c055a996"}]}, @typed={0x8, 0x5b, @ipv4=@broadcast=0xffffffff}, @generic="9f2c41", @nested={0x12c, 0x12, [@typed={0x8, 0x9, @pid=r2}, @generic="2bb1ed7f4dab520f6c112794c3d581e3a6c771f0cd4d9dcb7cc18501f735c6afff5d24ee82363e6106e434469d0191ed2d37dfdb0a11ad8ef169208045344599c65b525fc73b4412dd17d44a69a4c3ab57c663ea6af751e5863e6edb579c01dab14960d923c0f1f3", @typed={0x8, 0x7b, @u32=0x400}, @typed={0x8, 0x1d, @uid=r3}, @typed={0x8, 0x2, @fd=r1}, @generic="b19337a9a39d9f2f65f12c3c8f289643678e9b74a3cfe81ee445673d32201cb15d35a1bd32abdc34ac5127efa7ba201325fc0036c4d059959bf72571b18f2206b75e477e90e9782a4489667d5196a15c01b5794b11d7a27a45a6a70d1b2144b38bec0415930d58963466da31b93e939bfceb6a77c459928d4ac18c5a48a2e5bbaddbbaeed44bc344b6d72bc9f09efb3cbed9d031ded2f4cd1a52ed71f708fb"]}, @generic="9257d77b934e7a88275b29640ff6b26a1ca3b65fa459837e7eda9125e30192a132487b6dc7b3"]}, 0x428}, 0x1, 0x0, 0x0, 0x8000}, 0x80) 2033/05/18 03:36:51 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x5, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:51 executing program 0 (fault-call:0 fault-nth:30): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) [ 326.140322] l2tp_ppp: sess 4/0: set debug=cf10464f 2033/05/18 03:36:51 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0xc) [ 326.235938] FAULT_INJECTION: forcing a failure. [ 326.235938] name failslab, interval 1, probability 0, space 0, times 0 [ 326.247291] CPU: 0 PID: 23540 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 326.254571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 326.263927] Call Trace: [ 326.266526] dump_stack+0x1b9/0x294 [ 326.270173] ? dump_stack_print_info.cold.2+0x52/0x52 [ 326.275376] ? perf_trace_lock_acquire+0xe3/0x980 [ 326.280232] ? __save_stack_trace+0x7e/0xd0 [ 326.284573] should_fail.cold.4+0xa/0x1a [ 326.288652] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 326.293767] ? save_stack+0x43/0xd0 [ 326.297410] ? kasan_kmalloc+0xc4/0xe0 [ 326.301320] ? kmem_cache_alloc_trace+0x152/0x780 [ 326.306172] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 326.311362] ? __list_lru_init+0x456/0x790 [ 326.315588] ? sget_userns+0x73a/0xf00 [ 326.319467] ? graph_lock+0x170/0x170 [ 326.323260] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 326.328003] ? do_mount+0x564/0x3070 [ 326.331707] ? ksys_mount+0x12d/0x140 [ 326.335494] ? __x64_sys_mount+0xbe/0x150 [ 326.339632] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 326.344984] ? find_held_lock+0x36/0x1c0 [ 326.349036] ? __lock_is_held+0xb5/0x140 [ 326.353093] ? check_same_owner+0x320/0x320 [ 326.357401] ? rcu_note_context_switch+0x710/0x710 [ 326.362320] __should_failslab+0x124/0x180 [ 326.366546] should_failslab+0x9/0x14 [ 326.370331] kmem_cache_alloc_trace+0x2cb/0x780 [ 326.374984] ? __kmalloc_node+0x33/0x70 [ 326.378946] ? __kmalloc_node+0x33/0x70 [ 326.382924] ? rcu_read_lock_sched_held+0x108/0x120 [ 326.387930] __memcg_init_list_lru_node+0x17d/0x2c0 [ 326.392932] ? kvfree_rcu+0x20/0x20 [ 326.396549] ? __kmalloc_node+0x47/0x70 [ 326.400515] __list_lru_init+0x456/0x790 [ 326.404577] ? list_lru_destroy+0x4c0/0x4c0 [ 326.408887] ? mark_held_locks+0xc9/0x160 [ 326.413029] ? __raw_spin_lock_init+0x1c/0x100 [ 326.417601] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 326.422600] ? __lockdep_init_map+0x105/0x590 [ 326.427083] ? lockdep_init_map+0x9/0x10 [ 326.431131] sget_userns+0x73a/0xf00 [ 326.434828] ? kill_litter_super+0x90/0x90 [ 326.439050] ? ns_test_super+0x50/0x50 [ 326.442923] ? destroy_unused_super.part.11+0x110/0x110 [ 326.448270] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 326.452837] ? kasan_check_write+0x14/0x20 [ 326.457056] ? do_raw_spin_lock+0xc1/0x200 [ 326.461282] ? blkdev_get+0xc0/0xb30 [ 326.464982] ? cap_capable+0x1f9/0x260 [ 326.468860] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 326.474380] ? security_capable+0x99/0xc0 [ 326.478518] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 326.484042] ? ns_capable_common+0x13f/0x170 [ 326.488439] ? kill_litter_super+0x90/0x90 [ 326.492656] sget+0x10b/0x150 [ 326.495746] ? ns_test_super+0x50/0x50 [ 326.499622] mount_bdev+0x111/0x3e0 [ 326.503236] ? fuse_get_root_inode+0x190/0x190 [ 326.507810] fuse_mount_blk+0x34/0x40 [ 326.511599] mount_fs+0xae/0x328 [ 326.514955] vfs_kern_mount.part.34+0xd4/0x4d0 [ 326.519532] ? may_umount+0xb0/0xb0 [ 326.523147] ? _raw_read_unlock+0x22/0x30 [ 326.527282] ? __get_fs_type+0x97/0xc0 [ 326.531159] do_mount+0x564/0x3070 [ 326.534687] ? copy_mount_string+0x40/0x40 [ 326.538906] ? rcu_pm_notify+0xc0/0xc0 [ 326.542783] ? copy_mount_options+0x5f/0x380 [ 326.547174] ? rcu_read_lock_sched_held+0x108/0x120 [ 326.552175] ? kmem_cache_alloc_trace+0x616/0x780 [ 326.557008] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 326.562537] ? _copy_from_user+0xdf/0x150 [ 326.566672] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 326.572196] ? copy_mount_options+0x285/0x380 [ 326.576677] ksys_mount+0x12d/0x140 [ 326.580290] __x64_sys_mount+0xbe/0x150 [ 326.584252] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 326.589254] do_syscall_64+0x1b1/0x800 [ 326.593125] ? finish_task_switch+0x1ca/0x810 [ 326.597609] ? syscall_return_slowpath+0x5c0/0x5c0 [ 326.602527] ? syscall_return_slowpath+0x30f/0x5c0 [ 326.607442] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 326.612792] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 326.617626] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 326.622799] RIP: 0033:0x455979 [ 326.625971] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 326.633667] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 326.640918] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 326.648180] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 326.655432] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 326.662683] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:36:51 executing program 5: r0 = syz_open_dev$binder(&(0x7f0000001000)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x20011, r0, 0x0) madvise(&(0x7f0000001000/0x1000)=nil, 0x1000, 0xb) clone(0x0, &(0x7f0000000080), &(0x7f0000000200), &(0x7f0000000280), &(0x7f00000000c0)) r1 = dup3(r0, r0, 0x80000) ioctl$SG_GET_KEEP_ORPHAN(r1, 0x2288, &(0x7f0000000080)) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x40000, 0x0) ioctl$DRM_IOCTL_CONTROL(r2, 0x40086414, &(0x7f0000000040)={0x1, 0x48}) 2033/05/18 03:36:51 executing program 3: r0 = perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$setlease(r0, 0x400, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r1, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r1, 0x4010744d, &(0x7f0000001000)=""/174) 2033/05/18 03:36:51 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x400000000000000) 2033/05/18 03:36:51 executing program 0 (fault-call:0 fault-nth:31): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:36:51 executing program 6: mremap(&(0x7f0000005000/0x2000)=nil, 0x2000, 0x2000, 0x3, &(0x7f0000003000/0x2000)=nil) r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$sg(&(0x7f0000000100)='/dev/sg#\x00', 0x0, 0x2) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r2, 0x40045431, &(0x7f00003b9fdc)) ioctl$TCSETAF(r2, 0x5408, &(0x7f00000000c0)={0x6}) poll(&(0x7f00000002c0)=[{r1, 0x400}, {r1}, {r1, 0x2480}, {r1, 0x2}, {r2, 0x8003}, {r0}, {r0, 0x2}, {r0, 0x400}], 0x8, 0x100000001) r3 = syz_open_pts(r2, 0x0) ioctl$TIOCGLCKTRMIOS(r3, 0x5412, &(0x7f0000000000)) r4 = accept4(0xffffffffffffff9c, &(0x7f0000000240)=@vsock={0x0, 0x0, 0x0, @hyper}, &(0x7f0000000080)=0x80, 0x800) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000140)=[{0x2, 0x81}], 0x1) 2033/05/18 03:36:51 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x20480, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:51 executing program 4: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x802, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000bc0)=@broute={'broute\x00', 0x20, 0x2, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000c40], 0x0, &(0x7f0000000000), &(0x7f0000000040)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff020000001100000000000000000064756d6d793000000000000000000000766c616e300000000000000000000000697036677265300000000000000000007663616e30000000000000000000000000000000000000ec11b373a2124fc03996f6520994cb000000000000000000000000000000000000000070000000a0000000e80000004155444954000000000000000000000000000000000000000000000000000000080000000000000000000000000008005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a30000000000000000000000000030000000000000000000000000000001d0000000000000000007465716c3000000000000000000000007643616e4a8700000000030000000001766c616e3000000000000000000000006970646470300000000000000000000056190635f233000000000000d238742a69de00000000000000007000000070000000b80000005241544545535400000000000000000000000000000000000000000000000000200000000000000073797a300000000000000000000000000300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000fcffffff000000000330fed6180cb05d1e4891952fc9446b42206715600048a476fbc53a4eced63d487a0220d6f39f5f66af491c0d992718212f13bda15cdf08d6e75b5c106368d5a5313c8d2d64eb9fe4b76405cf95609f54b252d17fbd377cf7daaff3b5d4b9dc7af405ce"]}, 0x31c) 2033/05/18 03:36:51 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x5450, &(0x7f0000000000)={'ip6_vti0\x00'}) [ 326.812277] kernel msg: ebtables bug: please report to author: Wrong len argument [ 326.816463] l2tp_ppp: sess 4/0: set debug=cf10464f [ 326.835706] FAULT_INJECTION: forcing a failure. [ 326.835706] name failslab, interval 1, probability 0, space 0, times 0 [ 326.847018] CPU: 0 PID: 23576 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 326.850979] kernel msg: ebtables bug: please report to author: Wrong len argument [ 326.854291] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 326.854298] Call Trace: [ 326.854325] dump_stack+0x1b9/0x294 [ 326.854348] ? dump_stack_print_info.cold.2+0x52/0x52 [ 326.854371] ? perf_trace_lock_acquire+0xe3/0x980 [ 326.887520] ? __save_stack_trace+0x7e/0xd0 [ 326.891872] should_fail.cold.4+0xa/0x1a [ 326.895926] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 326.901023] ? save_stack+0x43/0xd0 [ 326.904637] ? kasan_kmalloc+0xc4/0xe0 [ 326.908511] ? kmem_cache_alloc_trace+0x152/0x780 [ 326.913337] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 326.918511] ? __list_lru_init+0x456/0x790 [ 326.922733] ? sget_userns+0x73a/0xf00 [ 326.926607] ? graph_lock+0x170/0x170 [ 326.930400] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 326.935140] ? do_mount+0x564/0x3070 [ 326.938839] ? ksys_mount+0x12d/0x140 [ 326.942624] ? __x64_sys_mount+0xbe/0x150 [ 326.946759] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 326.952123] ? find_held_lock+0x36/0x1c0 [ 326.956177] ? __lock_is_held+0xb5/0x140 [ 326.960239] ? check_same_owner+0x320/0x320 [ 326.964551] ? rcu_note_context_switch+0x710/0x710 [ 326.969469] __should_failslab+0x124/0x180 [ 326.973695] should_failslab+0x9/0x14 [ 326.977483] kmem_cache_alloc_trace+0x2cb/0x780 [ 326.982139] ? __kmalloc_node+0x33/0x70 [ 326.986098] ? __kmalloc_node+0x33/0x70 [ 326.990059] ? rcu_read_lock_sched_held+0x108/0x120 [ 326.995064] __memcg_init_list_lru_node+0x17d/0x2c0 [ 327.000069] ? kvfree_rcu+0x20/0x20 [ 327.003682] ? __kmalloc_node+0x47/0x70 [ 327.007649] __list_lru_init+0x456/0x790 [ 327.011707] ? list_lru_destroy+0x4c0/0x4c0 [ 327.016018] ? mark_held_locks+0xc9/0x160 [ 327.020168] ? __raw_spin_lock_init+0x1c/0x100 [ 327.024737] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 327.029738] ? __lockdep_init_map+0x105/0x590 [ 327.034220] ? lockdep_init_map+0x9/0x10 [ 327.038268] sget_userns+0x73a/0xf00 [ 327.041964] ? kill_litter_super+0x90/0x90 [ 327.046188] ? ns_test_super+0x50/0x50 [ 327.050064] ? destroy_unused_super.part.11+0x110/0x110 [ 327.055416] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 327.059985] ? kasan_check_write+0x14/0x20 [ 327.064211] ? do_raw_spin_lock+0xc1/0x200 [ 327.068437] ? blkdev_get+0xc0/0xb30 [ 327.072137] ? cap_capable+0x1f9/0x260 [ 327.076022] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 327.081547] ? security_capable+0x99/0xc0 [ 327.085683] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 327.091205] ? ns_capable_common+0x13f/0x170 [ 327.095600] ? kill_litter_super+0x90/0x90 [ 327.099819] sget+0x10b/0x150 [ 327.102909] ? ns_test_super+0x50/0x50 [ 327.106784] mount_bdev+0x111/0x3e0 [ 327.110399] ? fuse_get_root_inode+0x190/0x190 [ 327.114970] fuse_mount_blk+0x34/0x40 [ 327.118757] mount_fs+0xae/0x328 [ 327.122116] vfs_kern_mount.part.34+0xd4/0x4d0 [ 327.126686] ? may_umount+0xb0/0xb0 [ 327.130299] ? _raw_read_unlock+0x22/0x30 [ 327.134430] ? __get_fs_type+0x97/0xc0 [ 327.138306] do_mount+0x564/0x3070 [ 327.141833] ? do_raw_spin_unlock+0x9e/0x2e0 [ 327.146229] ? copy_mount_string+0x40/0x40 [ 327.150450] ? rcu_pm_notify+0xc0/0xc0 [ 327.154329] ? copy_mount_options+0x5f/0x380 [ 327.158722] ? rcu_read_lock_sched_held+0x108/0x120 [ 327.163723] ? kmem_cache_alloc_trace+0x616/0x780 [ 327.168553] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 327.174083] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 327.179605] ? copy_mount_options+0x285/0x380 [ 327.184093] ksys_mount+0x12d/0x140 [ 327.187708] __x64_sys_mount+0xbe/0x150 [ 327.191666] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 327.196670] do_syscall_64+0x1b1/0x800 [ 327.200552] ? finish_task_switch+0x1ca/0x810 [ 327.205036] ? syscall_return_slowpath+0x5c0/0x5c0 [ 327.209952] ? syscall_return_slowpath+0x30f/0x5c0 [ 327.214869] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 327.220221] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 327.225054] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 327.230226] RIP: 0033:0x455979 [ 327.233401] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 327.241097] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 327.248352] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 327.255611] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 2033/05/18 03:36:52 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x3f00000000000000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 327.262866] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 327.270122] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:36:52 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x4, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_BOOT_CPU_ID(r1, 0x4018aebd, &(0x7f0000000080)=0x80ffff00000000) ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffff9c, 0x89e2, &(0x7f0000000000)={0xffffffffffffffff}) r3 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sequencer2\x00', 0x20000, 0x0) inotify_add_watch(r3, &(0x7f00000001c0)='./file0\x00', 0x402) setsockopt$inet6_tcp_TLS_RX(r2, 0x6, 0x2, &(0x7f0000000100)={0x303, 0x33}, 0x4) ioctl$int_in(r0, 0x5421, &(0x7f0000000040)=0x3) ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000140)={0x8000, 0x100000001}) 2033/05/18 03:36:52 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x40047459, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:52 executing program 0 (fault-call:0 fault-nth:32): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:36:52 executing program 6: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00006a4ff7)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) getsockopt$inet_sctp6_SCTP_GET_PEER_ADDRS(0xffffffffffffffff, 0x84, 0x6c, &(0x7f0000001000)=ANY=[@ANYRES32=0x0, @ANYBLOB="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"], &(0x7f0000000000)=0x2) r5 = dup3(r4, r3, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SMI(r4, 0xaeb7) ioctl$KVM_RUN(r3, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f0000000100)="b9870300000f329a1a00c0fee400c4c31120660d4ab981030000b806000000ba000000000f30c4e2392db636fb66ed0f3266b817018ed0c4e161f1c70f01cf66b8dc008ec8", 0x45}], 0x1, 0x0, &(0x7f00000000c0)=[@cr4={0x1}, @vmwrite={0x8, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1d, 0x0, 0xd45}], 0x342) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r2, 0x84, 0x22, &(0x7f0000000080)={0x8, 0x4, 0x8, 0x0, 0x0}, &(0x7f0000000180)=0x10) setsockopt$inet_sctp_SCTP_MAXSEG(r3, 0x84, 0xd, &(0x7f00000001c0)=@assoc_id=r6, 0x4) ioctl$KVM_RUN(r5, 0xae80, 0x0) 2033/05/18 03:36:52 executing program 4: syz_emit_ethernet(0x56, &(0x7f0000000140)={@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, @empty, [], {@canfd={0xd, {{0x3, 0xe5, 0x5, 0x1}, 0x40, 0x3, 0x0, 0x0, "67b52fa26a93f47b872b950a11953a388373bca9d4ff4703c84ab6bd3e8a4c330f573a7c7498f4177e632fdc35bb6fc274a6981e788db919983765fddd1b1c60"}}}}, 0x0) 2033/05/18 03:36:52 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) writev(r0, &(0x7f0000000380)=[{&(0x7f0000000040)="368ab7fa108b69c1d9efc598", 0xc}, {&(0x7f00000010c0)="5425a9695b3c14df2e2d4cd6f49af9643f586058ca6d411c7398ad35779386040ba9aa053a425d49b4e33df9c23e092b4d277d63bf5039d9417cd5f4cf81730de4613a42823ceee94dee4a236d03a26603d674f1c9cbf0cb21a89ec67ced20df7b63409d1c4827c0afbde1a2260fcf674483f103a89fe0e16ea1371a1d31489227d80fbe66f52da6ec6add2371c949919495a16dda4fe598eb66fcd74424308d357dff35c9e6e5fb07fbb9fead7fe295406cf2f11f15faeca1685d1f5ddbd24754a4dff105d68deaecb9b9a6d61384d910ec5d9401104fa39d7eea0d71730e43029d3ccc5e111b9df07ca87e30957fbea9418b6dd8d231fa2728d953c6380086f4666cfdc5fb0ceda23d0c42948843a6b6b70f1360ac229a1d9c08a473f674abada0318418bb61f967f39be980ee31d623cc954fbb7ad07d3785edb54eb6850e2021514874ff05324a541f34fe3906e032afd54cf6c7487eaafd8efbb6a4ad4504a305d9e2f50780f4b7ec06541861c3af648224e2848659e1cb6f3fd8c8cd021221b79d54cf8f889c8eb45c161e670c63816eaab58b67de350e709581b947d97b0cc0e5f641cc372e8cc2fd8dbd704265d8f744dc71f3011d4bae45ebb29476a398022657f947b42a3404590ac85297a1e73229b29130d58cd175678291025925d331146b2dda3f4198bba8e642a5ec16f66a571e4b8312a6eb21bfa5c3ed563a3c9005f5ff2d5b5e371f8bbde2dcb7e698c0ef7b43d69e12853e9ee4c6d1be147d6b829687881a8333d7b503b79aeef9f7c8053eafc7a95b4822a07b116093868592baf3c438d8d54416e01c0e4f991b56ab0942848a6ff42344e4cc4c295a05db1831880aa776abf7d48395af09ec9e65fbd04724127b19a1ec6499da1c6d6d5a69bc663fcd3b3d1ec5327de1f31a298f8576ed8ea8d005718383dd8a2c4b6e9ec4f0e7a475b4cd7f32dd9923204bb0effd89b0e70ceee0cd523feaad9deca5a575138d0332a3bffeeed554ba19d8f9949baac538dbb555624f218a535a7a70b0a5981ee0371c406af4e630cb2397efc6400b6351c5c5a53d6fffcd17d0db69152b343d04478b0e60eacf3e88582dc32c2daf1bf0eccfc4bc567c66902a305cc58ac5c5092ec257cc2c15b269a0e1ab71116d93e52b25996d40492911fb9c8c36c326175a4db72603c75235fbd00ad512f26b8c24bf5f01ae97dd191d9444ff875471054f712dad0066d96c10f3df1214ee79ddaaa5c512b39c47790a5bb78dcfe9148ca81d796eb48b6c52cab1403903aa243637bc04c12bd414e802f0143c7bd8f976f3c0f22524a681bce46a5efa44eabab8302220b25b7ae981466925efb6c9e07fb86701a5ccd3a6584c714d5027ca5897145d136f2e3dc69e22bd2bfab032f07a55c1774409be6640f260bdfcde5b5b2485be6d2bb0ff76a078a59ea3afac364d3089f352683bfcbd3d5935b3605a07a6310565d7bda5d581d2fefcc6c55285a863a41604c8156044b928cc188eef3d56f5dfba94cd33aea7b5c3c5b4dc857d9a6e256cbd5416278bcefd1193f78ee2729b6df3a347c26d1623510a466617e86bba801e96203955c0f5d47bddbf76cfb5dced83b3ec9e4a9f3dcf075c7e97850165c529f8ea689fff14f854ae55d528c3535278c29055077eb35e38c5ccbd9de96f109248d80cf022389c0b6be8851a7d0163b4166a0872cee63e7039127573c55fa6cd1886de0f998b33078aea861004913380a292316c8175b9dea7bae3319864509b313461bba8923de7bb7f261f7e2325c6e9c88d9cf06c3ece5cc0cf4300993a8cec5d8d9999c0c4558da1395c1e591e69c0a4a826aa5a29ffdb2973e80bd8d4c463c592fa909aabf791627018be8419fa7853eaa0b49f34987cbd260e1d8e121f2589b4647aca4cb28bf5e8e9cf5f33cbaa2d54e33e5ba96626be2bcbe6ba267b538d1600f56f501437741533d9578944daed9da0e6ea26304167853bd9e39f4550e00250b43f1f7a796eeb2a6b2c8b5e97383491b1fab1848b727bed82110b787b89e38a024ebd344ab8374ac2a8cf1140e0b5250eb77c9c92bf5a8a69ee2e10b47c437583c2c55185288c531d6a25b981b4ce5719f442c0d774ff13b9220ba2352eff833732b5f2e251df1a69556911c6064949be98a6796294789c133f154aea8f4a4a815bca3812467b877322baede766460fdf02e5b30c5682b915855bc436944b00721ba77a26a6810bfc69eb43f3a18c311c4dc6a5a7c352eb6d7ffb5d0437b92a93145d3076d8194a94dcfb3dcf25ff54dd1f68f061372c351a58538633e62a112098915dc781c5d2fceb1ffd39f96397d2f36b17da8afabe967e6e8d0cf04de2590eb63ebe30a4dc31b89e3312838fa9067705d457ffec8598909948b3ad60bf60ae0b447b1955ee88f004afbf3ef6f9ae5458039a62a1a30542c666327a35751be2325a5b088e0f675772e2fd53c7e3b352ca22cf1cad8db8e3941da4ea53ce6c1248f015ac9cc2670b9bcd328a357d37956b7bbf9fefc88979e7b1e9d2f76b815aa31161e7aef69d76f32cb5f3021830c0cb044b88b941e71af0d274c576df9a130a709e9367874a4806fe576700cd752bfa4f340ad71a704c041d78545d35c359348224cee2d00e9345e42692d4aa96d1e2b9f1451c19e4ce68e89a5dbe9914a175f6929b944a8f39c2142bdb0cd46c4a976d863a69d1aad1b083c3cbf3f4317deafc794ba2b843af79e6e1f69001818da733fce53ec16b43d8c3bdc6e80974522991c940e9bce5cc5b447607919e1b0a153202a7e53ba8ae6c583cd63eeb68ff699078b0957bfa8e86a153cf1a1b60411373c2e14467f3069dc2c2ffa47b23d2cd4391ba4718b943422b56d87c04c91d96d463919a1fd372831757161538cbf4cab534f6eab171598b28919ef80522fef636d1bc7218e5cc87a8a8f86885daf611502cd7dbd7ab0cd47286431d90d3dcd3e1e49da620a956ea3c2c56eb37002a1edca013254170d95ecb23c19d1bce6ad397169d6bf60f23de307370dd5505610af5ff6ccd903c9ebc4f4fe16c9e9cfa55814c1454a9d0eafdf9a876dc7ff013c4be130846663a9614a32450fd1042f82392bfcb3610373e0d7d1e9a202316debd1e0b162fd29d6780a7e9bd1bc529dc438bc8f676031438528f2aa018b136ad67dcb3c879e227c7aca551a06d10dfd416431a726f2bf9691c9291a1b1732a1680d2a466bd7620913aaf4652a9aaf328a725437d3fe0a9528cf5d9b698ddb3d46212eeb87f220fd82143554e0fc38c24f86518d59aeff337bfbda2c71413e75458523e5fcbda6f57ae84fb70db1cd8a418e06dd96594bb402a795cda118aa21ccde98e80600d2b45231dc762d422cd6ba6dd7c90dbafba588b479e1a2c1f76727b357fc493086c0350932375890d15d065567eb9adb5aa2d703015c5c007b1a66af414b49b9ff2d6e95560a84451abea63f8c9eb22b6b23fb48df78285c06a777a4761a29c44a47d223310f244b7f5f998af64283013a1064f1b05a75730679ed2d5275d40053cd74c7d6a377584fcce1aee171d9a24b3d74a6f7145949f8ecad08f8ebd2bb2db7250fd8921a33300d14a7db7e32828b9f855f7762e5b1dfc1cb970652c3924ad049702fd6a55b4e7c90764bad3f428d17b305e19933a78c2f5b47015ae51957e7ad8128dbde27455fbc81a3383c7bee00c1a7184a0ecfeefa5e8a99ab4f21ed8fd6b8051d9dfdaa738f1317b28a03480ae5c7a33dd9aa0169721dad467414c0846801ce697204f1d6da84cf1f2dd78d5f4acf98b8cfb64042620912d599059c17f9ff773335594e485884f92bad445f5dc1315ac4ce0447cc9c7040bee2c938f100bd84f959e532a3d0e90e4cc98ac6882ad96a4ed484918ffef981b31b86cb15d559efc7245f32abc201fe97b0610f03ad0f4f446b66598c08c2ef65d83d4bbc87a6fbf6e55d697b15d905bc5cd63f1e8f06e98aa45b912beef5593e6b6c68f3aa03eb592f485fa3fa88267db2f4e5dff93c1a3151c8c614fa5bb2d34b61bef7d2081ff87a4194cd839cfe385da4afe9b0c69b33f300c8bd6cd6d81f1f9e8501abc61c42d4adf2696ca2b27da949b7164f34537eab693af094bdfe9fb4baf0da2f1b2c843a027c40ffc3ab06e563584c80423e4faaa08a476c0e7acbccc4cd08479a86967a8d3091c078d6b93ed4b9aebf8fcd285bdf7b0b26e16d0f2c8ff8a19fada78806eadb022a74494e79ee7eb1a58a9f37bb414c6a6738e5578d505b0b815d10c2dfb5d1a7e556d51c9e6629a228e6b63bd79f79a95b134d4851bf8e7d98f319d39986150fbb8551a19143614705672f2452ec04e11f9be32f70972e0131c0061dd613bb2aa6d537ec3fa57ccde56a5e50cc25b24cd15cfdfa7e16c26a97dfef9189a185a7c3ebdd9c85969f23aed91c7932633e31d68c78c0e37b5bd4e98968b567231ded5538550a919b3e0a5123390204b47fbe007305860ff42a00867f0af8c9e9e5cb76e05b3dd231c2b3d010b4602bc631c798012e80103d5af5dda92e0c76f00036d90f46a747bad59eaf6fd4855659878f1c6a2425db1c549066c4ad5b2606430a2e3ea3e702748aee7942eb712208545d1fd7cabd534a72e6c373e4013cbd1826ef3648032f1abf95cb1a15d0791ff843a0f83c6e223a8e2391a019eb9515e7c22e443efa8ca11d5faef3b7e7d7d152b17ffc44446aca4471f49a507909959fe5ca2de8bcba471f48eaac0eea9277a3aa14389853630abb5227d52182bffec1744edfe4be5b8d1a6f79e7245af7e32d8e6aa341b5c9d14326daaadff1c6abee540adc38c5a72289eaebd3140d11085efce2be66c0670a8ee81e4c7c584a54687a4626e0c87af5d4133ca0a05cb1800ee02739c3a6af9139a4cbf0092eb1c093c55486397c24c0270bbc78ed111d4fad6d1da12e5645dccc7164bba2b92348c2e431ded7cd7f9232a3c4ba4358c460f6e7c82cde58a2034eaa0995d725839e595410badeb020ab86f32901c39eb1b6f484255a0214d7fc12f72041b0806db9a1c8bc87a16b42ebd94db36ec875bb00210eb39b535b7a8552ad0d567bcec2b2d38d35c93abe22e98bf9fc83c21bba55fff71ebf75761d0542a0a5fb6eee90741f9900e95536c98cace448de00f91239a82c879c18466de9fab36283cabde11ce2e913cc44d2f93b18588df9cf22eddb8d0dfffe0bb96cc523cbaae1e0ea20cc2305d22a9aa665e3c874427cad388dfc9139c734116edf4d506bf32c3239fe4737c2cbf4c6493d4ec4e88de8693b91eff26a51dd472cf770950095153e54442b2cf2a562bbcfe173e71d94adcda77d9306c3674754d7c19992c922cfa30d32ba2c7dd8135ab08a64c71ebabe05f2ebc565e1553f3afeed7b9164ac471e3a8ec1fdcd836c0159cfad9ab25704c706d9e548ce22d0bd8c87a77c300250c9fe7c0e1a4f4d577265c00573cbefe8d7add7270ff354f0769df8a5c04f6de0950ec8d27cdf2d66c29480cc9b0dcabbdbe7fe98c7c0813d57776147b03e8462b9a61f0a0bd670b68694e77b49a9b71a6b929f33ce62d56810bfad3dad0ce2de72d8b87db1572bd8bab5f08c0e0e77b9dc8351d476373e6a7dfda11145f04973ff6d374f70d009bbe27cebf9acca5327773a1d2bc592760dba801a80659f835dea3fe780440d468aa2ee4f815b70d3a9225f5c93280fb11c2322ca706bf56a110607fbd61d4cea480fdfcd95bcdf69c32c649d419a53a79bca0a51b419831eb3ecb7c37f8aca679eb", 0x1000}, {&(0x7f00000000c0)="f04875ded89682b7a3c3f1b6eb1c247269c2f0f7df9bdfa5facd97a9cfaae2d1eba5b30fa45a98e5f72f5d26c2ba014691ebf7d61c70e5b4c207b20be33a097498f98e941217f56c5bd5692393f7b9a8093c3cb5f7b3c3991a051845832a8aa534a9563ad5cd874b63008bf61c412012a4a28470032e93e5562b1042c101633a92927a990b4fa3d2ea874d006a14ec7cb432ca409d6986d07716d772083a1478a4e058ece5a7d1196df7c087c21f25056e6bd0f5e1de55846f004e96ecae0a3bb32d8f3995270c81b648e340b52440fb3735d0662c493432b7fa90a3a4bb2990692e4ae62074983f48d1fd480fbb6df1d2e01affbabfd1aabc5046", 0xfb}, {&(0x7f00000020c0)="de4f749169ca77b87ff7e97c5e9dc97bebba2d054151c732bedac56973ed47e2a71a3cb0db9c3ad3b912b9d666030b1f1d27fb6b1737df0ad52ec488be0cdf5c6dc3a89303d7a3b77c9ea20b211c06ff9229e12eaf435305f6c0e18c37aea0e3a894b482b561ac02682162eda6e746505cf2051cf8aa7c4674b4482c08f5616e429e2169e16182fd7e0b065556615f492be1ed97978958a35c3b31f9b87a236c945cf945650e76fd5ce9705df31eeb4880b029f3a8c89e187f08c1b92a5eccef2c6e9db90806429b9b0749c1562ea417f8a8de1683fbbd20c2b2945dccbba1cb618349bc181c4c03f57e52791b6d774b84963aa5c833e22516470d3756d2990737892d8b9e864d772e61a4671678a7402fe0f77aeb62ff555c7e70eebc320673aad0b343bd4f8b5a57b3a4f8ea6eff0a14d4c24270313d4b3439d01aab34a88c1c1a0056380ed411d11f02dd2ef9859bfc12dfea2b34c3e282f8d69bb7c895f1b58d1a29a38d1ce988ad63a57dee9abc081afd7672ad4147e20d1b2f854fb7f1322ddeaad0084fd6df5aab778a2fb71c7089300c61b87df3e333ce0e0761449a539f7ae7252b9c7098c8960663db0d1b263d6635811a0629c1f603767538a215d225e5d24ae39d6c9fca6cc245207b0d103e133f3e780a712f805e75d198f0a67b323b71901d070cc3949d1baacc26b5b8dd387b8759bab68ac6f668518d76b15ffc3b1afeb51889f730b504f7de94b82c3cf7985c93672bcdb2d0a4b6ad65554b6a93240924f72662dd35b8d1fde82ab4a508e814247cd58e896b9e888d13bb33a53df18d5651b2e47482a118f34463fa0dece17138c994e37bdb5324937f64ea70a349b4a2ed42d96c743438804381ace2935c7a6bbfdac44e17d693c5d041d744cbd812ad81fa5a9be48133916fd4182d99f6e2b0122405a3e26a836a8b24df181c33e3046ff992853eef2b0d60d6c434cd292a793192307a55ceb504bfb5afdabf1b972e1d6e4b23e3aa5ebc88fe08d742de7cc6291120e7f775b7a68fbdac31a8f4a1c176887c36d6b4d631e21b8869c9d2fae9c06347f58e5595ce39ba12b2229d8afd56169ffb23e9873cd6f66289f0e4e39dcd9892b8eae063c3cec027caf6ff9f9f2f0333177426d35ac45dfe29811720c645bad9f63a017472c949aefd62200460287253e003870cffd997516e4a06246f7c68f9f1abd873b1fb7ced27998a67bfb0f7f588e3f2cccbd4ae44e2eb8eabb3f849c1495a31673ff4ee525f2650ab06c5168e6946014592d0e41599873b0950f8b5332bb68fb6dc1d8bee1984d104b6c2e3430881116309058837be034868a6e6f1f16820f5b7c1ff1564de5d71b74663ba40941fd2bc4fc1c7d0ad5131c8d876ff7b665369f915adbb2ce68213e6cc9d086ccc5e81a46ec3ff47dc3d09ac1eb459bb4a44dd161acc35bb0250effe9759582cdefcf130a3e960f778e7a4b89027180ca37199222952a81c475b3ac780096d63fe7a2f01ded1deff3a093578a9105f83918c46bfc3013f903a9a113428d3094e7612e5ce9a288126e679e979be17b2384a49541582b138938d8948bb3df97398aff6a2b6086a28b9e4c0f61ecfea7daac62d999f31211f19d707f5b3a3da5a27f6022b2e4f6aa9945a483a7427db54a0f908cf8f584d0389538b15915b02dc29b5cccf83fb401799dbfbf50ace4aa55f1f5ca5a4e36df0f9db08b7eb55e9c05d669d5976fa42abf8f73ad8dc76212708576ab3988c91980c9b8564de49d2d09b60e887fa69eac5e8c5dc65c3f8f0a2ac4e37e2ec2f93a2176310210d1b1846dff93a6feb76f1906a882c7b692f2a8ad381acb1f5ef59993bb6947ed2d5fe723bf04dcf55ab285a805f26d800f0922a555b7331d6909c7e10a72eabf6ee328d9559466278a1df8aa95a0c95fbf48b1afedccca8b308543a34498304e6d0d4b6ae5c33d091eb7913c183716ce589d68b2c828f596584c992f2b0e460954dd21d941eec00f4648f1f499aef27bcf85db45161f7779df79918a6f67b4c9b9c992f35a38014cf68ef9f72d45aaf840ec4fcced48e40807e772d3f336562b5bac5402d421229717991b2d2e46ab36be39faa0ab79704996ae9950b1e48e6dfa28daf914e59b0456871a73293d78fb4d7fe06fc51ef9f6418f4d8df6d96e11b85dc34ab2e5f9bebf1b8cb611bac78c7f40d0aaf00eff130ea8c556fc8fae3c2cce96a1ff3546801b6b729468ce75c5648d47ad98f5a47e50366544103720ca49df9fef7b4dd17a0998fe35a4eb1dbc9aa48edd8d9375c7c44d79a8df94a0a2d554db8f8facefd4b9d684bb31bee3b940de8e15a1ff555fae393965b1dbd39edeef6398aa6b290373763c8ccfce55c0aa6ad56af2065acc4f6a41f59e4ac234f8f01ac2b6347c611c679bffe20dff50ab24fd2797ef7959780a1832cfc1c16ed7e825cabc4764548eba63011002984329f386f065adcb15a9299ab8ad9da1d57463ec6a00de2c65403137df05359bc0ebbf62ea9991de908936bfafbbda869ebb7b327bcc920729ba4308db3da63a1af662b3b5408d3047e58e2b1a669d397cdb0b46a704c5a65ec7396844daaa1d65ae3f3f2c28aa6ecf5924fc3c5ccf1c6a529196fdac11754b0cfc94f191d6836059540a64d2e96c947333ca7476a6fbef7e2f128e6124923d36ed54223b975b33a57e02039a5acc4eda436a302479ac111937f24d2a8ef4b00223e14f581f6be2a80194b94fed88820d3b57370fba7db4b3c3342b0f583dd4ea3804d7a6679a717dbaaff89f70cface6600ae098224c6c5df69fd2ead4e8881119363069e69029fc309aedf3a1edcca117d99e1f660bfd204bdcc8ef35bd015e9b2e34679019616b5fb8f28978480beed1bba736ba0f459a8ea2bd12aaeed52f733dece556d2d77afb381fc4b09a1f112d26fc1193d185b75a6597e6631457e100bb596111d3e7a6d5abf220851f3d0d509a2a395908078e79384401b3aec54663a82569c5ca59da43016c1ca607b6da5a7a8bcb0ff84bce1caecd4adc981bafffe9ec2f3e337b304eca028d5037a0e5fc3440a1d9c377f24c2ff148e0dad7ba4ce7d30eaa4f10ae50e58b42cefd44e67767f17688d9b5c237e10ff71167822afb70fc221d6718594290b1ce851ff22253d0d47c470a7fd6593a3fa57f4579836b2b4c9f7beb9d3aec1c31d2403486c14a7ee80c4d756f196fc945491cb55132eda4a95c6536b657f5b6cedf49f1fc7b9090cc7f29c5126186126f36f5e964638ad1adb5360aaa6a87a64a9c9c0466df37a60daeb6c5aacfa0c5e467390528c9843e470eb9d6fb893e5adb45b188cd718bb958f712e7585b833fbcc05cea6f6e353f9f6fc519e3b6f163d1e5e044280c061353fff06475d51cceddfe23dfb209d335b821f51aeeae71d1ef4a8b248da9db1a508958ab1e7676f5ced823bf0eea5e410eeabf3f61b73168489bb7a0340ca67944921b1491a2455e91acb81a0a317b6909d809f92319ccacc3e953b5dac5f56fe7a31e0ce5377bd101d660b246df76760c6bc77abfedd86cd48a61be1fccfdab5fc63b8cf4d53d2936c0d6f046aaa299c6f778301d60ae191922d1aeb29c8a14a453ca19fa798c20c6171d2edc247078372419ab42cd018ea1eff6a2cfd47e6b69d0019268a10a6a912f8524157015681fe43ed0b1db5a8eb99644f5b640a3124dad1aa7074756073a00f2c2e7589fb010e9107452a80485b9351868c93119ec76496f1ab46269ae767cc4b563ab39f308bac2d7df710d2c838e9832e0ef30df475c038ad2491419c8525ed3058e55248b625d4051e422791643e750bc6f74788a67f2c6cdeaff857a0c3a7cf6a7a4cbe31a5c74eee4b3a17b37b47ee454bc072409c045b74fb899f790817f55dabfd18f15d6893d23f17e5e621e01984313c727d63f4f7cfc1dc9a5b56549686ca4c0a9fa055c2b55bab87bf5ce1be6be1294005fd12df25551ae103a8a63d9be1d8646c1cad2733d1a4def4b271f41300554e47e3e89719c073124212570263affcafad5bb9ecd54bd4c4cd1541be56feefd746d59adea21a4afd7d65ba63893e54c6eb2d3c10efcfe14e683f2ff3e77f95c2f4aae22e5d8ba63ccbf1e7cdc4402c7a1ac5419753c18b44b02812b94ab514791cf707d977036f193bc93c10c652d77edf122ff040093ef5f89db1c448147ae1b9e59a5abe523df39733e46cef19f03e85f71d67dbf4ec16b5a4062890cbb08cbe37ec249fba3819f9f077688c78a64392924bef43921a7d472c51f2930f5105ae7c0e50fb429c04682112cebe68422b1d715a0f6be5456555d6599461ee5f952b50ea6fe60b44c65340fc85d62171c7c0a490437cef2259763e06529cf1df53964cea009ef0e1c144ffd7dfec7b611c0bbf8ee7749f8dbbb85ef453d13d64f813662b0640a8de40d13d19ac697f9b5f4ecad770e983abdc2a9850e42b2b899a038ccce4a8b1db43bf3a2df23bee0208048e5e0fff7576c53c351de414aaf7c97a34eccba8fa6a9d3d036969baa03712bd0903248f20ef097d8b25a01bf877b14f8a83a365a07ddf0524cb274e43168972c12ac5da07add0441dbf787e8ee055d476a2648e76dc54e301fb40dc2ffc3b39ebb5e335728371027d1f865b9a6d1c03ca3f6f80842fa0a3355ca9d8e557072b82812d9322d30043de2dd8c606f1e8aa49de39be633ce529fda6c30faeac903bf39fd8bb2022f8419b2e42d09693b263c5ff043f058e9c628e3464fe990ad1b1ffdfbd40b5d6c8e325195b1029eddf7fffb65da8513ae9120df57b1e1d4804996829e062ec2f9d9cb2fb848d92c0a05d61a9fcc60364af85d0d5ecc5048ff6b6b1b300b54d90d0f6302f40f2903d4aebec2678d07288b9d793378094115aa5243321c1177cbe38b27ec1c068aa787de857e8a53ed91e6c6e37eeaedf6fbf62df8c9a727347efe51f3417b3a7e4060a3355ef8851814379c12cea84b9aa08fb1b160ef62619bb8d7cf6ba45f5f0a8183240c52de7a48bbf3a3e8de6d833184c2f32ba8078bf79273e55f9a5bd52c710edc6dd407fd1166a33284a1cf2b64476e0c8b1b92dab7af28a2f25368fbf3a6bc828173f93f43a1be9b803bbbb77d92645afb442975a82d6c8b380c7734f9fb94dc04fdbffdcba3feaf5f4d8c453540b50da0e2143edb78fc06ba156697db3745483d810eca6b282de9938d1a5ff5a8145eda525ece85cdbed8c2371dea4582542a1b252f1970ed5d0cd0f1cbb54ad480a79d39b185d2e4117cce709bef90a6e0b503a6169f6bc8f75cb2a2a3f0409c748c0c8d128eab64904bf1b1ada6909c2efac7043244e8aae1f4c2653a2aaec0a999265eefec7467faedf11ff2eb073822f07e2b6f090b6f890e66074e62d0366223664544dd6ae094a60dfa9de50e568d6b2d52021f59e7e4b097c48e9d3db3ad1188bb7472da15b88f3a0c8abd30b19ec832d3f300aff5df3857001668bfb73567d0c4cb116653d98083e5f552893dcf0851e34c7c6fa260b255c58adcb57ca3ccfede3fdd3ddfe1d17cebadfb53bff552f13cd8580d3e08d662eb105150eee67f45c94310e9ef31d0ddc086839b1bd4644f1e42a7b84be6a22f0210be9760924225ef207c860f2fae9291f46a9332c47c0d77bec5247404e0d47052707fda3d735309c4d989459427150b8bdffa46728f1bc8ed58d993c19daace01e695fc074a3ac2690b41e81de4f8d18e4e0f4d7f7bf0b356187811e12e660a610895698b651c9f932afc9697652a6c81e5eabeb", 0x1000}, {&(0x7f00000030c0)="dba32e6c431c41390ebe189db3c4f47024486710dbbeb263bd232cf0de0f90c1a0dc398aa6638772775a73b3ce2630fa795359eb977b53adcb65f20fa32eb41caaf3f13dd5a07c26ef17936e75c20eab0597f440ed387b05cb1aab75dc4490190f6cb4133e10266834c070242b1bc806e94178ff725d10b29dbd714080d6167e33ef886b2a88ac21c89780415ff76cfa87883ead514d71ebe96471aaa2c3c974fd5ecfc2074ae7eec2ed739ab4840656e21a69a3e207acf064b083db7b5227b0451d43ff1b72f27a43f6b81781e954cd17a977316986c83d4b8a85778fa26126f59ebd9f89ef4fee6c496d9128fe50ca5a239290c899ebf9f01e9f1bf761e8f1b232f0ef3e3e35a17ce6cc2825f3ac85dc048de4b547dc5c53e8272260a27064b44897f2bffb0ad9b660ce18fb77a2f5af9fa47f0954439972a60be736fe2e12b06ae40fe32862b321b193f575c5641870f8c99f4720005bcfce6878d64c74e4cb278d93bf3842f84db4ee87b0ae5c1cd05699566fc604c731df937c3e179ff546194b785d66e380b403496cb4d75422cbe406eda9c390eb811ec0141d507c8b2f4e4f38d35d72ce449730c874df93b657fb31acc02562b5a8a1a2ae9a09b31924679b3c846f6ddba169c692c9e2468344762ce2f3397fce83ab2f6ad5c72e45b24124fcf0d3a9b95f5673fb80b4c4c019fd661d9183d8780eb2f2a0be70bf27464775dad116a632ff17269dbecf97198effcb844881b0855a3ae6718f4ee46814b1922620cf21883d725287e3d4461d8a44fcb6749d4a98f19b40c2f0f237ad2a1126259d1c3ba33f832f617fed4ff70ce319ad785a7a087c40103ee132d040bb9f640cbc88590f1ae86b1b3ccabd992d33376851729cff1c7aa5cc97406ffdf809e13fb9f7397b21a49362a36e1219499f04e3f3b113aee6a612ec9b68f4fe16bc22dc8d25ea8002148c35d62cfb8222248f3c714e623de9f00d0c0c05f8a2230c0f70bde78e977619c5ceca62109c5a9d670e9a94210b9913a94768e0617972cce2566a9f5a486603ed8f6141c2b6cef0ef764a62bf931dd00116bf4928c21fe8bf6e6878729b65814da625c4c6a242afeb58e17d060ae382f2a1f0e57fdc36d1ffe7f63afbf37b1251675be31bfb128ce3fbade90c6d13c3e9e12945fb3bbc48e386a5c38bb6e15f2c68c141bc91d0bda1eebe89162bc2df9e27c368de022afcd258ecadfcf7ee496836318db8ad444883195499e4acf7420bccbead2f71e1c525f6635c4b5260ea93a04439361f9c9d89ea94fd90ab212c8bc960d280c3832dafe80b55653560799b88b1008064f7e05c69fc8e81b94e6b8c63824b11c6a9b0b74f75b346b0f2d877bdba6921c9f9bc627e36c1afbf77099603e5695756b5a615c5747e15d60ee2805d1fbc032d5e78ba8b19fb8adc6626170adfdecdf1051d29c3d3bc31032a4e9975f5520080be50948093cb2e1b3c082fe7b0d8deeb0addec6fc74f58a873aa14bc843769c35262b3f22076097e9fab7c272e8a29ce3d3689d4cf56a26cc486be6995ee0515382366740a7e3b9a69d3ffead9816802d94697720565bc1542e87c5df65a816c01f6801ad99c335631d4baf88415f6cc5ed76fa4e87621221f4ac9eea104cbb9b5de7b9994aef43deda0ad83927be76030c3c32707cfa0cf2e518d0bb7b0c98da69ddb2842865ee27570b77cba82403c035bed18f1559d9ca2b986c92d3fe43ffae01809c111b3622a97a50ffe29661ad3dafc1c75703dd0640a6b3972f882a1f6ba890876882dfb7c21ce1bc513bb1ae9815447b0037b8df1f35cee37db60ef16955a9a1135fa1af3375aa67beef5238ccdc151682262a43402d6fa4ac075398872eb8604e95af1bc1df17d9de6b1dc9034b91d927bbe6f828c3add68f140f8be2dadd3378ee9c03dc59d7db3beb025fdf891ceed7c19a11bb67a24af9f23abb2c49e79f00c6f9f9835896d437636b83d01dd7755d58fae69833b16db9f11085842d31c8ef5e434e5082bf2339c4087029965215d2065d59c1a096ec44f0db71dd1b282b01dfb62afcc78517395b2f48979f5c7d53e7d4c2bdea6e809722f8585877541b1d60295dead8645765cb0c60420d77c650c64134dbe37e949344803b75dc59019051c5efdf0d4cc0cf3bb06cea5a3955edcbd8d7417a9801b4678b2fa45ea51d632bdc9f87d56de3a49a2099fcde4cf4e58e6ecf26bf5140f9cb7eee0ee4cf81317e1d9aeca06bc63a1172bdf9d37600519bf69d33c7a103aa1130f544ac0d3191c5725969a971abb35e34616e8f0808f6891140ed63b92d0b33f6f75927925991b9756a94b9d2afd8e8a2e899e3465c948b5e249adf20ea4ac39891bf1f3feee5f542f5ae5aa6aa0056e4f3fe217a2733061a8bba472c1e039b278aa680d6fa098bacea89c04e2f02d52e6fdb544b7e76c333e4a2b296fabf501b4ea0a94cf630995ae21e6d62bfe003f8e5cf52c5db8d3f922dfa89c2749421666a580ba6b2b594a52b4fa41ca65309579c67a84cc60b9d54ab08bfc8c7dd58062a3a9cde51bbcbe33fe2c9464025c837b0ee75edca773ce60837f47841e1f889ceab8d6a5e001bb1184977af43e76b78bc8dc0bc16850e846e4190478b5e6430de569a6aee832153b8ba2584024f5bbfc90a99271d794aa4918f289cef51c25f9db708301b68a83854c687db681c5d7cb3c37e4e247fcc0cc598045e7eb72c713a07525384e243a71003b2a8ff45588c9bed40f8679acced6bb94c3135be1fe2d7cecb54e315cf19e6d59222580915eb0713b36fbebba39d58523c0b48214d904ab9c2f34c4560ccb74d4986ce5e2ad3fb5c882eaa4f3b8fe315dfcb2ca0f0898d02f11ba539c08de2a0b9ad0c489c918ff0aa2178c912ee66cbe68061972e8b24a78fc35ea5c1c841728dc6f212fca0adb9971a3249809e912a5149ed731e1090383290fb2aa08ad0e09c4bee0cee68dbcc2353bb2451508cfbb81c42887796ee88e6d24c784afe536b9e6106c70ec11b389fe058aa6bf8a53352273879ca8b6427bfb68a3945da2c66fd1c3189726c5c6c040d25a9c7676f0417d8c5338b3b7ba892ff7f929d66e97603da989039da7b0d7d52a520e8d0ead7b4c65300764dd137ea828a2d1d2647152af7f493e2814156c6d45b7c370ff75a8ecf2d9bf00d442ea61d0178311e321234ebe420d4262a2df01f87d7939567866e33d191f6bc930a9c67049f82212e4dcc89db8395e477ae8d285ebb445c4839dcc7b0a760274810d7942af465fd78271a159346b59e6688f30e3a11d9a67b04198876523e4b5147068d4acba472bd0e9d0139e17bf3dfe30e1e2e2accce755aa310e00f7358b0e762e6095fc97ca021186e6f4bd0040e96c5acede9dcf5f70334563e6ecd390bb816e1ac249dabeb6e89925cf0b18b69da057a2dc72f5e0210ef3efe2a134107e9d6520d316aefa0e6a35bc030ac47c93c64b9748e26fbb889bd9f28fcd1083115786be5c684a19b005bb705bec04f587a6f07fbc4d1aea57fa21a49b6e380385996d23cf3a48bd68f25f6db7b18b3d0b27cca8cdd74f6a63660b39300a20e3d8c718501cb7ea3991a3f5d792a1e82a9e402f401d17cfdea7a7ef237fb666da342f3603e2dc53b21da5c34d0d692674b0b80865fce91ce5fa4325246d0d70048297c3f43aaee80e3c49ae7d691362997d975a0dc865b97988cc9c9b22a7af906d10eb347feb8bf7f2f07bf598ca103596b08dbaf1c3e303896b17a059dc704bb9e6a1442afa22e7884da26793b0f6af292c2493b2cb32ec63cb867157b1141b3ac7af0a4ce41f03eae6ccd4bec82ef0d2b3d91865e91f7db68f2f5e447d79ac0a01ea131cf7c7a6756eac45627cdec40c0f5c10651cf29d4ed379430c03a24670820e93141aefe15928be393cc134ffc3c56bc8c045b138fee67fb2a66b6846c63b1fc6d1a345e6cba00f953cceb1d1bbaef26b5eaac697b4de0826def77efca94668d212ef7c413056273862a7ca7b46a174eec752dcc85b09979c0d0d3e695e118820e80dcc3d0848016731b07012e4838f416d730460751f86c79cd5dc93434407a406eb779d55506a54d481ef2a793f95d7e9c4af0e94bf6b866c9b3e91420ff23d01519b66752ac54c0bb3c2d9dbe9ca4361c561d32820d4088a77660b1f9201d14ef9f703d633de258816ee124c1ca992b618cc74ae1bf4cdcbf4543c6700136e15fdb4218e3c76231c44be631965cfc8b0ec5638d9bad29331350d9a457b2a1e5a3fdaa886e7f8494e24ba40e6c824ea0609fa11ef4d18a0db70d2b29c29e53fde6e40bfa334a282bd6ae8fc0c12d367a8415ecd82a4939f624d51c229416d4ed3a9c3779d704f6313e3ec06a299c6251f2cdad33b51fac3a79bab4f15b4c443290f1044babb764f4d994b4a912bba56f7387830a413823271529349dafcd4acf857ac96046bf6186985ff7ad4738525bbd6c91e454574e90b3a5c2359af4377b33c76ccb3570d78ef930fee494b75ef271d3696a99a4e32597cb744719ede04f14ad49d1cd79d3e1bed11e3a27a9fca3607737fd072ce01cc37a75c223751287d410fbf642a108c97db29eaedf5bb0532f9013d8da6dcd0008d90774abaaafac2d3d3de867c22664428e536c7690fdcea8c2c3e730c584ffa6340f50796d271cf250de4f7bc21d7690961a56576424b29fdecf64fd293e6003716f2fdf725ef5f70e7d33c2fe9f51c40115ed28552d26ac546114a16b35b67b5295d88b12dda3f0f0e34fcfa8b3784db9a6f15807d8589da480e2b3a6d1cbab6df1285b0f28cf93d1e43d1b4a8bf0023244ef7cc673356bfef60740c91d510e881a8c13c4597143817fa746c7dd791d6b6a3c4ce9e0aca9004d2d54bf41a862dfd6effd26b5dfcf35b3fdfab0280e3ca8e9cc800e04c77f5aa49bca39f3a13f7815528aa1ea6b5aea5c8d03ac7a382bb61209bb80e3aed2c4fa47fd0b07d27d56d6bfadf33bc57ce5f766753f2e883c3666b6114fe0bc024a6fcff5a84acdeaa3304c9c93b5dd6e19002715131e166e9758d11b129888a9b9abb00eb89eccbbe46c8a579e55848dd1f7a33c6f6af2bbe9a2f58cdbfd5dbb5a9c08e0fc21b2b29db56d9fda3ac11456dcdf94360028021f51025ad9b33e43a20fd81159a66a7578d3699fbc05bf4c99aec43cdbd2b87a2b2ec2458179bcd580ba1e764530a0c51e64d8f641b3bdc19368dd1c370a5b8fcee2441876265c3ee0c534b6f2f25723c26cb588912c71adad5bf8d4c9a42b3d2778e99ba2863957424ff5261dd74d3761369999cadd8a4248cafb4b3bc09bf137255c8adcfda7c7fccea0d4524d2dddfdebbd0df2fc27664f903fb8c499f1036c4b6b76fce5ada8e640811b6864c643b08d70a4019ef5594c2c3d39c999f9af08ed57e69937265496160754052fe180e4598c562daa6ca9a5bffe5117821c8f4a833bd617f17514a1aad211096f63dbc36e4ea02c882a9af942f3db07506431060a3c0e9d98e393d83e1d952935a65c116fda6f81e6a59f11f17baa2ec047009fcf3addc46e959e0c0eabfd7b4bd629d95b0e34948760cb42c48d1d15a6f4b1eafb9d3e2378600232a80a4841fd75ae25a77d66e62a174d123094dd7a7b4000dac3b4cd50f9ba263e900fafb6955f893e5fd3e8c4622a0b4b7f5b3fa20dd98f8c50a3600d00397938500bb4688ccf141bb33920e44e312937941578b1db5a89382a38a6eeafa537b36ce4eefa7d0cd0ea4c48923cdcb4d35cd43b414376916f3d7d0", 0x1000}, {&(0x7f00000001c0)="8c91e500de7e6773d6ac971b45b67f9c0f49200a12329a3ce3d5b97a2fe150d39dc7d31a3edad0958ea0f73660a313f01dd6e5b0c0820014f91ab9a32898f9e90e88a750ab948ac15d54b17615296cfc46b06fc940f5320b33fa44db4e28afd081a906f3ad1f02448fb7c2b7d1a26c92348fc7785bf3b1b587e07cfccdee7ea21f232cb575ba5793ec8699277589b6778e48cc6df023c40487a0f850f2802471a246db94cfa41ee83e4e0b8e4445360d3003653c4f2dceb726f0f7ab7f09555627137aab569f5907052d2f7f46546f523cac1cce2156c42beb41c9e066fdbbf47308d21fe7c5b186b190f2", 0xeb}, {&(0x7f00000002c0)="da2d9c3604d4283bc41be9315ba2459c3e7eb286634072351fa591880be0295d706d85c330b571af9331237c96c00a710d644f768bc8edf52078bf0fc1b59836ffc08096142bcc1d3a6719359fd6bbed1712e24bf7644ab9d13987605e55c1", 0x5f}, {&(0x7f0000000340)="d812d9631d69137f302461f8443f4c9392006eacfad129b536850a4c088974138b8a764b4361f393307a6558ac6beb8f03eba9", 0x33}], 0x8) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000440)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f0000000580)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000540)={&(0x7f0000000480)={0xa4, r1, 0x420, 0x70bd28, 0x25dfdbff, {0x9}, [@IPVS_CMD_ATTR_DEST={0x2c, 0x2, [@IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0xa}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x4}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x400}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x10001}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x3}]}, @IPVS_CMD_ATTR_DEST={0x2c, 0x2, [@IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e24}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x1}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e23}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x1}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x59e7}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x3}, @IPVS_CMD_ATTR_DAEMON={0x30, 0x3, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x3}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @loopback=0x7f000001}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6}]}]}, 0xa4}, 0x1}, 0x1) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) 2033/05/18 03:36:52 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0xff00000000000000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:52 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x4000) [ 327.477394] l2tp_ppp: sess 4/0: set debug=cf10464f [ 327.508283] l2tp_ppp: sess 4/0: set flags=1597403241 2033/05/18 03:36:52 executing program 4: syz_mount_image$xfs(&(0x7f0000000040)='xfs\x00', &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000001300), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f7a7569642c6c6f6a6273697a653d6b2c001f9a94a086cf2f7e1e1821714652"]) 2033/05/18 03:36:52 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0xe, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 327.564438] FAULT_INJECTION: forcing a failure. [ 327.564438] name failslab, interval 1, probability 0, space 0, times 0 [ 327.575774] CPU: 1 PID: 23616 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 327.583055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 327.592409] Call Trace: [ 327.595009] dump_stack+0x1b9/0x294 [ 327.598653] ? dump_stack_print_info.cold.2+0x52/0x52 [ 327.603860] ? perf_trace_lock_acquire+0xe3/0x980 [ 327.608711] ? kernel_text_address+0x79/0xf0 [ 327.613131] ? __unwind_start+0x166/0x330 [ 327.617296] should_fail.cold.4+0xa/0x1a [ 327.621372] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 327.626492] ? graph_lock+0x170/0x170 [ 327.630307] ? save_stack+0x43/0xd0 [ 327.633942] ? kasan_kmalloc+0xc4/0xe0 [ 327.637844] ? __list_lru_init+0xdd/0x790 [ 327.642001] ? find_held_lock+0x36/0x1c0 [ 327.646076] ? __lock_is_held+0xb5/0x140 [ 327.650168] ? check_same_owner+0x320/0x320 [ 327.654506] ? rcu_note_context_switch+0x710/0x710 [ 327.659449] __should_failslab+0x124/0x180 2033/05/18 03:36:52 executing program 6: r0 = socket(0x10, 0x2, 0x0) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000140)='IPVS\x00') sendmsg$IPVS_CMD_DEL_DEST(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000180)={&(0x7f0000000240)={0xbc, r1, 0x400, 0x70bd29, 0x25dfdbfc, {0x7}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x1}, @IPVS_CMD_ATTR_DEST={0x1c, 0x2, [@IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x9}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x1}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0xa}]}, @IPVS_CMD_ATTR_SERVICE={0x4c, 0x1, [@IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x8, 0x19}}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x7}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'sh\x00'}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa26ad517a287a20c}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x4a}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'sh\x00'}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x10, 0x10}}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x9}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xffff}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xcd5}, @IPVS_CMD_ATTR_SERVICE={0x10, 0x1, [@IPVS_SVC_ATTR_SCHED_NAME={0xc, 0x6, 'lblcr\x00'}]}]}, 0xbc}, 0x1}, 0x8000) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000000c0)={'erspan0\x00', 0x0}) sendto$unix(r0, &(0x7f0000000300)="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", 0x1000, 0x8801, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000200)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)=@bridge_setlink={0x24, 0x13, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, r2}, [@IFLA_AF_SPEC={0x4, 0x1a}]}, 0x24}, 0x1}, 0x0) 2033/05/18 03:36:52 executing program 5: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000380)={0xa, 0x4e20}, 0x1c) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vga_arbiter\x00', 0x200, 0x0) ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, &(0x7f0000000080)={0x1, 0x3}) r2 = socket$inet_dccp(0x2, 0x6, 0x0) listen(r0, 0x4000000006) connect$inet(r2, &(0x7f0000e5c000)={0x2, 0x4e20, @loopback=0x7f000001}, 0x10) shutdown(r2, 0x1) sendto$inet(r2, &(0x7f0000000140), 0x0, 0x0, &(0x7f0000b7bff0)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2033/05/18 03:36:52 executing program 4: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000)='/dev/snapshot\x00', 0x90000, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000040)={0xce6, 0x48, 0x9, 'queue0\x00', 0x7fffffff}) [ 327.663695] should_failslab+0x9/0x14 [ 327.667523] kmem_cache_alloc_node_trace+0x26f/0x770 [ 327.672635] ? mark_held_locks+0xc9/0x160 [ 327.676799] ? __raw_spin_lock_init+0x1c/0x100 [ 327.681401] __kmalloc_node+0x33/0x70 [ 327.685218] kvmalloc_node+0x6b/0x100 [ 327.689029] __list_lru_init+0x559/0x790 [ 327.693105] ? list_lru_destroy+0x4c0/0x4c0 [ 327.697436] ? mark_held_locks+0xc9/0x160 [ 327.701599] ? __raw_spin_lock_init+0x1c/0x100 [ 327.706195] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 327.711230] ? lockdep_init_map+0x9/0x10 [ 327.715304] sget_userns+0x767/0xf00 [ 327.719031] ? kill_litter_super+0x90/0x90 [ 327.723305] ? ns_test_super+0x50/0x50 [ 327.727192] ? destroy_unused_super.part.11+0x110/0x110 [ 327.732553] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 327.737133] ? kasan_check_write+0x14/0x20 [ 327.741366] ? do_raw_spin_lock+0xc1/0x200 [ 327.745602] ? blkdev_get+0xc0/0xb30 [ 327.749308] ? cap_capable+0x1f9/0x260 [ 327.753203] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 327.758727] ? security_capable+0x99/0xc0 [ 327.762867] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 327.768392] ? ns_capable_common+0x13f/0x170 [ 327.772790] ? kill_litter_super+0x90/0x90 [ 327.777021] sget+0x10b/0x150 [ 327.780118] ? ns_test_super+0x50/0x50 [ 327.784008] mount_bdev+0x111/0x3e0 [ 327.787630] ? fuse_get_root_inode+0x190/0x190 [ 327.792205] fuse_mount_blk+0x34/0x40 [ 327.795996] mount_fs+0xae/0x328 [ 327.799362] vfs_kern_mount.part.34+0xd4/0x4d0 [ 327.803935] ? may_umount+0xb0/0xb0 [ 327.807550] ? _raw_read_unlock+0x22/0x30 [ 327.811685] ? __get_fs_type+0x97/0xc0 [ 327.815565] do_mount+0x564/0x3070 [ 327.819113] ? copy_mount_string+0x40/0x40 [ 327.823339] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 327.828098] ? retint_kernel+0x10/0x10 [ 327.831982] ? copy_mount_options+0x1f0/0x380 [ 327.836468] ? __sanitizer_cov_trace_pc+0x48/0x50 [ 327.841301] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 327.846830] ? copy_mount_options+0x285/0x380 [ 327.851320] ksys_mount+0x12d/0x140 [ 327.854939] __x64_sys_mount+0xbe/0x150 [ 327.858901] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 327.863911] do_syscall_64+0x1b1/0x800 [ 327.867789] ? finish_task_switch+0x1ca/0x810 [ 327.872278] ? syscall_return_slowpath+0x5c0/0x5c0 [ 327.877197] ? syscall_return_slowpath+0x30f/0x5c0 [ 327.882118] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 327.887474] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 327.892311] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 327.897487] RIP: 0033:0x455979 [ 327.900662] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 327.908361] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 2033/05/18 03:36:53 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8940, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:53 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x80, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) [ 327.915616] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 327.922871] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 327.930126] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 327.937383] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:36:53 executing program 4: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x40047459, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:53 executing program 0 (fault-call:0 fault-nth:33): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) [ 328.010864] l2tp_ppp: sess 4/0: set debug=cf10464f [ 328.134203] FAULT_INJECTION: forcing a failure. [ 328.134203] name failslab, interval 1, probability 0, space 0, times 0 [ 328.145703] CPU: 1 PID: 23646 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 328.152971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 328.162308] Call Trace: [ 328.164885] dump_stack+0x1b9/0x294 [ 328.168501] ? dump_stack_print_info.cold.2+0x52/0x52 [ 328.173680] ? perf_trace_lock_acquire+0xe3/0x980 [ 328.178514] should_fail.cold.4+0xa/0x1a [ 328.182565] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 328.187663] ? zap_class+0x720/0x720 [ 328.191373] ? print_usage_bug+0xc0/0xc0 [ 328.195430] ? graph_lock+0x170/0x170 [ 328.199239] ? lock_downgrade+0x8e0/0x8e0 [ 328.203399] ? find_held_lock+0x36/0x1c0 [ 328.207451] ? __lock_is_held+0xb5/0x140 [ 328.211503] ? check_same_owner+0x320/0x320 [ 328.215814] ? __might_sleep+0x95/0x190 [ 328.219779] ? rcu_note_context_switch+0x710/0x710 [ 328.224702] __should_failslab+0x124/0x180 [ 328.228934] should_failslab+0x9/0x14 [ 328.232728] __kmalloc+0x2c8/0x760 [ 328.236257] ? __kmalloc_node+0x47/0x70 [ 328.240215] ? __list_lru_init+0xdd/0x790 [ 328.244349] __list_lru_init+0xdd/0x790 [ 328.248308] ? list_lru_destroy+0x4c0/0x4c0 [ 328.252613] ? mark_held_locks+0xc9/0x160 [ 328.256750] ? __raw_spin_lock_init+0x1c/0x100 [ 328.261324] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 328.266341] ? lockdep_init_map+0x9/0x10 [ 328.270391] sget_userns+0x767/0xf00 [ 328.274092] ? kill_litter_super+0x90/0x90 [ 328.278325] ? ns_test_super+0x50/0x50 [ 328.282208] ? destroy_unused_super.part.11+0x110/0x110 [ 328.287559] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 328.292136] ? kasan_check_write+0x14/0x20 [ 328.296364] ? do_raw_spin_lock+0xc1/0x200 [ 328.300585] ? blkdev_get+0xc0/0xb30 [ 328.304285] ? cap_capable+0x1f9/0x260 [ 328.308161] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 328.313682] ? security_capable+0x99/0xc0 [ 328.317815] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 328.323336] ? ns_capable_common+0x13f/0x170 [ 328.327741] ? kill_litter_super+0x90/0x90 [ 328.331984] sget+0x10b/0x150 [ 328.335074] ? ns_test_super+0x50/0x50 [ 328.338945] mount_bdev+0x111/0x3e0 [ 328.342572] ? fuse_get_root_inode+0x190/0x190 [ 328.347140] fuse_mount_blk+0x34/0x40 [ 328.350924] mount_fs+0xae/0x328 [ 328.354279] vfs_kern_mount.part.34+0xd4/0x4d0 [ 328.358843] ? may_umount+0xb0/0xb0 [ 328.362465] ? _raw_read_unlock+0x22/0x30 [ 328.366604] ? __get_fs_type+0x97/0xc0 [ 328.370478] do_mount+0x564/0x3070 [ 328.374001] ? do_raw_spin_unlock+0x9e/0x2e0 [ 328.378401] ? copy_mount_string+0x40/0x40 [ 328.382627] ? rcu_pm_notify+0xc0/0xc0 [ 328.386504] ? copy_mount_options+0x5f/0x380 [ 328.390893] ? rcu_read_lock_sched_held+0x108/0x120 [ 328.395893] ? kmem_cache_alloc_trace+0x616/0x780 [ 328.400722] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 328.406248] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 328.411772] ? copy_mount_options+0x285/0x380 [ 328.416253] ksys_mount+0x12d/0x140 [ 328.419863] __x64_sys_mount+0xbe/0x150 [ 328.423818] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 328.428824] do_syscall_64+0x1b1/0x800 [ 328.432714] ? syscall_return_slowpath+0x5c0/0x5c0 [ 328.437632] ? syscall_return_slowpath+0x30f/0x5c0 [ 328.442547] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 328.447894] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 328.452726] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 328.457896] RIP: 0033:0x455979 [ 328.461069] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 328.468764] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 328.476026] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 2033/05/18 03:36:53 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x700) 2033/05/18 03:36:53 executing program 6: fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f0000000240)) fcntl$getown(0xffffffffffffffff, 0x9) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000280)) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f00000002c0)) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000300)=0x0) r1 = getpgrp(r0) r2 = getpgrp(r1) r3 = gettid() rt_sigprocmask(0x0, &(0x7f0000032ff8)={0xffffffffffffff7f}, 0x0, 0x8) rt_tgsigqueueinfo(r2, r3, 0x800000001d, &(0x7f00000001c0)={0x0, 0x0, 0x4}) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) fgetxattr(r4, &(0x7f0000000340)=@random={'user.', 'keyring\x00'}, &(0x7f0000000380)=""/250, 0xfa) r5 = signalfd4(0xffffffffffffffff, &(0x7f0000000ff8)={0xfffffffffffffdb0}, 0x8, 0x0) wait4(r2, &(0x7f0000000000), 0x0, &(0x7f0000000100)) read(r5, &(0x7f0000000080)=""/128, 0x80) r6 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer\x00', 0x10000, 0x0) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r6, 0x4010ae74, &(0x7f0000000200)={0xfffffffffffffff9, 0x1, 0x5}) 2033/05/18 03:36:53 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0xc0045878, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:53 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0xc0ffffff, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:53 executing program 4: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x40047459, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:53 executing program 3: perf_event_open(&(0x7f0000348f88)={0x8000000000000002, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1, 0x0, 0x4, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f00000000c0)=""/174) 2033/05/18 03:36:53 executing program 5: r0 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000265000)=@req={0x3fc}, 0x10) r1 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000265000)=@req={0x3fc}, 0x10) r2 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000265000)=@req={0x3fc, 0x0, 0x2}, 0x10) write$binfmt_elf64(r2, &(0x7f0000000200)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x38}, [{}]}, 0x78) writev(r0, &(0x7f0000000000)=[{&(0x7f0000000480), 0xfffffffffffffd5c}], 0x1000000000000085) 2033/05/18 03:36:53 executing program 0 (fault-call:0 fault-nth:34): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) [ 328.483289] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 328.490541] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 328.497794] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 328.566738] l2tp_ppp: sess 4/0: set debug=cf10464f [ 328.573453] FAULT_INJECTION: forcing a failure. [ 328.573453] name failslab, interval 1, probability 0, space 0, times 0 [ 328.584708] CPU: 1 PID: 23658 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 328.591994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 328.601345] Call Trace: [ 328.603928] dump_stack+0x1b9/0x294 [ 328.607549] ? dump_stack_print_info.cold.2+0x52/0x52 [ 328.612733] ? __save_stack_trace+0x7e/0xd0 [ 328.617052] should_fail.cold.4+0xa/0x1a [ 328.621106] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 328.626196] ? save_stack+0x43/0xd0 [ 328.629809] ? kasan_kmalloc+0xc4/0xe0 [ 328.633681] ? kmem_cache_alloc_trace+0x152/0x780 [ 328.638506] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 328.643678] ? __list_lru_init+0x456/0x790 [ 328.647897] ? sget_userns+0x767/0xf00 [ 328.651769] ? graph_lock+0x170/0x170 [ 328.655552] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 328.660290] ? do_mount+0x564/0x3070 [ 328.663990] ? ksys_mount+0x12d/0x140 [ 328.667778] ? __x64_sys_mount+0xbe/0x150 [ 328.671922] ? do_syscall_64+0x1b1/0x800 [ 328.675979] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 328.681333] ? find_held_lock+0x36/0x1c0 [ 328.685382] ? __lock_is_held+0xb5/0x140 [ 328.689435] ? check_same_owner+0x320/0x320 [ 328.693746] ? rcu_note_context_switch+0x710/0x710 [ 328.698662] __should_failslab+0x124/0x180 [ 328.702886] should_failslab+0x9/0x14 [ 328.706670] kmem_cache_alloc_trace+0x2cb/0x780 [ 328.711321] ? __kmalloc_node+0x33/0x70 [ 328.715278] ? __kmalloc_node+0x33/0x70 [ 328.719240] ? rcu_read_lock_sched_held+0x108/0x120 [ 328.724243] __memcg_init_list_lru_node+0x17d/0x2c0 [ 328.729244] ? kvfree_rcu+0x20/0x20 [ 328.732858] ? __kmalloc_node+0x47/0x70 [ 328.736833] __list_lru_init+0x456/0x790 [ 328.740881] ? list_lru_destroy+0x4c0/0x4c0 [ 328.745189] ? mark_held_locks+0xc9/0x160 [ 328.749323] ? __raw_spin_lock_init+0x1c/0x100 [ 328.753889] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 328.758891] ? lockdep_init_map+0x9/0x10 [ 328.762937] sget_userns+0x767/0xf00 [ 328.766633] ? kill_litter_super+0x90/0x90 [ 328.770853] ? ns_test_super+0x50/0x50 [ 328.774728] ? destroy_unused_super.part.11+0x110/0x110 [ 328.780089] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 328.784658] ? kasan_check_write+0x14/0x20 [ 328.788877] ? do_raw_spin_lock+0xc1/0x200 [ 328.793104] ? blkdev_get+0xc0/0xb30 [ 328.796808] ? cap_capable+0x1f9/0x260 [ 328.800684] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 328.806208] ? security_capable+0x99/0xc0 [ 328.810345] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 328.815868] ? ns_capable_common+0x13f/0x170 [ 328.820261] ? kill_litter_super+0x90/0x90 [ 328.824478] sget+0x10b/0x150 [ 328.827569] ? ns_test_super+0x50/0x50 [ 328.831450] mount_bdev+0x111/0x3e0 [ 328.835061] ? fuse_get_root_inode+0x190/0x190 [ 328.839631] fuse_mount_blk+0x34/0x40 [ 328.843416] mount_fs+0xae/0x328 [ 328.846779] vfs_kern_mount.part.34+0xd4/0x4d0 [ 328.851346] ? may_umount+0xb0/0xb0 [ 328.854960] ? _raw_read_unlock+0x22/0x30 [ 328.859089] ? __get_fs_type+0x97/0xc0 [ 328.862962] do_mount+0x564/0x3070 [ 328.866489] ? copy_mount_string+0x40/0x40 [ 328.870707] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 328.875712] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 328.880459] ? retint_kernel+0x10/0x10 [ 328.884334] ? copy_mount_options+0x1d9/0x380 [ 328.888813] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 328.894338] ? copy_mount_options+0x285/0x380 [ 328.898819] ksys_mount+0x12d/0x140 [ 328.902430] __x64_sys_mount+0xbe/0x150 [ 328.906388] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 328.911388] do_syscall_64+0x1b1/0x800 [ 328.915259] ? finish_task_switch+0x1ca/0x810 [ 328.919741] ? syscall_return_slowpath+0x5c0/0x5c0 [ 328.924657] ? syscall_return_slowpath+0x30f/0x5c0 [ 328.929584] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 328.934932] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 328.939763] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 328.944933] RIP: 0033:0x455979 [ 328.948105] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 328.955798] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 2033/05/18 03:36:54 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x11000000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 328.963049] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 328.970300] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 328.977551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 328.984804] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:36:54 executing program 4: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x40047459, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:54 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8904, &(0x7f0000000000)={'ip6_vti0\x00'}) [ 329.104999] l2tp_ppp: sess 4/0: set debug=cf10464f 2033/05/18 03:36:54 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x3) 2033/05/18 03:36:54 executing program 4: socketpair$inet_icmp(0x2, 0x2, 0x1, &(0x7f0000000200)) r0 = socket(0x11, 0x4000000000080003, 0x0) openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/dev/qat_adf_ctl\x00', 0x20800, 0x0) sendmmsg(r0, &(0x7f0000003e80)=[{{&(0x7f0000000040)=@in6={0xa, 0x0, 0x3, @mcast1={0xff, 0x1, [], 0x1}}, 0x1c, &(0x7f0000000300), 0x3d9, &(0x7f0000000280)}}, {{&(0x7f0000000080)=@nfc_llcp={0x27, 0x1, 0x0, 0x0, 0x0, 0x0, "99066c9aa4c2fbbf0aecb573b9d1bdc8be397716e627f0d1865ea32e0822c1026f14d27d9eb2214e9b34beb87de5d3aab05c161c037b28907fcb4fa979f696"}, 0x60, &(0x7f0000000f80), 0x0, &(0x7f0000000000), 0x98}}], 0x2, 0x0) 2033/05/18 03:36:54 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x3f000000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:54 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x20}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000200)='/dev/ppp\x00', 0x0, 0x0) ioctl$EVIOCGSW(r0, 0x8040451b, &(0x7f00000010c0)=""/4096) ioctl$EVIOCGEFFECTS(r0, 0x80044584, &(0x7f0000000040)=""/19) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000180)="1503007e557074c9214ba7ac223632b9407591c64481d5a951a3c8b038fd69faece3efe61aaeced6c2af6629aaeef2560cbe033e19d8c58b62f1865b7bdb0572c1f9e93d614bbb5d3a1077c068ef90c5efa4aabf6b13ca6284fc9615a47cad0e64717baa9a461ddba74740e1e53fb8ed3f9e14b8ebf6ede67436d6", 0x7b}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) setsockopt$inet6_MCAST_LEAVE_GROUP(r0, 0x29, 0x2d, &(0x7f00000000c0)={0x40, {{0xa, 0x4e20, 0x7, @empty, 0x8000}}}, 0x88) 2033/05/18 03:36:54 executing program 6: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mkdir(&(0x7f0000000180)='./control\x00', 0x0) r0 = open(&(0x7f0000000040)='./control\x00', 0x0, 0x0) mkdirat(r0, &(0x7f0000044ff6)='./control\x00', 0x0) syz_open_dev$evdev(&(0x7f0000000080)='/dev/input/event#\x00', 0x8, 0x20002) utimensat(r0, &(0x7f00000002c0)='./control\x00', &(0x7f0000000300)={{0x77359400}}, 0x0) 2033/05/18 03:36:54 executing program 0 (fault-call:0 fault-nth:35): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:36:54 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8901, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:54 executing program 5: syz_emit_ethernet(0x36, &(0x7f0000db4fb6)={@broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @local={[0xaa, 0xaa, 0xaa, 0xaa], 0xffffffffffffffff}, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x1b, 0x0, 0x0, 0x0, 0x1, 0x0, @rand_addr, @broadcast=0xffffffff}, @icmp=@timestamp={0xd}}}}}, &(0x7f0000ea3000)) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/stat\x00') ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r0, 0x402c5342, &(0x7f0000000040)={0x80000000, 0xffffffffffffffff, 0x9, {}, 0x5, 0x1f}) [ 329.244780] FAULT_INJECTION: forcing a failure. [ 329.244780] name failslab, interval 1, probability 0, space 0, times 0 [ 329.256149] CPU: 1 PID: 23705 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 329.263428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 329.272785] Call Trace: [ 329.275396] dump_stack+0x1b9/0x294 [ 329.279046] ? dump_stack_print_info.cold.2+0x52/0x52 [ 329.284238] ? perf_trace_lock_acquire+0xe3/0x980 [ 329.289076] ? __save_stack_trace+0x7e/0xd0 [ 329.293394] should_fail.cold.4+0xa/0x1a [ 329.297450] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 329.302541] ? save_stack+0x43/0xd0 [ 329.306157] ? kasan_kmalloc+0xc4/0xe0 [ 329.310034] ? kmem_cache_alloc_trace+0x152/0x780 [ 329.314864] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 329.320041] ? __list_lru_init+0x456/0x790 [ 329.324262] ? sget_userns+0x767/0xf00 [ 329.328149] ? graph_lock+0x170/0x170 [ 329.331935] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 329.336673] ? do_mount+0x564/0x3070 [ 329.340374] ? ksys_mount+0x12d/0x140 [ 329.344160] ? __x64_sys_mount+0xbe/0x150 [ 329.348295] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 329.353644] ? find_held_lock+0x36/0x1c0 [ 329.357697] ? __lock_is_held+0xb5/0x140 [ 329.361755] ? check_same_owner+0x320/0x320 [ 329.366064] ? rcu_note_context_switch+0x710/0x710 [ 329.370982] __should_failslab+0x124/0x180 [ 329.375206] should_failslab+0x9/0x14 [ 329.378994] kmem_cache_alloc_trace+0x2cb/0x780 [ 329.383670] ? __kmalloc_node+0x33/0x70 [ 329.387637] ? __kmalloc_node+0x33/0x70 [ 329.391596] ? rcu_read_lock_sched_held+0x108/0x120 [ 329.396604] __memcg_init_list_lru_node+0x17d/0x2c0 [ 329.401605] ? kvfree_rcu+0x20/0x20 [ 329.405219] ? __kmalloc_node+0x47/0x70 [ 329.409186] __list_lru_init+0x456/0x790 [ 329.413233] ? list_lru_destroy+0x4c0/0x4c0 [ 329.417541] ? mark_held_locks+0xc9/0x160 [ 329.421679] ? __raw_spin_lock_init+0x1c/0x100 [ 329.426246] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 329.431249] ? lockdep_init_map+0x9/0x10 [ 329.435297] sget_userns+0x767/0xf00 [ 329.438998] ? kill_litter_super+0x90/0x90 [ 329.443224] ? ns_test_super+0x50/0x50 [ 329.447097] ? destroy_unused_super.part.11+0x110/0x110 [ 329.452465] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 329.457040] ? kasan_check_write+0x14/0x20 [ 329.461259] ? do_raw_spin_lock+0xc1/0x200 [ 329.465483] ? blkdev_get+0xc0/0xb30 [ 329.469187] ? cap_capable+0x1f9/0x260 [ 329.473064] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 329.478586] ? security_capable+0x99/0xc0 [ 329.482720] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 329.488241] ? ns_capable_common+0x13f/0x170 [ 329.492639] ? kill_litter_super+0x90/0x90 [ 329.496860] sget+0x10b/0x150 [ 329.499963] ? ns_test_super+0x50/0x50 [ 329.503837] mount_bdev+0x111/0x3e0 [ 329.507452] ? fuse_get_root_inode+0x190/0x190 [ 329.512029] fuse_mount_blk+0x34/0x40 [ 329.515817] mount_fs+0xae/0x328 [ 329.519175] vfs_kern_mount.part.34+0xd4/0x4d0 [ 329.523745] ? may_umount+0xb0/0xb0 [ 329.527370] ? _raw_read_unlock+0x22/0x30 [ 329.531505] ? __get_fs_type+0x97/0xc0 [ 329.535382] do_mount+0x564/0x3070 [ 329.538911] ? copy_mount_string+0x40/0x40 [ 329.543133] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 329.547875] ? retint_kernel+0x10/0x10 [ 329.551751] ? copy_mount_options+0x1e3/0x380 [ 329.556233] ? __sanitizer_cov_trace_pc+0x1/0x50 [ 329.560978] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 329.566499] ? copy_mount_options+0x285/0x380 [ 329.570980] ksys_mount+0x12d/0x140 [ 329.574593] __x64_sys_mount+0xbe/0x150 [ 329.578551] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 329.583554] do_syscall_64+0x1b1/0x800 [ 329.587425] ? finish_task_switch+0x1ca/0x810 [ 329.591907] ? syscall_return_slowpath+0x5c0/0x5c0 [ 329.596824] ? syscall_return_slowpath+0x30f/0x5c0 [ 329.601745] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 329.607099] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 329.611940] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 329.617115] RIP: 0033:0x455979 [ 329.620291] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 329.627987] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 329.635252] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 2033/05/18 03:36:54 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x500, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:54 executing program 5: mmap(&(0x7f000053b000/0x2000)=nil, 0x2000, 0xfffffffffffffffc, 0x40000002871, 0xffffffffffffffff, 0x0) munmap(&(0x7f000053d000/0x3000)=nil, 0x3000) r0 = syz_open_dev$sndpcmp(&(0x7f00000000c0)='/dev/snd/pcmC#D#p\x00', 0x2, 0x80) getsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000100)={@empty, 0x9, 0x1, 0xff, 0x2, 0x903a, 0xfffffffffffffff7, 0x10000}, &(0x7f0000000140)=0x20) mremap(&(0x7f000053b000/0x1000)=nil, 0x1000, 0x2000, 0x0, &(0x7f0000ffe000/0x2000)=nil) 2033/05/18 03:36:54 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = dup3(r0, r0, 0x80000) ioctl$DRM_IOCTL_WAIT_VBLANK(r1, 0xc018643a, &(0x7f0000000000)={0x20000000, 0x0, 0x2d}) r2 = socket$packet(0x11, 0x800000000002, 0x300) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'ip6tnl0\x00', 0x0}) setsockopt$inet_mreqn(r0, 0x0, 0x20, &(0x7f0000000140)={@multicast1=0xe0000001, @rand_addr, r3}, 0xc) 2033/05/18 03:36:54 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) setsockopt$inet6_dccp_int(r0, 0x21, 0x2001f, &(0x7f00000000c0)=0xf2f2, 0x4) [ 329.642505] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 329.649757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 329.657012] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 329.683491] l2tp_ppp: sess 4/0: set debug=cf10464f 2033/05/18 03:36:54 executing program 6: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) prctl$setmm(0x23, 0x7, &(0x7f0000ffa000/0x3000)=nil) socketpair$inet_smc(0x2b, 0x1, 0x0, &(0x7f0000000040)) 2033/05/18 03:36:54 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0xfe80, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:54 executing program 4: r0 = perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = getpid() sched_setattr(r1, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x38, 0x3, 0x2}, 0x0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) r3 = socket$inet(0x2, 0x2, 0x0) bind$inet(r3, &(0x7f0000eed000)={0x2, 0x104e21}, 0x10) syz_emit_ethernet(0xfed1, &(0x7f0000000440)=ANY=[@ANYBLOB="ffe0ffffffffffffff64edffffff080045e66738d040820dfc28fdc10785a5a143db23a784060ce8dba88e6b00001c00000000eb119078ac14ffbbe00104000000000000081202dbd0845899c7d5d2ac51e0c83afeb3171460bb247f0f480f0f4fae9133c37cc591b10d53b8c5419e1def05a04ea4979b1d98112b6787b5a9922913ea8892fa01875b9fffa29c53bb02b7c5cd6a19f85eb7c9e7e83b199c982cb99caa0249493240974a9d31dffecbc8a5d490cbccfe37f06360812ee3948cd0a7c06a2fd9a8cae674b9b2a09c14fd311dddad6c099784082a6f10ea51972b0140458cb28030ac6b10616ec0faa0c798d713a092cb6051707ef6e96f08be63a9f9927beebec21d95e25d4830dcd0fe0fbd8dcb389c62fc523da002e9b6c4b2edec37d38bebb40254ef7369d82d4d7f4bdf"], 0x0) ioctl$sock_inet_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000000)) sendto$inet(r3, &(0x7f0000000040), 0x0, 0x0, &(0x7f00000000c0)={0x2, 0x4e21, @loopback=0x7f000001}, 0x10) readv(r3, &(0x7f0000002440)=[{&(0x7f0000002340)=""/219, 0xdb}], 0x1) readv(r2, &(0x7f00003fd000)=[{&(0x7f0000853000)=""/255, 0xffffff1f}], 0x1) r4 = creat(&(0x7f00000001c0)='./file0\x00', 0x32) symlinkat(&(0x7f0000000100)='./file0\x00', r4, &(0x7f0000000200)='./file0\x00') ioctl$TCSETS(r2, 0x40045431, &(0x7f00003b9fdc)) syz_open_pts(r2, 0x2) r5 = dup3(r0, r2, 0x80000) write(r2, &(0x7f0000c34fff), 0xffffff0b) r6 = getpgid(r1) getsockopt$EBT_SO_GET_INFO(r5, 0x0, 0x80, &(0x7f0000000240)={'nat\x00'}, &(0x7f00000002c0)=0x78) ptrace$setopts(0xffffffffffffffff, r6, 0xc, 0x8) ioctl$KDGKBENT(r2, 0x4b46, &(0x7f0000000040)={0x100000001, 0x80, 0x4}) symlink(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') r7 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rtc\x00', 0x0, 0x0) ioctl$LOOP_CLR_FD(r7, 0x7002) 2033/05/18 03:36:54 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8983, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:54 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x200000003) 2033/05/18 03:36:54 executing program 5: r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000400)='/proc/self/net/pfkey\x00', 0x2, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000440)="6dcf556d52356d41f535e0ffdb9be3c3ddc92cb9312c7a6458885e0397d463c31fce6890af4f24d9fe0eed52a5d427cc5e8a6e19edd1cab0ee6eb46a09d77c4a777294acd06367e4ba0133079163e1356448cf00b6068916b928499c6ca9525de0dbd92bab2c33a61406276b7e0cc7f787231be85ace37c1f7c26a25b1b1f578988667d957c844b10d409bc1cd47dfe98fd6da16a724a09ac5d5d43b456a270e86a51d1a48600877e2213fde798cbb7bea1b369186316ba4ddc3255e944d8851a9ca7de96366ef242eed26b4f630d6f02eb7c8cce0812f408b4c084199aad06b975d0a36dc718e3c", 0xe8}], 0x1, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f0000000000)) ioctl$sock_bt_bnep_BNEPGETCONNLIST(r1, 0x800442d2, &(0x7f0000000040)={0x4, &(0x7f0000000140)=[{0x0, 0x0, 0x0, @broadcast}, {0x0, 0x0, 0x0, @remote}, {0x0, 0x0, 0x0, @dev}, {0x0, 0x0, 0x0, @broadcast}]}) setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f0000000280)=0x80000001, 0x4) ioctl$KVM_SET_TSS_ADDR(r0, 0xae47, 0x80000000d000) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) r4 = syz_open_procfs(0x0, &(0x7f0000000080)='net/stat\x00') syz_kvm_setup_cpu$x86(r4, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000002c0)=[@text16={0x10, &(0x7f00000000c0)="66b8b3090fc90f23d80f21f86635400000c00f23f80f74a1060066366719a8f0b019af66b8010000000f01c10f015801b89e000f00d09d66b9890b00000f32440f20c066350a000000440f22c0de4e80", 0x50}], 0x1, 0x11, &(0x7f0000000300)=[@efer={0x2, 0x6000}], 0x1) getsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000540)={{{@in6, @in6=@remote}}, {{@in=@remote}, 0x0, @in6=@ipv4={[], [], @multicast1}}}, &(0x7f0000000240)=0xe8) ioctl$sock_inet_sctp_SIOCINQ(r4, 0x541b, &(0x7f00000001c0)) 2033/05/18 03:36:54 executing program 6: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/rt6_stats\x00') ioctl$KVM_SET_MP_STATE(r0, 0x4004ae99, &(0x7f0000000080)=0x7) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000600)={0xf, 0x8000000000004, 0x4, 0x200009}, 0x2c) [ 329.884427] l2tp_ppp: sess 4/0: set debug=cf10464f 2033/05/18 03:36:55 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$BLKDISCARD(r0, 0x1277, &(0x7f0000000040)=0x100000000000b3) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f00000000c0)={0x0, @local, @rand_addr}, &(0x7f0000000100)=0xc) ioctl$EVIOCGABS0(r0, 0x80184540, &(0x7f0000000140)=""/196) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) 2033/05/18 03:36:55 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x80047453, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:55 executing program 0 (fault-call:0 fault-nth:36): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:36:55 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0xfec0000000000000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:55 executing program 6: r0 = socket$inet(0x2, 0x5, 0x0) sendmsg(r0, &(0x7f0000000480)={&(0x7f0000000140)=@nfc_llcp={0x27, 0x1, 0x0, 0x1, 0x263, 0x1f, "af6f4f4f7cff174135f7ba6ab70aabf1807a85a5ac1088d216392ffb30db1e9e0c2d4119b14b9e737468e56e0a05a9fceef87a8690d9cc3a131c1f6a32804d", 0x10}, 0x80, &(0x7f0000000440)=[{&(0x7f0000000380)="f0", 0x1}], 0x1}, 0x4000) sendmsg(r0, &(0x7f00000000c0)={&(0x7f0000000000)=@in={0x2, 0x4e20, @local={0xac, 0x14, 0x14, 0xaa}}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000040)="84", 0x1}], 0x1, &(0x7f0000000540)}, 0x0) sendmsg(r0, &(0x7f0000000340)={&(0x7f0000000200)=@pptp={0x18, 0x2, {0x3, @rand_addr=0xfffffffffffffff7}}, 0x80, &(0x7f00000003c0)=[{&(0x7f00000004c0)="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", 0x1000}, {&(0x7f0000000280)="01ca0fce629c52042a0ca4e9f0f6f9b989c026580c16e2db085319e809ce290769efdf81c35d4bfc8b5d9154a22de02311e043493c48547121c799caf01d66a3a3fa3df5426ae5cf27600edbc4f0529d71286f900224a1d39b21cd6567bf2932f8ed9b0a0797b852b5c0ee4ee2876a79b61889f68d167291c64e50739e62f7e15d0269ffa1c77a8c71b99972e7d1ef7ddf89f31212a6f3d1e07200a3d821aa44", 0xa0}, {&(0x7f0000000080)="554e58cd43853d0aa3e9d3ea397a714361", 0x11}, {&(0x7f00000014c0)="1eea758efe5579e0bb4e23e9366164fade94d197e2cc091b276ada1ac0056c88b1d52fb0002ce668cb760dcadfc184f77d3239f1b3dfbb646c636f71b563acb368739246dc6deeeda6e0d561ed820448bed653072147f3a4d071e9add15acf9a995578e54bb9d0c6361f66eedc0fea24218ad3e34705d5b727bb747cde1708fe05154b9c5059aff992baf74705", 0x8d}, {&(0x7f0000000100)="0a6c3dc8291ccc2e55913325896ffa0c194446ca007f548e137ee2a6", 0x1c}, {&(0x7f0000001580)="cb11606f2dcf0907d5ea08dbe35639e46400c76f5a955cc180f201ad122eff13069e7f02579c9d2e50ad9639397c4f25bea1437c5006762840537c06b5d09ba8116c7eaef2d30690a155c3fe36294df6a132936ee36b498ebbaa973bf8320dd31a9a4c0a6361903b7d1730fa1d05b4ba8eea417b435fb638814b71c113f191870d2982b4795c96dfe7cd161b7ddf77101f974927dbab2b65d7ad81298ee84c75296b4f7f3d7f33879eeb1d8d35074e895c8e9ba9499619b9c03887a02023798eb47ffad80c01f61fcac112a3bbe3e1d64464781be31c61b852479b611f5c66e6157fb338793bbff1ada284fd09644c21ada6d79ba0787d6ca96a5f1c3134f0983d5ca86c4871d6a46944840c386b67cc48d827424b352323efdfb932e24d451966285d136ce6f3ee152320e1d0240f425c43e7d474786337f841cbfcdddc778d1a010b294b786784040443cfa426f90a3813911f828df4d4f50814ec312f16e900a8ca4cc0982b37dd9e3201b5ae4a96caa8b1bf9b2aafe1af1c7a28db7b081dba2fb1bc07b41850aa691d603ff27a859a20d0758559cf9682c0efc05f88f0cd5f78648dac18b6cf4fab98bba4ff2caeadb7893af5cb7e88007ea66bb11f3eafee576d2f7be179e5c2dc60f17a3ae37ffa3d31d007bc022306338d89b185c3a35a3be2ab55d5cf4173b7b3fed19112c992c9e826cbc0182ddf9a4865d36a51ce26f664aeeea79ac5604d3bd106df064b68d8f6fee42dbc90752f7aa473274876b76cf9b2162e7d28f9a70775a65e2b5d21652e735f08364c9d0fb5dad91829175e67af259d9d9530654ed2fe22664c719a334552f44bf8bb12178326764a16c51b9983beef8c95cabffee3f7426a137be9c81824e21c5aac29de4b4530b4c151354aaa085b3958008e4555b3a42ba0c7befeac02c37ddd58a32770d231da9b8bf118cec2488ce970eb45bf26e9ac7f9200f3e647f8f6a7727ae6e690edb1d34648fac1ec9b8507fca03179c47165dacc992fd2b08e3119fa31339d73e30cc2f1a97cf1aa2d9e9be9f01c4e0a682896e23aa463bd57803ba7eef5e041e61e073b34e24825a6fe47b618fd287e6c21f4ad5dc19fae4507605bfde7ee5bf47f6dbbca63b002ffda4c875288d2368755fd8ddb3088ddce77e7cf6f940927d10c4541dcd59da7ae1ffae3ee220dbe3e253ad7bd3602509e1a093e9bc56a043313fe8acd439f8dc4caef61009724bc92dd175f9d43dccff312af84a97831c64588847aa447db840bd50a70cf4ac01b693ff71e941d1e1e81bf7050425a42328f1bb9bbc8ca27f77a2a01e15de7f614f82ae4d49f833750503c61df790032f0550095803aca40a6e0242d8410ade89b3e38489eeef9b95d164b66b6181a59553f798294fc4aecda65a682c4644e94dc665e915c1179f27704fc341daadfddad9359f6f65a9f3110d50d508a5286b1854112ccb4f3bd1c3ef125874835bf68d99daad0e205caf11a8fbeec23375dd96996d8ff68f8fc34b8be01fd53badf1183bc4af858c9bddbdeb39eb85b872392dab8e3d6d80ac4fc6868c74cd97e3787e1298ff460cd22e4f0f838df6a8cd69670e3395e6762c44184ba805b65907a3b97e4db54cecc97f5f2fd713aa82cb1eed72470e5a6dfd2ba3a8d4122a88085249934925656854342bbbb16f0d69e15586598dc8c53ef0d1c1b4273e514f9e00e6c5f0ff0ff6d234126dce50620de5df8745a697c7f4853ef22c33bd157625cf2185000897de8980215966e4cf5fc6dcdfd81e0414093a84daf5743ff25ebd420c5b601ea8374e03b3a03ee6d20626905c75a12ebf6e940e72a067d7fca7138169e37155915aeb4aab8c3f8212779ae83da3e77776a12d87b7f4ca8b91d57d4d1bc7658caa8e4e9a6615759ebee6f08ea79ac522c33fd2c7a335fee45a751676579f9bf1f0aba53e9a367b07d65d6a6b6f4021d3d52226dd02af85993dd527b328bf050f428ca13c6415e0708aded63b1c2ece1682ffe5575c36ae541aa3d36d8bfe46ab1c27b7c7a695a872511ca8e4363be6e6a148c8894e0d6c5548c9c08198b7897665a968f9ae0e632d4e5ac1d9da14a766f8d424af235398c6ab0980f233dfddee320c723d7faf8ceaba0a122785b57471e1d9b06b783d407bf8e4f3f9f5d193a9b090aba9fc8d959255c0de2e919f09ad68a06ac308b7764cde72095595ac7f09226c029e7c74e3401907859d455d67fb3470e6812c0032aaf3941d304c354c00c74b4feb2e126ce6d1d6cebb0381a07b4dc21d760ab5d8b7795ce4cb67dd2a24887d22e3c5040af78972d02eda78bc57412c7d791dac8eef8b3243f7f539ed300421c13875fe8e47ccb3b2be4c864efb8ed25fecc85425c5ac28cffe76d0de53a31ecda3328612341c8cecf1190a3ba42bc8677e5e230a661a348516f6cf2b3ce383671798c19b52fe1623379fdc5d6fec81fd813556141976560e7b4817c9e443b25383df0a67435966187e748aee385c2f2815e653c1a772c26c6bbaceeae9ea361ddc2729ac5dd5ea3a8a4383aa58d8a1627d6e23bbf6d1e3d1b4f4829e09a44ad47d30d707e85ac451909b4c44470da79b04caa031f8b64ec6a7124555ffd9ce0117da82f4f1faca60fd085a395009f1c01ae092426f458f28cb16739058a28bc5d116499cbacdaffd313108fbe9832c8b95942cdc07aead044a024bce5da23c7728f55d3e9167262a819bdcb163d121a9893d408a102d39f0de85a202e989dd6cc6023df2e4acacb777893c03a18375d660d9216a7ca923033480a50c3c5fc10701a4d92ae0b384afe45728a3005f1a5079b71e5ad93815c94be694ebaffc9dce619725d6aef85c811aaa163e4cd42909afba7d6e71f72cd3a46ccb260a5003f6cebb8ec622c41ba69297a1a58c32a2cf5be9838ee517967bd341dcfa000241ab108bd140fa41a3cdabd99bf986edd8ea07d0c9ada2f1dbb69570793a76437fe51ab4479aec02d8664c5c96c737c98a3989452b0efdd6feb466de9bf3f9f0b5abcca87624a82013bdba6a201108f91d5ede989c967b2cd6f582edb0121e4595bb081a876ce51f243a49977a4702ce98bd933927f82225745666c6e7ed88af211cc79baa375bf6ebf4f450362d50bba743777bdae57c4181682f44b3609c1eb669ab64e418f3ef8941ddad4d0c4d68cd3a24be33b8b613077ca52e4458a7322052d6684566178cead415d235907a725c7a86b5cceb82d7c84b07fb8879e16ba1dc3c25dcb17afed42decaea86f51c2c78244f1b5f4e0574932ad61c2ee990f99ca581d74e67d0b4ade0baf9f4cd6920fc2d076affac750502f15c393803d49315cb912480cf7190a4a2b105eb186957b95db6e75ff0dbe6f34210b3780a17de76650a2e178d4d8117907ea88f4cc9b633319f0546d068bf1d8a24cf839c543cd9a8fb5a084e13f7e6790cf21f71fc5d09a75a84c702323e5cb5c8eed7a10c0dfa088262e29e2fc96716ec10047f78a7f4bfd69ee097ceb1fb70b67e08edfec717869c10885b31c3ec2a938309cf3b8aa4c0dd840fbc790e3c354297b9abe79dff63f71fcc51fec3d991871efb839d8dbb99016f25583517db959c7e52f1a57ef127cb4b8b1882f8f3fd443ff2a0d674212a56d90496aadf218be81bae4bf12d9d9372e2ca6b865073d99c614c33da360138166785e1e92d486b4908b3f4974606169f64d4ee323d17ad93bf1e0646642d1173670ba0413ecaeb6e64659018a9c3a416a3498b3196501dbd2a0c3b3543d335fe431d6907b43e4bae4d489071e3673beeb415ebeaa59adb24e368f17ae3dd56b49535376cce603d80a09a84a8fbaeb4ecd433882fb9a2227f3462543ab0a58f5a3252bf0d1a0fd5ffab4fa38ad364be4739e86399098da112b88f977ed3b4001065773b28a11b1b0694a5ed28973a2668545260afbdb3d5ace607e694727732f576a1efa9432a450006f68675ae5a3554a4e4e4c7f4672099fe535dab19b568e57aa24f31997be7497a48b38b3c0fd8789868438e3efdfc60b9df84d8c5cfe976ad6d2b9bfe1ac6bee2ebbf56df6367bc6cc9fdaf966ea68fa2105b195eee72736d1c016bb7ee96651a5d35c06328f06e3f7fbb8d841d95d6f55a82bd91ce13c075f14fffc5c02739eb139d35d1e9550c4caaed1db494f845a21bb2b06d116fa5ed608af0ec96f6145ce73c858fae6e7a3564a6c8117112426bb804db6158659c4bc40e6f23fbb3d6f73f7a32b015b0bd72c09f4125ab8d7d8ff81959bd0403c38d095123b794b1719655e3d4577baf5b18b48b320f1a280e2606a24b323f95aa2f56859e0c727bc4848714f48e7bfa95d715d1b81159165504856e2d696d31d3343cb396c2651e9fa1eb5224c2a052796ed5d3121dc40e6b5349833d30fcec5c8754e252ca733f931964c722d729c60842ff6bef7590a2e4b965884d117965d7e1c5fe158b2c0a24e193b5d90a86b9bdfe869ffa5eb532d557ba33a9e28e7fc973d5299baf0f06b185414caf5a2440f58ae0789f739f5d88851feed3360900bc912d941b6620de01f896b2f8b684b0d379dc93c8089929b533622ea1b2a022d586d5a6e593fde077a8fcd1ad9f066f08e6d6f6a4c040b9dee23374be06e514f3dbdbc8547f7059dbc61f69fdc1f9f3b7d879f4f6bd92b895d987cfc6b1ae304490502059934c9bc9a8aaaf9dfae72b69deb8863e412ef2b027d8c1c49a1ed62de79722ebc7e759c1a4a710419228b46abc98d5bc236478d72e396a26d9c3b0b7f1aafe742e39caa31140721b78566440afe8049f05a020259a00f8399a0a1e3caa32a9af19ba90a8db40da37a846cd0abbc68cf37dacc509783e3fcf8f726c345f4db8387546feac1d0b4670b9ba071732b6646798ab6fbf90091a117e439aed62b57c76ba3a5d3f744575ce379ec56c858fdd2a890caf811254af11e729f71ef07b474ab69efe4413682392caa30f625442632a0229d4d5d12aba627bb2c6e4fa35d6bb65e77aa4f2806945a75bf2609ec9f97de978b5fbf679d0d70e309ee118636ae18db3a7157c150c5f751f2966a9361831cba68f0781ac8510f65f83772dec28aa3af505eaf0a10b72da4bdb49ee86d847965564e8babe00cd4696ec42740dbb8d50d5d50e2c120ec1a2881ec96b7cdc0d8f5747f1a9b48ca55a0d019497348710128165a5adaef587b5949ff6517beabb092f10942d4a6d44a4d91a02466f5d4f589b4b67f4cb63016fe1ecdb093360d6fc83b251f6a148766da5178e6b14082fdbd83e8923572cf23b444cddedcea5f1075c1e17a4fc9287479c75a73284a4685794319115c72dba98a1e6f5a58f75a6ffe87356fe46120620496c82387dde123908da59161dda1586bba750c572d54a5ac26f00c3e1539f4fa718848d32e45f9ec77aae92a971865bbf0318bdac2b727ab669da78abb6bfff98f5af3b4f1cab2fab1d3803525924176567694e2391e8ebf3d3e71d645f1158ee3eb625b6db58b8f0312b0824bbc1c7394ec5bc6804781f096aae96fcd9bf6fd2cdaf198cd570592a20ef9b5852868c8676df4d1e72c93f04328c7d6e738fa58bc2868e7466b2a262f1b53c3d8c006d5944d69a1c2b81b3d0737aa15ef13cc52098dd8508a88e0fc727c49269bcc1cdd1e6c67770b30ed0fcfed98a1c91c6fc5981f60f967dbeac9705fa577f333ace15a6316ebf7822141d9daacf5496bc2d04d546425ec8ebedfe94916144b6cbc127609f399ce577bda9c76a62302f585921a90a0642e98f84b801e34539af8b3e", 0x1000}, {&(0x7f0000002580)="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", 0x1000}], 0x7, &(0x7f0000003580)=[{0x68, 0x107, 0xf7, "b49e89231790733bb992119c0345612cd222cc3c0c77a222323f3ccd4211f3dd8a1151edf84e18dc04b60ccad46606abecf4b7bec9aa7b39981bd04bcc840cbc36c442775bf0d7d90386e580426c0533313612"}, {0x28, 0x119, 0x1, "88ef5c4b0b724f0142c79a601ed2118de05194b02a8e2b7c"}, {0xb8, 0x111, 0x80000001, "99634a927d2be563715bb4194e1025b489095761f1c37bba966fc9f1e707cdb772f9f78fb44dbfaaf510ddd9e6157a5d9a08ae7e87bdff4239b2bd0d4a0b5e5062aee3ca8d2ea9f5d1f8413c2b6aa7b7d496d8a299a0f9e45bfa47ae49e16bbf87e50f719fda1b67f7ffcdb471b8126e91d02bd88f53fba197d7c161d32d462d5f30a6925ad2d5c5e74ae98f45ba808caf6389d167e163f56a900ab091f7abb19b396c8b41e3efd4"}], 0x148, 0x5}, 0x4000084) 2033/05/18 03:36:55 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0xffff8000) 2033/05/18 03:36:55 executing program 4: r0 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x3, 0x101000) epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, r0) r1 = openat$vnet(0xffffffffffffff9c, &(0x7f0000e2d000)='/dev/vhost-net\x00', 0x2, 0x0) ioctl$VHOST_SET_FEATURES(r1, 0x4008af00, &(0x7f0000e4e000)=0x200000000) write$vnet(r1, &(0x7f0000000240)={0x1, {&(0x7f00000002c0)=""/197, 0xfffffffffffffd57, &(0x7f0000000100)=""/131, 0x0, 0x2}}, 0x68) 2033/05/18 03:36:55 executing program 5: r0 = syz_open_dev$random(&(0x7f0000000240)='/dev/random\x00', 0x0, 0x102) mmap(&(0x7f000092e000/0x4000)=nil, 0x4000, 0x2000000, 0x40010, r0, 0x0) r1 = socket$inet_sctp(0x2, 0x800000000001, 0x84) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x2, 0x0) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080)='IPVS\x00') sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0xc}, 0xc, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="d4000004", @ANYRES16=r3, @ANYBLOB="00062bbd7000fbdbdf250e000000300002000800030007000000080006000400000008000b000a00000014000100ac1414aa000000000000000000000000040001004c0002001400010000000000000000000000ffffe000000208000800080000000800090005000000140001000000000000000000000000000000000108000b000a0000000800060000000000080004000700000008000400030000000c000200080004000104000008000500e1ffffff0c00030008000500ac1414aa080004000500000008000400aea20000"], 0xd4}, 0x1, 0x0, 0x0, 0x10}, 0x8001) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x14, &(0x7f00008a8ff0)={0x0, 0x0, &(0x7f0000d22000)}, &(0x7f0000f6affc)=0x10) [ 330.837156] l2tp_ppp: sess 4/0: set debug=cf10464f [ 330.858149] l2tp_ppp: sess 4/0: get mru=1460 [ 330.889745] FAULT_INJECTION: forcing a failure. [ 330.889745] name failslab, interval 1, probability 0, space 0, times 0 [ 330.901141] CPU: 1 PID: 23782 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 330.908419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 330.917774] Call Trace: [ 330.920374] dump_stack+0x1b9/0x294 [ 330.924016] ? dump_stack_print_info.cold.2+0x52/0x52 [ 330.929218] ? perf_trace_lock_acquire+0xe3/0x980 [ 330.934076] ? __save_stack_trace+0x7e/0xd0 [ 330.938404] should_fail.cold.4+0xa/0x1a [ 330.942456] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 330.947549] ? save_stack+0x43/0xd0 [ 330.951159] ? kasan_kmalloc+0xc4/0xe0 [ 330.955034] ? kmem_cache_alloc_trace+0x152/0x780 [ 330.959872] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 330.965048] ? __list_lru_init+0x456/0x790 [ 330.969269] ? sget_userns+0x767/0xf00 [ 330.973154] ? graph_lock+0x170/0x170 [ 330.976940] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 330.981689] ? do_mount+0x564/0x3070 [ 330.985388] ? ksys_mount+0x12d/0x140 [ 330.989175] ? __x64_sys_mount+0xbe/0x150 [ 330.993309] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 330.998662] ? find_held_lock+0x36/0x1c0 [ 331.002710] ? __lock_is_held+0xb5/0x140 [ 331.006768] ? check_same_owner+0x320/0x320 [ 331.011078] ? rcu_note_context_switch+0x710/0x710 [ 331.016017] __should_failslab+0x124/0x180 [ 331.020244] should_failslab+0x9/0x14 [ 331.024033] kmem_cache_alloc_trace+0x2cb/0x780 [ 331.028687] ? __kmalloc_node+0x33/0x70 [ 331.032646] ? __kmalloc_node+0x33/0x70 [ 331.036639] ? rcu_read_lock_sched_held+0x108/0x120 [ 331.041647] __memcg_init_list_lru_node+0x17d/0x2c0 [ 331.046653] ? kvfree_rcu+0x20/0x20 [ 331.050266] ? __kmalloc_node+0x47/0x70 [ 331.054229] __list_lru_init+0x456/0x790 [ 331.058287] ? list_lru_destroy+0x4c0/0x4c0 [ 331.062593] ? mark_held_locks+0xc9/0x160 [ 331.066731] ? __raw_spin_lock_init+0x1c/0x100 [ 331.071299] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 331.076304] ? lockdep_init_map+0x9/0x10 [ 331.080357] sget_userns+0x767/0xf00 [ 331.084055] ? kill_litter_super+0x90/0x90 [ 331.088276] ? ns_test_super+0x50/0x50 [ 331.092149] ? destroy_unused_super.part.11+0x110/0x110 [ 331.097497] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 331.102075] ? kasan_check_write+0x14/0x20 [ 331.106297] ? do_raw_spin_lock+0xc1/0x200 [ 331.110526] ? blkdev_get+0xc0/0xb30 [ 331.114234] ? cap_capable+0x1f9/0x260 [ 331.118111] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 331.123630] ? security_capable+0x99/0xc0 [ 331.127775] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 331.133299] ? ns_capable_common+0x13f/0x170 [ 331.137694] ? kill_litter_super+0x90/0x90 [ 331.141912] sget+0x10b/0x150 [ 331.145002] ? ns_test_super+0x50/0x50 [ 331.148881] mount_bdev+0x111/0x3e0 [ 331.152493] ? fuse_get_root_inode+0x190/0x190 [ 331.157066] fuse_mount_blk+0x34/0x40 [ 331.160853] mount_fs+0xae/0x328 [ 331.164210] vfs_kern_mount.part.34+0xd4/0x4d0 [ 331.168779] ? may_umount+0xb0/0xb0 [ 331.172393] ? _raw_read_unlock+0x22/0x30 [ 331.176527] ? __get_fs_type+0x97/0xc0 [ 331.180407] do_mount+0x564/0x3070 [ 331.183935] ? do_raw_spin_unlock+0x9e/0x2e0 [ 331.188344] ? copy_mount_string+0x40/0x40 [ 331.192565] ? rcu_pm_notify+0xc0/0xc0 [ 331.196442] ? copy_mount_options+0x5f/0x380 [ 331.200833] ? rcu_read_lock_sched_held+0x108/0x120 [ 331.205837] ? kmem_cache_alloc_trace+0x616/0x780 [ 331.210669] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 331.216195] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 331.221717] ? copy_mount_options+0x285/0x380 [ 331.226199] ksys_mount+0x12d/0x140 [ 331.229812] __x64_sys_mount+0xbe/0x150 [ 331.233773] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 331.238775] do_syscall_64+0x1b1/0x800 [ 331.242647] ? finish_task_switch+0x1ca/0x810 [ 331.247126] ? syscall_return_slowpath+0x5c0/0x5c0 [ 331.252043] ? syscall_return_slowpath+0x30f/0x5c0 [ 331.256962] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 331.262401] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 331.267234] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 331.272408] RIP: 0033:0x455979 [ 331.275582] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 331.283278] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 2033/05/18 03:36:56 executing program 6: r0 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/net/pfkey\x00', 0x12140, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000140)={0xb4, 0x800, 0xffffffff80000001, "8908de5396c89ddcf09cefef17e7a7e3f370ed5ec28c8de1df7079dd19c22d35c7d0530eef28cc9180bb1cd388bc4e05786e155b8ee3ae7865fbc811b243ba0929ea3392b9c16edb3de9b132393bfbbe80da346f4dcc445d0dcb8c13702a61eb3daa4ae76e88d76dc39df58e5b5763e4a621f24a5b1ee00ae0ca7277b27bc814b3721b0d549dc99403eaa7999a141d19cc03ce7edea945cc51172b711b5384d0a0270c7cfc04135ce33e48e38378f5304fe4900a"}) r1 = fcntl$getown(r0, 0x9) r2 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x1, 0x0, 0xfffffffffffffffd}, r1, 0xc, 0xffffffffffffffff, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000240)='net/ipv6_route\x00') r4 = memfd_create(&(0x7f0000000040)='\x00', 0x0) sendfile(r4, r3, &(0x7f0000000200), 0x200000010000) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r2, 0x404c534a, &(0x7f0000000080)={0x0, 0x401, 0x10001}) fadvise64(r3, 0x0, 0xc0, 0x0) socket$bt_hidp(0x1f, 0x3, 0x6) 2033/05/18 03:36:56 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x700000000000000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:56 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x2000) ioctl$TCSETSW(r1, 0x5402, &(0x7f0000000000)={0x0, 0x9}) writev(r1, &(0x7f0000000100)=[{&(0x7f0000000140)="fd94e0d4c6b31d3d98e55c0a", 0xc}], 0x1) r2 = accept4$inet(0xffffffffffffff9c, &(0x7f0000000040)={0x0, 0x0, @multicast1}, &(0x7f0000000080)=0x10, 0x0) r3 = openat(r2, &(0x7f0000000240)='./file0\x00', 0x80000, 0x38) getsockopt$inet_sctp6_SCTP_RECVNXTINFO(r3, 0x84, 0x21, &(0x7f0000000280), &(0x7f00000002c0)=0x4) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(0xffffffffffffff9c, 0x84, 0x22, &(0x7f00000000c0)={0x0, 0x4, 0x7, 0x3, 0x0}, &(0x7f00000001c0)=0x10) ioctl$SNDRV_CTL_IOCTL_HWDEP_INFO(r3, 0x80dc5521, &(0x7f0000000300)=""/4096) setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000200)={r4, 0x5}, 0x8) 2033/05/18 03:36:56 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0xffffffff00000000) 2033/05/18 03:36:56 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$audion(&(0x7f0000000040)='/dev/audio#\x00', 0x8, 0x20400) sendmsg$kcm(r0, &(0x7f0000000340)={&(0x7f00000000c0)=@in6={0xa, 0x4e20, 0x3, @remote={0xfe, 0x80, [], 0xbb}, 0x10000}, 0x80, &(0x7f0000000280)=[{&(0x7f0000000140)="6a294fe60be4af1cc08a0a9d6c2734e151098aff50c1d307bcaf6b23c33cc7ef79627002c432d1e436fd26a0f6c696087568703f7ed963314bbee9b9ec78ab6c1c9a0b1edca679e6178e768dfbd13ba4380e0fc4078f60c3a6967d180c3a01e73a958659148b2485c1fde75ce6724c6bfb6e907f75d5420e3d613e5894a38069d48ddd750d4188b3044e304c55aaf8d911f8b8304999bea6d7c067cce0b2f1e6b2c6610b6d97f25e018f644558685d510e9f69ade4bb361687913ac6ea1ea7ef8e65ced5ef81bf7156812f1d48497f6e9463a3bc929802acecd92aacb281a5a209", 0xe1}, {&(0x7f0000000240)}], 0x2, &(0x7f00000002c0)=[{0x60, 0x88, 0x93, "1a82d8b8c3ee42b66af2f85412103f649739a1357e2c792895c00b1e3c387b5f8abccc189744e21917ac6df98386d603b813b9f028fbb0565dc96d6e61dd148d7bdb53f65e3f0dd657f8f610"}], 0x60, 0x8001}, 0x4000000) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r1, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r1, 0x4010744d, &(0x7f0000001000)=""/174) 2033/05/18 03:36:56 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x5421, &(0x7f0000000000)={'ip6_vti0\x00'}) [ 331.290532] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 331.297784] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 331.305040] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 331.312291] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:36:56 executing program 4: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x80047453, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:56 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x300, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:56 executing program 0 (fault-call:0 fault-nth:37): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) [ 331.429518] l2tp_ppp: sess 4/0: set debug=cf10464f 2033/05/18 03:36:56 executing program 5: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0xd) sendmsg$nl_generic(r0, &(0x7f0000023000)={&(0x7f0000024000)={0x10}, 0xc, &(0x7f0000000140)={&(0x7f0000010ec4)={0x1c, 0x2d, 0xb01, 0x0, 0x0, {0x3}, [@typed={0x8, 0x0, @uid}]}, 0x1c}, 0x1}, 0x0) [ 331.486997] FAULT_INJECTION: forcing a failure. [ 331.486997] name failslab, interval 1, probability 0, space 0, times 0 [ 331.498354] CPU: 0 PID: 23809 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 331.505634] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 331.514998] Call Trace: [ 331.517601] dump_stack+0x1b9/0x294 [ 331.521244] ? dump_stack_print_info.cold.2+0x52/0x52 [ 331.526448] ? finish_task_switch+0x1ca/0x810 [ 331.530956] ? finish_task_switch+0x182/0x810 [ 331.535485] should_fail.cold.4+0xa/0x1a [ 331.539558] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 331.544687] ? __schedule+0x809/0x1e30 [ 331.548591] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 331.553357] ? do_mount+0x564/0x3070 [ 331.557085] ? __sched_text_start+0x8/0x8 [ 331.561240] ? find_held_lock+0x36/0x1c0 [ 331.565319] ? __lock_is_held+0xb5/0x140 [ 331.569405] ? check_same_owner+0x320/0x320 [ 331.573745] __should_failslab+0x124/0x180 [ 331.577999] should_failslab+0x9/0x14 [ 331.581815] kmem_cache_alloc_trace+0x2cb/0x780 [ 331.586486] ? __kmalloc_node+0x33/0x70 [ 331.590450] ? __kmalloc_node+0x33/0x70 [ 331.594415] ? rcu_read_lock_sched_held+0x108/0x120 [ 331.599424] __memcg_init_list_lru_node+0x17d/0x2c0 [ 331.604433] ? kvfree_rcu+0x20/0x20 [ 331.608053] ? __kmalloc_node+0x47/0x70 [ 331.612027] __list_lru_init+0x456/0x790 [ 331.616081] ? list_lru_destroy+0x4c0/0x4c0 [ 331.620388] ? mark_held_locks+0xc9/0x160 [ 331.624523] ? __raw_spin_lock_init+0x1c/0x100 [ 331.629091] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 331.634119] ? lockdep_init_map+0x9/0x10 [ 331.638174] sget_userns+0x767/0xf00 [ 331.641873] ? kill_litter_super+0x90/0x90 [ 331.646099] ? ns_test_super+0x50/0x50 [ 331.649978] ? destroy_unused_super.part.11+0x110/0x110 [ 331.655327] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 331.659901] ? kasan_check_write+0x14/0x20 [ 331.664123] ? do_raw_spin_lock+0xc1/0x200 [ 331.668359] ? blkdev_get+0xc0/0xb30 [ 331.672060] ? cap_capable+0x1f9/0x260 [ 331.675937] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 331.681457] ? security_capable+0x99/0xc0 [ 331.685592] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 331.691117] ? ns_capable_common+0x13f/0x170 [ 331.695513] ? kill_litter_super+0x90/0x90 [ 331.699734] sget+0x10b/0x150 [ 331.702826] ? ns_test_super+0x50/0x50 [ 331.706703] mount_bdev+0x111/0x3e0 [ 331.710315] ? fuse_get_root_inode+0x190/0x190 [ 331.714883] fuse_mount_blk+0x34/0x40 [ 331.718680] mount_fs+0xae/0x328 [ 331.722040] vfs_kern_mount.part.34+0xd4/0x4d0 [ 331.726620] ? may_umount+0xb0/0xb0 [ 331.730236] ? _raw_read_unlock+0x22/0x30 [ 331.734369] ? __get_fs_type+0x97/0xc0 [ 331.738506] do_mount+0x564/0x3070 [ 331.742036] ? do_raw_spin_unlock+0x9e/0x2e0 [ 331.746431] ? copy_mount_string+0x40/0x40 [ 331.750651] ? rcu_pm_notify+0xc0/0xc0 [ 331.754531] ? copy_mount_options+0x5f/0x380 [ 331.758922] ? rcu_read_lock_sched_held+0x108/0x120 [ 331.763924] ? kmem_cache_alloc_trace+0x616/0x780 [ 331.768757] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 331.774283] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 331.779804] ? copy_mount_options+0x285/0x380 [ 331.784289] ksys_mount+0x12d/0x140 [ 331.787903] __x64_sys_mount+0xbe/0x150 [ 331.791862] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 331.796866] do_syscall_64+0x1b1/0x800 [ 331.800740] ? finish_task_switch+0x1ca/0x810 [ 331.805221] ? syscall_return_slowpath+0x5c0/0x5c0 [ 331.810145] ? syscall_return_slowpath+0x30f/0x5c0 [ 331.815067] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 331.820419] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 331.825248] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 331.830423] RIP: 0033:0x455979 [ 331.833597] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 331.841294] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 331.848547] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 331.855805] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 331.863057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 331.870319] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:36:57 executing program 6: ioctl$KVM_X86_SET_MCE(0xffffffffffffffff, 0x4040ae9e, &(0x7f00000000c0)={0x0, 0xd002}) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_open_dev$vcsn(&(0x7f0000000100)='/dev/vcs#\x00', 0x5, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x4e20, 0x8}, 0x3e5) listen(0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendto$inet6(r0, &(0x7f0000260000), 0x0, 0x20000004, &(0x7f0000476694)={0xa, 0x4e22}, 0x1c) r1 = dup3(0xffffffffffffffff, r0, 0x0) accept4(r1, &(0x7f0000218fa8)=@alg, &(0x7f0000b0fffc)=0x80, 0x0) 2033/05/18 03:36:57 executing program 4: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x80047453, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:57 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x11, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:57 executing program 5: r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) getsockopt$llc_int(r0, 0x10c, 0x5, &(0x7f0000000140), &(0x7f0000000100)=0x56) getpid() 2033/05/18 03:36:57 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) getsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000000040), &(0x7f00000000c0)=0x4) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) 2033/05/18 03:36:57 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8903, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:57 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x300000002000000) 2033/05/18 03:36:57 executing program 0 (fault-call:0 fault-nth:38): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:36:57 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x34000000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 332.011022] FAULT_INJECTION: forcing a failure. [ 332.011022] name failslab, interval 1, probability 0, space 0, times 0 [ 332.022395] CPU: 1 PID: 23826 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 332.029683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 332.039042] Call Trace: [ 332.041646] dump_stack+0x1b9/0x294 [ 332.045295] ? dump_stack_print_info.cold.2+0x52/0x52 [ 332.050501] ? __save_stack_trace+0x7e/0xd0 [ 332.054847] should_fail.cold.4+0xa/0x1a 2033/05/18 03:36:57 executing program 4: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x80047453, &(0x7f0000000000)={'ip6_vti0\x00'}) [ 332.058923] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 332.064043] ? save_stack+0x43/0xd0 [ 332.067686] ? kasan_kmalloc+0xc4/0xe0 [ 332.071582] ? kmem_cache_alloc_trace+0x152/0x780 [ 332.076435] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 332.081638] ? __list_lru_init+0x456/0x790 [ 332.085878] ? sget_userns+0x767/0xf00 [ 332.089779] ? graph_lock+0x170/0x170 [ 332.093592] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 332.098358] ? do_mount+0x564/0x3070 [ 332.102080] ? ksys_mount+0x12d/0x140 [ 332.105887] ? __x64_sys_mount+0xbe/0x150 2033/05/18 03:36:57 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0xa000000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:57 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000080)={@broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @empty, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @remote={0xac, 0x14, 0x14, 0xbb}, @dev={0xac, 0x14, 0x14, 0x11}}, @icmp=@parameter_prob={0x4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local={0xac, 0x14, 0x14, 0xaa}, @dev={0xac, 0x14, 0x14}}}}}}}, &(0x7f0000000200)) pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x84800) shutdown(r0, 0x0) [ 332.110042] ? do_syscall_64+0x1b1/0x800 [ 332.114110] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 332.119492] ? find_held_lock+0x36/0x1c0 [ 332.123572] ? __lock_is_held+0xb5/0x140 [ 332.127663] ? check_same_owner+0x320/0x320 [ 332.132002] ? rcu_note_context_switch+0x710/0x710 [ 332.136949] __should_failslab+0x124/0x180 [ 332.141204] should_failslab+0x9/0x14 [ 332.145018] kmem_cache_alloc_trace+0x2cb/0x780 [ 332.149694] ? __kmalloc_node+0x33/0x70 [ 332.153674] ? __kmalloc_node+0x33/0x70 2033/05/18 03:36:57 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x9000000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:57 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x5c00, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 332.157660] ? rcu_read_lock_sched_held+0x108/0x120 [ 332.162695] __memcg_init_list_lru_node+0x17d/0x2c0 [ 332.167729] ? kvfree_rcu+0x20/0x20 [ 332.171369] ? __kmalloc_node+0x47/0x70 [ 332.175362] __list_lru_init+0x456/0x790 [ 332.179441] ? list_lru_destroy+0x4c0/0x4c0 [ 332.183770] ? mark_held_locks+0xc9/0x160 [ 332.187928] ? __raw_spin_lock_init+0x1c/0x100 [ 332.192522] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 332.197551] ? lockdep_init_map+0x9/0x10 [ 332.201624] sget_userns+0x767/0xf00 [ 332.205346] ? kill_litter_super+0x90/0x90 2033/05/18 03:36:57 executing program 4: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x78, 0x3e3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair(0x1, 0x1, 0x0, &(0x7f000000dff8)={0xffffffffffffffff}) r2 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f00000000c0)) ioctl(r1, 0x2, &(0x7f0000000100)="9dadda20f6a22ad97f443b651ada399033eccf994587532a66c2c77f0cfa7e192fad59dd3d49284ed7101b4a411458f449b2d1") dup3(r0, r1, 0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000080)) [ 332.209593] ? ns_test_super+0x50/0x50 [ 332.213494] ? destroy_unused_super.part.11+0x110/0x110 [ 332.218867] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 332.223467] ? kasan_check_write+0x14/0x20 [ 332.227710] ? do_raw_spin_lock+0xc1/0x200 [ 332.231965] ? blkdev_get+0xc0/0xb30 [ 332.235693] ? cap_capable+0x1f9/0x260 [ 332.239592] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 332.245135] ? security_capable+0x99/0xc0 [ 332.249296] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 332.254841] ? ns_capable_common+0x13f/0x170 2033/05/18 03:36:57 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x103000000000000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 332.259262] ? kill_litter_super+0x90/0x90 [ 332.263505] sget+0x10b/0x150 [ 332.266618] ? ns_test_super+0x50/0x50 [ 332.270516] mount_bdev+0x111/0x3e0 [ 332.274152] ? fuse_get_root_inode+0x190/0x190 [ 332.278747] fuse_mount_blk+0x34/0x40 [ 332.282561] mount_fs+0xae/0x328 [ 332.285941] vfs_kern_mount.part.34+0xd4/0x4d0 [ 332.290532] ? may_umount+0xb0/0xb0 [ 332.294170] ? _raw_read_unlock+0x22/0x30 [ 332.298324] ? __get_fs_type+0x97/0xc0 [ 332.302205] do_mount+0x564/0x3070 [ 332.305740] ? copy_mount_string+0x40/0x40 [ 332.309966] ? rcu_pm_notify+0xc0/0xc0 [ 332.313849] ? copy_mount_options+0x5f/0x380 [ 332.318245] ? rcu_read_lock_sched_held+0x108/0x120 [ 332.323248] ? kmem_cache_alloc_trace+0x616/0x780 [ 332.328080] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 332.333605] ? _copy_from_user+0xdf/0x150 [ 332.337744] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 332.343280] ? copy_mount_options+0x285/0x380 [ 332.347765] ksys_mount+0x12d/0x140 [ 332.351382] __x64_sys_mount+0xbe/0x150 [ 332.355346] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 332.360353] do_syscall_64+0x1b1/0x800 [ 332.364226] ? finish_task_switch+0x1ca/0x810 [ 332.368713] ? syscall_return_slowpath+0x5c0/0x5c0 [ 332.373637] ? syscall_return_slowpath+0x30f/0x5c0 [ 332.378559] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 332.383924] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 332.388758] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 332.393934] RIP: 0033:0x455979 [ 332.397109] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 332.404804] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 332.412060] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 332.419312] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 332.426569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 332.433824] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 332.449302] l2tp_ppp: sess 4/0: set debug=cf10464f 2033/05/18 03:36:57 executing program 6: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(r1, 0x4068aea3, &(0x7f0000000040)={0x79, 0x0, [0x0, 0x9]}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x2, 0x0, 0x0, 0x0, 0x0, 0x9, 0xffffffffffffff75, 0x1, 0x0, 0x3}) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000a80)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:36:57 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) clock_gettime(0x0, &(0x7f0000000100)={0x0, 0x0}) setsockopt$sock_timeval(r0, 0x1, 0x14, &(0x7f0000000140)={r1, r2/1000+30000}, 0x10) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$fiemap(r0, 0xc020660b, &(0x7f00000001c0)={0xfffffffffffffc00, 0x3, 0x6, 0x10001, 0x8, [{0x80000001, 0x80, 0xfffffffffffffb7f, 0x0, 0x0, 0x81}, {0xd814, 0x1, 0xfff, 0x0, 0x0, 0x9}, {0x6, 0xd5f, 0x1, 0x0, 0x0, 0x80}, {0x5, 0x8001, 0x1ff, 0x0, 0x0, 0x1c04}, {0x9, 0xffffffffffffffc1, 0x0, 0x0, 0x0, 0xd01}, {0x95, 0x80000000, 0x8, 0x0, 0x0, 0x800}, {0x1, 0x8001, 0x6, 0x0, 0x0, 0x2000}, {0x9, 0xfff, 0x100000000, 0x0, 0x0, 0x2}]}) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) setsockopt$RDS_GET_MR_FOR_DEST(r0, 0x114, 0x7, &(0x7f00000003c0)={@generic={0xa, "c3db46fd68cf451fa9b2c89f1cb498eea3dcc876683579ae571807a264e2f41498ca5009e5df9f90f8713674800d5be20bd33ba20413e339e12a49d0e956c24fd7fc28a1bd9978719b0792f437f32154d7496173a4402cfd4bc1692d1c005e3fb19ea7231dbcd1d298c16b93ca4c28002539082e8fafe92f3832f918449c"}, {&(0x7f0000000040), 0xfffffffffffffd2f}, &(0x7f0000000040), 0x2}, 0xa) ioctl$sock_SIOCBRADDBR(r0, 0x89a0, &(0x7f00000000c0)='veth1\x00') 2033/05/18 03:36:57 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f00000000c0)="2f65786500000000000409004bddd9de91be10eebf000ee9a90f798058439ed554fa07424adee901d2da75af1f0200f5ab26d7a071fb35331ce39c5a") r1 = syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) fcntl$setstatus(r0, 0x4, 0x4400) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00H\x00'], 0x65, 0x0, &(0x7f0000000100)="318b97e82bcf1ded000f398649086605bab5a658f632e6fd471f43eb8aead8e1d7af6de27f09d8248fe1105273bce94a7d818d4364776cda2d946db1a2946fc77e6cc9f275566497d1521b3de7b9366c91728df0a1ce0f6253adfd953cc8432a9558eb8d69"}) ioctl$LOOP_SET_FD(r1, 0x4c00, r0) 2033/05/18 03:36:57 executing program 0 (fault-call:0 fault-nth:39): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:36:57 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x2, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 332.614446] FAULT_INJECTION: forcing a failure. [ 332.614446] name failslab, interval 1, probability 0, space 0, times 0 [ 332.625809] CPU: 1 PID: 23882 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 332.633095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 332.642448] Call Trace: [ 332.645032] dump_stack+0x1b9/0x294 [ 332.648655] ? dump_stack_print_info.cold.2+0x52/0x52 [ 332.653841] ? perf_trace_lock_acquire+0xe3/0x980 [ 332.658673] ? __save_stack_trace+0x7e/0xd0 [ 332.662986] should_fail.cold.4+0xa/0x1a [ 332.667040] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 332.672131] ? save_stack+0x43/0xd0 [ 332.675746] ? kasan_kmalloc+0xc4/0xe0 [ 332.679618] ? kmem_cache_alloc_trace+0x152/0x780 [ 332.684445] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 332.689624] ? __list_lru_init+0x456/0x790 [ 332.693844] ? sget_userns+0x767/0xf00 [ 332.697719] ? graph_lock+0x170/0x170 [ 332.701504] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 332.706242] ? do_mount+0x564/0x3070 [ 332.709940] ? ksys_mount+0x12d/0x140 [ 332.713727] ? __x64_sys_mount+0xbe/0x150 [ 332.717863] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 332.723225] ? find_held_lock+0x36/0x1c0 [ 332.727277] ? __lock_is_held+0xb5/0x140 [ 332.731335] ? check_same_owner+0x320/0x320 [ 332.735644] ? rcu_note_context_switch+0x710/0x710 [ 332.740570] __should_failslab+0x124/0x180 [ 332.744792] should_failslab+0x9/0x14 [ 332.748578] kmem_cache_alloc_trace+0x2cb/0x780 [ 332.753230] ? __kmalloc_node+0x33/0x70 [ 332.757189] ? __kmalloc_node+0x33/0x70 [ 332.761156] __memcg_init_list_lru_node+0x17d/0x2c0 [ 332.766159] ? kvfree_rcu+0x20/0x20 [ 332.769782] ? __kmalloc_node+0x47/0x70 [ 332.773747] __list_lru_init+0x456/0x790 [ 332.777795] ? list_lru_destroy+0x4c0/0x4c0 [ 332.782104] ? mark_held_locks+0xc9/0x160 [ 332.786257] ? __raw_spin_lock_init+0x1c/0x100 [ 332.790825] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 332.795827] ? lockdep_init_map+0x9/0x10 [ 332.799877] sget_userns+0x767/0xf00 [ 332.803574] ? kill_litter_super+0x90/0x90 [ 332.807794] ? ns_test_super+0x50/0x50 [ 332.811668] ? destroy_unused_super.part.11+0x110/0x110 [ 332.817023] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 332.821592] ? kasan_check_write+0x14/0x20 [ 332.825812] ? do_raw_spin_lock+0xc1/0x200 [ 332.830038] ? blkdev_get+0xc0/0xb30 [ 332.833739] ? cap_capable+0x1f9/0x260 [ 332.837617] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 332.843138] ? security_capable+0x99/0xc0 [ 332.847273] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 332.852796] ? ns_capable_common+0x13f/0x170 [ 332.857191] ? kill_litter_super+0x90/0x90 [ 332.861419] sget+0x10b/0x150 [ 332.864508] ? ns_test_super+0x50/0x50 [ 332.868385] mount_bdev+0x111/0x3e0 [ 332.871998] ? fuse_get_root_inode+0x190/0x190 [ 332.876570] fuse_mount_blk+0x34/0x40 [ 332.880356] mount_fs+0xae/0x328 [ 332.883713] vfs_kern_mount.part.34+0xd4/0x4d0 [ 332.888282] ? may_umount+0xb0/0xb0 [ 332.891896] ? _raw_read_unlock+0x22/0x30 [ 332.896031] ? __get_fs_type+0x97/0xc0 [ 332.899906] do_mount+0x564/0x3070 [ 332.903432] ? do_raw_spin_unlock+0x9e/0x2e0 [ 332.907829] ? copy_mount_string+0x40/0x40 [ 332.912050] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 332.917053] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 332.921797] ? retint_kernel+0x10/0x10 [ 332.925676] ? copy_mount_options+0x1f0/0x380 [ 332.930154] ? copy_mount_options+0x1fa/0x380 [ 332.934647] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 332.940172] ? copy_mount_options+0x285/0x380 [ 332.944655] ksys_mount+0x12d/0x140 [ 332.948270] __x64_sys_mount+0xbe/0x150 [ 332.952228] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 332.957230] do_syscall_64+0x1b1/0x800 [ 332.961104] ? finish_task_switch+0x1ca/0x810 [ 332.965586] ? syscall_return_slowpath+0x5c0/0x5c0 [ 332.970500] ? syscall_return_slowpath+0x30f/0x5c0 [ 332.975418] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 332.980771] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 332.985603] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 332.990787] RIP: 0033:0x455979 [ 332.993960] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 333.001657] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 333.008920] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 333.016172] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 333.023426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 333.030677] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:36:58 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x1800000000000000) 2033/05/18 03:36:58 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x40047452, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:58 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0xffffffc0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:58 executing program 0 (fault-call:0 fault-nth:40): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:36:58 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f00000000c0)=""/174) syz_open_dev$loop(&(0x7f0000000040)='/dev/loop#\x00', 0xffffffff, 0x800) 2033/05/18 03:36:58 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETS(r0, 0x5402, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x829f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff01}) socket$inet6_icmp(0xa, 0x2, 0x3a) r2 = fcntl$dupfd(r1, 0x0, r1) read$eventfd(r2, &(0x7f0000000140), 0x8) read$eventfd(r2, &(0x7f0000000000), 0x0) read$eventfd(r2, &(0x7f0000000240), 0x8) ioctl$TIOCGLCKTRMIOS(r2, 0x5412, &(0x7f0000000100)={0xffffffff}) 2033/05/18 03:36:58 executing program 4: syz_mount_image$f2fs(&(0x7f0000000000)='f2fs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010400)="1020f5f20100070009000000030000000c0000000900000001000000010000000000000000280000000000000c00000013000000020000000200000002000000010000000c000000000200000002000000060000000a0000000e000000100000030000000100000002", 0x69, 0x1400}], 0x0, &(0x7f0000000080)=ANY=[]) r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040)='/dev/audio\x00', 0xa0000, 0x0) ioctl$LOOP_CTL_GET_FREE(r0, 0x4c82) 2033/05/18 03:36:58 executing program 6: mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x5, 0x86832, 0xffffffffffffffff, 0x0) r0 = socket$inet6_dccp(0xa, 0x6, 0x0) r1 = dup2(r0, r0) setsockopt$bt_BT_FLUSHABLE(r1, 0x112, 0x8, &(0x7f0000000140)=0x1, 0x4) ioctl$KVM_GET_DEVICE_ATTR(r1, 0x4018aee2, &(0x7f0000000100)={0x0, 0xf3, 0x200, &(0x7f00000000c0)=0x3}) r2 = getpgrp(0xffffffffffffffff) ioctl$sock_FIOSETOWN(r1, 0x8901, &(0x7f0000000180)=r2) r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x101000, 0x0) connect$rds(r3, &(0x7f0000000080)={0x2, 0x4e22, @multicast1=0xe0000001}, 0x10) read(r0, &(0x7f0000000000)=""/18, 0x12) [ 333.165234] FAULT_INJECTION: forcing a failure. [ 333.165234] name failslab, interval 1, probability 0, space 0, times 0 [ 333.176595] CPU: 1 PID: 23906 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 333.183878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 333.193230] Call Trace: [ 333.195831] dump_stack+0x1b9/0x294 [ 333.199468] ? dump_stack_print_info.cold.2+0x52/0x52 [ 333.204650] ? perf_trace_lock_acquire+0xe3/0x980 [ 333.209499] ? __save_stack_trace+0x7e/0xd0 [ 333.213817] should_fail.cold.4+0xa/0x1a [ 333.217867] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 333.222958] ? save_stack+0x43/0xd0 [ 333.226568] ? kasan_kmalloc+0xc4/0xe0 [ 333.230441] ? kmem_cache_alloc_trace+0x152/0x780 [ 333.235273] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 333.240448] ? __list_lru_init+0x456/0x790 [ 333.244668] ? sget_userns+0x767/0xf00 [ 333.248541] ? graph_lock+0x170/0x170 [ 333.252325] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 333.257070] ? do_mount+0x564/0x3070 [ 333.260768] ? ksys_mount+0x12d/0x140 [ 333.264553] ? __x64_sys_mount+0xbe/0x150 [ 333.268706] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 333.274070] ? find_held_lock+0x36/0x1c0 [ 333.278123] ? __lock_is_held+0xb5/0x140 [ 333.282180] ? check_same_owner+0x320/0x320 [ 333.286490] ? rcu_note_context_switch+0x710/0x710 [ 333.291411] __should_failslab+0x124/0x180 [ 333.295634] should_failslab+0x9/0x14 [ 333.299420] kmem_cache_alloc_trace+0x2cb/0x780 [ 333.304076] ? __kmalloc_node+0x33/0x70 [ 333.308038] ? __kmalloc_node+0x33/0x70 [ 333.311996] ? rcu_read_lock_sched_held+0x108/0x120 [ 333.317008] __memcg_init_list_lru_node+0x17d/0x2c0 [ 333.322024] ? kvfree_rcu+0x20/0x20 [ 333.325640] ? __kmalloc_node+0x47/0x70 [ 333.329603] __list_lru_init+0x456/0x790 [ 333.333650] ? list_lru_destroy+0x4c0/0x4c0 [ 333.337956] ? mark_held_locks+0xc9/0x160 [ 333.342092] ? __raw_spin_lock_init+0x1c/0x100 [ 333.346661] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 333.351664] ? lockdep_init_map+0x9/0x10 [ 333.355712] sget_userns+0x767/0xf00 [ 333.359411] ? kill_litter_super+0x90/0x90 [ 333.363633] ? ns_test_super+0x50/0x50 [ 333.367511] ? destroy_unused_super.part.11+0x110/0x110 [ 333.372859] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 333.377428] ? kasan_check_write+0x14/0x20 [ 333.381648] ? do_raw_spin_lock+0xc1/0x200 [ 333.385877] ? blkdev_get+0xc0/0xb30 [ 333.389577] ? cap_capable+0x1f9/0x260 [ 333.393464] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 333.398985] ? security_capable+0x99/0xc0 [ 333.403125] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 333.408646] ? ns_capable_common+0x13f/0x170 [ 333.413043] ? kill_litter_super+0x90/0x90 [ 333.417269] sget+0x10b/0x150 [ 333.420364] ? ns_test_super+0x50/0x50 [ 333.424237] mount_bdev+0x111/0x3e0 [ 333.427851] ? fuse_get_root_inode+0x190/0x190 [ 333.432421] fuse_mount_blk+0x34/0x40 [ 333.436210] mount_fs+0xae/0x328 [ 333.439566] vfs_kern_mount.part.34+0xd4/0x4d0 [ 333.444133] ? may_umount+0xb0/0xb0 [ 333.447747] ? _raw_read_unlock+0x22/0x30 [ 333.451880] ? __get_fs_type+0x97/0xc0 [ 333.455756] do_mount+0x564/0x3070 [ 333.459280] ? interrupt_entry+0xb1/0xf0 [ 333.463332] ? copy_mount_string+0x40/0x40 [ 333.467554] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 333.472296] ? retint_kernel+0x10/0x10 [ 333.476174] ? copy_mount_options+0x1e3/0x380 [ 333.480655] ? write_comp_data+0x70/0x70 [ 333.484702] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 333.490226] ? copy_mount_options+0x285/0x380 [ 333.494714] ksys_mount+0x12d/0x140 [ 333.498330] __x64_sys_mount+0xbe/0x150 [ 333.502288] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 333.507293] do_syscall_64+0x1b1/0x800 [ 333.511169] ? finish_task_switch+0x1ca/0x810 [ 333.515649] ? syscall_return_slowpath+0x5c0/0x5c0 [ 333.520566] ? syscall_return_slowpath+0x30f/0x5c0 [ 333.525484] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 333.530839] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 333.535669] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 333.540842] RIP: 0033:0x455979 [ 333.544021] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 333.551714] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 333.558966] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 2033/05/18 03:36:58 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x600000000000000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 333.566220] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 333.573473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 333.580727] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 333.592210] l2tp_ppp: sess 4/0: set debug=cf10464f [ 333.608353] l2tp_ppp: sess 4/0: set mru=1597403241 2033/05/18 03:36:58 executing program 4: r0 = syz_open_dev$sndmidi(&(0x7f0000003fee)='/dev/snd/midiC#D#\x00', 0x2, 0x40801) write$sndseq(r0, &(0x7f00000028ef), 0xfdf0) ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r0, 0x408c5333, &(0x7f0000000000)={0xfffffffffffffff7, 0x0, 0x9, 'queue0\x00', 0x35e19910}) 2033/05/18 03:36:59 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8941, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:59 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f00000000c0)=""/174) 2033/05/18 03:36:59 executing program 0 (fault-call:0 fault-nth:41): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:36:59 executing program 4: r0 = perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f0000000080)=0x1) r1 = openat$cuse(0xffffffffffffff9c, &(0x7f00000010c0)='/dev/cuse\x00', 0x0, 0x0) pread64(r1, &(0x7f0000001200)=""/127, 0x7f, 0x0) syz_open_dev$audion(&(0x7f0000000040)='/dev/audio#\x00', 0x400, 0x1290c2) socket$inet6_tcp(0xa, 0x1, 0x0) 2033/05/18 03:36:59 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x80040200, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:59 executing program 6: r0 = socket$inet(0x2, 0x6, 0xffffffffffbffffd) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000040)=@broute={'broute\x00', 0x20, 0x2, 0x3e0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000100], 0x0, &(0x7f0000000000), &(0x7f0000000100)=[{0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1, [{{{0x9, 0x0, 0x0, "6e7230deffffff00001000", 'ifb0\x00', 'nr0\x00', "73bc7f83010000000a2b0000321b3900", @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, [], @empty, [], 0x70, 0xf0, 0x120}, [@common=@IDLETIMER={'IDLETIMER\x00', 0x28, {{0x9, 'syz0\x00'}}}, @common=@AUDIT={'AUDIT\x00', 0x8}]}, @common=@redirect={'redirect\x00', 0x8, {{0xffffffffffffffff}}}}]}, {0x0, '\x00', 0x1, 0xfffffffffffffffe, 0x1, [{{{0x13, 0xffffffffffffffff, 0x0, 'bridge0\x00', 'dummy0\x00', 'vlan0\x00', 'yam0\x00', @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [], @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [], 0xd0, 0xd0, 0x200, [@pkttype={'pkttype\x00', 0x8}, @m802_3={'802_3\x00', 0x8}]}}, @common=@SECMARK={'SECMARK\x00', 0x108, {{0x0, 0x0, 'system_u:object_r:pam_console_exec_t:s0\x00'}}}}]}, {0x0, '\x00', 0x2, 0xfffffffffffffffe}, {0x0, '\x00', 0x2, 0xfffff7ffffffffff}]}, 0x458) 2033/05/18 03:36:59 executing program 5: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)={0xaa}) r1 = dup3(r0, r0, 0x80000) r2 = syz_open_dev$amidi(&(0x7f0000000080)='/dev/amidi#\x00', 0x401, 0x40) ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f00000000c0)={0x3, r2}) r3 = epoll_create1(0x0) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000019fe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) close(r3) r4 = memfd_create(&(0x7f0000006fd0)='/dev/urandom\x00', 0x2) pwritev(r4, &(0x7f0000000000)=[{&(0x7f0000012000)="ca", 0x1}], 0x1, 0x0) fcntl$addseals(r3, 0x409, 0x0) write$binfmt_elf64(r3, &(0x7f00000000c0)=ANY=[], 0x1b5) close(r0) 2033/05/18 03:36:59 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x6000000) 2033/05/18 03:36:59 executing program 4: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x40047452, &(0x7f0000000000)={'ip6_vti0\x00'}) [ 334.230708] FAULT_INJECTION: forcing a failure. [ 334.230708] name failslab, interval 1, probability 0, space 0, times 0 [ 334.242062] CPU: 1 PID: 23950 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 334.249353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 334.258707] Call Trace: [ 334.261307] dump_stack+0x1b9/0x294 [ 334.264944] ? dump_stack_print_info.cold.2+0x52/0x52 [ 334.270139] ? perf_trace_lock_acquire+0xe3/0x980 [ 334.274990] ? __save_stack_trace+0x7e/0xd0 [ 334.279330] should_fail.cold.4+0xa/0x1a [ 334.283403] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 334.288523] ? save_stack+0x43/0xd0 [ 334.292158] ? kasan_kmalloc+0xc4/0xe0 [ 334.296050] ? kmem_cache_alloc_trace+0x152/0x780 [ 334.300898] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 334.306095] ? __list_lru_init+0x456/0x790 [ 334.310334] ? sget_userns+0x767/0xf00 [ 334.314212] ? graph_lock+0x170/0x170 [ 334.318004] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 334.322754] ? do_mount+0x564/0x3070 [ 334.326455] ? ksys_mount+0x12d/0x140 [ 334.330239] ? __x64_sys_mount+0xbe/0x150 [ 334.334395] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 334.339748] ? find_held_lock+0x36/0x1c0 [ 334.343801] ? __lock_is_held+0xb5/0x140 [ 334.347856] ? check_same_owner+0x320/0x320 [ 334.352191] ? rcu_note_context_switch+0x710/0x710 [ 334.357113] __should_failslab+0x124/0x180 [ 334.361338] should_failslab+0x9/0x14 [ 334.365126] kmem_cache_alloc_trace+0x2cb/0x780 [ 334.369779] ? __kmalloc_node+0x33/0x70 [ 334.373741] ? __kmalloc_node+0x33/0x70 [ 334.377703] ? rcu_read_lock_sched_held+0x108/0x120 [ 334.382723] __memcg_init_list_lru_node+0x17d/0x2c0 [ 334.387739] ? kvfree_rcu+0x20/0x20 [ 334.391355] ? __kmalloc_node+0x47/0x70 [ 334.395318] __list_lru_init+0x456/0x790 [ 334.399369] ? list_lru_destroy+0x4c0/0x4c0 [ 334.403686] ? mark_held_locks+0xc9/0x160 [ 334.407820] ? __raw_spin_lock_init+0x1c/0x100 [ 334.412389] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 334.417393] ? lockdep_init_map+0x9/0x10 [ 334.421441] sget_userns+0x767/0xf00 [ 334.425138] ? kill_litter_super+0x90/0x90 [ 334.429359] ? ns_test_super+0x50/0x50 [ 334.433238] ? destroy_unused_super.part.11+0x110/0x110 [ 334.438584] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 334.443151] ? kasan_check_write+0x14/0x20 [ 334.447371] ? do_raw_spin_lock+0xc1/0x200 [ 334.451691] ? blkdev_get+0xc0/0xb30 [ 334.455401] ? cap_capable+0x1f9/0x260 [ 334.459279] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 334.464800] ? security_capable+0x99/0xc0 [ 334.468935] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 334.474456] ? ns_capable_common+0x13f/0x170 [ 334.478849] ? kill_litter_super+0x90/0x90 [ 334.483069] sget+0x10b/0x150 [ 334.486158] ? ns_test_super+0x50/0x50 [ 334.490034] mount_bdev+0x111/0x3e0 [ 334.493647] ? fuse_get_root_inode+0x190/0x190 [ 334.498216] fuse_mount_blk+0x34/0x40 [ 334.502013] mount_fs+0xae/0x328 [ 334.505708] vfs_kern_mount.part.34+0xd4/0x4d0 [ 334.510280] ? may_umount+0xb0/0xb0 [ 334.513904] ? _raw_read_unlock+0x22/0x30 [ 334.518036] ? __get_fs_type+0x97/0xc0 [ 334.521912] do_mount+0x564/0x3070 [ 334.525438] ? do_raw_spin_unlock+0x9e/0x2e0 [ 334.529833] ? copy_mount_string+0x40/0x40 [ 334.534054] ? rcu_pm_notify+0xc0/0xc0 [ 334.537934] ? copy_mount_options+0x5f/0x380 [ 334.542335] ? rcu_read_lock_sched_held+0x108/0x120 [ 334.547336] ? kmem_cache_alloc_trace+0x616/0x780 [ 334.552184] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 334.557710] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 334.563234] ? copy_mount_options+0x285/0x380 [ 334.567724] ksys_mount+0x12d/0x140 [ 334.571338] __x64_sys_mount+0xbe/0x150 [ 334.575301] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 334.580307] do_syscall_64+0x1b1/0x800 [ 334.584178] ? finish_task_switch+0x1ca/0x810 [ 334.588661] ? syscall_return_slowpath+0x5c0/0x5c0 [ 334.593577] ? syscall_return_slowpath+0x30f/0x5c0 [ 334.598505] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 334.603857] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 334.608687] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 334.613861] RIP: 0033:0x455979 [ 334.617036] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 334.624730] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 2033/05/18 03:36:59 executing program 4: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x40047452, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:59 executing program 3: r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vsock\x00', 0x1c000, 0x0) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r0, 0x40042409, 0x1) ioctl$BLKROTATIONAL(r0, 0x127e, &(0x7f0000000180)) perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) ioctl$DMA_BUF_IOCTL_SYNC(r1, 0x40086200, &(0x7f00000001c0)=0x1) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r1, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r1, 0x4010744d, &(0x7f00000000c0)=""/174) 2033/05/18 03:36:59 executing program 4: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x40047452, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:59 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x6000000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 334.632165] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 334.639416] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 334.646679] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 334.653933] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 334.662915] l2tp_ppp: sess 4/0: set debug=cf10464f 2033/05/18 03:36:59 executing program 6: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/drop_entry\x00', 0x2, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x4c09, 0x5) r1 = syz_open_dev$sndseq(&(0x7f0000000080)='/dev/snd/seq\x00', 0x0, 0x0) read(r1, &(0x7f0000000200)=""/28, 0x1c) r2 = getpid() sched_setaffinity(r2, 0x83, &(0x7f0000e86ff8)=0x6) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r1, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "706f727431000000000000000000000000000000000000000000eb000000b2a587e2000000000000020000000000000001008e15e7af00", 0xa9824f69d1376637, 0x10800a}) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x4058534c, &(0x7f00000000c0)={0x80, 0x0, 0xf7}) ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r1, 0x40505331, &(0x7f0000000240)) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r1, 0xc0a85352, &(0x7f0000000300)={{}, 'port0\x00'}) openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040)='/dev/sequencer2\x00', 0x400, 0x0) 2033/05/18 03:36:59 executing program 0 (fault-call:0 fault-nth:42): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:36:59 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8980, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:36:59 executing program 4: r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sync() syncfs(r0) 2033/05/18 03:36:59 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0xe803, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:36:59 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) modify_ldt$write(0x1, &(0x7f00000000c0)={0xfffffffeffffffff, 0xffffffff, 0x0, 0x7, 0x0, 0xa48, 0x2, 0x2, 0x31, 0x3}, 0x10) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0x200, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) [ 334.814752] l2tp_ppp: sess 4/0: set debug=cf10464f [ 334.859896] FAULT_INJECTION: forcing a failure. [ 334.859896] name failslab, interval 1, probability 0, space 0, times 0 [ 334.871282] CPU: 0 PID: 23978 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 334.878562] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 334.887918] Call Trace: [ 334.890516] dump_stack+0x1b9/0x294 [ 334.894158] ? dump_stack_print_info.cold.2+0x52/0x52 [ 334.899359] ? __save_stack_trace+0x7e/0xd0 [ 334.903701] should_fail.cold.4+0xa/0x1a [ 334.907779] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 334.912886] ? save_stack+0x43/0xd0 [ 334.916501] ? kasan_kmalloc+0xc4/0xe0 [ 334.920376] ? kmem_cache_alloc_trace+0x152/0x780 [ 334.925205] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 334.930385] ? __list_lru_init+0x456/0x790 [ 334.934616] ? sget_userns+0x767/0xf00 [ 334.938493] ? graph_lock+0x170/0x170 [ 334.942278] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 334.947022] ? do_mount+0x564/0x3070 [ 334.950733] ? ksys_mount+0x12d/0x140 [ 334.954535] ? __x64_sys_mount+0xbe/0x150 [ 334.958671] ? do_syscall_64+0x1b1/0x800 [ 334.962723] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 334.968085] ? find_held_lock+0x36/0x1c0 [ 334.972133] ? __lock_is_held+0xb5/0x140 [ 334.976188] ? check_same_owner+0x320/0x320 [ 334.980497] ? rcu_note_context_switch+0x710/0x710 [ 334.985427] __should_failslab+0x124/0x180 [ 334.989649] should_failslab+0x9/0x14 [ 334.993434] kmem_cache_alloc_trace+0x2cb/0x780 [ 334.998087] ? __kmalloc_node+0x33/0x70 [ 335.002048] ? __kmalloc_node+0x33/0x70 [ 335.006009] ? rcu_read_lock_sched_held+0x108/0x120 [ 335.011028] __memcg_init_list_lru_node+0x17d/0x2c0 [ 335.016036] ? kvfree_rcu+0x20/0x20 [ 335.019650] ? __kmalloc_node+0x47/0x70 [ 335.023614] __list_lru_init+0x456/0x790 [ 335.027661] ? list_lru_destroy+0x4c0/0x4c0 [ 335.031969] ? mark_held_locks+0xc9/0x160 [ 335.036104] ? __raw_spin_lock_init+0x1c/0x100 [ 335.040672] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 335.045683] ? lockdep_init_map+0x9/0x10 [ 335.049735] sget_userns+0x767/0xf00 [ 335.053432] ? kill_litter_super+0x90/0x90 [ 335.057654] ? ns_test_super+0x50/0x50 [ 335.061528] ? destroy_unused_super.part.11+0x110/0x110 [ 335.066878] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 335.071452] ? kasan_check_write+0x14/0x20 [ 335.075674] ? do_raw_spin_lock+0xc1/0x200 [ 335.079904] ? blkdev_get+0xc0/0xb30 [ 335.083604] ? cap_capable+0x1f9/0x260 [ 335.087494] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 335.093019] ? security_capable+0x99/0xc0 [ 335.097161] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 335.102698] ? ns_capable_common+0x13f/0x170 [ 335.107095] ? kill_litter_super+0x90/0x90 [ 335.111317] sget+0x10b/0x150 [ 335.114406] ? ns_test_super+0x50/0x50 [ 335.118279] mount_bdev+0x111/0x3e0 [ 335.121891] ? fuse_get_root_inode+0x190/0x190 [ 335.126460] fuse_mount_blk+0x34/0x40 [ 335.130246] mount_fs+0xae/0x328 [ 335.133601] vfs_kern_mount.part.34+0xd4/0x4d0 [ 335.138167] ? may_umount+0xb0/0xb0 [ 335.141785] ? _raw_read_unlock+0x22/0x30 [ 335.145915] ? __get_fs_type+0x97/0xc0 [ 335.149790] do_mount+0x564/0x3070 [ 335.153332] ? copy_mount_string+0x40/0x40 [ 335.157550] ? rcu_pm_notify+0xc0/0xc0 [ 335.161428] ? copy_mount_options+0x5f/0x380 [ 335.165821] ? rcu_read_lock_sched_held+0x108/0x120 [ 335.170821] ? kmem_cache_alloc_trace+0x616/0x780 [ 335.175654] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 335.181184] ? _copy_from_user+0xdf/0x150 [ 335.185322] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 335.190843] ? copy_mount_options+0x285/0x380 [ 335.195328] ksys_mount+0x12d/0x140 [ 335.198953] __x64_sys_mount+0xbe/0x150 [ 335.202930] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 335.207933] do_syscall_64+0x1b1/0x800 [ 335.211805] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 335.216633] ? syscall_return_slowpath+0x5c0/0x5c0 [ 335.221547] ? syscall_return_slowpath+0x30f/0x5c0 [ 335.226467] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 335.231817] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 335.236648] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 335.241826] RIP: 0033:0x455979 [ 335.244998] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 335.252702] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 2033/05/18 03:36:59 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x7, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:00 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x2, &(0x7f0000000000)={'ip6_vti0\x00'}) [ 335.259957] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 335.267208] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 335.274469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 335.281724] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:37:00 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000fafff7)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/mixer\x00', 0x8080, 0x0) ioctl$DRM_IOCTL_CONTROL(r3, 0x40086414, &(0x7f0000000040)={0x3}) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000080)={0x1, 0x0, [{0x48, 0x0, 0x200000000000000}]}) [ 335.330619] l2tp_ppp: sess 4/0: set debug=cf10464f 2033/05/18 03:37:00 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x2000000) 2033/05/18 03:37:00 executing program 0 (fault-call:0 fault-nth:43): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:00 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0xe803000000000000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:00 executing program 5: mprotect(&(0x7f0000002000/0x4000)=nil, 0x4000, 0x0) r0 = socket$inet6(0xa, 0x80003, 0x2b) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback={0x0, 0x1}}, 0x1c) sendmmsg(r0, &(0x7f0000000c40)=[{{0x0, 0x0, &(0x7f0000000500), 0x0, &(0x7f0000000000)}}, {{0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f0000003740)="1b", 0x1}], 0x1, &(0x7f0000000a80), 0x0, 0x2}}], 0x2, 0x8000) 2033/05/18 03:37:00 executing program 4: add_key$user(&(0x7f0000000000)='user\x00', &(0x7f0000000040)={0x73, 0x79, 0x7a, 0x3}, &(0x7f0000000080)="9136a8", 0x3, 0xfffffffffffffffe) add_key$keyring(&(0x7f0000000180)='keyring\x00', &(0x7f00000001c0)={0x73, 0x79, 0x7a, 0x3}, 0x0, 0x0, 0xfffffffffffffff9) seccomp(0x3, 0x0, &(0x7f00000000c0)={0x0, &(0x7f0000000080)}) 2033/05/18 03:37:00 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8922, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:37:00 executing program 6: r0 = accept(0xffffffffffffffff, &(0x7f0000000040)=@llc={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, &(0x7f00000000c0)=0x80) getsockopt$inet6_dccp_int(r0, 0x21, 0x1b, &(0x7f0000000100), &(0x7f0000000140)=0x4) perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6, 0x100000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9a05}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_open_dev$vcsn(&(0x7f0000000180)='/dev/vcs#\x00', 0x3, 0x20080) bpf$MAP_CREATE(0x0, &(0x7f00000001c0)={0x4, 0x2, 0xfffffffffffffff9, 0x7, 0x8, r2}, 0x2c) sendmsg$nl_generic(r1, &(0x7f0000000000)={&(0x7f0000018ff4)={0x10}, 0xc, &(0x7f0000013ff1)={&(0x7f0000000240)={0x14, 0x29, 0x1, 0x0, 0x0, {0x3}}, 0x14}, 0x1}, 0x0) 2033/05/18 03:37:00 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse\x00', 0x408100, 0x0) ioctl$EVIOCGPROP(r0, 0x80404509, &(0x7f00000000c0)=""/29) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r1, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r1, 0x4010744d, &(0x7f0000001000)=""/174) 2033/05/18 03:37:00 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x7, 0x0) ioctl$DRM_IOCTL_GEM_FLINK(0xffffffffffffffff, 0xc008640a, &(0x7f0000000040)={0x0}) r3 = dup3(r0, r0, 0x0) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r1, 0xc00c642d, &(0x7f0000000080)={r2, 0x80000, r3}) sendmsg$nl_route(r0, &(0x7f00003e4000)={&(0x7f0000e87000)={0x10}, 0xc, &(0x7f0000a3bff8)={&(0x7f0000000400)=@getlink={0x38, 0x12, 0x209, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x10, 0x12, [@IFLA_INFO_KIND={0x4, 0x1, 'user{\x00'}]}, @IFLA_MASTER={0x8, 0xa}]}, 0x38}, 0x1}, 0x0) 2033/05/18 03:37:00 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000000)={0x20003}) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x2001, 0x0) getsockopt$inet_pktinfo(0xffffffffffffff9c, 0x0, 0x8, &(0x7f00000000c0)={0x0, @broadcast, @rand_addr}, &(0x7f0000000100)=0xc) ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000240)={'team0\x00', r4}) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f00000001c0)="660f383d270f202267f2400f7c2f0f71d000c402e9ada1bb00c0feb9800000c00f3235010000000f3066baf80cb87d89578eef66bafc0cb0f5eeb97a0b0000b809000000ba000000000f30450f090f01c8", 0x51}], 0x1, 0x0, &(0x7f0000000140), 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:37:00 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0xe00000000000000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 335.811096] l2tp_ppp: sess 4/0: set debug=cf10464f [ 335.824897] l2tp_ppp: sess 4/0: set mtu=0 [ 335.918540] FAULT_INJECTION: forcing a failure. [ 335.918540] name failslab, interval 1, probability 0, space 0, times 0 [ 335.929830] CPU: 1 PID: 24041 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 335.937106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 335.946452] Call Trace: [ 335.949039] dump_stack+0x1b9/0x294 [ 335.952672] ? dump_stack_print_info.cold.2+0x52/0x52 [ 335.957848] ? perf_trace_lock_acquire+0xe3/0x980 [ 335.962678] ? __save_stack_trace+0x7e/0xd0 [ 335.966992] should_fail.cold.4+0xa/0x1a [ 335.971043] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 335.976133] ? save_stack+0x43/0xd0 [ 335.979744] ? kasan_kmalloc+0xc4/0xe0 [ 335.983615] ? kmem_cache_alloc_trace+0x152/0x780 [ 335.988445] ? __memcg_init_list_lru_node+0x17d/0x2c0 [ 335.993618] ? __list_lru_init+0x456/0x790 [ 335.997838] ? sget_userns+0x767/0xf00 [ 336.001710] ? graph_lock+0x170/0x170 [ 336.005497] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 336.010235] ? do_mount+0x564/0x3070 [ 336.013932] ? ksys_mount+0x12d/0x140 [ 336.017715] ? __x64_sys_mount+0xbe/0x150 [ 336.021850] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 336.027202] ? find_held_lock+0x36/0x1c0 [ 336.031250] ? __lock_is_held+0xb5/0x140 [ 336.035305] ? check_same_owner+0x320/0x320 [ 336.039616] ? rcu_note_context_switch+0x710/0x710 [ 336.044535] __should_failslab+0x124/0x180 [ 336.048757] should_failslab+0x9/0x14 [ 336.052544] kmem_cache_alloc_trace+0x2cb/0x780 [ 336.057199] ? __kmalloc_node+0x33/0x70 [ 336.061159] ? __kmalloc_node+0x33/0x70 [ 336.065136] ? rcu_read_lock_sched_held+0x108/0x120 [ 336.070144] __memcg_init_list_lru_node+0x17d/0x2c0 [ 336.075148] ? kvfree_rcu+0x20/0x20 [ 336.078769] ? __kmalloc_node+0x47/0x70 [ 336.082733] __list_lru_init+0x456/0x790 [ 336.086782] ? list_lru_destroy+0x4c0/0x4c0 [ 336.091094] ? mark_held_locks+0xc9/0x160 [ 336.095228] ? __raw_spin_lock_init+0x1c/0x100 [ 336.099797] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 336.104802] ? lockdep_init_map+0x9/0x10 [ 336.108849] sget_userns+0x767/0xf00 [ 336.112546] ? kill_litter_super+0x90/0x90 [ 336.116768] ? ns_test_super+0x50/0x50 [ 336.120642] ? destroy_unused_super.part.11+0x110/0x110 [ 336.125989] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 336.130562] ? kasan_check_write+0x14/0x20 [ 336.134782] ? do_raw_spin_lock+0xc1/0x200 [ 336.139008] ? blkdev_get+0xc0/0xb30 [ 336.142712] ? cap_capable+0x1f9/0x260 [ 336.146591] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 336.152111] ? security_capable+0x99/0xc0 [ 336.156246] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 336.161768] ? ns_capable_common+0x13f/0x170 [ 336.166162] ? kill_litter_super+0x90/0x90 [ 336.170379] sget+0x10b/0x150 [ 336.173469] ? ns_test_super+0x50/0x50 [ 336.177343] mount_bdev+0x111/0x3e0 [ 336.180958] ? fuse_get_root_inode+0x190/0x190 [ 336.185526] fuse_mount_blk+0x34/0x40 [ 336.189314] mount_fs+0xae/0x328 [ 336.192668] vfs_kern_mount.part.34+0xd4/0x4d0 [ 336.197235] ? may_umount+0xb0/0xb0 [ 336.200848] ? _raw_read_unlock+0x22/0x30 [ 336.204979] ? __get_fs_type+0x97/0xc0 [ 336.208856] do_mount+0x564/0x3070 [ 336.212425] ? copy_mount_string+0x40/0x40 [ 336.216647] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 336.221391] ? retint_kernel+0x10/0x10 [ 336.225269] ? copy_mount_options+0x1f0/0x380 [ 336.229750] ? __sanitizer_cov_trace_pc+0x3b/0x50 [ 336.234579] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 336.240102] ? copy_mount_options+0x285/0x380 [ 336.244586] ksys_mount+0x12d/0x140 [ 336.248199] __x64_sys_mount+0xbe/0x150 [ 336.252158] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 336.257161] do_syscall_64+0x1b1/0x800 [ 336.261035] ? finish_task_switch+0x1ca/0x810 [ 336.265516] ? syscall_return_slowpath+0x5c0/0x5c0 [ 336.270432] ? syscall_return_slowpath+0x30f/0x5c0 [ 336.275347] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 336.280700] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 336.285532] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 336.290705] RIP: 0033:0x455979 [ 336.293877] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 336.301572] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 336.308824] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 2033/05/18 03:37:01 executing program 6: mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000003000)={0xaa}) r1 = epoll_create1(0x0) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000019fe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) close(r1) r2 = memfd_create(&(0x7f0000002000)='user\x00', 0x0) pwritev(r2, &(0x7f0000000000)=[{&(0x7f0000012000)="ca", 0x1}], 0x1, 0x0) fallocate(r0, 0x3, 0x2, 0x40002) timer_create(0x0, &(0x7f0000cd0000)={0x0, 0x12}, &(0x7f0000044000)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, &(0x7f0000040000)) r3 = gettid() tkill(r3, 0x16) close(r0) 2033/05/18 03:37:01 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8982, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:37:01 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) 2033/05/18 03:37:01 executing program 4: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8922, &(0x7f0000000000)={'ip6_vti0\x00'}) [ 336.316081] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 336.323336] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 336.330591] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:37:01 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x1000000, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 336.376315] l2tp_ppp: sess 4/0: set debug=cf10464f 2033/05/18 03:37:02 executing program 0 (fault-call:0 fault-nth:44): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:02 executing program 6: r0 = syz_open_procfs(0x0, &(0x7f0000c4c000)='pagemap\x00') pread64(r0, &(0x7f0000000040), 0xfffffffffffffc94, 0xffffffffffffffff) ioctl$KVM_GET_IRQCHIP(r0, 0xc208ae62, &(0x7f0000000000)=@ioapic) 2033/05/18 03:37:02 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x80ffff) 2033/05/18 03:37:02 executing program 5: r0 = socket(0x8002, 0x11, 0x1) setsockopt(r0, 0x6, 0xe, &(0x7f0000902000)="020008000000000000005462fa01a15eaf0d2cf653f13cc379ede4eaf40f4a95bbff850a8263357506b31e58a98399b397e695c0f03d3b3d54436fe71cbcdc6e30ac10369300f6af7d07634832b8a5c0a94c470502e9337b3e7298fc74e81b1058d02f9b14732017e2466a9fc43aea71263335960415800020f9575da602000000001f0000d1b0e6ebcb12c7291871363e97100c4a4c2e9f5c0c14f1659ce8c8bed2e97e60a3649f93ea0c8263f864802ad72fa698807ef14a4a1813e976be1d113b514dbdc05ea1309163d6a4830de8391f2ecab7bbfbcb", 0xd8) setsockopt(r0, 0x41000000000006, 0xe, &(0x7f00005a2000)="020000000000000000405462fa01a55eaf0d2cf609f13cc379ede4eaf40f4a95bbff850a8263357506b31e58a98399b397e695c0f03d919cc3df7756beaaea3b3d54436fe71cf6af7d07634832b8a5c0a94c470502e933dd65ae7b3e7298fc00e81b1058d02f9b14732017e2466a9fc43aea71263335960415800020f9575da602000000001f0000d1b0e6ebcb12c7291871363e97100c4a4c2e9f5c0c14f1659ce8c8bed2e97e60a3649f93ea0c8263f864802ad72fa698807ef14a4a1813e976be1d00000006bdc05ea1309163d6a4830dd0391f2ecab7", 0xd8) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000180)={@in={{0x2, 0x0, @remote={0xac, 0x14, 0x14, 0xbb}}}, 0x0, 0x20, 0x0, "d59f29e33684f7bb4c29c4b6015851ed394b19ee2fff248737dc6eb4fa1d4d9f3b88c770196f87a5d75e7ea4506d9a21f2932d14d3eba94f96c501ed9427d68dff3fddb982aa3dd61df0e9d692573cdc"}, 0x204) 2033/05/18 03:37:02 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'i%6_vti0\x00'}) 2033/05/18 03:37:02 executing program 4: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8922, &(0x7f0000000000)={'ip6_vti0\x00'}) 2033/05/18 03:37:02 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:02 executing program 3: perf_event_open(&(0x7f0000000180)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0xf, 0x0, 0xfffffffffffffff7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x20, 0xffffffffffffffff, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x401}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000040)) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r0, 0xc08c5335, &(0x7f00000000c0)={0x8, 0x2, 0x8, 'queue1\x00', 0x3}) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) [ 337.216609] l2tp_ppp: sess 4/0: set debug=cf10464f [ 337.246591] FAULT_INJECTION: forcing a failure. [ 337.246591] name failslab, interval 1, probability 0, space 0, times 0 [ 337.255702] l2tp_ppp: sess 4/0: get flags=0 [ 337.258228] CPU: 0 PID: 24080 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 337.269787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 337.279129] Call Trace: [ 337.281713] dump_stack+0x1b9/0x294 [ 337.285334] ? dump_stack_print_info.cold.2+0x52/0x52 [ 337.290519] should_fail.cold.4+0xa/0x1a [ 337.294566] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 337.299653] ? graph_lock+0x170/0x170 [ 337.303439] ? graph_lock+0x170/0x170 [ 337.307226] ? save_stack+0xa9/0xd0 [ 337.310838] ? find_held_lock+0x36/0x1c0 [ 337.314887] ? __lock_is_held+0xb5/0x140 [ 337.318939] ? check_same_owner+0x320/0x320 [ 337.323270] ? rcu_note_context_switch+0x710/0x710 [ 337.328189] __should_failslab+0x124/0x180 [ 337.332408] should_failslab+0x9/0x14 [ 337.336192] __kmalloc+0x2c8/0x760 [ 337.339716] ? string+0x21d/0x2c0 [ 337.343158] ? match_number.isra.0+0xb6/0x260 [ 337.347642] match_number.isra.0+0xb6/0x260 [ 337.351949] ? match_strdup+0xa0/0xa0 [ 337.355737] ? match_wildcard+0x3c0/0x3c0 [ 337.359883] match_int+0x23/0x30 [ 337.363236] fuse_fill_super+0x812/0x1e20 [ 337.367372] ? fuse_get_root_inode+0x190/0x190 [ 337.371940] ? __sanitizer_cov_trace_switch+0x53/0x90 [ 337.377115] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 337.382636] ? vsnprintf+0x242/0x1b40 [ 337.386428] ? pointer+0xa20/0xa20 [ 337.389958] ? vsprintf+0x40/0x40 [ 337.393397] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 337.398397] ? set_blocksize+0x2c4/0x350 [ 337.402444] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 337.407967] mount_bdev+0x30c/0x3e0 [ 337.411580] ? fuse_get_root_inode+0x190/0x190 [ 337.416145] fuse_mount_blk+0x34/0x40 [ 337.419930] mount_fs+0xae/0x328 [ 337.423283] vfs_kern_mount.part.34+0xd4/0x4d0 [ 337.427848] ? may_umount+0xb0/0xb0 [ 337.431459] ? _raw_read_unlock+0x22/0x30 [ 337.435591] ? __get_fs_type+0x97/0xc0 [ 337.439464] do_mount+0x564/0x3070 [ 337.442994] ? copy_mount_string+0x40/0x40 [ 337.447215] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 337.452217] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 337.456959] ? retint_kernel+0x10/0x10 [ 337.460838] ? copy_mount_options+0x1f0/0x380 [ 337.465318] ? copy_mount_options+0x1fa/0x380 [ 337.469798] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 337.475316] ? copy_mount_options+0x285/0x380 [ 337.479795] ksys_mount+0x12d/0x140 [ 337.483406] __x64_sys_mount+0xbe/0x150 [ 337.487362] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 337.492362] do_syscall_64+0x1b1/0x800 [ 337.496242] ? finish_task_switch+0x1ca/0x810 [ 337.500721] ? syscall_return_slowpath+0x5c0/0x5c0 [ 337.505637] ? syscall_return_slowpath+0x30f/0x5c0 [ 337.510555] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 337.515908] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 337.520737] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 337.525911] RIP: 0033:0x455979 [ 337.529085] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 337.536779] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 2033/05/18 03:37:02 executing program 4: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8922, &(0x7f0000000000)={'ip6_vti0\x00'}) [ 337.544033] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 337.551289] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 337.558542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 337.565795] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:37:02 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000000)="2f657865000000000000b8608bbe9f61cf5aafac4abd52925af520fd9cb4ae54ebdc756ff7b47567510de0af4f86afd61024ff2149147384aafbe9c1fd9fc828cf9b6232c202fd6627cf5e6e12faf8c4051eed49154432098dcd570dd0505042aaabaafdf50756667a0e215ba6bea09f78914dcf1bb72666109e495ef1ab3a052cf6941b160031c35e3e651d2dc5377e6091a948662e7e0fcc21f5") finit_module(r0, &(0x7f0000000340)='ip6gre0\x00', 0x0) ioctl$sock_kcm_SIOCKCMUNATTACH(r0, 0x89e1, &(0x7f00000000c0)={r0}) 2033/05/18 03:37:02 executing program 6: syz_emit_ethernet(0x6e, &(0x7f0000000080)={@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, @empty, [], {@ipv4={0x800, {{0x5, 0x4, 0x0, 0x0, 0x60, 0x0, 0x0, 0x0, 0x11, 0x0, @remote={0xac, 0x14, 0x14, 0xbb}, @dev={0xac, 0x14, 0x14}}, @gre={{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x8, 0x0, [], "3acb3d224487b4b9"}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x86dd}, {0x8, 0x88be, 0x0, {{0x0, 0x1}, 0x1}}, {0x8, 0x22eb, 0x0, {{0x0, 0x2}, 0x2}}, {0x8, 0x6558}}}}}}, &(0x7f0000000100)={0x0, 0xfbffffffffffbffe, [0x0, 0x346]}) socketpair(0x2, 0xe, 0xac3a, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$KVM_KVMCLOCK_CTRL(r1, 0xaead) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0x40605346, &(0x7f0000000140)={0x2, 0x2, {0x0, 0x3, 0x0, 0x3, 0x9}}) setsockopt$inet_sctp_SCTP_ADD_STREAMS(r1, 0x84, 0x79, &(0x7f0000000040)=0x80000001, 0x4) 2033/05/18 03:37:02 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0xf5ffffff, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:02 executing program 4: r0 = openat$urandom(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/urandom\x00', 0xc0200, 0x0) r1 = syz_open_dev$audion(&(0x7f0000000140)='/dev/audio#\x00', 0x5, 0x40400) renameat(r0, &(0x7f0000000100)='./file0\x00', r1, &(0x7f0000000180)='./file0\x00') stat(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)) capset(&(0x7f0000f4b000)={0x19980330}, &(0x7f0000fc0fe8)) pivot_root(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='./file0\x00') 2033/05/18 03:37:02 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_dev$midi(&(0x7f00000000c0)='/dev/midi#\x00', 0x7fff, 0x20000) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) mknodat(r0, &(0x7f0000000040)='./file0\x00', 0xd122, 0x6) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) 2033/05/18 03:37:02 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'i\n6_vti0\x00'}) 2033/05/18 03:37:02 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x1800) 2033/05/18 03:37:02 executing program 0 (fault-call:0 fault-nth:45): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:02 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) recvmsg(r0, &(0x7f00000da000)={&(0x7f00009f5fec)=@ll={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, 0x80, &(0x7f000016bf70), 0x0, &(0x7f00009f5000)=""/53, 0x35}, 0x0) r2 = syz_open_dev$usbmon(&(0x7f0000000080)='/dev/usbmon#\x00', 0x5, 0x60000) recvfrom$llc(r2, &(0x7f00000000c0)=""/4, 0x4, 0x40000000, &(0x7f0000000100)={0x1a, 0x30f, 0x6000000000000000, 0x9, 0x0, 0x3, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]}, 0x10) recvmsg(r0, &(0x7f00000003c0)={&(0x7f0000000000)=@nfc_llcp, 0x80, &(0x7f0000000280), 0x0, &(0x7f00000002c0)=""/219, 0xdb}, 0x0) clock_gettime(0x0, &(0x7f0000000240)={0x0, 0x0}) sendmsg$can_bcm(r2, &(0x7f0000000480)={&(0x7f0000000180)={0x1d, r1}, 0x10, &(0x7f0000000280)={&(0x7f0000000400)={0x0, 0x0, 0x80000001, {0x77359400}, {r3, r4/1000+30000}, {0x4, 0x50000000000, 0x20145f50, 0x1}, 0x1, @canfd={{0x3, 0xffffffffffffff55, 0x100, 0x3}, 0x2c, 0x1, 0x0, 0x0, "4d11f36fd96919c61df27da4a7da2a6e2fb0b50a47016fa9af8c0aa0591364a8554c936794e0e38c12c3cf66f05d2afaf77c68735606c75fed1a605754994d1b"}}, 0x80}, 0x1, 0x0, 0x0, 0x40010}, 0x20000000) sendmsg$nl_generic(r0, &(0x7f0000000200)={&(0x7f0000000140)={0x10}, 0xc, &(0x7f000000d379)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000f000000"], 0x14}, 0x1, 0x0, 0x0, 0x1000}, 0x404000000) [ 337.760477] l2tp_ppp: sess 4/0: set debug=cf10464f [ 337.765279] FAULT_INJECTION: forcing a failure. [ 337.765279] name failslab, interval 1, probability 0, space 0, times 0 [ 337.777093] CPU: 0 PID: 24104 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 337.779634] l2tp_ppp: sess 4/0: get flags=0 [ 337.784369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 337.784376] Call Trace: [ 337.784401] dump_stack+0x1b9/0x294 [ 337.784423] ? dump_stack_print_info.cold.2+0x52/0x52 [ 337.784452] ? perf_trace_lock_acquire+0xe3/0x980 [ 337.814269] ? graph_lock+0x170/0x170 [ 337.818064] should_fail.cold.4+0xa/0x1a [ 337.822113] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 337.827204] ? print_usage_bug+0xc0/0xc0 [ 337.831250] ? print_usage_bug+0xc0/0xc0 [ 337.835294] ? graph_lock+0x170/0x170 [ 337.839084] ? find_held_lock+0x36/0x1c0 [ 337.843136] ? __lock_is_held+0xb5/0x140 [ 337.847194] ? check_same_owner+0x320/0x320 [ 337.851500] ? lockdep_init_map+0x9/0x10 [ 337.855549] ? rcu_note_context_switch+0x710/0x710 [ 337.860465] ? kasan_check_write+0x14/0x20 [ 337.864688] ? __init_rwsem+0x1c4/0x290 [ 337.868648] __should_failslab+0x124/0x180 [ 337.872869] should_failslab+0x9/0x14 [ 337.876654] __kmalloc+0x2c8/0x760 [ 337.880179] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 337.885181] ? prealloc_shrinker+0xcf/0x130 [ 337.889492] prealloc_shrinker+0xcf/0x130 [ 337.893625] sget_userns+0x9b2/0xf00 [ 337.897323] ? kill_litter_super+0x90/0x90 [ 337.901543] ? ns_test_super+0x50/0x50 [ 337.905415] ? destroy_unused_super.part.11+0x110/0x110 [ 337.910773] ? kasan_check_write+0x14/0x20 [ 337.914993] ? do_raw_spin_lock+0xc1/0x200 [ 337.919222] ? blkdev_get+0xc0/0xb30 [ 337.922922] ? cap_capable+0x1f9/0x260 [ 337.926801] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 337.932322] ? security_capable+0x99/0xc0 [ 337.936460] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 337.941980] ? ns_capable_common+0x13f/0x170 [ 337.946374] ? kill_litter_super+0x90/0x90 [ 337.950593] sget+0x10b/0x150 [ 337.953681] ? ns_test_super+0x50/0x50 [ 337.957556] mount_bdev+0x111/0x3e0 [ 337.961168] ? fuse_get_root_inode+0x190/0x190 [ 337.965736] fuse_mount_blk+0x34/0x40 [ 337.969526] mount_fs+0xae/0x328 [ 337.972882] vfs_kern_mount.part.34+0xd4/0x4d0 [ 337.977452] ? may_umount+0xb0/0xb0 [ 337.981066] ? _raw_read_unlock+0x22/0x30 [ 337.985209] ? __get_fs_type+0x97/0xc0 [ 337.989085] do_mount+0x564/0x3070 [ 337.992609] ? do_raw_spin_unlock+0x9e/0x2e0 [ 337.997007] ? copy_mount_string+0x40/0x40 [ 338.001240] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 338.006243] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 338.010986] ? retint_kernel+0x10/0x10 [ 338.014867] ? copy_mount_options+0x1f0/0x380 [ 338.019348] ? copy_mount_options+0x1fa/0x380 [ 338.023830] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 338.029349] ? copy_mount_options+0x285/0x380 [ 338.033830] ksys_mount+0x12d/0x140 [ 338.037446] __x64_sys_mount+0xbe/0x150 [ 338.041404] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 338.046409] do_syscall_64+0x1b1/0x800 [ 338.050285] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 338.055115] ? syscall_return_slowpath+0x5c0/0x5c0 [ 338.060032] ? syscall_return_slowpath+0x30f/0x5c0 [ 338.064948] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 338.070304] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 338.075136] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 338.080309] RIP: 0033:0x455979 [ 338.083481] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 338.091173] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 338.098429] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 2033/05/18 03:37:03 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:03 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup(r0) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffff9c, 0x84, 0x72, &(0x7f00000000c0)={0x0, 0xffff, 0x10}, &(0x7f0000000100)=0xc) setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r1, 0x84, 0x18, &(0x7f0000000140)={r2, 0x80000001}, 0x8) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000080)=0x100000001, 0x13) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x2}, 0x1c) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}}, 0x1a) [ 338.105681] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 338.112934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 338.120189] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:37:03 executing program 0 (fault-call:0 fault-nth:46): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:03 executing program 6: sysfs$3(0x3) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000a2efc8)={&(0x7f0000f74000)={0x10}, 0xc, &(0x7f0000007000)={&(0x7f0000481000)=ANY=[@ANYBLOB="140000021d000b0100000e96000000f619000000"], 0x14}, 0x1}, 0x0) 2033/05/18 03:37:03 executing program 4: r0 = socket$inet6(0xa, 0x2, 0xfd) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={0x0, @in6={{0xa, 0x0, 0x0, @ipv4={[], [0xff, 0xff], @multicast2=0xe0000002}}}, 0x0, 0x0, 0x0, 0x0, 0x70}, 0x98) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000000)={0x0, 0x200, 0x20}, &(0x7f0000000040)=0xc) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000080)=@sack_info={r1, 0xbaa4, 0x400}, 0xc) 2033/05/18 03:37:03 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000140)='/dev/full\x00', 0x0, 0x0) setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000180)=@req3={0x912d, 0x3, 0x7f, 0x100000001, 0xff, 0x0, 0x7}, 0x1c) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) ioctl$DRM_IOCTL_RM_MAP(r1, 0x4028641b, &(0x7f0000000040)={&(0x7f0000ffd000/0x2000)=nil, 0x7, 0x0, 0x40, &(0x7f0000ffd000/0x2000)=nil, 0x6}) setsockopt$packet_rx_ring(r1, 0x107, 0x5, &(0x7f00000000c0)=@req={0x2, 0xe0c, 0x2, 0x3ff}, 0x10) r2 = gettid() ptrace$pokeuser(0x6, r2, 0x0, 0x9) setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000100)='reno\x00', 0x5) setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000001c0)='veno\x00', 0x5) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r1, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r1, 0x4010744d, &(0x7f0000001000)=""/174) 2033/05/18 03:37:03 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ipd_vti0\x00'}) 2033/05/18 03:37:03 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:03 executing program 6: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={&(0x7f0000016000)={0x10}, 0xc, &(0x7f000000b000)={&(0x7f0000000200)=@bridge_getlink={0x28, 0x12, 0x5, 0x0, 0x0, {0x7}, [@IFLA_NET_NS_FD={0x8, 0x1c}]}, 0x28}, 0x1}, 0x0) syz_open_dev$sndseq(&(0x7f0000000000)='/dev/snd/seq\x00', 0x0, 0x2000) [ 338.287167] l2tp_ppp: sess 4/0: set debug=cf10464f [ 338.302221] l2tp_ppp: sess 4/0: get flags=0 [ 338.325151] FAULT_INJECTION: forcing a failure. [ 338.325151] name failslab, interval 1, probability 0, space 0, times 0 [ 338.336485] CPU: 0 PID: 24146 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 338.343764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 338.353120] Call Trace: [ 338.355725] dump_stack+0x1b9/0x294 [ 338.359372] ? dump_stack_print_info.cold.2+0x52/0x52 [ 338.364579] ? perf_trace_lock_acquire+0xe3/0x980 [ 338.369462] should_fail.cold.4+0xa/0x1a [ 338.373539] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 338.378657] ? graph_lock+0x170/0x170 [ 338.382473] ? lock_downgrade+0x8e0/0x8e0 [ 338.386635] ? find_held_lock+0x36/0x1c0 [ 338.390709] ? __lock_is_held+0xb5/0x140 [ 338.394796] ? check_same_owner+0x320/0x320 [ 338.399129] ? rcu_note_context_switch+0x710/0x710 [ 338.404071] __should_failslab+0x124/0x180 [ 338.408321] should_failslab+0x9/0x14 [ 338.412130] kmem_cache_alloc_trace+0x2cb/0x780 [ 338.416812] ? set_blocksize+0x2c4/0x350 [ 338.420894] fuse_fill_super+0xc92/0x1e20 [ 338.425060] ? fuse_get_root_inode+0x190/0x190 [ 338.429660] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 338.435213] ? vsnprintf+0x242/0x1b40 [ 338.439033] ? pointer+0xa20/0xa20 [ 338.442600] ? vsprintf+0x40/0x40 [ 338.446067] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 338.451085] ? set_blocksize+0x2c4/0x350 [ 338.455140] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 338.460670] mount_bdev+0x30c/0x3e0 [ 338.464287] ? fuse_get_root_inode+0x190/0x190 [ 338.468860] fuse_mount_blk+0x34/0x40 [ 338.472649] mount_fs+0xae/0x328 [ 338.476006] vfs_kern_mount.part.34+0xd4/0x4d0 [ 338.480578] ? may_umount+0xb0/0xb0 [ 338.484192] ? _raw_read_unlock+0x22/0x30 [ 338.488324] ? __get_fs_type+0x97/0xc0 [ 338.492204] do_mount+0x564/0x3070 [ 338.495732] ? interrupt_entry+0xb1/0xf0 [ 338.499782] ? copy_mount_string+0x40/0x40 [ 338.504009] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 338.508762] ? retint_kernel+0x10/0x10 [ 338.512639] ? copy_mount_options+0x1e3/0x380 [ 338.517123] ? write_comp_data+0x11/0x70 [ 338.521175] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 338.526696] ? copy_mount_options+0x285/0x380 [ 338.531179] ksys_mount+0x12d/0x140 [ 338.534794] __x64_sys_mount+0xbe/0x150 [ 338.538753] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 338.543759] do_syscall_64+0x1b1/0x800 [ 338.547631] ? finish_task_switch+0x1ca/0x810 [ 338.552116] ? syscall_return_slowpath+0x5c0/0x5c0 [ 338.557034] ? syscall_return_slowpath+0x30f/0x5c0 [ 338.561951] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 338.567302] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 338.572131] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 338.577303] RIP: 0033:0x455979 [ 338.580474] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 2033/05/18 03:37:03 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:03 executing program 6: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000140)={0x26, 'aead\x00', 0x0, 0x0, 'authencesn(sha224-avx,xts-camellia-aesni-avx2)\x00'}, 0x58) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000580)={0x26, 'skcipher\x00', 0x0, 0x0, 'lrw(serpent)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000040)="0a0775b0d5e383e5b3b60ced5c54dbb7", 0x10) r2 = accept$alg(r1, 0x0, 0x0) sendto(r2, &(0x7f0000000100)="d1b35711e96902f46ec5c13d0998c228", 0x10, 0xffffffffffffffff, &(0x7f0000000440)=@nl=@kern={0x10}, 0x80) recvmsg(r2, &(0x7f0000000000)={&(0x7f0000000080)=@ethernet, 0x80, &(0x7f0000000200)=[{&(0x7f0000000140)=""/170, 0xffffffb7}], 0x1, &(0x7f0000000240)=""/148, 0xfffffffffffffe78}, 0x0) writev(r2, &(0x7f0000000380)=[{&(0x7f00000009c0)='+', 0x1}], 0x1) setsockopt$ALG_SET_AEAD_AUTHSIZE(r0, 0x117, 0x5, 0x0, 0x2000000002) 2033/05/18 03:37:03 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:03 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 338.588167] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 338.595421] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 338.602672] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 338.609923] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 338.617177] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:37:03 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x600) 2033/05/18 03:37:03 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) perf_event_open$cgroup(&(0x7f00000000c0)={0x3, 0x70, 0x6, 0x10001, 0x7e438f0d, 0x3, 0x0, 0x8, 0x90, 0x4, 0x4, 0x5, 0x2, 0x3, 0x0, 0x0, 0x7c51, 0x2, 0xb13f, 0x0, 0x3, 0x74, 0x6, 0x0, 0x8001, 0xff, 0x5, 0x6, 0x9, 0x8, 0x3ff, 0x80000001, 0xf, 0x3, 0x3, 0xffffffffffffffff, 0x1, 0x2, 0x0, 0x5, 0x4, @perf_config_ext={0xff, 0x1000}, 0x12400, 0x4, 0xffffffffffff9355, 0x2, 0x3, 0x3f, 0x6}, r0, 0x8, r0, 0xa) syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0x5, 0x303000) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) 2033/05/18 03:37:04 executing program 6: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00006ee000)='/dev/kvm\x00', 0x0, 0x0) r1 = perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = eventfd2(0x0, 0x0) fstat(r3, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0}) fstat(r1, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fchownat(r1, &(0x7f0000000080)='./file0\x00', r4, r5, 0x800) ioctl$KVM_IRQFD(r2, 0x4020ae76, &(0x7f00000000c0)={r3, 0x0, 0x2, r3}) ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000040)) 2033/05/18 03:37:04 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x0) listen(r0, 0x0) setsockopt$inet6_int(r0, 0x29, 0xb, &(0x7f0000000340)=0x1000000800006, 0x4) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$KVM_SET_ONE_REG(r1, 0x4010aeac, &(0x7f0000000100)={0x3, 0x7}) syz_emit_ethernet(0x4a, &(0x7f0000000040)={@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], [], {@ipv6={0x86dd, {0x0, 0x6, "d8652b", 0x14, 0x6, 0x0, @local={0xfe, 0x80, [], 0xaa}, @local={0xfe, 0x80, [], 0xaa}, {[], @tcp={{0x0, 0x4e20, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xa}}}}}}}, &(0x7f00000000c0)) 2033/05/18 03:37:04 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:04 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip\n_vti0\x00'}) 2033/05/18 03:37:04 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$ppp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ppp\x00', 0x523003, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) 2033/05/18 03:37:04 executing program 4: syz_mount_image$vfat(&(0x7f0000000300)='vfat\x00', &(0x7f00000003c0)='./file0/file<\x00', 0x9, 0x1, &(0x7f0000000400)=[{&(0x7f0000000440)="eb58906d6b66732e66617400020120000200808000f8000020004000000000000000000001", 0x2cb}], 0x218001, &(0x7f0000000040)=ANY=[]) mknod$loop(&(0x7f00000001c0)='./file0/file<\x00', 0x0, 0xffffffffffffffff) r0 = dup2(0xffffffffffffff9c, 0xffffffffffffff9c) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in6={{0xa, 0x4e23, 0x4f4a, @dev={0xfe, 0x80, [], 0x20}, 0x1}}, 0x8, 0x400}, &(0x7f0000000040)=0x90) getsockopt$inet_sctp6_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f00000000c0)={r1, 0x6}, &(0x7f0000000180)=0x8) 2033/05/18 03:37:04 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x4000000000000000) 2033/05/18 03:37:04 executing program 0 (fault-call:0 fault-nth:47): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) [ 339.244414] l2tp_ppp: sess 4/0: set debug=cf10464f [ 339.245685] FAULT_INJECTION: forcing a failure. [ 339.245685] name failslab, interval 1, probability 0, space 0, times 0 [ 339.259300] l2tp_ppp: sess 4/0: get flags=0 [ 339.260638] CPU: 1 PID: 24202 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 339.260649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 339.260660] Call Trace: [ 339.284155] dump_stack+0x1b9/0x294 [ 339.287776] ? dump_stack_print_info.cold.2+0x52/0x52 [ 339.292965] ? perf_trace_lock_acquire+0xe3/0x980 [ 339.297792] ? rcu_is_watching+0x85/0x140 [ 339.301928] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 339.307107] should_fail.cold.4+0xa/0x1a [ 339.311168] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 339.316261] ? kernel_text_address+0x79/0xf0 [ 339.320653] ? __unwind_start+0x166/0x330 [ 339.324789] ? __kernel_text_address+0xd/0x40 [ 339.329273] ? graph_lock+0x170/0x170 [ 339.333062] ? __save_stack_trace+0x7e/0xd0 [ 339.337386] ? find_held_lock+0x36/0x1c0 [ 339.341437] ? __lock_is_held+0xb5/0x140 [ 339.345493] ? check_same_owner+0x320/0x320 [ 339.349803] ? rcu_note_context_switch+0x710/0x710 [ 339.354724] __should_failslab+0x124/0x180 [ 339.358950] should_failslab+0x9/0x14 [ 339.362737] __kmalloc+0x2c8/0x760 [ 339.366269] ? match_number.isra.0+0xb6/0x260 [ 339.370762] match_number.isra.0+0xb6/0x260 [ 339.375072] ? match_strdup+0xa0/0xa0 [ 339.378858] ? match_wildcard+0x3c0/0x3c0 [ 339.383002] ? trace_hardirqs_on+0xd/0x10 [ 339.387146] match_octal+0x26/0x30 [ 339.390672] fuse_fill_super+0x615/0x1e20 [ 339.394812] ? fuse_get_root_inode+0x190/0x190 [ 339.399382] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 339.404908] ? vsnprintf+0x242/0x1b40 [ 339.408698] ? pointer+0xa20/0xa20 [ 339.412231] ? vsprintf+0x40/0x40 [ 339.415670] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 339.420671] ? set_blocksize+0x2c4/0x350 [ 339.424719] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 339.430274] mount_bdev+0x30c/0x3e0 [ 339.433895] ? fuse_get_root_inode+0x190/0x190 [ 339.438464] fuse_mount_blk+0x34/0x40 [ 339.442252] mount_fs+0xae/0x328 [ 339.445609] vfs_kern_mount.part.34+0xd4/0x4d0 [ 339.450175] ? may_umount+0xb0/0xb0 [ 339.453788] ? _raw_read_unlock+0x22/0x30 [ 339.457920] ? __get_fs_type+0x97/0xc0 [ 339.461796] do_mount+0x564/0x3070 [ 339.465328] ? copy_mount_string+0x40/0x40 [ 339.469550] ? rcu_pm_notify+0xc0/0xc0 [ 339.473429] ? copy_mount_options+0x5f/0x380 [ 339.477822] ? rcu_read_lock_sched_held+0x108/0x120 [ 339.482826] ? kmem_cache_alloc_trace+0x616/0x780 [ 339.487660] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 339.493186] ? _copy_from_user+0xdf/0x150 [ 339.497322] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 339.502844] ? copy_mount_options+0x285/0x380 [ 339.507326] ksys_mount+0x12d/0x140 [ 339.510939] __x64_sys_mount+0xbe/0x150 [ 339.514901] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 339.519906] do_syscall_64+0x1b1/0x800 [ 339.523778] ? finish_task_switch+0x1ca/0x810 [ 339.528261] ? syscall_return_slowpath+0x5c0/0x5c0 [ 339.533176] ? syscall_return_slowpath+0x30f/0x5c0 [ 339.538095] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 339.543449] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 339.548282] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 339.553456] RIP: 0033:0x455979 [ 339.556628] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 339.564320] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 339.571571] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 339.578825] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 339.586082] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 339.593334] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:37:04 executing program 5: r0 = socket(0x40000000015, 0x5, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000001c0)={0x0, 0x0}, &(0x7f0000000200)=0x5) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000100)={0x0, 0x8c, &(0x7f0000000040)=[@in6={0xa, 0x4e20, 0xffff, @local={0xfe, 0x80, [], 0xaa}}, @in6={0xa, 0x4e24, 0x4, @empty, 0x8}, @in6={0xa, 0x4e21, 0x7fffffff, @dev={0xfe, 0x80, [], 0x17}, 0xff}, @in6={0xa, 0x4e23, 0x7f, @empty, 0x7}, @in6={0xa, 0x4e24, 0x1f, @ipv4={[], [0xff, 0xff], @loopback=0x7f000001}, 0x98}]}, &(0x7f0000000140)=0x10) setsockopt$inet_sctp_SCTP_PR_SUPPORTED(r0, 0x84, 0x71, &(0x7f0000000180)={r2, 0x4}, 0x8) setresuid(r1, r1, r1) setuid(r1) syz_open_dev$admmidi(&(0x7f0000000280)='/dev/admmidi#\x00', 0xda, 0x1) 2033/05/18 03:37:04 executing program 4: r0 = syz_open_dev$sndctrl(&(0x7f0000000140)='/dev/snd/controlC#\x00', 0x19, 0x2) mmap(&(0x7f000090c000/0x3000)=nil, 0x3000, 0x0, 0x32, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_TLV_COMMAND(r0, 0xc008551c, &(0x7f0000000040)=ANY=[@ANYBLOB="f6ffffffffffffff"]) 2033/05/18 03:37:04 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip7_vti0\x00'}) 2033/05/18 03:37:04 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:04 executing program 0 (fault-call:0 fault-nth:48): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:04 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x10000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040)='/dev/rfkill\x00', 0x1, 0x0) ioctl$EVIOCGEFFECTS(r0, 0x80044584, &(0x7f00000001c0)=""/155) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) write$binfmt_misc(r0, &(0x7f00000002c0)={'syz0', "fa1b975c86f52206ddbf5601a44015bae74ec9730cce640150d37110073a423883e358263a7eab4c2e67496c2b70ef91d61572c05d19400b956f90371f7a0cac628235983bcbb8db4500e23b8064"}, 0x52) ioctl$DRM_IOCTL_AUTH_MAGIC(r1, 0x40046411, &(0x7f0000000280)=0x9) ioctl$EVIOCGPROP(r1, 0xc004743e, &(0x7f00000000c0)=""/246) pkey_alloc(0x0, 0x65854fc16ac6e585) ioctl$EVIOCGREP(r1, 0x4010744d, &(0x7f0000001000)=""/174) ioctl$TIOCLINUX3(r1, 0x541c, &(0x7f0000000340)=0x3) ioctl$KVM_ENABLE_CAP_CPU(r0, 0x4068aea3, &(0x7f0000000380)={0x7b, 0x0, [0x342f, 0x1, 0x4]}) [ 339.731790] l2tp_ppp: sess 4/0: set debug=cf10464f 2033/05/18 03:37:04 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x700000000000000) [ 339.758477] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:37:04 executing program 5: syz_emit_ethernet(0xfffffffffffffea2, &(0x7f0000000080)={@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, [], {@ipv6={0x86dd, {0x0, 0x6, "50a09c", 0x8, 0x4, 0x0, @remote={0xfe, 0x80, [], 0xbb}, @local={0xfe, 0x80, [], 0xaa}, {[], @udp={0x0, 0x0, 0x8}}}}}}, &(0x7f00000000c0)={0x0, 0x3, [0xa8a, 0x82a]}) [ 339.902367] FAULT_INJECTION: forcing a failure. [ 339.902367] name failslab, interval 1, probability 0, space 0, times 0 [ 339.913662] CPU: 1 PID: 24230 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 339.920943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 339.930298] Call Trace: [ 339.932880] dump_stack+0x1b9/0x294 [ 339.936497] ? dump_stack_print_info.cold.2+0x52/0x52 [ 339.941672] ? perf_trace_lock_acquire+0xe3/0x980 [ 339.946510] should_fail.cold.4+0xa/0x1a [ 339.950560] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 339.955648] ? perf_trace_lock+0x900/0x900 [ 339.959867] ? mount_fs+0xae/0x328 [ 339.963394] ? do_mount+0x564/0x3070 [ 339.967093] ? ksys_mount+0x12d/0x140 [ 339.970877] ? __x64_sys_mount+0xbe/0x150 [ 339.975012] ? do_syscall_64+0x1b1/0x800 [ 339.979063] ? graph_lock+0x170/0x170 [ 339.982851] ? find_held_lock+0x36/0x1c0 [ 339.986898] ? find_held_lock+0x36/0x1c0 [ 339.990948] ? __lock_is_held+0xb5/0x140 [ 339.995004] ? check_same_owner+0x320/0x320 [ 339.999321] ? rcu_note_context_switch+0x710/0x710 [ 340.004237] ? kasan_check_read+0x11/0x20 [ 340.008373] __should_failslab+0x124/0x180 [ 340.012596] should_failslab+0x9/0x14 [ 340.016381] kmem_cache_alloc_node_trace+0x26f/0x770 [ 340.021475] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 340.026999] ? refcount_sub_and_test+0x212/0x330 [ 340.031755] bdi_alloc_node+0x67/0xe0 [ 340.035543] super_setup_bdi_name+0x8b/0x220 [ 340.039949] ? kill_block_super+0x100/0x100 [ 340.044257] ? rcu_read_lock_sched_held+0x108/0x120 [ 340.049260] ? kmem_cache_alloc_trace+0x616/0x780 [ 340.054099] fuse_fill_super+0xe6e/0x1e20 [ 340.058239] ? fuse_get_root_inode+0x190/0x190 [ 340.062813] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 340.068336] ? vsnprintf+0x242/0x1b40 [ 340.072127] ? pointer+0xa20/0xa20 [ 340.075660] ? vsprintf+0x40/0x40 [ 340.079100] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 340.084104] ? set_blocksize+0x2c4/0x350 [ 340.088153] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 340.093677] mount_bdev+0x30c/0x3e0 [ 340.097288] ? fuse_get_root_inode+0x190/0x190 [ 340.101944] fuse_mount_blk+0x34/0x40 [ 340.105731] mount_fs+0xae/0x328 [ 340.109093] vfs_kern_mount.part.34+0xd4/0x4d0 [ 340.113662] ? may_umount+0xb0/0xb0 [ 340.117275] ? _raw_read_unlock+0x22/0x30 [ 340.121407] ? __get_fs_type+0x97/0xc0 [ 340.125282] do_mount+0x564/0x3070 [ 340.128811] ? copy_mount_string+0x40/0x40 [ 340.133037] ? rcu_pm_notify+0xc0/0xc0 [ 340.136917] ? copy_mount_options+0x5f/0x380 [ 340.141310] ? rcu_read_lock_sched_held+0x108/0x120 [ 340.146322] ? kmem_cache_alloc_trace+0x616/0x780 [ 340.151152] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 340.156675] ? _copy_from_user+0xdf/0x150 [ 340.160813] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 340.166334] ? copy_mount_options+0x285/0x380 [ 340.170820] ksys_mount+0x12d/0x140 [ 340.174434] __x64_sys_mount+0xbe/0x150 [ 340.178394] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 340.183397] do_syscall_64+0x1b1/0x800 [ 340.187271] ? syscall_return_slowpath+0x5c0/0x5c0 [ 340.192188] ? syscall_return_slowpath+0x30f/0x5c0 [ 340.197105] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 340.202457] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 340.207288] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 340.212463] RIP: 0033:0x455979 [ 340.215646] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 340.223339] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 340.230594] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 340.237846] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 340.245097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 2033/05/18 03:37:05 executing program 6: r0 = syz_open_dev$usbmon(&(0x7f0000000000)='/dev/usbmon#\x00', 0x0, 0x100000000800) finit_module(r0, &(0x7f0000000040)='/dev/usbmon#\x00', 0x3) 2033/05/18 03:37:05 executing program 4: r0 = getpid() r1 = userfaultfd(0x0) sched_setattr(r0, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) clone(0x200, &(0x7f0000fbf000), &(0x7f0000000000), &(0x7f0000000100), &(0x7f00000000c0)) sched_rr_get_interval(r0, &(0x7f0000000040)) mknod(&(0x7f0000f80000)='./file0\x00', 0x1040, 0x0) execve(&(0x7f0000f8aff8)='./file0\x00', &(0x7f0000a7bfc8), &(0x7f00006fcff0)) r2 = gettid() kcmp(r2, r0, 0x0, r1, r1) ioctl(r1, 0xf2a9, &(0x7f0000000140)="0e43e13acd8b52ff6a2d187a64a8460d8b9e8ca33e43e089b9204148ec8cd5be26e3f94f54517ee5c1051b2906bf772dc374c07210debc75e06bb6d4194a56e11625f323073209") kcmp$KCMP_EPOLL_TFD(r0, r0, 0x7, 0xffffffffffffffff, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff, 0x401}) open(&(0x7f0000363ff8)='./file0\x00', 0x401, 0x0) 2033/05/18 03:37:05 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:05 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip0_vti0\x00'}) 2033/05/18 03:37:05 executing program 5: socketpair$unix(0x1, 0x1, 0x0, &(0x7f000000d000)={0xffffffffffffffff, 0xffffffffffffffff}) mknod(&(0x7f0000000ffa)='./bus\x00', 0x1000, 0x0) close(r1) open(&(0x7f0000b3b000)='./bus\x00', 0x0, 0x0) syz_open_dev$amidi(&(0x7f0000000000)='/dev/amidi#\x00', 0x9, 0x0) dup2(r0, r1) 2033/05/18 03:37:05 executing program 3: r0 = perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) ioctl$GIO_FONTX(r1, 0x4b6b, &(0x7f0000000040)=""/13) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r1, 0xc004743e, &(0x7f00000006c0)=""/246) r2 = gettid() ptrace$peekuser(0x3, r2, 0xfffffffffffffffb) accept4$netrom(r1, 0x0, &(0x7f00000000c0), 0x800) ioctl$EVIOCGREP(r1, 0x4010744d, &(0x7f0000001000)=""/174) ioctl$TCSBRK(r1, 0x5409, 0x4) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ptmx\x00', 0x0, 0x0) fcntl$getownex(r0, 0x10, &(0x7f0000000140)) 2033/05/18 03:37:05 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x3000000) 2033/05/18 03:37:05 executing program 0 (fault-call:0 fault-nth:49): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) [ 340.252352] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 340.330674] l2tp_ppp: sess 4/0: set debug=cf10464f [ 340.353640] l2tp_ppp: sess 4/0: get flags=0 [ 340.378116] FAULT_INJECTION: forcing a failure. [ 340.378116] name failslab, interval 1, probability 0, space 0, times 0 [ 340.389429] CPU: 0 PID: 24264 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 340.396699] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 340.406039] Call Trace: [ 340.408620] dump_stack+0x1b9/0x294 [ 340.412241] ? dump_stack_print_info.cold.2+0x52/0x52 [ 340.417415] ? perf_trace_lock_acquire+0xe3/0x980 [ 340.422251] should_fail.cold.4+0xa/0x1a [ 340.426300] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 340.431391] ? graph_lock+0x170/0x170 [ 340.435179] ? lock_downgrade+0x8e0/0x8e0 [ 340.439318] ? find_held_lock+0x36/0x1c0 [ 340.443366] ? __lock_is_held+0xb5/0x140 [ 340.447421] ? check_same_owner+0x320/0x320 [ 340.451731] ? rcu_note_context_switch+0x710/0x710 [ 340.456651] __should_failslab+0x124/0x180 [ 340.460873] should_failslab+0x9/0x14 [ 340.464659] kmem_cache_alloc_trace+0x2cb/0x780 [ 340.469316] ? set_blocksize+0x2c4/0x350 [ 340.473369] fuse_fill_super+0xc92/0x1e20 [ 340.477506] ? fuse_get_root_inode+0x190/0x190 [ 340.482077] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 340.487603] ? vsnprintf+0x242/0x1b40 [ 340.491396] ? pointer+0xa20/0xa20 [ 340.494932] ? vsprintf+0x40/0x40 [ 340.498374] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 340.503373] ? set_blocksize+0x2c4/0x350 [ 340.507438] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 340.512967] mount_bdev+0x30c/0x3e0 [ 340.516582] ? fuse_get_root_inode+0x190/0x190 [ 340.521151] fuse_mount_blk+0x34/0x40 [ 340.524938] mount_fs+0xae/0x328 [ 340.528296] vfs_kern_mount.part.34+0xd4/0x4d0 [ 340.532863] ? may_umount+0xb0/0xb0 [ 340.536477] ? _raw_read_unlock+0x22/0x30 [ 340.540608] ? __get_fs_type+0x97/0xc0 [ 340.544482] do_mount+0x564/0x3070 [ 340.548015] ? copy_mount_string+0x40/0x40 [ 340.552237] ? rcu_pm_notify+0xc0/0xc0 [ 340.556125] ? copy_mount_options+0x5f/0x380 [ 340.560518] ? rcu_read_lock_sched_held+0x108/0x120 [ 340.565521] ? kmem_cache_alloc_trace+0x616/0x780 [ 340.570351] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 340.575876] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 340.581396] ? copy_mount_options+0x285/0x380 [ 340.585881] ksys_mount+0x12d/0x140 [ 340.589494] __x64_sys_mount+0xbe/0x150 [ 340.593452] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 340.598454] do_syscall_64+0x1b1/0x800 [ 340.602328] ? finish_task_switch+0x1ca/0x810 [ 340.606812] ? syscall_return_slowpath+0x5c0/0x5c0 [ 340.611728] ? syscall_return_slowpath+0x30f/0x5c0 [ 340.616644] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 340.621995] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 340.626829] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 340.632005] RIP: 0033:0x455979 [ 340.635186] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 340.642885] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 340.650141] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 340.657393] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 340.664645] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 340.672275] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:37:06 executing program 5: r0 = syz_open_dev$sndseq(&(0x7f0000000040)='/dev/snd/seq\x00', 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r0, 0xc0a85320, &(0x7f0000418f50)={{0x80}, "0a4ceaa05d9a00000000000000039b3fd4cec307e8ef3d13eb790ec9c65abaf90d229db692542e5b78f8b29e0a27800f0000000000000009fb42f376589701a4"}) ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r0, 0x40505330, &(0x7f0000ec6fb0)={{0x0, 0x1}, {0x80}}) ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r0, 0xc0505350, &(0x7f0000000140)={{0x0, 0x10001}, {0xffffff80}}) ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r0, 0xc0505350, &(0x7f0000000080)={{0x6, 0x1}, {0x100, 0x9}, 0x0, 0x4, 0x4}) pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x84000) read$eventfd(r1, &(0x7f0000000100), 0x8) 2033/05/18 03:37:06 executing program 0 (fault-call:0 fault-nth:50): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:06 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x40, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) 2033/05/18 03:37:06 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x18000000) 2033/05/18 03:37:06 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00005f4000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(twofish-asm)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000052000)="e5fcb5bf91aa7855fbcdfef1ddb42113", 0x10) r1 = accept$alg(r0, 0x0, 0x0) write(r1, &(0x7f00000004c0)="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", 0x170) readv(r1, &(0x7f0000000000)=[{&(0x7f000070bf52)=""/174, 0x2a}], 0x2d2) 2033/05/18 03:37:06 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:06 executing program 6: r0 = syz_open_dev$sndctrl(&(0x7f0000000000)='/dev/snd/controlC#\x00', 0x0, 0x0) r1 = creat(&(0x7f0000000440)='./file0\x00', 0x80) ioctl$LOOP_SET_STATUS(r1, 0x4c02, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x7, 0x12, 0x0, 0x19, "6c8d5b0a8b8cea5d7865508073611e5bb46e0ab3b34816c55c96310d252c1011d48378bcb935eb1d2f544aa05804e34821a188aca81ea94200bc9209e596f415", "aea07d158874240ece9c75bf3aebeedbffeedb93c8d51a4ff229822801b663e4", [0x80000000, 0x7ba]}) openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000004c0)='./cgroup.net/syz1\x00', 0x200002, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, &(0x7f0000001000)={{0x0, 0x0, 0x0, 0x0, "a399e9c5580000040000000000f07531dc6150defaca6eddaf1b8b8c36184c8f013be96ea31efbd29ca9b9d7"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "655397eb4a90dc0d4bbd7430f3aa50c6a17a4cbe46f9a27f671d171c4a2450f288493929c1e0fe9468a5eb556554a2803b25502ef5bc450d5f58f28b16e1198d", &(0x7f0000b0bfb2)="446465762f736e642f636f6e74726f6c4323009cb55a60fb8d54423e20546bd33125000000000000fd03e22965bb699aabcb8311b779fbf5497252581e19688501001a7898bd7751951d53b93ab1", 0x4e, [], [0x2, 0x1, 0x80000001]}) r2 = openat$audio(0xffffffffffffff9c, &(0x7f0000000240)='/dev/audio\x00', 0x1, 0x0) ioctl$VT_RESIZEX(r1, 0x560a, &(0x7f0000000500)={0x0, 0x100000801, 0x5, 0x2, 0x1, 0x3}) setsockopt$inet_mtu(r1, 0x0, 0xa, &(0x7f0000000580)=0x5, 0x4) getsockopt$netrom_NETROM_T2(r2, 0x103, 0x2, &(0x7f00000002c0)=0x10000, &(0x7f0000000300)=0x4) r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000180)='IPVS\x00') sendmsg$IPVS_CMD_GET_DAEMON(r2, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f00000001c0)={&(0x7f0000000740)={0x9c, r3, 0x30, 0x70bd2d, 0x25dfdbff, {0xb}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x4}, @IPVS_CMD_ATTR_DAEMON={0x30, 0x3, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x3}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x10001}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'nr0\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xe4}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, [@IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x81}]}, @IPVS_CMD_ATTR_DEST={0x1c, 0x2, [@IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0xfff}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x9}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x80}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x10000}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x7fffffff}]}, 0x9c}, 0x1, 0x0, 0x0, 0x44004}, 0x20000000) fcntl$getownex(r0, 0x10, &(0x7f0000000280)={0x0, 0x0}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000000340)={0x105000}) sendmsg$IPVS_CMD_NEW_DEST(r2, &(0x7f0000000a40)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000a00)={&(0x7f0000000880)={0x54, r3, 0x110, 0x70bd29, 0x25dfdbfd, {0x5}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x4}, @IPVS_CMD_ATTR_DAEMON={0x4, 0x3}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x6}, @IPVS_CMD_ATTR_DEST={0x14, 0x2, [@IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0xfffffffffffffff7}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x1}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x7ff}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x9}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x5}]}, 0x54}, 0x1, 0x0, 0x0, 0x4040}, 0x8000) sync_file_range(r1, 0x1, 0x2, 0x0) unshare(0x40500) ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r0, 0xc1105517, &(0x7f00000005c0)={{0xfff, 0x4, 0x3ff, 0x8, "738f978a7adaa9e248be59e89712bd996491d8ff945669601fff404fef9b34c5fcc0e8ea0bca8d3db9df2fa1", 0x4}, 0x0, 0x0, 0x3, r4, 0x0, 0x1f, "e12e13abcfc05b31f7de6ded407004df6038445e5f2cd336344a94c36eb22391d833859acd664c013989d4c9b717618ecc22e3a1a8852f3991a0ae0eaca1228a", &(0x7f0000000540)='queue1\x00', 0x10a, [], [0x9, 0x1, 0x403, 0xff]}) ioctl$DRM_IOCTL_MODE_SETCRTC(0xffffffffffffffff, 0xc06864a2, &(0x7f0000001000)={&(0x7f0000000100), 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, "b1abe2da02000000e1000000fc00000000000000dc98784b49e0007e00002fd9"}}) ioctl$SNDRV_SEQ_IOCTL_GET_NAMED_QUEUE(r0, 0xc08c5336, &(0x7f0000000040)={0x9, 0x1ff, 0x3f, 'queue1\x00', 0x5}) lseek(r2, 0x0, 0xffffffffffffffff) syz_open_dev$sndctrl(&(0x7f0000000100)='/dev/snd/controlC#\x00', 0x5, 0x2) sendmsg$netrom(r2, &(0x7f0000000700)={&(0x7f0000000800)=@full={{0x3, {"a0da9412fe4255"}, 0x7478}, [{"b1aa0d81456468"}, {"531dabe253450d"}, {"75922024a4944f"}, {"3bb4da3806dd1e"}, {"a3bbc0f36bfad8"}, {"73ab4a12cc9a18"}, {"107eb3a8c4ad5e"}, {"0d33b518b2a2e8"}]}, 0xfffffffffffffda7, &(0x7f0000000740), 0x25, &(0x7f0000000980)=ANY=[], 0x0, 0x40}, 0x800) ioctl$SNDRV_CTL_IOCTL_PVERSION(r0, 0xc1105517, &(0x7f0000000900)=""/250) 2033/05/18 03:37:06 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip+_vti0\x00'}) [ 341.299748] FAULT_INJECTION: forcing a failure. [ 341.299748] name failslab, interval 1, probability 0, space 0, times 0 [ 341.311116] CPU: 1 PID: 24289 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 341.313081] l2tp_ppp: sess 4/0: set debug=cf10464f [ 341.318391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 341.318397] Call Trace: [ 341.318422] dump_stack+0x1b9/0x294 [ 341.318444] ? dump_stack_print_info.cold.2+0x52/0x52 [ 341.318466] ? perf_trace_lock_acquire+0xe3/0x980 [ 341.348879] should_fail.cold.4+0xa/0x1a [ 341.352935] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 341.358037] ? graph_lock+0x170/0x170 [ 341.361823] ? lock_downgrade+0x8e0/0x8e0 [ 341.365958] ? find_held_lock+0x36/0x1c0 [ 341.370011] ? __lock_is_held+0xb5/0x140 [ 341.374071] ? check_same_owner+0x320/0x320 [ 341.378382] ? rcu_note_context_switch+0x710/0x710 [ 341.383303] __should_failslab+0x124/0x180 [ 341.387524] should_failslab+0x9/0x14 [ 341.391313] kmem_cache_alloc_trace+0x2cb/0x780 [ 341.395969] ? set_blocksize+0x2c4/0x350 [ 341.400031] fuse_fill_super+0xc92/0x1e20 [ 341.404170] ? fuse_get_root_inode+0x190/0x190 [ 341.408753] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 341.414278] ? vsnprintf+0x242/0x1b40 [ 341.418069] ? pointer+0xa20/0xa20 [ 341.421602] ? vsprintf+0x40/0x40 [ 341.425051] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 341.430051] ? set_blocksize+0x2c4/0x350 [ 341.434103] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 341.439633] mount_bdev+0x30c/0x3e0 [ 341.443244] ? fuse_get_root_inode+0x190/0x190 [ 341.447812] fuse_mount_blk+0x34/0x40 [ 341.451603] mount_fs+0xae/0x328 [ 341.454962] vfs_kern_mount.part.34+0xd4/0x4d0 [ 341.459528] ? may_umount+0xb0/0xb0 [ 341.463141] ? _raw_read_unlock+0x22/0x30 [ 341.467284] ? __get_fs_type+0x97/0xc0 [ 341.471159] do_mount+0x564/0x3070 [ 341.474690] ? do_raw_spin_unlock+0x9e/0x2e0 [ 341.479086] ? copy_mount_string+0x40/0x40 [ 341.483305] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 341.488308] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 341.493050] ? retint_kernel+0x10/0x10 [ 341.496928] ? copy_mount_options+0x1f0/0x380 [ 341.501407] ? copy_mount_options+0x1fa/0x380 [ 341.505890] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 341.511422] ? copy_mount_options+0x285/0x380 [ 341.515907] ksys_mount+0x12d/0x140 [ 341.519523] __x64_sys_mount+0xbe/0x150 [ 341.523481] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 341.528484] do_syscall_64+0x1b1/0x800 [ 341.532355] ? finish_task_switch+0x1ca/0x810 [ 341.536836] ? syscall_return_slowpath+0x5c0/0x5c0 [ 341.541750] ? syscall_return_slowpath+0x30f/0x5c0 [ 341.546666] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 341.552025] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 341.556858] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 341.562037] RIP: 0033:0x455979 [ 341.565211] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 341.572907] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 341.580160] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 341.587412] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 341.594664] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 341.601920] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 341.617134] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:37:06 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip%_vti0\x00'}) 2033/05/18 03:37:06 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:06 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) socketpair$inet_smc(0x2b, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_inet_SIOCGARP(r1, 0x8954, &(0x7f0000000600)={{0x2, 0x4e22, @local={0xac, 0x14, 0x14, 0xaa}}, {0x0, @random="9d31d356eaf6"}, 0x11e, {0x2, 0x4e27, @multicast2=0xe0000002}}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000fafff7)='/dev/kvm\x00', 0x0, 0x0) ftruncate(r2, 0x1) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_ENABLE_CAP(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000040)={0x79}) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000100)={0x0, 0xc8, &(0x7f0000000400)=[@in6={0xa, 0x4e21, 0x9, @dev={0xfe, 0x80, [], 0x1e}, 0x7}, @in6={0xa, 0x4e24, 0x2, @empty, 0x1}, @in6={0xa, 0x4e22, 0x100000000, @ipv4={[], [0xff, 0xff], @local={0xac, 0x14, 0x14, 0xaa}}, 0x1}, @in6={0xa, 0x4e20, 0x800, @loopback={0x0, 0x1}}, @in={0x2, 0x4e21, @multicast1=0xe0000001}, @in6={0xa, 0x4e21, 0xdd4, @local={0xfe, 0x80, [], 0xaa}, 0x101}, @in={0x2, 0x4e21, @broadcast=0xffffffff}, @in6={0xa, 0x4e22, 0x4, @mcast1={0xff, 0x1, [], 0x1}, 0x2}]}, &(0x7f0000000180)=0x10) getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffff9c, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x3c, &(0x7f0000000240)=[@in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0xb}}, @in6={0xa, 0x4e21, 0x3, @empty, 0xffff}, @in={0x2, 0x4e23, @broadcast=0xffffffff}]}, &(0x7f0000000300)=0x10) getsockopt$inet_sctp6_SCTP_STATUS(r2, 0x84, 0xe, &(0x7f0000000500)={r4, 0x389, 0x100, 0x0, 0xfffffffffffff000, 0x8, 0x6, 0xadf1, {r5, @in6={{0xa, 0x4e20, 0x0, @dev={0xfe, 0x80, [], 0x12}, 0x7}}, 0x0, 0x100000001, 0xd48, 0x4618718, 0x9}}, &(0x7f0000000340)=0xb0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_GSI_ROUTING(r3, 0x4008ae6a, &(0x7f00000000c0)={0x1, 0x0, [{0x0, 0x4, 0x0, 0x0, @irqchip={0x80}}]}) r6 = socket$vsock_stream(0x28, 0x1, 0x0) syz_open_dev$sndpcmc(&(0x7f0000000a00)='/dev/snd/pcmC#D#c\x00', 0x200, 0x2080) openat$rfkill(0xffffffffffffff9c, &(0x7f0000000a40)='/dev/rfkill\x00', 0x0, 0x0) ioctl$TIOCGSID(r0, 0x5429, &(0x7f0000000780)=0x0) lstat(&(0x7f0000000880)='./file0\x00', &(0x7f00000008c0)={0x0, 0x0, 0x0, 0x0, 0x0}) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000940)={0x0, 0x0, 0x0}, &(0x7f0000000980)=0xc) setsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000009c0)={r7, r8, r9}, 0xc) r10 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r6, 0x28, 0x2, &(0x7f00000001c0)=0x2, 0x8) ioctl$int_out(r0, 0x0, &(0x7f00000000c0)) getsockopt$sock_cred(r10, 0x1, 0x11, &(0x7f00000002c0), &(0x7f00000003c0)=0xfffffffffffffe0a) sendmsg$nl_generic(r0, &(0x7f0000018000)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f000000e000)={&(0x7f0000000e40)=ANY=[@ANYBLOB="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"], 0x1}, 0x1}, 0x0) mknod$loop(&(0x7f0000000200)='./file0\x00', 0x4, 0x1) mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount(&(0x7f000091dff8)='./file0\x00', &(0x7f0000343ff8)='./file0\x00', &(0x7f0000fb5ffc)='nfs\x00', 0x0, &(0x7f000000a000)) 2033/05/18 03:37:06 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) connect$unix(r0, &(0x7f00000000c0)=@file={0x1, './file0\x00'}, 0x6e) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) 2033/05/18 03:37:06 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000023000)={&(0x7f0000024000)={0x10}, 0xc, &(0x7f0000000140)={&(0x7f0000010ec4)={0x1c, 0x2d, 0xb01, 0x0, 0x0, {0x3}, [@typed={0x8, 0x0, @uid}]}, 0x1c}, 0x1}, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'rfc3686(ctr(aes-aesni))\x00'}, 0x58) close(r0) [ 341.720422] l2tp_ppp: sess 4/0: set debug=cf10464f 2033/05/18 03:37:06 executing program 0 (fault-call:0 fault-nth:51): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) [ 341.745272] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:37:06 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x1000000) 2033/05/18 03:37:06 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 341.837508] FAULT_INJECTION: forcing a failure. [ 341.837508] name failslab, interval 1, probability 0, space 0, times 0 [ 341.848853] CPU: 0 PID: 24326 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 341.856132] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 341.865490] Call Trace: [ 341.868097] dump_stack+0x1b9/0x294 [ 341.871745] ? dump_stack_print_info.cold.2+0x52/0x52 [ 341.876948] ? perf_trace_lock_acquire+0xe3/0x980 [ 341.881812] should_fail.cold.4+0xa/0x1a [ 341.885886] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 341.891002] ? perf_trace_lock+0x900/0x900 [ 341.895241] ? graph_lock+0x170/0x170 [ 341.899050] ? graph_lock+0x170/0x170 [ 341.902863] ? find_held_lock+0x36/0x1c0 [ 341.906938] ? __lock_is_held+0xb5/0x140 [ 341.911024] ? check_same_owner+0x320/0x320 [ 341.915363] ? rcu_note_context_switch+0x710/0x710 [ 341.920303] __should_failslab+0x124/0x180 [ 341.924547] should_failslab+0x9/0x14 [ 341.928355] kmem_cache_alloc_trace+0x2cb/0x780 [ 341.933032] ? _raw_spin_unlock_irqrestore+0x74/0xc0 [ 341.938152] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 341.943177] wb_congested_get_create+0x1ca/0x450 [ 341.947929] ? wb_wakeup_delayed+0xf0/0xf0 [ 341.952156] ? __lockdep_init_map+0x105/0x590 [ 341.956638] wb_init+0x62e/0x9e0 [ 341.959995] ? bdi_put+0x180/0x180 [ 341.963538] ? mark_held_locks+0xc9/0x160 [ 341.967670] ? do_mount+0x564/0x3070 [ 341.971370] ? __raw_spin_lock_init+0x1c/0x100 [ 341.975941] ? mark_held_locks+0xc9/0x160 [ 341.980083] ? __raw_spin_lock_init+0x1c/0x100 [ 341.984654] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 341.989659] ? lockdep_init_map+0x9/0x10 [ 341.993707] bdi_init+0x353/0x510 [ 341.997146] ? wb_init+0x9e0/0x9e0 [ 342.000672] ? bdi_alloc_node+0x67/0xe0 [ 342.004630] ? bdi_alloc_node+0x67/0xe0 [ 342.008591] ? rcu_read_lock_sched_held+0x108/0x120 [ 342.013595] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 342.018858] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 342.024380] ? refcount_sub_and_test+0x212/0x330 [ 342.029122] bdi_alloc_node+0x81/0xe0 [ 342.032910] super_setup_bdi_name+0x8b/0x220 [ 342.037302] ? kill_block_super+0x100/0x100 [ 342.041608] ? rcu_read_lock_sched_held+0x108/0x120 [ 342.046609] ? kmem_cache_alloc_trace+0x616/0x780 [ 342.051444] fuse_fill_super+0xe6e/0x1e20 [ 342.055583] ? fuse_get_root_inode+0x190/0x190 [ 342.060154] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 342.065686] ? vsnprintf+0x242/0x1b40 [ 342.069477] ? pointer+0xa20/0xa20 [ 342.073018] ? vsprintf+0x40/0x40 [ 342.076460] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 342.081463] ? set_blocksize+0x2c4/0x350 [ 342.085511] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 342.091038] mount_bdev+0x30c/0x3e0 [ 342.094658] ? fuse_get_root_inode+0x190/0x190 [ 342.099226] fuse_mount_blk+0x34/0x40 [ 342.103018] mount_fs+0xae/0x328 [ 342.106374] vfs_kern_mount.part.34+0xd4/0x4d0 [ 342.110942] ? may_umount+0xb0/0xb0 [ 342.114555] ? _raw_read_unlock+0x22/0x30 [ 342.118685] ? __get_fs_type+0x97/0xc0 [ 342.122570] do_mount+0x564/0x3070 [ 342.126107] ? copy_mount_string+0x40/0x40 [ 342.130327] ? rcu_pm_notify+0xc0/0xc0 [ 342.134212] ? copy_mount_options+0x5f/0x380 [ 342.138604] ? rcu_read_lock_sched_held+0x108/0x120 [ 342.143605] ? kmem_cache_alloc_trace+0x616/0x780 [ 342.148439] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 342.153958] ? copy_mount_options+0x285/0x380 [ 342.158440] ksys_mount+0x12d/0x140 [ 342.162056] __x64_sys_mount+0xbe/0x150 [ 342.166027] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 342.171034] do_syscall_64+0x1b1/0x800 [ 342.174911] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 342.179739] ? syscall_return_slowpath+0x5c0/0x5c0 [ 342.184653] ? syscall_return_slowpath+0x30f/0x5c0 [ 342.189569] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 342.194920] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 342.199751] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 342.204924] RIP: 0033:0x455979 [ 342.208097] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 342.215791] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 342.223044] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 342.230302] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 342.237555] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 342.244807] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:37:07 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip#_vti0\x00'}) 2033/05/18 03:37:07 executing program 6: r0 = syz_open_dev$admmidi(&(0x7f0000000080)='/dev/admmidi#\x00', 0x1, 0x20000) getsockopt$inet_sctp6_SCTP_MAXSEG(0xffffffffffffffff, 0x84, 0xd, &(0x7f00000000c0)=@assoc_value={0x0, 0x7}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={r1, @in6={{0xa, 0x4e24, 0x0, @ipv4={[], [0xff, 0xff], @remote={0xac, 0x14, 0x14, 0xbb}}, 0x4000000}}, 0xebb, 0x101, 0x1, 0x1f, 0xd8}, 0x98) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000f56000)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000da9000)={0x2, 0x3, 0x0, 0x9, 0x10, 0x0, 0x0, 0x0, [@sadb_x_sa2={0x2, 0x13, 0x2}, @sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @mcast1={0xff, 0x1, [], 0x1}}}]}, 0x80}, 0x1}, 0x0) syz_open_dev$audion(&(0x7f0000000040)='/dev/audio#\x00', 0x1f, 0x8000) 2033/05/18 03:37:07 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) getsockopt$IPT_SO_GET_REVISION_MATCH(r0, 0x0, 0x42, &(0x7f0000000040)={'TPROXY\x00'}, &(0x7f00000000c0)=0x1e) r1 = syz_open_dev$binder(&(0x7f0000000240)='/dev/binder#\x00', 0x0, 0x2) ioctl$int_in(r1, 0x0, &(0x7f0000000280)=0x2) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) renameat2(r0, &(0x7f0000000100)='./file0\x00', r0, &(0x7f0000000140)='./file0\x00', 0x4) 2033/05/18 03:37:07 executing program 0 (fault-call:0 fault-nth:52): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:07 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:07 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="ce"], 0x1) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000025000/0x18000)=nil, &(0x7f0000000200)=[@textreal={0x8, &(0x7f0000000240)="0f08360f30ba430066edbaf80c66b8ac525a8566efbafc0c66b80010000066efba4200ec0f2257b80a008ed0f426650fc71866b95009000066b80800000066ba000000000f30", 0x46}], 0x1, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4b}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x2, 0x11f001, 0x2000, &(0x7f0000ffe000/0x2000)=nil}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:37:07 executing program 4: syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000000000086dd6050a09c00082c00fe80000000000000edff0000000000bbfe8000000000000000000000000000aa2c00000000089078"], &(0x7f0000000080)) 2033/05/18 03:37:07 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x100000000000000) [ 342.361530] FAULT_INJECTION: forcing a failure. [ 342.361530] name failslab, interval 1, probability 0, space 0, times 0 [ 342.372872] CPU: 1 PID: 24348 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 342.376007] l2tp_ppp: sess 4/0: set debug=cf10464f [ 342.380144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 342.380150] Call Trace: [ 342.380176] dump_stack+0x1b9/0x294 [ 342.380199] ? dump_stack_print_info.cold.2+0x52/0x52 [ 342.380216] ? perf_trace_lock_acquire+0xe3/0x980 [ 342.380239] should_fail.cold.4+0xa/0x1a [ 342.380259] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 342.401497] l2tp_ppp: sess 4/0: get flags=0 [ 342.405908] ? graph_lock+0x170/0x170 [ 342.405927] ? _raw_spin_unlock_irqrestore+0x74/0xc0 [ 342.405949] ? find_held_lock+0x36/0x1c0 [ 342.405969] ? __lock_is_held+0xb5/0x140 [ 342.406000] ? check_same_owner+0x320/0x320 [ 342.445461] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 342.450984] ? rcu_note_context_switch+0x710/0x710 [ 342.455903] __should_failslab+0x124/0x180 [ 342.460126] should_failslab+0x9/0x14 [ 342.463911] kmem_cache_alloc_trace+0x2cb/0x780 [ 342.468568] ? __raw_spin_lock_init+0x1c/0x100 [ 342.473143] device_create_groups_vargs+0xa7/0x270 [ 342.478060] device_create_vargs+0x46/0x60 [ 342.482281] bdi_register_va.part.10+0xbb/0x970 [ 342.486941] ? cgwb_kill+0x630/0x630 [ 342.490644] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 342.496164] ? bdi_init+0x416/0x510 [ 342.499775] ? wb_init+0x9e0/0x9e0 [ 342.503300] ? bdi_alloc_node+0x67/0xe0 [ 342.507595] ? bdi_alloc_node+0x67/0xe0 [ 342.511557] ? rcu_read_lock_sched_held+0x108/0x120 [ 342.516560] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 342.521825] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 342.527374] ? refcount_sub_and_test+0x212/0x330 [ 342.532117] bdi_register_va+0x68/0x80 [ 342.535995] super_setup_bdi_name+0x123/0x220 [ 342.540480] ? kill_block_super+0x100/0x100 [ 342.544791] ? kmem_cache_alloc_trace+0x616/0x780 [ 342.549629] fuse_fill_super+0xe6e/0x1e20 [ 342.553765] ? fuse_get_root_inode+0x190/0x190 [ 342.558340] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 342.563862] ? vsnprintf+0x242/0x1b40 [ 342.567661] ? pointer+0xa20/0xa20 [ 342.571194] ? vsprintf+0x40/0x40 [ 342.574636] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 342.579637] ? set_blocksize+0x2c4/0x350 [ 342.583686] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 342.589209] mount_bdev+0x30c/0x3e0 [ 342.592821] ? fuse_get_root_inode+0x190/0x190 [ 342.597388] fuse_mount_blk+0x34/0x40 [ 342.601175] mount_fs+0xae/0x328 [ 342.604533] vfs_kern_mount.part.34+0xd4/0x4d0 [ 342.609101] ? may_umount+0xb0/0xb0 [ 342.612714] ? _raw_read_unlock+0x22/0x30 [ 342.616857] ? __get_fs_type+0x97/0xc0 [ 342.620733] do_mount+0x564/0x3070 [ 342.624264] ? copy_mount_string+0x40/0x40 [ 342.628485] ? rcu_pm_notify+0xc0/0xc0 [ 342.632362] ? copy_mount_options+0x5f/0x380 [ 342.636754] ? rcu_read_lock_sched_held+0x108/0x120 [ 342.641755] ? kmem_cache_alloc_trace+0x616/0x780 [ 342.646591] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 342.652112] ? copy_mount_options+0x285/0x380 [ 342.656594] ksys_mount+0x12d/0x140 [ 342.660210] __x64_sys_mount+0xbe/0x150 [ 342.664168] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 342.669172] do_syscall_64+0x1b1/0x800 [ 342.673058] ? finish_task_switch+0x1ca/0x810 [ 342.677550] ? syscall_return_slowpath+0x5c0/0x5c0 [ 342.682465] ? syscall_return_slowpath+0x30f/0x5c0 [ 342.687382] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 342.692734] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 342.697567] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 342.702739] RIP: 0033:0x455979 [ 342.705911] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 342.713604] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 342.720856] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 342.728108] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 342.735359] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 342.742611] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 342.763237] binder: 24345:24347 ioctl 0 20000280 returned -22 [ 342.774697] binder: 24345:24357 ioctl 0 20000280 returned -22 2033/05/18 03:37:07 executing program 3: r0 = syz_open_dev$dspn(&(0x7f0000000180)='/dev/dsp#\x00', 0x4, 0x141000) perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r1, 0xc004743e, &(0x7f00000006c0)=""/246) getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r1, 0x84, 0xa, &(0x7f00000000c0)={0x9, 0x3, 0x8000, 0x2, 0x0, 0x401, 0x1ff, 0x4, 0x0}, &(0x7f0000000100)=0x20) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f00000001c0)={{{@in6=@local, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in=@remote}}, &(0x7f00000002c0)=0xe8) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000300)={@mcast1={0xff, 0x1, [], 0x1}, @dev={0xfe, 0x80, [], 0xe}, @mcast2={0xff, 0x2, [], 0x1}, 0x3, 0x4, 0x7fffffff, 0x500, 0x1000, 0x41, r3}) setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000140)={r2, 0x7}, 0x8) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0x40605346, &(0x7f0000000380)={0x40, 0x3, {0x0, 0x0, 0x9, 0x3, 0x8001}}) ioctl$SIOCGIFMTU(r1, 0x8921, &(0x7f0000000040)) ioctl$EVIOCGREP(r1, 0x4010744d, &(0x7f0000001000)=""/174) 2033/05/18 03:37:07 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:07 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip-_vti0\x00'}) 2033/05/18 03:37:07 executing program 4: syz_mount_image$hfs(&(0x7f0000001940)='hfs\x00', &(0x7f0000001980)='./file0\x00', 0x0, 0x0, &(0x7f0000002c40), 0x0, &(0x7f0000002cc0)={[{@gid={'gid', 0x3d, [0x31, 0x0]}, 0x2c}]}) r0 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffff9c, 0x84, 0x13, &(0x7f0000000000)={0x0, 0xffffffff7fffffff}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f0000000080)={r1, @in6={{0xa, 0x4e23, 0x80000000, @remote={0xfe, 0x80, [], 0xbb}, 0x6}}, [0x1, 0x5, 0x0, 0x3f, 0x8, 0x2, 0x1, 0x3ff, 0x40, 0xffff, 0xff, 0xb82, 0xffffffffffffff7f, 0xfff, 0xb4a]}, &(0x7f0000000180)=0x100) 2033/05/18 03:37:07 executing program 0 (fault-call:0 fault-nth:53): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:08 executing program 6: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000505000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000580)={'filter\x00', 0x7, 0x4, 0x480, 0x118, 0x118, 0x118, 0x398, 0x398, 0x398, 0x4, &(0x7f0000000540), {[{{@arp={@multicast2=0xe0000002, @broadcast=0xffffffff, 0x0, 0x0, @empty, {[0xff, 0xff, 0xff, 0xff, 0x0, 0xff]}, @mac, {[0xff, 0x0, 0x0, 0x0, 0xff, 0xff]}, 0x1, 0x5, 0x8000, 0x1, 0x7, 0x37035e48, 'veth0_to_team\x00', 'nr0\x00', {0xff}, {0xff}, 0x0, 0x38e}, 0xf0, 0x118}, @unspec=@NFQUEUE1={0x28, 'NFQUEUE\x00', 0x1, {0x97, 0x8}}}, {{@uncond, 0xf0, 0x140}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, @empty, @rand_addr=0x81, @dev={0xac, 0x14, 0x14, 0x12}, 0x0, 0xffffffff}}}, {{@uncond, 0xf0, 0x140}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff], @dev={0xac, 0x14, 0x14, 0xd}, @empty, 0xf, 0x1}}}], {{[], 0xc0, 0xe8}, {0x28, '\x00', 0x0, 0xfffffffffffffffe}}}}, 0x4d0) pipe2(&(0x7f0000cdc000)={0x0, 0x0}, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r4, r3, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$TIOCGSID(r3, 0x5429, &(0x7f00000000c0)=0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_INFO(r3, 0xc1105511, &(0x7f0000000380)={{0xdc, 0x1, 0x9f, 0x9, "8f026e58c7d3c132a0ea953b6a335d6b9759aa7896c4b593a3cf5a381333cca409ca5707dd21e46472c4e370", 0xdc}, 0x0, 0x0, 0x6, r5, 0x8, 0xfff, "a40694cec7a8314d6357713e23ed3a3d4ddb074464529261134c9b58e09f3d1bbfbdeed09cb99087853d779a361de605657fcfb28940868ec55ed795827d91be", &(0x7f0000000100)='/dev/kvm\x00', 0x9, [], [0xffffffffffff39ce, 0x7, 0x400, 0x7fffffff]}) ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4040aea0, &(0x7f0000460fe4)={0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x805}) ioctl$SNDRV_CTL_IOCTL_PCM_INFO(r2, 0xc1205531, &(0x7f0000000240)={0x80000001, 0x7ff, 0x8, 0x30fc, [], [], [], 0xfff, 0xcd7, 0x3, 0x5, "42fbcf7866558d8cd91280dd209191f7"}) getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(0xffffffffffffffff, 0x84, 0x74, &(0x7f0000000140)=""/251, &(0x7f0000000000)=0xfffffffffffffe90) getpeername$llc(r2, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, &(0x7f0000000080)=0x10) syz_kvm_setup_cpu$x86(r2, r4, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000de9000)=[@textreal={0x8, &(0x7f00000004c0)="66b8008000000f23d80f21f86635800000e00f23f836e30f66b8a93064e90f23c80f21f866350000d0000f23f83ecbc6f80a660f3841c40f01d10f3566b9520900000f32260f70e2d9", 0x49}], 0x1, 0x0, &(0x7f0000000540), 0x0) write$tun(r3, &(0x7f0000000a80)={@void, @void, @mpls={[{0x8, 0x6, 0x10000, 0x1}, {0x100000001, 0x4f, 0x0, 0xfffffffffffff001}, {0x9, 0x6, 0xcd}, {0xffffffff00000000, 0x100, 0xfffffffffffffffb, 0x3}], @ipv4={{0x16, 0x4, 0x9, 0x4, 0x36e, 0x67, 0x8000, 0x8001, 0x7f, 0x0, @multicast2=0xe0000002, @empty, {[@noop={0x1}, @ra={0x94, 0x6, 0x8a}, @ssrr={0x89, 0xf, 0x61bf, [@dev={0xac, 0x14, 0x14, 0x17}, @multicast2=0xe0000002, @remote={0xac, 0x14, 0x14, 0xbb}]}, @ra={0x94, 0x6, 0x2}, @lsrr={0x83, 0x13, 0x7f, [@broadcast=0xffffffff, @rand_addr=0x3, @multicast2=0xe0000002, @dev={0xac, 0x14, 0x14, 0x1b}]}, @rr={0x7, 0xf, 0x5, [@rand_addr=0x8, @loopback=0x7f000001, @loopback=0x7f000001]}, @generic={0x0, 0x3, "d2"}]}}, @gre={{0x0, 0x0, 0x1, 0x8f, 0x0, 0x7, 0x0, 0x1, 0x880b, 0x6e, 0x0, [0x80, 0xfff], "266302c198a93d098e8001e345f91188d9f1a9c96eed4439935d631e1bc4257b590a6846f63280c223f57b63056a1fb17e50d7b628d6be60a96605477adbd379361cd9ce5c887c456763901dd510cf60f8d0dafad16452738676f851e1a6303449c55ae1161e5773127ca1217ee9"}, {0x1, 0x0, 0x3, 0xf, 0x0, 0x0, 0x800, [0x4, 0xffff, 0x9], "da33432bce860699454b43317137ef6e98b2dddf4aa16ec55c4e51424fd0f3625fb3fa1aee4698c3edbf4bcd5c5dd10b10911177e3ec2b9567e7fd030dde3dae3c3cf14a045d50083046b8e1c50aa21ca6f13de2620f62974944454f550405d133d297d45d0322000dbadc4f15647b81e6f44619eaf1897b13f032bb466b3b2361152738fbc916d82fb3e4b26123eeefc8100ff2d4d897642eb0d2a1c194801378766154364030bf618de8797a7b6cad589681136b39edd648076bc287d56f11b75665030e393b50b7aff4b35bfc"}, {0x1, 0x0, 0x5, 0x5, 0x0, 0x0, 0x86dd, [0x101, 0x0], "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"}, {0x8, 0x88be, 0x4, {{0x3f, 0x1, 0x7, 0x9, 0x2, 0x8f, 0x81, 0x1}, 0x1, 0x6}}, {0x8, 0x22eb, 0x0, {{0x8, 0x2, 0x400, 0x0, 0x9, 0x2c0, 0x10001, 0x7ff}, 0x2, 0x7535ff48, 0xb54, 0xffffffff, 0x3ff0000, 0x1, 0x3a6, 0x7, 0x4, 0x2}}, {0x8, 0x6558, 0x2, "2f12e6da732ad46297fbf5174b8f0f7fa5e7d17faf3ad1202db99de620c4d97d96566ea6f93e346be537ed41eeff713288d5e47826c89dc48d9559c0ecefdc7cb82c32a98ec199f00cd39a10cbcea02b05b35377eabf5e39930da7e2a84f3bed8a6a78d5629872f35e5355efb290a5f8c3ea12fbe644d6e870ff4aa8a1121d259605ca0ac93ea31097ac00d995a3"}}}}}, 0x37e) ioctl$KVM_RUN(r3, 0xae80, 0x0) 2033/05/18 03:37:08 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 342.933087] l2tp_ppp: sess 4/0: set debug=cf10464f [ 342.972940] FAULT_INJECTION: forcing a failure. [ 342.972940] name failslab, interval 1, probability 0, space 0, times 0 [ 342.984310] CPU: 1 PID: 24380 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 342.991585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 343.000942] Call Trace: [ 343.001759] l2tp_ppp: sess 4/0: get flags=0 [ 343.003538] dump_stack+0x1b9/0x294 [ 343.003562] ? dump_stack_print_info.cold.2+0x52/0x52 [ 343.003580] ? perf_trace_lock_acquire+0xe3/0x980 [ 343.003607] should_fail.cold.4+0xa/0x1a [ 343.003627] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 343.030656] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 343.035660] ? __lockdep_init_map+0x105/0x590 [ 343.040140] ? graph_lock+0x170/0x170 [ 343.043934] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 343.049457] ? put_dec_trunc8+0x273/0x300 [ 343.053593] ? find_held_lock+0x36/0x1c0 [ 343.057644] ? __lock_is_held+0xb5/0x140 [ 343.061699] ? check_same_owner+0x320/0x320 [ 343.066009] ? device_pm_sleep_init+0xe8/0x200 [ 343.070589] ? rcu_note_context_switch+0x710/0x710 [ 343.075511] __should_failslab+0x124/0x180 [ 343.079736] should_failslab+0x9/0x14 [ 343.083534] __kmalloc_track_caller+0x2c4/0x760 [ 343.088191] ? pointer+0xa20/0xa20 [ 343.091719] ? kvasprintf_const+0x67/0x190 [ 343.095946] kvasprintf+0xa9/0x130 [ 343.099471] ? bust_spinlocks+0xe0/0xe0 [ 343.103436] ? rcu_read_lock_sched_held+0x108/0x120 [ 343.108451] kvasprintf_const+0x67/0x190 [ 343.112500] kobject_set_name_vargs+0x5b/0x150 [ 343.117067] device_create_groups_vargs+0x1ce/0x270 [ 343.122070] device_create_vargs+0x46/0x60 [ 343.126293] bdi_register_va.part.10+0xbb/0x970 [ 343.130947] ? cgwb_kill+0x630/0x630 [ 343.134651] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 343.140172] ? bdi_init+0x416/0x510 [ 343.143789] ? wb_init+0x9e0/0x9e0 [ 343.147314] ? bdi_alloc_node+0x67/0xe0 [ 343.151282] ? bdi_alloc_node+0x67/0xe0 [ 343.155241] ? rcu_read_lock_sched_held+0x108/0x120 [ 343.160244] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 343.165512] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 343.171040] ? refcount_sub_and_test+0x212/0x330 [ 343.175783] bdi_register_va+0x68/0x80 [ 343.179661] super_setup_bdi_name+0x123/0x220 [ 343.184141] ? kill_block_super+0x100/0x100 [ 343.188451] ? kmem_cache_alloc_trace+0x616/0x780 [ 343.193292] fuse_fill_super+0xe6e/0x1e20 [ 343.197442] ? fuse_get_root_inode+0x190/0x190 [ 343.202019] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 343.207546] ? vsnprintf+0x242/0x1b40 [ 343.211337] ? pointer+0xa20/0xa20 [ 343.214870] ? vsprintf+0x40/0x40 [ 343.218309] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 343.223321] ? set_blocksize+0x2c4/0x350 [ 343.227372] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 343.232896] mount_bdev+0x30c/0x3e0 [ 343.236508] ? fuse_get_root_inode+0x190/0x190 [ 343.241077] fuse_mount_blk+0x34/0x40 [ 343.244866] mount_fs+0xae/0x328 [ 343.248220] vfs_kern_mount.part.34+0xd4/0x4d0 [ 343.252788] ? may_umount+0xb0/0xb0 [ 343.256400] ? _raw_read_unlock+0x22/0x30 [ 343.260533] ? __get_fs_type+0x97/0xc0 [ 343.264408] do_mount+0x564/0x3070 [ 343.267937] ? copy_mount_string+0x40/0x40 [ 343.272160] ? rcu_pm_notify+0xc0/0xc0 [ 343.276044] ? copy_mount_options+0x5f/0x380 [ 343.280439] ? rcu_read_lock_sched_held+0x108/0x120 [ 343.285442] ? kmem_cache_alloc_trace+0x616/0x780 [ 343.290278] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 343.295804] ? _copy_from_user+0xdf/0x150 [ 343.299939] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 343.305475] ? copy_mount_options+0x285/0x380 [ 343.309958] ksys_mount+0x12d/0x140 [ 343.313576] __x64_sys_mount+0xbe/0x150 [ 343.317538] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 343.322544] do_syscall_64+0x1b1/0x800 [ 343.326414] ? finish_task_switch+0x1ca/0x810 [ 343.330911] ? syscall_return_slowpath+0x5c0/0x5c0 [ 343.335833] ? syscall_return_slowpath+0x30f/0x5c0 [ 343.340750] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 343.346105] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 343.350939] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 343.356113] RIP: 0033:0x455979 [ 343.359286] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 343.366982] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 2033/05/18 03:37:08 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(twofish)\x00'}, 0xffffff9f) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000ff8000)='\n', 0x1) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg$alg(r1, &(0x7f0000008780)=[{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000200)="88", 0x1}], 0x1, &(0x7f0000000300)}], 0x1, 0x0) recvmsg(r1, &(0x7f0000001440)={&(0x7f0000000280)=@sco, 0x80, &(0x7f00000013c0)=[{&(0x7f00000003c0)=""/4096, 0x1000}], 0x1, &(0x7f0000001400)=""/6, 0x6}, 0x0) 2033/05/18 03:37:08 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0xfffffdfd) [ 343.374238] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 343.381492] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 343.388744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 343.395997] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:37:08 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x1, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) 2033/05/18 03:37:08 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:08 executing program 5: r0 = accept(0xffffffffffffff9c, &(0x7f0000000080)=@pppoe, &(0x7f0000000000)=0x80) getsockopt$inet6_buf(r0, 0x29, 0x20, &(0x7f0000000100), &(0x7f0000000180)) r1 = socket$inet6(0xa, 0x80003, 0xfb) getsockopt$sock_int(r1, 0x1, 0x28, &(0x7f0000000140), &(0x7f0000000040)=0x4) 2033/05/18 03:37:08 executing program 4: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) connect$netlink(r0, &(0x7f00000001c0)=@proc={0x10, 0x0, 0x25dfdbfb}, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000000580)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f0000000540)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000dceacc030000000000954ece0000000000"], 0x14}, 0x1}, 0x0) 2033/05/18 03:37:08 executing program 6: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000000040)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r4 = dup3(r3, r2, 0x0) ioctl$KVM_GET_XCRS(r4, 0x8188aea6, &(0x7f0000000080)={0x6, 0x300000000000000, [{0xffff, 0x0, 0x1f}, {0x401, 0x0, 0x3}, {0x1, 0x0, 0x401}, {0x4, 0x0, 0x3}, {0x40, 0x0, 0x9}, {0x4, 0x0, 0x80000001}]}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000decfe0)={0x10005, 0x0, 0x0, 0x2000, &(0x7f0000ff0000/0x2000)=nil}) ioctl$KVM_SMI(r3, 0xaeb7) ioctl$KVM_RUN(r2, 0xae80, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000300)=[@textreal={0x8, &(0x7f0000000500)="0f005c0666b8ef0000000f23d00f21f86635300000010f23f866b9770b000066b80000008066ba000000000f30f20f35f30f1bcff4650f01cabaf80c66b8c261a58266efbafc0cb874daef0f236d0f32", 0x50}], 0x0, 0x1c, &(0x7f0000000280), 0x100) ioctl$KVM_RUN(r4, 0xae80, 0x0) getsockopt$inet6_opts(r2, 0x29, 0x36, &(0x7f0000000100)=""/242, &(0x7f0000000200)=0xf2) 2033/05/18 03:37:08 executing program 0 (fault-call:0 fault-nth:54): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:08 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0xf) 2033/05/18 03:37:08 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ipc_vti0\x00'}) [ 343.579193] l2tp_ppp: sess 4/0: set debug=cf10464f [ 343.592199] FAULT_INJECTION: forcing a failure. [ 343.592199] name failslab, interval 1, probability 0, space 0, times 0 [ 343.603547] CPU: 1 PID: 24415 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 343.610819] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 343.620161] Call Trace: [ 343.622749] dump_stack+0x1b9/0x294 [ 343.626368] ? dump_stack_print_info.cold.2+0x52/0x52 [ 343.631569] ? perf_trace_lock_acquire+0xe3/0x980 [ 343.636399] ? is_bpf_text_address+0xd7/0x170 [ 343.640880] ? kernel_text_address+0x79/0xf0 [ 343.645276] should_fail.cold.4+0xa/0x1a [ 343.649324] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 343.654417] ? graph_lock+0x170/0x170 [ 343.658206] ? save_stack+0xa9/0xd0 [ 343.661820] ? kasan_kmalloc+0xc4/0xe0 [ 343.665695] ? find_held_lock+0x36/0x1c0 [ 343.669755] ? __lock_is_held+0xb5/0x140 [ 343.673801] ? blkdev_reset_zones+0x360/0x4a0 [ 343.678292] ? check_same_owner+0x320/0x320 [ 343.682604] ? rcu_note_context_switch+0x710/0x710 [ 343.687524] __should_failslab+0x124/0x180 [ 343.691750] should_failslab+0x9/0x14 [ 343.695537] kmem_cache_alloc_trace+0x2cb/0x780 [ 343.700197] ? refcount_add_not_zero+0x320/0x320 [ 343.704944] device_private_init+0x98/0x230 [ 343.709251] ? virtual_device_parent+0x60/0x60 [ 343.713823] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 343.719345] ? refcount_inc+0x29/0x70 [ 343.723138] device_add+0xe98/0x16d0 [ 343.726843] ? device_private_init+0x230/0x230 [ 343.731410] ? kfree+0x1e9/0x260 [ 343.734766] ? kfree_const+0x5e/0x70 [ 343.738473] device_create_groups_vargs+0x1ff/0x270 [ 343.743478] device_create_vargs+0x46/0x60 [ 343.747702] bdi_register_va.part.10+0xbb/0x970 [ 343.752361] ? cgwb_kill+0x630/0x630 [ 343.756074] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 343.761603] ? bdi_init+0x416/0x510 [ 343.765214] ? wb_init+0x9e0/0x9e0 [ 343.768740] ? bdi_alloc_node+0x67/0xe0 [ 343.772698] ? bdi_alloc_node+0x67/0xe0 [ 343.776658] ? rcu_read_lock_sched_held+0x108/0x120 [ 343.781659] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 343.786923] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 343.792450] ? refcount_sub_and_test+0x212/0x330 [ 343.797204] bdi_register_va+0x68/0x80 [ 343.801091] super_setup_bdi_name+0x123/0x220 [ 343.805571] ? kill_block_super+0x100/0x100 [ 343.809879] ? kmem_cache_alloc_trace+0x616/0x780 [ 343.814718] fuse_fill_super+0xe6e/0x1e20 [ 343.818856] ? fuse_get_root_inode+0x190/0x190 [ 343.823434] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 343.828957] ? vsnprintf+0x242/0x1b40 [ 343.832747] ? pointer+0xa20/0xa20 [ 343.836282] ? vsprintf+0x40/0x40 [ 343.839726] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 343.844727] ? set_blocksize+0x2c4/0x350 [ 343.848774] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 343.854300] mount_bdev+0x30c/0x3e0 [ 343.857913] ? fuse_get_root_inode+0x190/0x190 [ 343.862484] fuse_mount_blk+0x34/0x40 [ 343.866273] mount_fs+0xae/0x328 [ 343.869639] vfs_kern_mount.part.34+0xd4/0x4d0 [ 343.874206] ? may_umount+0xb0/0xb0 [ 343.877820] ? _raw_read_unlock+0x22/0x30 [ 343.881951] ? __get_fs_type+0x97/0xc0 [ 343.885827] do_mount+0x564/0x3070 [ 343.889356] ? copy_mount_string+0x40/0x40 [ 343.893579] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 343.898323] ? retint_kernel+0x10/0x10 [ 343.902203] ? copy_mount_options+0x1f0/0x380 [ 343.906684] ? __sanitizer_cov_trace_pc+0x38/0x50 [ 343.911514] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 343.917040] ? copy_mount_options+0x285/0x380 [ 343.921533] ksys_mount+0x12d/0x140 [ 343.925150] __x64_sys_mount+0xbe/0x150 [ 343.929119] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 343.934122] do_syscall_64+0x1b1/0x800 [ 343.937995] ? finish_task_switch+0x1ca/0x810 [ 343.942482] ? syscall_return_slowpath+0x5c0/0x5c0 [ 343.947398] ? syscall_return_slowpath+0x30f/0x5c0 [ 343.952321] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 343.957672] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 343.962504] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 343.967680] RIP: 0033:0x455979 [ 343.970852] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 343.978545] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 343.985808] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 343.993062] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 344.000317] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 344.007569] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:37:09 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:09 executing program 4: syz_emit_ethernet(0x66, &(0x7f0000000000)=ANY=[@ANYBLOB="fbd9a8a6c61eaaaaaaaaaabb86dd6076603f00303a2afffe0000000000000000000000000000ffff02000000000000000000000000000186009078000204f05ec1020000000000ff0100000000000018e0ffea00000001ff020000000000000000000000000001"], 0x0) r0 = dup2(0xffffffffffffff9c, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r0, 0x40042409, 0x1) [ 344.041693] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:37:09 executing program 5: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = shmget$private(0x0, 0x4000, 0x54001c84, &(0x7f0000ffb000/0x4000)=nil) shmat(r0, &(0x7f0000a00000/0x600000)=nil, 0x5000) shmat(r0, &(0x7f0000ffe000/0x2000)=nil, 0x1000) shmctl$IPC_RMID(r0, 0x0) 2033/05/18 03:37:09 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6\nvti0\x00'}) 2033/05/18 03:37:09 executing program 4: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000400)='/dev/qat_adf_ctl\x00', 0x10000, 0x0) ioctl$DMA_BUF_IOCTL_SYNC(r0, 0x40086200, &(0x7f0000000440)=0x1) r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000000c0)='cpuset.effective_cpus\x00', 0x0, 0x0) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000140)='IPVS\x00') sendmsg$IPVS_CMD_SET_SERVICE(r1, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000200}, 0xc, &(0x7f0000000240)={&(0x7f0000000180)={0xa0, r2, 0x1, 0x70bd27, 0x25dfdbfd, {0x2}, [@IPVS_CMD_ATTR_SERVICE={0x18, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x8}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x22, 0xc}}]}, @IPVS_CMD_ATTR_SERVICE={0x68, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x7}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv4=@multicast2=0xe0000002}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@mcast1={0xff, 0x1, [], 0x1}}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'rr\x00'}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x1}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x3}]}, @IPVS_CMD_ATTR_DAEMON={0xc, 0x3, [@IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x1}]}]}, 0xa0}, 0x1, 0x0, 0x0, 0x20040000}, 0xc034549c02858ba4) socket$inet_udp(0x2, 0x2, 0x0) syz_genetlink_get_family_id$ipvs(&(0x7f0000000480)='IPVS\x00') lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0}) r4 = getgid() lchown(&(0x7f00000002c0)='./file0\x00', r3, r4) shmget(0x2, 0x3000, 0x100, &(0x7f0000ffd000/0x3000)=nil) r5 = socket$inet(0x10, 0x3, 0x0) sendmsg(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000006000)="240000001900030008fffd946fa283bd0af0ffffff0000060500000000000000d114737e", 0x24}], 0x1}, 0x0) setsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x14, &(0x7f00000003c0)=@int=0x3, 0x4) 2033/05/18 03:37:09 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000008c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) ioctl$KVM_SMI(r0, 0xaeb7) syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x6, 0x2) 2033/05/18 03:37:09 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:09 executing program 0 (fault-call:0 fault-nth:55): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:09 executing program 6: r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000140)='/dev/rfkill\x00', 0x101001, 0x0) writev(r0, &(0x7f00000000c0)=[{&(0x7f00000001c0)='\v', 0x1}], 0x1) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r0, 0xc0bc5351, &(0x7f0000000000)={0x91e, 0x3, 'client0\x00', 0x0, "546610096e9f773f", "3c5ee22007098f79edb2d87ed077df053366a91ca32d9877bda81c93b0a9c647"}) clock_gettime(0x7, &(0x7f0000000100)) ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000180)={0x8, 0x6, 0x5, @random="3778dca0f38d", 'veth0_to_bridge\x00'}) 2033/05/18 03:37:09 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0xfdfdffff00000000) 2033/05/18 03:37:09 executing program 5: socketpair$inet(0x2, 0x5, 0x7e, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_inet_sctp_SIOCINQ(r0, 0x541b, &(0x7f0000000080)) stat(&(0x7f00000000c0)='./bus\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0}) ioprio_set$uid(0x3, r1, 0x4) r2 = open(&(0x7f0000000040)='./bus\x00', 0x141042, 0x101) setsockopt$IP_VS_SO_SET_EDITDEST(r0, 0x0, 0x489, &(0x7f0000000180)={{0x7d, @rand_addr=0x6, 0x4e22, 0x0, 'sed\x00', 0x1, 0x7, 0x6c}, {@multicast1=0xe0000001, 0x4e23, 0x7, 0x8, 0x7, 0x200}}, 0x44) fallocate(r2, 0x2, 0x0, 0x6) [ 344.264874] l2tp_ppp: sess 4/0: set debug=cf10464f [ 344.274802] FAULT_INJECTION: forcing a failure. [ 344.274802] name failslab, interval 1, probability 0, space 0, times 0 [ 344.286101] CPU: 0 PID: 24455 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 344.293383] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 344.294075] l2tp_ppp: sess 4/0: get flags=0 [ 344.302740] Call Trace: [ 344.302767] dump_stack+0x1b9/0x294 [ 344.302792] ? dump_stack_print_info.cold.2+0x52/0x52 [ 344.302808] ? perf_trace_lock_acquire+0xe3/0x980 [ 344.302836] should_fail.cold.4+0xa/0x1a [ 344.327378] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 344.332477] ? perf_trace_lock+0x900/0x900 [ 344.336707] ? graph_lock+0x170/0x170 [ 344.340505] ? find_held_lock+0x36/0x1c0 [ 344.344582] ? __lock_is_held+0xb5/0x140 [ 344.348643] ? check_same_owner+0x320/0x320 [ 344.352955] ? rcu_note_context_switch+0x710/0x710 [ 344.357870] ? perf_trace_lock+0xd6/0x900 [ 344.362016] __should_failslab+0x124/0x180 [ 344.366244] should_failslab+0x9/0x14 [ 344.370036] __kmalloc_track_caller+0x2c4/0x760 [ 344.374699] ? perf_trace_lock+0x900/0x900 [ 344.378919] ? debug_check_no_locks_freed+0x310/0x310 [ 344.384096] ? kasan_check_write+0x14/0x20 [ 344.388318] ? __mutex_lock+0x7d9/0x17f0 [ 344.392371] ? kstrdup_const+0x66/0x80 [ 344.396260] kstrdup+0x39/0x70 [ 344.399440] kstrdup_const+0x66/0x80 [ 344.403142] __kernfs_new_node+0xa8/0x580 [ 344.407278] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 344.412036] ? lock_downgrade+0x8e0/0x8e0 [ 344.416180] kernfs_new_node+0x80/0xf0 [ 344.420056] kernfs_create_dir_ns+0x3d/0x140 [ 344.424454] sysfs_create_dir_ns+0xbe/0x1d0 [ 344.428762] kobject_add_internal+0x354/0xac0 [ 344.433245] ? kobj_ns_type_registered+0x60/0x60 [ 344.437998] ? lock_downgrade+0x8e0/0x8e0 [ 344.442148] ? refcount_add_not_zero+0x320/0x320 [ 344.446893] ? kasan_check_read+0x11/0x20 [ 344.451033] kobject_add+0x13a/0x190 [ 344.454731] ? kset_create_and_add+0x190/0x190 [ 344.459303] ? mutex_unlock+0xd/0x10 [ 344.463025] device_add+0x3a5/0x16d0 [ 344.466730] ? device_private_init+0x230/0x230 [ 344.471298] ? kfree+0x1e9/0x260 [ 344.474655] ? kfree_const+0x5e/0x70 [ 344.478357] device_create_groups_vargs+0x1ff/0x270 [ 344.483363] device_create_vargs+0x46/0x60 [ 344.487586] bdi_register_va.part.10+0xbb/0x970 [ 344.492240] ? cgwb_kill+0x630/0x630 [ 344.495945] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 344.501468] ? bdi_init+0x416/0x510 [ 344.505090] ? wb_init+0x9e0/0x9e0 [ 344.508619] ? bdi_alloc_node+0x67/0xe0 [ 344.512577] ? bdi_alloc_node+0x67/0xe0 [ 344.516542] ? rcu_read_lock_sched_held+0x108/0x120 [ 344.521547] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 344.526825] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 344.532349] ? refcount_sub_and_test+0x212/0x330 [ 344.537095] bdi_register_va+0x68/0x80 [ 344.540972] super_setup_bdi_name+0x123/0x220 [ 344.545452] ? kill_block_super+0x100/0x100 [ 344.549763] ? kmem_cache_alloc_trace+0x616/0x780 [ 344.554601] fuse_fill_super+0xe6e/0x1e20 [ 344.558742] ? fuse_get_root_inode+0x190/0x190 [ 344.563313] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 344.568835] ? vsnprintf+0x242/0x1b40 [ 344.572630] ? pointer+0xa20/0xa20 [ 344.576166] ? vsprintf+0x40/0x40 [ 344.579607] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 344.584611] ? set_blocksize+0x2c4/0x350 [ 344.588664] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 344.594199] mount_bdev+0x30c/0x3e0 [ 344.597821] ? fuse_get_root_inode+0x190/0x190 [ 344.602392] fuse_mount_blk+0x34/0x40 [ 344.606181] mount_fs+0xae/0x328 [ 344.609538] vfs_kern_mount.part.34+0xd4/0x4d0 [ 344.614109] ? may_umount+0xb0/0xb0 [ 344.617724] ? _raw_read_unlock+0x22/0x30 [ 344.621863] ? __get_fs_type+0x97/0xc0 [ 344.625740] do_mount+0x564/0x3070 [ 344.629271] ? copy_mount_string+0x40/0x40 [ 344.633503] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 344.638253] ? retint_kernel+0x10/0x10 [ 344.642132] ? copy_mount_options+0x285/0x380 [ 344.646613] ? __sanitizer_cov_trace_pc+0x48/0x50 [ 344.651442] ? copy_mount_options+0x285/0x380 [ 344.655927] ksys_mount+0x12d/0x140 [ 344.659542] __x64_sys_mount+0xbe/0x150 [ 344.663500] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 344.668504] do_syscall_64+0x1b1/0x800 [ 344.672851] ? finish_task_switch+0x1ca/0x810 [ 344.677337] ? syscall_return_slowpath+0x5c0/0x5c0 [ 344.682260] ? syscall_return_slowpath+0x30f/0x5c0 [ 344.687183] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 344.692535] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 344.697372] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 344.702545] RIP: 0033:0x455979 [ 344.705718] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 344.713414] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 344.720673] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 344.727925] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 344.735180] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 344.742694] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 344.750228] kobject_add_internal failed for 7:199-fuseblk (error: -12 parent: bdi) 2033/05/18 03:37:09 executing program 6: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00005e1fa8)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(md5-generic)\x00'}, 0x58) r1 = accept$alg(r0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000), 0x0) accept$alg(r0, 0x0, 0x0) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x400, 0x0) setsockopt$inet_sctp_SCTP_AUTOCLOSE(r2, 0x84, 0x4, &(0x7f0000000040)=0xbc2, 0x4) r3 = dup(r0) ioctl$ASHMEM_SET_SIZE(r3, 0x40087703, 0x1) r4 = accept$alg(r1, 0x0, 0x0) dup3(r4, r1, 0x0) 2033/05/18 03:37:09 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:09 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000040)="1503b2", 0x3}], 0x1, 0x0) ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r0, 0x80045530, &(0x7f00000030c0)=""/4096) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) ioctl$sock_bt_hidp_HIDPCONNADD(r0, 0x400448c8, &(0x7f0000000180)={r0, r0, 0xfa83, 0x6, &(0x7f0000000080)="4bfb4ef42a36e6db0b5552c60998fc2b31e0c0fdc0bbae2d845b38952bdae073c94b887f3b8836d51ad4b6c83b453243db6c26c4059879995bf6ba78bf42ee80108c98982cc28ddf5a158b8650d7148885b8cd9fe87e2b6b044dd773b8dd783419e6930c5350e6b3703931515fef90f4d17fcc00fd7f8fd65c1c8f1979c6c26671cb29c9e78ee43ef388ce87c13decb3c546f1b72194f43fd29b9d114815f9da5380d705b7b0ea17423b56d724cf49fe84b925086f43aec847c9baa060981998fa2d4558c2735b", 0x3, 0x7, 0xf31, 0x7, 0x4, 0x3, 0x4, "92fabad4651f5321ae1cc1f319cf509478d587944caa96f159252ed0cb34a19957e5b357678917c53ff220209c4eb0507d20a01ca6448a0c2c33aaf7c0c851e303ef92b59b"}) 2033/05/18 03:37:09 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6%vti0\x00'}) [ 344.784786] netlink: 8 bytes leftover after parsing attributes in process `syz-executor4'. 2033/05/18 03:37:09 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:09 executing program 5: syz_mount_image$vfat(&(0x7f0000000140)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0x5dc9, 0x1, &(0x7f0000000200)=[{&(0x7f00000000c0)="eb58906d6b66732e66617400020120000200008000f8000020004000000000000000000001", 0x25}], 0x0, &(0x7f0000000080)=ANY=[]) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = open(&(0x7f0000000780)='./file0/file0\x00', 0x3fbfa, 0x0) io_setup(0x2, &(0x7f0000000000)=0x0) lstat(&(0x7f0000000040)='./file0\x00', &(0x7f0000000280)) io_submit(r1, 0x1, &(0x7f00000008c0)=[&(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f00000001c0)="ab", 0x1}]) [ 344.852433] netlink: 8 bytes leftover after parsing attributes in process `syz-executor4'. [ 344.875865] l2tp_ppp: sess 4/0: set debug=cf10464f 2033/05/18 03:37:09 executing program 6: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4) ioctl$sock_SIOCSIFBR(r0, 0x8941, &(0x7f0000000080)=@add_del={0x2, &(0x7f0000000040)='bond_slave_0\x00', 0x400}) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f0000788ffc)=0x100000001, 0xfdf6) setsockopt$inet_tcp_int(r0, 0x6, 0x15, &(0x7f0000000180), 0x4) ioctl$EVIOCRMFF(r0, 0x40044581, &(0x7f0000000000)=0x7) [ 344.906629] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:37:10 executing program 4: socket$packet(0x11, 0x2, 0x300) r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x80000000024040, 0x0) utime(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)={0x80, 0x5}) sendto$inet6(r0, &(0x7f0000000080), 0xffffffffffffff0a, 0x0, &(0x7f0000000000)={0xa, 0x8847, 0x8, @mcast2={0xff, 0x2, [], 0x1}}, 0x1c) [ 344.962317] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 2033/05/18 03:37:10 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:10 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00001ee000)={0x26, 'hash\x00', 0x0, 0x0, 'sha1-generic\x00'}, 0x58) r1 = accept$alg(r0, 0x0, 0x0) r2 = open(&(0x7f0000000080)='./file0\x00', 0x101040, 0x0) getsockopt$netrom_NETROM_T4(r2, 0x103, 0x6, &(0x7f0000000000)=0xa10a, &(0x7f0000000040)=0x4) fallocate(r2, 0x0, 0x0, 0x73e0) sendfile(r1, r2, &(0x7f00007ed000), 0x8) setsockopt$netlink_NETLINK_NO_ENOBUFS(r2, 0x10e, 0x5, &(0x7f00000000c0)=0x1ff, 0x4) 2033/05/18 03:37:10 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) recvmsg(r0, &(0x7f0000000540)={&(0x7f00000000c0)=@ipx, 0x80, &(0x7f0000000480)=[{&(0x7f0000000040)=""/21, 0x15}, {&(0x7f0000000140)=""/235, 0xeb}, {&(0x7f0000000240)=""/59, 0x3b}, {&(0x7f0000000280)=""/1, 0x1}, {&(0x7f00000002c0)=""/204, 0xcc}, {&(0x7f00000003c0)=""/172, 0xac}], 0x6, &(0x7f0000000500)=""/14, 0xe, 0x8000}, 0x40000000) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) 2033/05/18 03:37:10 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_v\ni0\x00'}) 2033/05/18 03:37:10 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0xc00000000000000) 2033/05/18 03:37:10 executing program 0 (fault-call:0 fault-nth:56): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:10 executing program 6: capset(&(0x7f0000000040)={0x40020080522}, &(0x7f0000000080)) shmget(0x0, 0x4000, 0x40, &(0x7f0000ff9000/0x4000)=nil) shmget$private(0x0, 0x2000, 0x78000000, &(0x7f0000ffb000/0x2000)=nil) shmget(0x2, 0x2000, 0x20, &(0x7f0000ff9000/0x2000)=nil) r0 = shmget(0x3, 0x2000, 0x10, &(0x7f0000ffc000/0x2000)=nil) shmctl$SHM_UNLOCK(r0, 0xc) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000000c0)={0xffffffffffffffff, 0x28, &(0x7f0000000000)={0x0, 0x0}}, 0x10) rmdir(&(0x7f00000001c0)='./file0\x00') bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000100)={r1, 0xfc1, 0x18}, 0xc) 2033/05/18 03:37:10 executing program 5: r0 = socket$inet6(0xa, 0x40000080806, 0x0) bind$inet6(r0, &(0x7f000047b000)={0xa, 0x4e20, 0x0, @loopback={0x0, 0x1}}, 0x1c) listen(r0, 0x80001003) r1 = socket$inet6(0xa, 0x6, 0x0) connect$inet6(r1, &(0x7f0000419000)={0xa, 0x4e20, 0x0, @loopback={0x0, 0x1}}, 0x1c) socket$netlink(0x10, 0x3, 0x13) read(r1, &(0x7f00000002c0)=""/152, 0x98) recvmsg(r1, &(0x7f00000006c0)={&(0x7f0000000000)=@alg, 0x80, &(0x7f0000000580), 0x0, &(0x7f0000000600)=""/168, 0xa8}, 0x0) close(r1) accept(r0, 0x0, &(0x7f0000000700)) sendmmsg(r1, &(0x7f0000000900)=[{{&(0x7f0000000240)=@ax25={0x3, {"aba998cfc95797"}}, 0x80, &(0x7f00000016c0), 0x0, &(0x7f0000000ec0)}}], 0x412, 0x0) 2033/05/18 03:37:10 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 345.103348] FAT-fs (loop5): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 345.126316] l2tp_ppp: sess 4/0: set debug=cf10464f [ 345.182825] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:37:10 executing program 4: r0 = socket$can_bcm(0x1d, 0x2, 0x2) setsockopt$sock_linger(r0, 0x1, 0xd, &(0x7f0000000000)={0x0, 0x6}, 0x8) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffff9c, 0x84, 0x77, &(0x7f0000000480)=ANY=[@ANYRES32=0x0, @ANYBLOB='6'], &(0x7f0000000380)=0x2) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_GET_EMULATED_CPUID(r1, 0xc008ae09, &(0x7f0000000200)) 2033/05/18 03:37:10 executing program 6: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) poll(&(0x7f0000000000)=[{r2}], 0x1, 0xf779) setsockopt$bt_BT_SNDMTU(r2, 0x112, 0xc, &(0x7f0000000040)=0x4, 0x2) dup3(r4, r3, 0x0) getsockopt$inet6_int(r2, 0x29, 0xa, &(0x7f00000000c0), &(0x7f0000000100)=0x4) [ 345.209682] FAULT_INJECTION: forcing a failure. [ 345.209682] name failslab, interval 1, probability 0, space 0, times 0 [ 345.220953] CPU: 0 PID: 24526 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 345.228226] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 345.237578] Call Trace: [ 345.240172] dump_stack+0x1b9/0x294 [ 345.243826] ? dump_stack_print_info.cold.2+0x52/0x52 [ 345.249032] ? perf_trace_lock_acquire+0xe3/0x980 [ 345.253887] ? mutex_trylock+0x2a0/0x2a0 [ 345.257971] should_fail.cold.4+0xa/0x1a [ 345.262047] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 345.267166] ? graph_lock+0x170/0x170 [ 345.270971] ? find_held_lock+0x36/0x1c0 [ 345.275047] ? find_held_lock+0x36/0x1c0 [ 345.279128] ? __lock_is_held+0xb5/0x140 [ 345.283214] ? check_same_owner+0x320/0x320 [ 345.287544] ? rcu_note_context_switch+0x710/0x710 [ 345.292467] ? kasan_check_write+0x14/0x20 [ 345.296695] __should_failslab+0x124/0x180 [ 345.300925] should_failslab+0x9/0x14 [ 345.304714] kmem_cache_alloc+0x2af/0x760 [ 345.308859] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 345.313864] __kernfs_new_node+0xe7/0x580 [ 345.317999] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 345.322749] ? lock_downgrade+0x8e0/0x8e0 [ 345.326888] ? kasan_check_read+0x11/0x20 [ 345.331027] ? do_raw_spin_unlock+0x9e/0x2e0 [ 345.335424] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 345.339998] kernfs_new_node+0x80/0xf0 [ 345.343879] kernfs_create_link+0x33/0x180 [ 345.348103] sysfs_do_create_link_sd.isra.2+0x90/0x130 [ 345.353370] sysfs_create_link+0x65/0xc0 [ 345.357419] device_add+0x481/0x16d0 [ 345.361123] ? device_private_init+0x230/0x230 [ 345.365689] ? kfree+0x1e9/0x260 [ 345.369043] ? kfree_const+0x5e/0x70 [ 345.372744] device_create_groups_vargs+0x1ff/0x270 [ 345.377747] device_create_vargs+0x46/0x60 [ 345.381969] bdi_register_va.part.10+0xbb/0x970 [ 345.386624] ? cgwb_kill+0x630/0x630 [ 345.390326] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 345.395846] ? bdi_init+0x416/0x510 [ 345.399458] ? wb_init+0x9e0/0x9e0 [ 345.402986] ? bdi_alloc_node+0x67/0xe0 [ 345.406946] ? bdi_alloc_node+0x67/0xe0 [ 345.410905] ? rcu_read_lock_sched_held+0x108/0x120 [ 345.415917] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 345.421181] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 345.426704] ? refcount_sub_and_test+0x212/0x330 [ 345.431446] bdi_register_va+0x68/0x80 [ 345.435320] super_setup_bdi_name+0x123/0x220 [ 345.439806] ? kill_block_super+0x100/0x100 [ 345.444115] ? kmem_cache_alloc_trace+0x616/0x780 [ 345.448950] fuse_fill_super+0xe6e/0x1e20 [ 345.453090] ? fuse_get_root_inode+0x190/0x190 [ 345.457677] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 345.463209] ? vsnprintf+0x242/0x1b40 [ 345.466999] ? pointer+0xa20/0xa20 [ 345.470538] ? vsprintf+0x40/0x40 [ 345.473977] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 345.478977] ? set_blocksize+0x2c4/0x350 [ 345.483032] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 345.488557] mount_bdev+0x30c/0x3e0 [ 345.492176] ? fuse_get_root_inode+0x190/0x190 [ 345.496744] fuse_mount_blk+0x34/0x40 [ 345.500533] mount_fs+0xae/0x328 [ 345.503891] vfs_kern_mount.part.34+0xd4/0x4d0 [ 345.508458] ? may_umount+0xb0/0xb0 [ 345.512070] ? _raw_read_unlock+0x22/0x30 [ 345.516200] ? __get_fs_type+0x97/0xc0 [ 345.520075] do_mount+0x564/0x3070 [ 345.523606] ? copy_mount_string+0x40/0x40 [ 345.527828] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 345.532570] ? retint_kernel+0x10/0x10 [ 345.536445] ? copy_mount_options+0x1e3/0x380 [ 345.540928] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 345.546450] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 345.551973] ? copy_mount_options+0x285/0x380 [ 345.556455] ksys_mount+0x12d/0x140 [ 345.560070] __x64_sys_mount+0xbe/0x150 [ 345.564031] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 345.569034] do_syscall_64+0x1b1/0x800 [ 345.572906] ? finish_task_switch+0x1ca/0x810 [ 345.577385] ? syscall_return_slowpath+0x5c0/0x5c0 [ 345.582302] ? syscall_return_slowpath+0x30f/0x5c0 [ 345.587217] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 345.592568] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 345.597398] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 345.602570] RIP: 0033:0x455979 2033/05/18 03:37:10 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_v%i0\x00'}) [ 345.605745] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 345.613439] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 345.620690] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 345.627943] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 345.635198] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 345.642448] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:37:10 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={r0, 0x3, 0x1, 0x1, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x7}, 0x20) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) getitimer(0x3, &(0x7f0000000040)) 2033/05/18 03:37:10 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:10 executing program 4: pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) rt_sigprocmask(0x0, &(0x7f0000834000)={0x7fffffff}, &(0x7f00000c1000), 0xfffffffffffffde4) dup2(r1, r0) vmsplice(r1, &(0x7f0000000040)=[{&(0x7f00000006c0)}], 0x1, 0x0) getsockopt$inet_sctp_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f0000000000)={0x0, 0x7f}, &(0x7f0000000080)=0x8) setsockopt$inet_sctp_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f00000000c0)={r2, 0x0, 0xff, 0x8}, 0x10) 2033/05/18 03:37:10 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti#\x00'}) [ 345.681284] l2tp_ppp: sess 4/0: set debug=cf10464f [ 345.697259] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:37:10 executing program 0 (fault-call:0 fault-nth:57): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:10 executing program 4: syz_mount_image$jfs(&(0x7f00000003c0)='jfs\x00', &(0x7f0000000400)='./file0\x00', 0x0, 0x0, &(0x7f0000000500), 0x0, &(0x7f0000000540)={[{@errors_remount='errors=remount-ro', 0x2c}]}) r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x39ffd, 0x0) getsockopt$inet6_dccp_buf(r0, 0x21, 0xd, &(0x7f0000000040)=""/100, &(0x7f00000000c0)=0x64) [ 345.782927] l2tp_ppp: sess 4/0: set debug=cf10464f [ 345.794875] FAULT_INJECTION: forcing a failure. [ 345.794875] name failslab, interval 1, probability 0, space 0, times 0 [ 345.806184] CPU: 1 PID: 24553 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 345.807480] l2tp_ppp: sess 4/0: get flags=0 [ 345.813457] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 345.813463] Call Trace: [ 345.813489] dump_stack+0x1b9/0x294 [ 345.813512] ? dump_stack_print_info.cold.2+0x52/0x52 [ 345.813529] ? perf_trace_lock_acquire+0xe3/0x980 [ 345.813543] ? lock_release+0xa10/0xa10 [ 345.813566] should_fail.cold.4+0xa/0x1a [ 345.851424] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 345.856551] ? kasan_check_write+0x14/0x20 [ 345.860800] ? __mutex_lock+0x7d9/0x17f0 [ 345.864884] ? graph_lock+0x170/0x170 [ 345.868705] ? find_held_lock+0x36/0x1c0 [ 345.872773] ? __lock_is_held+0xb5/0x140 [ 345.876838] ? check_same_owner+0x320/0x320 [ 345.881144] ? find_held_lock+0x36/0x1c0 [ 345.885197] ? rcu_note_context_switch+0x710/0x710 [ 345.890114] __should_failslab+0x124/0x180 [ 345.894687] should_failslab+0x9/0x14 [ 345.898472] kmem_cache_alloc+0x2af/0x760 [ 345.902608] ? kasan_check_write+0x14/0x20 [ 345.906842] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 345.911756] ? lock_downgrade+0x8e0/0x8e0 [ 345.915894] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 345.920899] __kernfs_new_node+0xe7/0x580 [ 345.925039] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 345.929782] ? kasan_check_write+0x14/0x20 [ 345.934003] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 345.938924] ? __lock_is_held+0xb5/0x140 [ 345.942970] ? wait_for_completion+0x870/0x870 [ 345.947547] kernfs_new_node+0x80/0xf0 [ 345.951423] __kernfs_create_file+0x4d/0x330 [ 345.955820] sysfs_add_file_mode_ns+0x21a/0x560 [ 345.960483] internal_create_group+0x282/0x970 [ 345.965057] sysfs_create_groups+0x9b/0x150 [ 345.969365] device_add+0x84d/0x16d0 [ 345.973066] ? device_private_init+0x230/0x230 [ 345.977634] ? kfree+0x1e9/0x260 [ 345.980987] ? kfree_const+0x5e/0x70 [ 345.984690] device_create_groups_vargs+0x1ff/0x270 [ 345.989692] device_create_vargs+0x46/0x60 [ 345.993913] bdi_register_va.part.10+0xbb/0x970 [ 345.998566] ? cgwb_kill+0x630/0x630 [ 346.002266] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 346.007786] ? bdi_init+0x416/0x510 [ 346.011409] ? wb_init+0x9e0/0x9e0 [ 346.014934] ? bdi_alloc_node+0x67/0xe0 [ 346.018892] ? bdi_alloc_node+0x67/0xe0 [ 346.022850] ? rcu_read_lock_sched_held+0x108/0x120 [ 346.027851] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 346.033116] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 346.038639] ? refcount_sub_and_test+0x212/0x330 [ 346.043381] bdi_register_va+0x68/0x80 [ 346.047260] super_setup_bdi_name+0x123/0x220 [ 346.051741] ? kill_block_super+0x100/0x100 [ 346.056054] ? kmem_cache_alloc_trace+0x616/0x780 [ 346.060892] fuse_fill_super+0xe6e/0x1e20 [ 346.065035] ? fuse_get_root_inode+0x190/0x190 [ 346.069604] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 346.075125] ? vsnprintf+0x242/0x1b40 [ 346.078915] ? pointer+0xa20/0xa20 [ 346.082449] ? vsprintf+0x40/0x40 [ 346.085889] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 346.090902] ? set_blocksize+0x2c4/0x350 [ 346.094950] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 346.100473] mount_bdev+0x30c/0x3e0 [ 346.104086] ? fuse_get_root_inode+0x190/0x190 [ 346.108653] fuse_mount_blk+0x34/0x40 [ 346.112442] mount_fs+0xae/0x328 [ 346.115798] vfs_kern_mount.part.34+0xd4/0x4d0 [ 346.120365] ? may_umount+0xb0/0xb0 [ 346.123981] ? _raw_read_unlock+0x22/0x30 [ 346.128113] ? __get_fs_type+0x97/0xc0 [ 346.131989] do_mount+0x564/0x3070 [ 346.135524] ? copy_mount_string+0x40/0x40 [ 346.139745] ? rcu_pm_notify+0xc0/0xc0 [ 346.143621] ? copy_mount_options+0x5f/0x380 [ 346.148020] ? rcu_read_lock_sched_held+0x108/0x120 [ 346.153031] ? kmem_cache_alloc_trace+0x616/0x780 [ 346.157861] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 346.163384] ? _copy_from_user+0xdf/0x150 [ 346.167519] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 346.173042] ? copy_mount_options+0x285/0x380 [ 346.177525] ksys_mount+0x12d/0x140 [ 346.181139] __x64_sys_mount+0xbe/0x150 [ 346.185097] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 346.190104] do_syscall_64+0x1b1/0x800 [ 346.193980] ? finish_task_switch+0x1ca/0x810 [ 346.198465] ? syscall_return_slowpath+0x5c0/0x5c0 [ 346.203379] ? syscall_return_slowpath+0x30f/0x5c0 [ 346.208297] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 346.213649] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 346.218483] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 346.223654] RIP: 0033:0x455979 [ 346.226826] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 2033/05/18 03:37:10 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 346.234520] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 346.241774] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 346.249029] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 346.256281] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 346.263533] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:37:11 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) ioctl$KDDISABIO(r0, 0x4b37) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) memfd_create(&(0x7f0000000040)='/dev/ppp\x00', 0x3) accept$ipx(r0, &(0x7f00000000c0), &(0x7f0000000100)=0x10) 2033/05/18 03:37:11 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x200000000000000) 2033/05/18 03:37:11 executing program 5: socketpair(0xf, 0xa, 0x40, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0xc0145401, &(0x7f0000000040)={0x3, 0x3, 0x0, 0x3, 0x5c}) r2 = socket$inet6(0xa, 0x80804, 0x7ffffffffffd) r3 = syz_genetlink_get_family_id$fou(&(0x7f00000000c0)='fou\x00') setsockopt$inet_sctp6_SCTP_ADD_STREAMS(r2, 0x84, 0x79, &(0x7f00000001c0), 0x4) sendmsg$FOU_CMD_ADD(r1, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x2c, r3, 0x404, 0x70bd27, 0x25dfdbff, {0x1}, [@FOU_ATTR_TYPE={0x8, 0x4, 0x3}, @FOU_ATTR_PORT={0x8, 0x1, 0x4e22}, @FOU_ATTR_AF={0x8, 0x2, 0x2}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4}, 0x4000000) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000f5ffe0)={@empty, 0x3fd}, 0x20) socket$nl_route(0x10, 0x3, 0x0) madvise(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x6f) 2033/05/18 03:37:11 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:11 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000080)) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000003c0)={[{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x6}, {0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}], 0x100}) 2033/05/18 03:37:11 executing program 0 (fault-call:0 fault-nth:58): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:11 executing program 6: r0 = syz_open_dev$loop(&(0x7f0000000100)='/dev/loop#\x00', 0x0, 0x0) capset(&(0x7f0000a31000)={0x19980330}, &(0x7f00009b3000)) ioctl$IOC_PR_RESERVE(r0, 0x401070c9, &(0x7f0000000000)) r1 = semget(0x3, 0x3, 0x2) semctl$GETNCNT(r1, 0x4, 0xe, &(0x7f0000000040)=""/133) ioctl$fiemap(r0, 0xc020660b, &(0x7f0000000140)={0x7e, 0x9, 0x5, 0x4, 0x1, [{0x7, 0x1, 0x8, 0x0, 0x0, 0x4}]}) 2033/05/18 03:37:11 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti%\x00'}) [ 346.397438] l2tp_ppp: sess 4/0: set debug=cf10464f [ 346.409303] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:37:11 executing program 4: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080)='/dev/zero\x00', 0x80000, 0x0) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x1ff}, &(0x7f0000000100)=0x8) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={r1, @in={{0x2, 0x4e20}}, 0x4, 0x8, 0x10001, 0x9, 0x20}, 0x98) ioctl$KDGKBSENT(r0, 0x4b48, &(0x7f0000000200)={0x5, 0x8, 0x7fffffff}) sendmsg$inet_sctp(0xffffffffffffffff, &(0x7f0000001700)={&(0x7f00000013c0)=@in={0x2, 0x0, @remote={0xac, 0x14, 0x14, 0xbb}}, 0x10, &(0x7f0000001580)=[{&(0x7f0000001540)="dd", 0x1}], 0x1, &(0x7f0000001640)=[@dstaddrv4={0x18, 0x84, 0x7, @loopback=0x7f000001}], 0x18}, 0x0) getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(0xffffffffffffffff, 0x84, 0xc, &(0x7f0000000000), &(0x7f0000000040)=0x4) [ 346.467227] FAULT_INJECTION: forcing a failure. [ 346.467227] name failslab, interval 1, probability 0, space 0, times 0 [ 346.478552] CPU: 1 PID: 24588 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 346.485832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 346.495184] Call Trace: [ 346.497787] dump_stack+0x1b9/0x294 [ 346.501424] ? dump_stack_print_info.cold.2+0x52/0x52 [ 346.507045] ? perf_trace_lock_acquire+0xe3/0x980 [ 346.511898] ? mutex_trylock+0x2a0/0x2a0 [ 346.515975] should_fail.cold.4+0xa/0x1a [ 346.520050] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 346.525174] ? graph_lock+0x170/0x170 [ 346.528989] ? find_held_lock+0x36/0x1c0 [ 346.533063] ? find_held_lock+0x36/0x1c0 [ 346.537140] ? __lock_is_held+0xb5/0x140 [ 346.541235] ? check_same_owner+0x320/0x320 [ 346.545570] ? rcu_note_context_switch+0x710/0x710 [ 346.550513] ? kasan_check_write+0x14/0x20 [ 346.554764] __should_failslab+0x124/0x180 [ 346.559007] should_failslab+0x9/0x14 [ 346.562804] kmem_cache_alloc+0x2af/0x760 [ 346.566942] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 346.571946] __kernfs_new_node+0xe7/0x580 [ 346.576083] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 346.580827] ? lock_downgrade+0x8e0/0x8e0 [ 346.584967] ? kasan_check_read+0x11/0x20 [ 346.589119] ? do_raw_spin_unlock+0x9e/0x2e0 [ 346.593518] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 346.598090] kernfs_new_node+0x80/0xf0 [ 346.601966] kernfs_create_link+0x33/0x180 [ 346.606194] sysfs_do_create_link_sd.isra.2+0x90/0x130 [ 346.611461] sysfs_create_link+0x65/0xc0 [ 346.615509] device_add+0x481/0x16d0 [ 346.619212] ? device_private_init+0x230/0x230 [ 346.623776] ? kfree+0x1e9/0x260 [ 346.627130] ? kfree_const+0x5e/0x70 [ 346.630833] device_create_groups_vargs+0x1ff/0x270 [ 346.635837] device_create_vargs+0x46/0x60 [ 346.640061] bdi_register_va.part.10+0xbb/0x970 [ 346.644715] ? cgwb_kill+0x630/0x630 [ 346.648416] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 346.653935] ? bdi_init+0x416/0x510 [ 346.657544] ? wb_init+0x9e0/0x9e0 [ 346.661072] ? bdi_alloc_node+0x67/0xe0 [ 346.665034] ? bdi_alloc_node+0x67/0xe0 [ 346.668998] ? rcu_read_lock_sched_held+0x108/0x120 [ 346.674016] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 346.679288] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 346.684827] ? refcount_sub_and_test+0x212/0x330 [ 346.689570] bdi_register_va+0x68/0x80 [ 346.693455] super_setup_bdi_name+0x123/0x220 [ 346.697934] ? kill_block_super+0x100/0x100 [ 346.702241] ? kmem_cache_alloc_trace+0x616/0x780 [ 346.707080] fuse_fill_super+0xe6e/0x1e20 [ 346.711222] ? fuse_get_root_inode+0x190/0x190 [ 346.715796] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 346.721319] ? vsnprintf+0x242/0x1b40 [ 346.725112] ? pointer+0xa20/0xa20 [ 346.728646] ? vsprintf+0x40/0x40 [ 346.732089] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 346.737090] ? set_blocksize+0x2c4/0x350 [ 346.741140] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 346.746663] mount_bdev+0x30c/0x3e0 [ 346.750275] ? fuse_get_root_inode+0x190/0x190 [ 346.754845] fuse_mount_blk+0x34/0x40 [ 346.758634] mount_fs+0xae/0x328 [ 346.761989] vfs_kern_mount.part.34+0xd4/0x4d0 [ 346.766559] ? may_umount+0xb0/0xb0 [ 346.770177] ? _raw_read_unlock+0x22/0x30 [ 346.774308] ? __get_fs_type+0x97/0xc0 [ 346.778185] do_mount+0x564/0x3070 [ 346.781714] ? copy_mount_string+0x40/0x40 [ 346.785934] ? rcu_pm_notify+0xc0/0xc0 [ 346.789815] ? copy_mount_options+0x5f/0x380 [ 346.794210] ? rcu_read_lock_sched_held+0x108/0x120 [ 346.799212] ? kmem_cache_alloc_trace+0x616/0x780 [ 346.804044] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 346.809567] ? _copy_from_user+0xdf/0x150 [ 346.813703] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 346.819223] ? copy_mount_options+0x285/0x380 [ 346.823707] ksys_mount+0x12d/0x140 [ 346.827321] __x64_sys_mount+0xbe/0x150 [ 346.831282] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 346.836284] do_syscall_64+0x1b1/0x800 [ 346.840160] ? finish_task_switch+0x1ca/0x810 [ 346.844642] ? syscall_return_slowpath+0x5c0/0x5c0 [ 346.849557] ? syscall_return_slowpath+0x30f/0x5c0 [ 346.854474] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 346.859826] ? trace_hardirqs_off_thunk+0x1a/0x1c 2033/05/18 03:37:11 executing program 6: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_AUTOCLOSE(r0, 0x84, 0x4, &(0x7f0000000000), &(0x7f0000000040)=0x4) getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f0000000080)=""/188, &(0x7f0000000140)=0xbc) socket$nl_route(0x10, 0x3, 0x0) 2033/05/18 03:37:11 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:11 executing program 5: r0 = socket$inet6(0xa, 0x3, 0x3a) setsockopt$inet6_int(r0, 0x29, 0xc8, &(0x7f0000000000), 0x4) getsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000040)={0x0, 0x2000000000}, &(0x7f0000000080)=0x8) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f00000000c0)={r1, @in={{0x2, 0x4e21, @loopback=0x7f000001}}, 0x8, 0x9, 0x0, 0xa2, 0x40}, &(0x7f0000000200)=0x98) setsockopt$inet6_MRT6_ADD_MFC(r0, 0x29, 0xc8, &(0x7f0000000180)={{0xa, 0x0, 0x0, @ipv4={[], [0xff, 0xff], @multicast1=0xe0000001}}, {0xa, 0x0, 0x0, @mcast1={0xff, 0x1, [], 0x1}, 0x4000}}, 0x5c) [ 346.864669] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 346.869842] RIP: 0033:0x455979 [ 346.873020] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 346.880719] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 346.887972] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 346.895239] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 346.902491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 346.909743] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:37:11 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti+\x00'}) 2033/05/18 03:37:11 executing program 4: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa}, 0x1c) r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x10000, 0x0) recvfrom$inet(r1, &(0x7f0000000100), 0x0, 0x2, &(0x7f00000001c0)={0x2, 0x4e21, @multicast1=0xe0000001}, 0x10) sendmmsg(r0, &(0x7f0000000140)=[{{0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f00000001c0)}}, {{&(0x7f00000004c0)=@in6={0x2, 0x0, 0x0, @mcast2={0xff, 0x2, [], 0x1}}, 0x80, &(0x7f0000000040), 0x0, &(0x7f0000000080)}}], 0x2, 0x24000005) r2 = syz_open_dev$dmmidi(&(0x7f0000000080)='/dev/dmmidi#\x00', 0x3, 0x1) ioctl$ASHMEM_GET_SIZE(r2, 0x7704, 0x0) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='ifb0\x00', 0x10) [ 346.925647] IPVS: length: 188 != 24 [ 346.946883] IPVS: length: 188 != 24 [ 346.970302] l2tp_ppp: sess 4/0: set debug=cf10464f [ 346.999370] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:37:12 executing program 6: r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$SG_NEXT_CMD_LEN(r0, 0x2283, &(0x7f0000000000)=0x79) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)="6d6f756e74696e666f00a4") sendfile(r1, r1, &(0x7f0000000040)=0x4000000, 0x8) 2033/05/18 03:37:12 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00003e0000)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCPKT(r0, 0x5420, &(0x7f00003b8ffc)=0x1ff) ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000000)=0x2) 2033/05/18 03:37:12 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:12 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @multicast2=0xe0000002}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000b86000)={0x1, &(0x7f00006dc000)=[{0x6, 0x0, 0x0, 0xa1}]}, 0x10) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000040), 0x4) setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f00000001c0)={@in={{0x2, 0x0, @loopback=0x7f000001}}, 0x0, 0x8, 0x0, "ed42308c89f5b286453df8fd39cc912287918b62c4aceaad4678b75d4c27182ad03e4ab1b4cc32aec3ad824e95763d5b7c8bd3ddae9b3d186d32a656b9a37c366b321e8d8f7d8720d217f440371232a4"}, 0xd8) sendto$inet(r0, &(0x7f0000fd0000), 0x0, 0x200007ff, &(0x7f0000deaff0)={0x2, 0x4e23, @loopback=0x7f000001}, 0x10) sendto$inet(r0, &(0x7f00006fd000)="c3401c344654f3c7d9b41ba48c8e399aa4eedc3d6bd8ebd65c856a27d61154adc2b2a9763ae0201c0d32e11f38e9dd18c58f6bd779650fc30f93653bdaecf323c9f6502ceab47e58114347b289546465a5eb278de12b1989f64cc994", 0x5c, 0x81, &(0x7f0000e66000)={0x2, 0x0, @rand_addr}, 0x10) sendto$inet(r0, &(0x7f0000000500)="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", 0x22d, 0x0, &(0x7f0000000000)={0x2, 0x0, @multicast2=0xe0000002}, 0x10) 2033/05/18 03:37:12 executing program 0 (fault-call:0 fault-nth:59): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:12 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x80ffff00000000) 2033/05/18 03:37:12 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti-\x00'}) 2033/05/18 03:37:12 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000000040)="1503b2", 0xfffffffffffffe33}], 0x0, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) [ 347.113922] FAULT_INJECTION: forcing a failure. [ 347.113922] name failslab, interval 1, probability 0, space 0, times 0 [ 347.125214] CPU: 1 PID: 24630 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 347.132495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 347.141850] Call Trace: [ 347.144447] dump_stack+0x1b9/0x294 [ 347.148089] ? dump_stack_print_info.cold.2+0x52/0x52 [ 347.150448] l2tp_ppp: sess 4/0: set debug=cf10464f [ 347.153284] ? perf_trace_lock_acquire+0xe3/0x980 [ 347.153306] ? __might_sleep+0x95/0x190 [ 347.153329] should_fail.cold.4+0xa/0x1a [ 347.153352] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 347.176207] ? mutex_trylock+0x2a0/0x2a0 [ 347.180276] ? graph_lock+0x170/0x170 [ 347.180646] l2tp_ppp: sess 4/0: get flags=0 [ 347.184078] ? __mutex_lock+0x7d9/0x17f0 [ 347.184103] ? find_held_lock+0x36/0x1c0 [ 347.184132] ? __lock_is_held+0xb5/0x140 [ 347.184160] ? check_same_owner+0x320/0x320 [ 347.184177] ? perf_trace_lock_acquire+0xe3/0x980 [ 347.209769] ? rcu_note_context_switch+0x710/0x710 [ 347.214710] __should_failslab+0x124/0x180 [ 347.218955] should_failslab+0x9/0x14 [ 347.222760] __kmalloc_track_caller+0x2c4/0x760 [ 347.227438] ? graph_lock+0x170/0x170 [ 347.231245] ? graph_lock+0x170/0x170 [ 347.235054] ? kstrdup_const+0x66/0x80 [ 347.238953] kstrdup+0x39/0x70 [ 347.242157] kstrdup_const+0x66/0x80 [ 347.245878] __kernfs_new_node+0xa8/0x580 [ 347.250033] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 347.254801] ? lock_downgrade+0x8e0/0x8e0 [ 347.258962] ? kasan_check_read+0x11/0x20 [ 347.263117] ? do_raw_spin_unlock+0x9e/0x2e0 [ 347.267537] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 347.272134] kernfs_new_node+0x80/0xf0 [ 347.276036] kernfs_create_link+0x33/0x180 [ 347.280282] sysfs_do_create_link_sd.isra.2+0x90/0x130 [ 347.285572] sysfs_create_link+0x65/0xc0 [ 347.289653] device_add+0x7a0/0x16d0 [ 347.293360] ? device_private_init+0x230/0x230 [ 347.297930] ? kfree+0x1e9/0x260 [ 347.301286] ? kfree_const+0x5e/0x70 [ 347.304994] device_create_groups_vargs+0x1ff/0x270 [ 347.310004] device_create_vargs+0x46/0x60 [ 347.314239] bdi_register_va.part.10+0xbb/0x970 [ 347.318895] ? cgwb_kill+0x630/0x630 [ 347.322600] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 347.328125] ? bdi_init+0x416/0x510 [ 347.331735] ? wb_init+0x9e0/0x9e0 [ 347.335261] ? bdi_alloc_node+0x67/0xe0 [ 347.339220] ? bdi_alloc_node+0x67/0xe0 [ 347.343179] ? rcu_read_lock_sched_held+0x108/0x120 [ 347.348183] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 347.353448] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 347.358971] ? refcount_sub_and_test+0x212/0x330 [ 347.363724] bdi_register_va+0x68/0x80 [ 347.367604] super_setup_bdi_name+0x123/0x220 [ 347.372088] ? kill_block_super+0x100/0x100 [ 347.376403] ? kmem_cache_alloc_trace+0x616/0x780 [ 347.381240] fuse_fill_super+0xe6e/0x1e20 [ 347.385395] ? fuse_get_root_inode+0x190/0x190 [ 347.389965] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 347.395494] ? vsnprintf+0x242/0x1b40 [ 347.399284] ? pointer+0xa20/0xa20 [ 347.402820] ? vsprintf+0x40/0x40 [ 347.406260] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 347.411264] ? set_blocksize+0x2c4/0x350 [ 347.415311] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 347.420835] mount_bdev+0x30c/0x3e0 [ 347.424447] ? fuse_get_root_inode+0x190/0x190 [ 347.429023] fuse_mount_blk+0x34/0x40 [ 347.432813] mount_fs+0xae/0x328 [ 347.436171] vfs_kern_mount.part.34+0xd4/0x4d0 [ 347.440740] ? may_umount+0xb0/0xb0 [ 347.444355] ? _raw_read_unlock+0x22/0x30 [ 347.448485] ? __get_fs_type+0x97/0xc0 [ 347.452360] do_mount+0x564/0x3070 [ 347.455889] ? copy_mount_string+0x40/0x40 [ 347.460114] ? rcu_pm_notify+0xc0/0xc0 [ 347.463991] ? copy_mount_options+0x5f/0x380 [ 347.468386] ? rcu_read_lock_sched_held+0x108/0x120 [ 347.473391] ? kmem_cache_alloc_trace+0x616/0x780 [ 347.478221] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 347.483744] ? _copy_from_user+0xdf/0x150 [ 347.487880] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 347.493400] ? copy_mount_options+0x285/0x380 [ 347.497882] ksys_mount+0x12d/0x140 [ 347.501497] __x64_sys_mount+0xbe/0x150 [ 347.505456] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 347.510460] do_syscall_64+0x1b1/0x800 [ 347.514332] ? finish_task_switch+0x1ca/0x810 [ 347.518816] ? syscall_return_slowpath+0x5c0/0x5c0 [ 347.523732] ? syscall_return_slowpath+0x30f/0x5c0 [ 347.528650] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 347.534002] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 347.538840] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 347.544016] RIP: 0033:0x455979 [ 347.547192] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 347.554885] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 2033/05/18 03:37:12 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:12 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f0000000040)={0x3b3}) 2033/05/18 03:37:12 executing program 6: r0 = syz_open_dev$sndseq(&(0x7f0000000040)='/dev/snd/seq\x00', 0x0, 0x0) read(r0, &(0x7f0000000000)=""/28, 0x1c) r1 = getpid() sched_setattr(r1, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x0, 0x3}, 0x0) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f000019ffe9)={0xc1, @time={0x0, 0x989680}}) socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000140)='/dev/rtc0\x00', 0x14000, 0x0) pselect6(0x40, &(0x7f00000001c0)={0xfffffffffffffffe, 0x0, 0x4, 0xffffffff, 0xffffffffffffff38, 0xfffffffffffffffa, 0xb, 0x5d}, &(0x7f00000002c0)={0x1, 0x6, 0x8, 0x6, 0xfffffffffffffff7, 0x5, 0x6, 0xac47}, &(0x7f0000000300)={0x9a, 0xd16, 0x8, 0x6, 0x7, 0x80, 0x8, 0x1000}, &(0x7f0000000340)={0x77359400}, &(0x7f00000003c0)={&(0x7f0000000380)={0x1000}, 0x8}) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r2, &(0x7f0000000180)={0x6}) r5 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100)='/dev/rfkill\x00', 0x80, 0x0) connect$unix(r2, &(0x7f00000bc000)=@abs, 0x8) ioctl$sock_inet_SIOCDARP(r5, 0x8953, &(0x7f0000000440)={{0x2, 0x4e24, @loopback=0x7f000001}, {0x6, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0x20}}, 0x2, {0x2, 0x4e20, @broadcast=0xffffffff}, 'bond_slave_1\x00'}) connect$l2tp(r5, &(0x7f0000000400)=@pppol2tpv3in6={0x18, 0x1, {0x0, r4, 0x1, 0x0, 0x2, 0x1, {0xa, 0x4e20, 0x8, @mcast2={0xff, 0x2, [], 0x1}, 0xb849}}}, 0x3a) sendmmsg$unix(r3, &(0x7f00000bd000), 0x80, 0x0) recvfrom$unix(r2, &(0x7f0000000200)=""/35, 0x23, 0x0, &(0x7f0000000240)=@file={0x0, './file0\x00'}, 0x6e) [ 347.562138] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 347.569390] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 347.576642] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 347.583892] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:37:12 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:12 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti\n\x00'}) 2033/05/18 03:37:12 executing program 3: r0 = perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000280)=0x0) getsockopt$inet_IP_IPSEC_POLICY(r1, 0x0, 0x10, &(0x7f00000002c0)={{{@in6=@loopback, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{}, 0x0, @in6=@loopback}}, &(0x7f00000003c0)=0xe8) r4 = getegid() r5 = getpid() lstat(&(0x7f0000000400)='./file0\x00', &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0}) fstat(r1, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r8 = fcntl$getown(r0, 0x9) fstat(r1, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x0}) unlinkat(r1, &(0x7f0000000f80)='./file0\x00', 0x200) fstat(r1, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r11 = fcntl$getown(r1, 0x9) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f00000007c0)={{{@in6=@loopback, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@local}, 0x0, @in6=@remote}}, &(0x7f0000000640)=0xe8) r13 = getegid() sendmmsg$unix(r1, &(0x7f00000021c0)=[{&(0x7f00000000c0)=@abs={0x1, 0x0, 0x4e24}, 0x6e, &(0x7f0000000240)=[{&(0x7f0000000040)="a056674b8b09edd4033ff5ebbd8e306045842da3d03cea9641ce5f5daf81fb2a461fb0", 0x23}, {&(0x7f0000000140)="50ca664cc0fef441e72bc090d614843da3909e4b1a2a2e3a42aa7c8e8cd8f6b9a555243b53a18fc6197e9714a57035b17d242685809380a2d1ccd4cd39ba77ac6c2a16205d3de5457ffd42fd546c21e2c99c9619828f08cc9aa3db365739ced1b32b3f1fd86a235b5297b9febc53aca07162e458ff27552ca773cbab5254f75e1ca56b4aee6538137f2fe13a3cc4de77092c11d251c33df9da26fbfb3b55928ead3c725e9b643448d0af3bbcd2239d9456bc5875dd4fabcf831bd79b1a1b8f25abdea4d2ba6eb26fd93f35e2836fa3ed96f8ebf8f0081d20367a1acb", 0xdc}], 0x2, &(0x7f00000008c0)=[@rights={0x30, 0x1, 0x1, [r1, r1, r1, r1, r1, r0, r0]}, @rights={0x28, 0x1, 0x1, [r1, r1, r1, r1, r1, r1]}, @rights={0x20, 0x1, 0x1, [r0, r1, r0, r0]}, @rights={0x28, 0x1, 0x1, [r0, r1, r0, r1, r0, r0]}, @cred={0x20, 0x1, 0x2, r2, r3, r4}, @cred={0x20, 0x1, 0x2, r5, r6, r7}, @cred={0x20, 0x1, 0x2, r8, r9, r10}, @cred={0x20, 0x1, 0x2, r11, r12, r13}], 0x120, 0x40000}, {&(0x7f0000000a00)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000010c0)=[{&(0x7f0000000a80)="692a4c3a2a4ba38d5d5ed2cce09e536845f28300614633ac4bd18087f7b24026b9bb7199bef30068a36dfc85df53c5c55249b4311a1fe093fb4c75a7b19ab77f847e16ccc88ec42b2012faa49363fcd7c23105cbe718", 0x56}, {&(0x7f0000000b00)="51a2140673d72af9d66fa8878c81c04c45f2529c3ce77876ae22b7efbc80f6ba21b0e57fcb21c9e671263ec9bf35b6d32dc9e089f59505b586d9bf0324360aea7e393e2a54d58646c1669c248c7d372192f6d9d5fd5df82992fc98c30cd1f5f41edca47deb7c608ddcc7e36ce3552fb1c474352bde61693b92353e40b74a9ae184b63b077148669ac4374e884e7f3b4a981a666372667b9d84cf47b530249b609832444217d064d9438fa5a2340ef6e9f1a580f766b1530a944f6fcc386d48f7f97e419b6976b7d5f84dbe1ea33d7c8ae519a233b236d21990dd16c3", 0xdc}, {&(0x7f0000000c00)="f2bdbc500d6de7c3acc4eca7765ba4e5cb32e8f3ab914d1de4a6e4bd9195fca9c800f0fe8a03d0a4364e9a002bdff2e3140a32e330c143e635c55d0bb87837c73d9270e286a958955d55c55af23b0b931c11d6b0d6905d70f4845523961708f4173943d0b67682e08df5bea4f9f67d3e0171a12eed27f4", 0x77}, {&(0x7f0000000c80)="0d0e29aa33918225919d02b1a78db379c5232848ee6ad52c68bda342e71433c3d82e5304fce638972d9049bea4dc28db6bd91519fc65c21ed8e6d05c61424679ab6ec4cca81e19a9e698642aef585c038c78b9acb764a015d434d9332961d64dcf0d2d77d08bc522b642ccb97b13e1459407eedbf9d542dd7af55d60ebb6e910c0e93ef0c1cb61fca038a336e472fc1a129a2c8ea34aec9fee4f8143b74c4073bbc8bd0fb084551bfa06732f45c4fa734ed131f8bce19f37265fc2cb6aa1230d7b401e008d252590", 0xc8}, {&(0x7f0000000d80)="b26b2774840dee80cea4766b3730e1006c6866fc1e5aaf9f7a8b0c5bec27185e4b58872b15ef79026bf05ea5cc20384c3d7449da7fb85027c370e10f4d1a5313b53560ff1f149f7db6b037b452cf6b83f09eee8f052928e8da18056e61904d18a3230e09de1a35ff6d1cc4329d0cc4f670d2b339e2dd624498183e326fac9d1124fbb136c98d3a110be85925563b3bdd7139284d51859689107db8885a9533b1d9561ea6c1632a97f09a5a26bb77e62b78f798dc7d1dd8c9462f9343702461303165d2341c83d5f837c63e4007ab94bb9f06a84bed9a9ee2e1e1bf", 0xdb}, {&(0x7f0000000e80)="4d372093c45a87b11ab74a6d5f43be7a3e0ca0876a95f61704089e41fd31292a9630a5a05e34e159f805c8ff3ca3caa1b076797ee61d5e479d9dcb9792d6ed5df5ec310ed94f2aa8e3465715d630f1261f100b09dda5a510bcd4369401ed086ecd1136d64045ed10cd535153a262c523584d374377784734e471aa352ee7fef2e43f4d0a99f783ec5aef82da1624988b7267fdef34807ffd626f58968425b94ad74f94ace75594c7d79b073e8f967c34e14ecbff4cf0ccffd79b63bc3e7adb4be7d93e8e18c6dbc617a9bfd1fee78eb4c253d7f4c06b51699a917e9bed8193bde80730ea1cd4", 0xe6}], 0x6, 0x0, 0x0, 0x10}, {&(0x7f0000001140)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000680)=[{&(0x7f00000011c0)="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", 0x1000}], 0x1, 0x0, 0x0, 0x8000}], 0x3, 0x800) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r1, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r1, 0x4010744d, &(0x7f0000001000)=""/174) 2033/05/18 03:37:12 executing program 0 (fault-call:0 fault-nth:60): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) [ 347.715395] l2tp_ppp: sess 4/0: set debug=cf10464f [ 347.743470] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:37:12 executing program 5: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, &(0x7f0000edfff0)={0x77359400, 0x4}, &(0x7f0000048000), 0x0) futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000dac000), &(0x7f0000048000)=0x1, 0x0) r0 = gettid() ioctl$KVM_S390_INTERRUPT_CPU(0xffffffffffffffff, 0x4010ae94, &(0x7f00000000c0)) timer_create(0x0, &(0x7f0000ec5000)={0x0, 0x12}, &(0x7f0000044000)=0x0) timer_settime(r1, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x1c9c380}}, &(0x7f0000040000)) tkill(r0, 0x1000000000013) r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ppp\x00', 0x8001, 0x0) ioctl$KVM_ENABLE_CAP_CPU(r2, 0x4068aea3, &(0x7f0000000100)={0x7b, 0x0, [0x7, 0xd3, 0x1]}) capget(&(0x7f0000000080)={0x19980330, r0}, &(0x7f0000000180)={0x10000, 0x80000000, 0x1, 0x6, 0x3, 0xfffffffffffff9d1}) [ 347.768911] FAULT_INJECTION: forcing a failure. [ 347.768911] name failslab, interval 1, probability 0, space 0, times 0 [ 347.780221] CPU: 0 PID: 24657 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 347.787500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 347.796856] Call Trace: [ 347.799455] dump_stack+0x1b9/0x294 [ 347.803100] ? dump_stack_print_info.cold.2+0x52/0x52 [ 347.808304] ? perf_trace_lock_acquire+0xe3/0x980 [ 347.813151] ? __might_sleep+0x95/0x190 [ 347.817119] should_fail.cold.4+0xa/0x1a [ 347.821175] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 347.826275] ? mutex_trylock+0x2a0/0x2a0 [ 347.830322] ? graph_lock+0x170/0x170 [ 347.834114] ? __mutex_lock+0x7d9/0x17f0 [ 347.838164] ? find_held_lock+0x36/0x1c0 [ 347.842213] ? __lock_is_held+0xb5/0x140 [ 347.846268] ? check_same_owner+0x320/0x320 [ 347.850579] ? perf_trace_lock_acquire+0xe3/0x980 [ 347.855407] ? rcu_note_context_switch+0x710/0x710 [ 347.860325] __should_failslab+0x124/0x180 [ 347.864560] should_failslab+0x9/0x14 [ 347.868369] __kmalloc_track_caller+0x2c4/0x760 [ 347.873029] ? graph_lock+0x170/0x170 [ 347.876815] ? graph_lock+0x170/0x170 [ 347.880607] ? kstrdup_const+0x66/0x80 [ 347.884482] kstrdup+0x39/0x70 [ 347.887663] kstrdup_const+0x66/0x80 [ 347.891364] __kernfs_new_node+0xa8/0x580 [ 347.895499] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 347.900244] ? lock_downgrade+0x8e0/0x8e0 [ 347.904381] ? kasan_check_read+0x11/0x20 [ 347.908514] ? do_raw_spin_unlock+0x9e/0x2e0 [ 347.912907] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 347.917475] kernfs_new_node+0x80/0xf0 [ 347.921356] kernfs_create_link+0x33/0x180 [ 347.925583] sysfs_do_create_link_sd.isra.2+0x90/0x130 [ 347.930847] sysfs_create_link+0x65/0xc0 [ 347.934893] device_add+0x7a0/0x16d0 [ 347.938598] ? device_private_init+0x230/0x230 [ 347.943167] ? kfree+0x1e9/0x260 [ 347.946531] ? kfree_const+0x5e/0x70 [ 347.950232] device_create_groups_vargs+0x1ff/0x270 [ 347.955234] device_create_vargs+0x46/0x60 [ 347.959458] bdi_register_va.part.10+0xbb/0x970 [ 347.964111] ? cgwb_kill+0x630/0x630 [ 347.967811] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 347.973330] ? bdi_init+0x416/0x510 [ 347.976939] ? wb_init+0x9e0/0x9e0 [ 347.980463] ? bdi_alloc_node+0x67/0xe0 [ 347.984420] ? bdi_alloc_node+0x67/0xe0 [ 347.988379] ? rcu_read_lock_sched_held+0x108/0x120 [ 347.993380] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 347.998646] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 348.004168] ? refcount_sub_and_test+0x212/0x330 [ 348.008911] bdi_register_va+0x68/0x80 [ 348.012785] super_setup_bdi_name+0x123/0x220 [ 348.017263] ? kill_block_super+0x100/0x100 [ 348.021573] ? kmem_cache_alloc_trace+0x616/0x780 [ 348.026411] fuse_fill_super+0xe6e/0x1e20 [ 348.030551] ? fuse_get_root_inode+0x190/0x190 [ 348.035124] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 348.040647] ? vsnprintf+0x242/0x1b40 [ 348.044437] ? pointer+0xa20/0xa20 [ 348.047968] ? vsprintf+0x40/0x40 [ 348.051430] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 348.056430] ? set_blocksize+0x2c4/0x350 [ 348.060478] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 348.066006] mount_bdev+0x30c/0x3e0 [ 348.069624] ? fuse_get_root_inode+0x190/0x190 [ 348.074193] fuse_mount_blk+0x34/0x40 [ 348.077983] mount_fs+0xae/0x328 [ 348.081339] vfs_kern_mount.part.34+0xd4/0x4d0 [ 348.085907] ? may_umount+0xb0/0xb0 [ 348.089520] ? _raw_read_unlock+0x22/0x30 [ 348.093654] ? __get_fs_type+0x97/0xc0 [ 348.097529] do_mount+0x564/0x3070 [ 348.101056] ? interrupt_entry+0xb1/0xf0 [ 348.105115] ? copy_mount_string+0x40/0x40 [ 348.109339] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 348.114084] ? retint_kernel+0x10/0x10 [ 348.117960] ? copy_mount_options+0x213/0x380 [ 348.122441] ? write_comp_data+0x1/0x70 [ 348.126406] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 348.131927] ? copy_mount_options+0x285/0x380 [ 348.136412] ksys_mount+0x12d/0x140 [ 348.140032] __x64_sys_mount+0xbe/0x150 [ 348.143994] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 348.148999] do_syscall_64+0x1b1/0x800 [ 348.152875] ? finish_task_switch+0x1ca/0x810 [ 348.157355] ? syscall_return_slowpath+0x5c0/0x5c0 [ 348.162281] ? syscall_return_slowpath+0x30f/0x5c0 [ 348.167205] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 348.172561] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 348.177391] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 348.182566] RIP: 0033:0x455979 [ 348.185743] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 348.193437] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 348.200693] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 348.207945] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 348.215198] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 348.222451] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:37:13 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:13 executing program 6: accept4(0xffffffffffffffff, &(0x7f0000000140)=@ethernet={0x0, @random}, &(0x7f00000001c0)=0x80, 0x80800) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x3fd, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000080)={0x1, 0x0, [{0x48, 0x0, 0x3}]}) dup3(r0, r1, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:37:13 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0xfdfdffff) 2033/05/18 03:37:13 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti0\x00\x00\x00\n\x00'}) 2033/05/18 03:37:13 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) ioctl$sock_netdev_private(r0, 0x89fb, &(0x7f00000010c0)="92883e732c2326e2d67101ae48464f9a5e51eff6c2644d4dfa35100b38ed6413d193bb65a015571ec5ffaa82cb8c2fb7faf65978a59741581d2d4d1b0e4945fa65ec15fafbaf6fab7e5ccf47cd7f6f6df9f0e7acd0ee91907360c4e85b170c3bcefe5bb70f553d9e5fd1bdcd1d2f62b042ff0dbf22002aef55aae5742fb01a3f70976139928507f09fc392e1d1258ef0ff6a9511efb0be6d1ccee084e8c2bb31d70512ee80356f27f9d392578225ea07ad5e038716df495fef6c6b8622ec00e1a0c1ff0b05146c0526b81721b5d6c41dd32835ad0feb5dfd1bcb4af9f673ed111ce73476a3201e7a5b09b01fe9860a30c2cdffdf0e3f292a843d34efe8ab699d50e12e9b7e28d26e8fcff716525810a9161de64b9e38c81f730b821c5c3ebfe3e664653fb8729b2f1631e8b7838bbbbb653ac84f8ecabc8a7f29cd39884010728350c3214aca3017bbb97d13090eea850a912e773ecbc7fa51b3c10b8cd76ab2416e0b823152749f4d62bda43ed81b6dcc5dc064b683ca47ebc7d4eb4ec8aa5b65dc38eee05e3d4955ca2fd15a6cb99dae7c2eef0d1ea9ce0ebc0fe27ae6c8271b6034c1c7c077da6a8b095de92c631e1a679310b776c702c515459253fec5cc01f0fb84ebc9bed7bcb74f01d21981524802bf70f6823dcc7838e47f89529c03b523a3f4ab146c4b76919a17cc839b72f953843015a9942a643d9cbba53f0bc2afee07fb902476422b8945fe69eca87154237598bebc9d90c40f7658c96974b4cfcbb8ca32df4ac1bc86a946623bf9ddf3cb4b00d9deb55d19d44b0aa3488995794f96df990c411a23b11e700bf20d05f1cc0e9aec768ed9a9c53742a984b17c0e48045b9b65ad9e6c53610952dc72c9043164cee77f9f6fd45e6df691a3ebed0087c261790ea28f479549a0787e7fa451bf54dd8622b65b77a2e63e1a9f671f8ac4772a9e7dc9282bde04dd61e953c218020c05b05850eb3a2f736475f668321d751fa266f41427d482e363c2b6af07cb0eaf1d8515b91482a12b7eb1ed59f1eaaa3c52f6fe72dd8f0b19b6a418429b6e4a3492a469828819571583da88b572780b42056685d18efdf7941ee18f46b920b3761edbda8366ae971067ea6ace4933542e7aac2bc2c348db302c2e8d8647dc0479c8b58fdd658c0680a0b9504c16c42841ef20f7591067c9f33490ad784b62792ea51ec237c65758a0071b748f5de61f688cc2bfe51da8a0dc8a9bba2dc79af593a394648421a9ee6fbe4712bf582d69701d4083aeb6a1bd15f0824d5e5127c8d6502c369921b914cfd2e088f103f414e19fa8b7397214f5b6f04d042571b1b83bb5f666771bdbecea91b5cb9c953023853e5824f89e4ef8d3b23c9163348fddd9d526303bffefa96e312c6d1214e304fd907cc25f0fdfb17385eb6b8a086d199a4a70a0cd81999fed949d6d3f5efca30cfc521c43ec1422b5ffaf3ea6cfda0b1cf97b2e8796a3438ae81da65c47a91b3761e89ab13f1dfd98e2816bbd174bf2c425fdeaf73afb2d5bba7eca913b6b7ff924dd22da54f7271e4c2354c3466949585698b421bd4d038598739c6f27396a75bfc99404624f9c5609f4c4e6e4805bb82749604fa92c1ff9a5f30f6ffc9253bfc683de2540a75335d2fa41efb324796949fcf6e1c78aecc8b8380be2d7a0bda7705d6d50bdd2d785dbc5ee8ee2d003afcd163690e2384c386074fe8133bab514d71aa305e36e3df53d6d2795a0c695f16dbdf894cdfcbbef6555287e64bc513e52e4c8c082953949e6b0ab1263d438e184b2331dd7b2c5f08d25528b14cce44339c739c8f85f9d7c4f7ef12f576009a9bc54a3087e1c87872bf61870c344f9ad82ee90565c1986a74d9eccad28565939bc77a2ae33e1487c4ad0db5ca7c18844bb2470c7874615e400d2c1650086a0129e8d5fabf3ab0daaf8d4d8c73b52ac4ebfdb6a431fb5e1226628ba5590dbaf8850994cfab3fa5f044174c20d1938afd664530b2498855d4c273379574c010b1b75556044b14628f3ee234757b4dc65688940550648917e205966b1574551cf63c6329434a81572dea14f544b74023990728dfc54398314d6d31ba2c61c294e59a83b9ec4aed2defc3d4f2d80c20a36b232f06cae358a12ac71b2b37aa52c93a26b897ee97997650c2a6fa1af0678b5d8893beba532cc68b63d924bc43ccd089939a03e55a3e54a2e321b1a86607ae64701e14c415677f03ac3bc5a4c00a11dcfd4b32990450588b8d3bab0e1912c54eab67ed6b18de554ce67b55ae3cac05cd2b55bf1f1602633aa816d111f61a3929c65bad14cbf16610c5a367ba7a2466ea6caed6300e7623fc93f0c8402ffac121170ea4a8c18b0934285ac31da590cfdd5d34e4b4620c6e017cbf1c5b5c3ccfa30f8982fb43bd965741743e68dc1fd35bc013e6213544c171794f5d6d990afc68f2c5b37f784456c7cd2653638ccd0ba61d9d2dda680587db9c9e38a9e596fe914dc8660df6c0107b1f67e3fe0a43c737faf28d234382252cbe57d958b1a63d403ffd9da3bbc511d40d118fd84800a2883efc0cbcedd7e05c82b3b147f7ff2e1dfb4dda522c3e1da879c59b0bb4cf56c5305f975193e1267558fec3abe0952e070b49c73ac267e4f6f697ecc14b5ca0ed89cea9cae6353d5e2f3ba416fafae049599ef23ea51fda38328729d69806a4c4ef008c35068479d8c0272a73feb9bf4f0945a43c01a6e098c680cbaac5859e5ce8812997e6e602ddd126109d99ce250b8f94416d28c35aae0ea8d57c53b63de98be5743236048835e49f00a21df6e4cf4986b8282c8356e7d3f4e4b66b4403716287955eaf1e449aef1957350717ca61fb4e5f6752bdea5a4ed433bd6a0658b5f6a3ccb122694f5f6d43dd6f3bd0aa4fdc0042f1ac5b642ac3196d4dadceac69a35940d82512e2fbe9025647286b99a9a10eb140452f255d8e3cd0130a8ce4b891a52a253f5a2dd17d6c9d973c582a89e4471a8aaa450bed9084366dfeb9cf44bf93286ed448b8a7ade0b2ed38d6ba398148890ce7acc0913743e7f7d3db8483e35d844c7cf9c2cd59e42f8fde467b24e2f3d4a1ac8588161485dbfa8e0096bc8a4beea88c5a226dc4718ed4cd9ad439c4d5fc42764c22f95936d44d39af8b40613eb3676f9c0e02b4efcacb968ceff43538fa30339c155de94c598ac684d1416e1fc6c69e408ffad8ac4504a12c752a80173066e9b8527cf5a2370cc5c6e517a6eff2b163c0cf67096b2f9fea39a9584f799f107eb8b090d39bbca97f1f2c6a63c23178366dcced7a10870658aa279f2f66c8b91c8beab0224c75e3043411a736dee92955dcfab1ebc6e6c5aa091e228107a310f55fd54d39616aa7eaf390257c716a5e0cdf71ba3569dce8143c09ff424d36d423e61cc5c92dc8fafddb5ee9258df576d4d7f95354e88beff701e97fc1cdbfb08a8aa23c82f4efe44f350bab748a457882c2fae114e831bc8fac0791f65176a10071511905b132da316e785e086e90d287a3aa42250d4dcf4829e8e4ef537d687749d43089dec652d24b51cf04c17e00c4bd74d58503c0484485d3ea97024bc86d7ee9568b94571a9a3f895dabb9bf274cec8623a3163fc0caead264bbe84d2b84ce6ede0fded773562813353dc3bbd51506fe953fd43dda9053ee65e12bea5dfb9d45a0d26ec6e25a6c2b9a26c4b577d76126c9c979717cfadea60cf586364be7303749862f8450cc02bf04c65dc8c58a34bf329106d0a67885437c25bf6306b970fa34d3a2b78aa6c095bd5883256bf716d205c81f74e1668774fff7e6de4aa5fa258790250b966cdbca8b14fbe2ef0aa86c2fa9109c1c3c79beffe29f04ffcd9ea09b654b5630664ee0c7352ec04af9c928fef9b8ae7ba0eba80996916b888f4844d1961cf521aaccadcc42739ffa624a173e14b95ea4a94d6044b2e9631a965cc3896b50fe4e58db326e2675bad8228fecbdc81a7914a56e695e2397fc25637fd5df5a77537960563b33a37f5facb792c113bdcaaa6e00362c587e3803ff613a54d7e1895f045f71a54c85b7e288ae8b882e5d1763780ecf86abb1572baf2029de2c6c00764743eff64cece847aa0ca69730a4b5cf7e8a755b0e8e656e378e3ad592de4db04fc594efa73e67379974865e74555ab90024de6fc514213c31f7d1d704423e028915783ebbced1002427a0bc115e76eab59f8afe4b92c81cd84edff5958103c8771fcc9f2b614cfd11cf3f48d5f542236a6c604e33047c02e421068ee21cb2b39c46ffd4cd879c084050889b99ca21fcfc23844c7f89f2241a8504769a23049dadd9b4f8e4cf0861f5dd813de861ad1d7dea507d38bfad26cb5973a8e27f0ae4aa832dcc71bcc47a83d90dc20aec9846ab93593b2a9710d7d6f68bc35ae2841d8ca951f52129ec48c8acd61fd9eba1c1a38a336c4c5ed1705ff797d213c2a4220da7982d2265607e688ba64d7132abc141322644a2352a03cc786b84a71f7c291596adba98c24a3a833e8cc005771c1850a3a3fad0d328b53326ca2730d31c4d037c40688689c99913931eaba08db3bb0d57bb852442051ce7645eea4230e2d7b6b85e9fc4996b9d971d0e1286ac61aa30fc5338c4ead453a692c9742c88bcccda3b021d96b639d7fa0b030c570191a41a23cbffccb455e6be4a76102bcec5c869c7fe1f616b7ce12ec2e1241fbacf20ca2788a4db83d4082f847e1c9323b7dd73ccdb27a2578fe81084826292ab2d7685862b276303284cf9cc2def5827e1b9e16831257d9e271b4a110dc9e8044128c6ca19a6b81a8cf6df15706f8b3ad9f01a7ecc9182b209b992efe445aa2e3bc8d77c10e640ca5195e1d8618597e8962531976d59f82184d6bb6f497f4261c9ea295bb30628c0d639abcd9364b18ed61077c258f08088c5b153bebee8845846945bd2f2fc29eda578b93d713b17a0f3fb0eed4e08621c99bf299e0b9f9ef7f051522c135d1e3a07932bc1e290e0c45ca16fc5ec0a772c126dc82ce14dc97731ccf1a8aac721b7e26bcfdbe2075e95041ac9925287ceadb48a0e6f06876ea2b98b57e4c639b2297855200ec886b52373363096c6b4162870e5d75edd5411e5572249e40b0e3c1e5a74192713748f556eb9cd855af8af0f1b789d7267b7a98a24dded75b4b0bf6fb241904e8797fcec91fef27bc30e65c07c72d4505358c1284857ea7aebf5513fe8d5031688d6c4a502e64bf53892a31544d57effaa7c62303f31b88ac297e109095bcd47229461c68f46938b40e42015099ee681dd7d405350799aab2e954f520915a8eb80c2ab288a444be3f025518a5c1df46f8ae26dc372452d2531f04d9c1066278512a2bf1b2115f7ffe6ac2f58748ad1a891f807fcdcad5513c0bcddafe1459482542210e5c4453942112150fb50f60eee77828502501162851786d9d3ca9bee6d4958c8417a6043b6749ad31dc71f623e114f2316cda42293df8b9efa8c1778a0c2f9dcdeb2316d5c0191c465f6547f2c337a76110988dd998527ad04e5d9c3138293867f529e95db95161c2c40e11481629752bc1d6c167b20ae8239c89c07427cf67c8905cc14c5a29e5cd118096995791b71e22b986c771cab95db523ea19cdf02a443fa10a9f9a040261824436cdb111aa8a2ef4610bd22090ead1bd8b456e158a82a537ae8674cb157590babf59d313ae0e6e151b06cca40ffb3204df665f522daf3e8b3dc9a7f2a11d262dbc560f4550478f54a61baf60f6cf5921048650d4376ee0d547fae044145935144f4437ad87a677a10183c4") vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) 2033/05/18 03:37:13 executing program 4: mkdir(&(0x7f0000639000)='./file0\x00', 0x0) mount(&(0x7f0000018000)='./file0\x00', &(0x7f0000027000)='./file0\x00', &(0x7f0000018ffa)='ramfs\x00', 0x50, &(0x7f000000a000)) r0 = creat(&(0x7f0000df1000)='./file0/bus\x00', 0xbc9dc8fbd81cb4b1) restart_syscall() fcntl$lock(r0, 0x7, &(0x7f0000027000)={0x1}) unshare(0x40600) r1 = gettid() timer_create(0x0, &(0x7f000083afa0)={0x0, 0x12}, &(0x7f0000fd7000)) timer_settime(0x0, 0x0, &(0x7f0000d07000)={{0x0, 0x8}, {0x0, 0x1c9c380}}, &(0x7f00000001c0)) ftruncate(r0, 0x5) mkdir(&(0x7f0000000000)='./file0/file0\x00', 0x1) tkill(r1, 0x1000000000016) close(r0) 2033/05/18 03:37:13 executing program 0 (fault-call:0 fault-nth:61): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:13 executing program 5: syz_emit_ethernet(0x6e, &(0x7f0000000180)={@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, @local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, [], {@ipv6={0x86dd, {0x0, 0x6, "fffff3", 0x38, 0x3a, 0x0, @ipv4={[], [0xff, 0xff], @rand_addr}, @mcast2={0xff, 0x2, [], 0x1}, {[], @icmpv6=@dest_unreach={0x305, 0x0, 0x0, 0x0, [], {0x0, 0x6, "c545f9", 0x0, 0x2f, 0x0, @empty, @mcast1={0xff, 0x1, [], 0x1}, [], "a0a8050000001500"}}}}}}}, 0x0) r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vga_arbiter\x00', 0x900, 0x0) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080)='IPVS\x00') sendmsg$IPVS_CMD_NEW_SERVICE(r0, &(0x7f0000000200)={&(0x7f0000000040)={0x10}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x68, r1, 0x400, 0x70bd25, 0x25dfdbfd, {0x1}, [@IPVS_CMD_ATTR_DAEMON={0x18, 0x3, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'gre0\x00'}]}, @IPVS_CMD_ATTR_DAEMON={0x18, 0x3, [@IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @loopback={0x0, 0x1}}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x80000000}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, [@IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x5}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x40}, 0x20000000) openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000240)='/dev/vga_arbiter\x00', 0x101000, 0x0) syz_open_dev$sndtimer(&(0x7f0000000280)='/dev/snd/timer\x00', 0x0, 0x20080) [ 348.792884] FAULT_INJECTION: forcing a failure. [ 348.792884] name failslab, interval 1, probability 0, space 0, times 0 [ 348.804218] CPU: 0 PID: 24678 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 348.811501] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 348.820844] Call Trace: [ 348.823423] dump_stack+0x1b9/0x294 [ 348.827044] ? dump_stack_print_info.cold.2+0x52/0x52 [ 348.832218] ? perf_trace_lock_acquire+0xe3/0x980 [ 348.837046] ? lock_release+0xa10/0xa10 [ 348.841017] should_fail.cold.4+0xa/0x1a [ 348.845072] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 348.850161] ? kasan_check_write+0x14/0x20 [ 348.854381] ? __mutex_lock+0x7d9/0x17f0 [ 348.858428] ? graph_lock+0x170/0x170 [ 348.862219] ? find_held_lock+0x36/0x1c0 [ 348.866279] ? __lock_is_held+0xb5/0x140 [ 348.870346] ? check_same_owner+0x320/0x320 [ 348.874652] ? find_held_lock+0x36/0x1c0 [ 348.878703] ? rcu_note_context_switch+0x710/0x710 [ 348.883625] __should_failslab+0x124/0x180 [ 348.887848] should_failslab+0x9/0x14 [ 348.891637] kmem_cache_alloc+0x2af/0x760 [ 348.895771] ? kasan_check_write+0x14/0x20 [ 348.899993] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 348.904911] ? lock_downgrade+0x8e0/0x8e0 [ 348.909049] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 348.914053] __kernfs_new_node+0xe7/0x580 [ 348.918188] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 348.922932] ? kasan_check_write+0x14/0x20 [ 348.927152] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 348.932071] ? __lock_is_held+0xb5/0x140 [ 348.936117] ? wait_for_completion+0x870/0x870 [ 348.940696] kernfs_new_node+0x80/0xf0 [ 348.944577] __kernfs_create_file+0x4d/0x330 [ 348.948974] sysfs_add_file_mode_ns+0x21a/0x560 [ 348.953635] internal_create_group+0x282/0x970 [ 348.958210] sysfs_create_groups+0x9b/0x150 [ 348.962519] device_add+0x84d/0x16d0 [ 348.966222] ? device_private_init+0x230/0x230 [ 348.970786] ? kfree+0x1e9/0x260 [ 348.974138] ? kfree_const+0x5e/0x70 [ 348.977838] device_create_groups_vargs+0x1ff/0x270 [ 348.982841] device_create_vargs+0x46/0x60 [ 348.987063] bdi_register_va.part.10+0xbb/0x970 [ 348.991716] ? cgwb_kill+0x630/0x630 [ 348.995417] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 349.000937] ? bdi_init+0x416/0x510 [ 349.004549] ? wb_init+0x9e0/0x9e0 [ 349.008074] ? bdi_alloc_node+0x67/0xe0 [ 349.012035] ? bdi_alloc_node+0x67/0xe0 [ 349.015995] ? rcu_read_lock_sched_held+0x108/0x120 [ 349.021000] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 349.026270] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 349.031809] ? refcount_sub_and_test+0x212/0x330 [ 349.036552] bdi_register_va+0x68/0x80 [ 349.040432] super_setup_bdi_name+0x123/0x220 [ 349.044912] ? kill_block_super+0x100/0x100 [ 349.049218] ? kmem_cache_alloc_trace+0x616/0x780 [ 349.054056] fuse_fill_super+0xe6e/0x1e20 [ 349.058196] ? fuse_get_root_inode+0x190/0x190 [ 349.062766] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 349.068288] ? vsnprintf+0x242/0x1b40 [ 349.072078] ? pointer+0xa20/0xa20 [ 349.075614] ? vsprintf+0x40/0x40 [ 349.079053] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 349.084052] ? set_blocksize+0x2c4/0x350 [ 349.088103] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 349.093625] mount_bdev+0x30c/0x3e0 [ 349.097240] ? fuse_get_root_inode+0x190/0x190 [ 349.101807] fuse_mount_blk+0x34/0x40 [ 349.105594] mount_fs+0xae/0x328 [ 349.108949] vfs_kern_mount.part.34+0xd4/0x4d0 [ 349.113519] ? may_umount+0xb0/0xb0 [ 349.117136] ? _raw_read_unlock+0x22/0x30 [ 349.121278] ? __get_fs_type+0x97/0xc0 [ 349.125154] do_mount+0x564/0x3070 [ 349.128682] ? copy_mount_string+0x40/0x40 [ 349.132902] ? rcu_pm_notify+0xc0/0xc0 [ 349.136773] ? retint_kernel+0x10/0x10 [ 349.140649] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 349.145396] ? retint_kernel+0x10/0x10 [ 349.149271] ? ksys_mount+0xe2/0x140 [ 349.152980] ksys_mount+0x12d/0x140 [ 349.156598] __x64_sys_mount+0xbe/0x150 [ 349.160561] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 349.165566] do_syscall_64+0x1b1/0x800 [ 349.169438] ? finish_task_switch+0x1ca/0x810 [ 349.173920] ? syscall_return_slowpath+0x5c0/0x5c0 [ 349.178835] ? syscall_return_slowpath+0x30f/0x5c0 [ 349.183756] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 349.189111] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 349.193940] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 349.199115] RIP: 0033:0x455979 [ 349.202287] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 349.209981] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 349.217234] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 349.224488] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 349.231740] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 349.238992] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 349.261831] l2tp_ppp: sess 4/0: set debug=cf10464f 2033/05/18 03:37:14 executing program 5: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0xfffffec5, &(0x7f00000000c0)=ANY=[@ANYBLOB="ffffff1000ffd94e98c66385b52b577d3c7aba610917cd20a7ced33c99f35c9f7cd7f8820100000008018100a54c0ebb755291a998"], &(0x7f0000000040)={0x0, 0x0, [0x0, 0x800, 0x68a]}) [ 349.288786] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:37:14 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:14 executing program 6: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$sock_void(r0, 0x29, 0x200000036, 0x0, 0xf000) writev(r0, &(0x7f0000000440)=[{&(0x7f0000000000)="000fd512d3b5efe12f8f10ef03c2cccef8fe1add0ac76a2715ca890af3ed76a96af72b8332170874a2c12cb354dc0fc18b75164782d9df62091fb626b3c72bbdba42c807a11208b3996e9663e81880305be10da5a1faf987cb491121e52b64e4b47a4a5d8ac1f85f5d80639cf151f7f9d0f7bb92d2442bb9976947a127b4b4d437c3e2b943f8dd663644532e667925b160c630bdc678089dd1137d345b69a7e4fa819842f1ad8a67444365b0c9ca79e0db0dc98186852c78027ed90653cfce5840e8ae0213b462a88559fd8a9decaf2a23ea315286105f225f4a6de5405b4b681c31939e76cc9b09", 0xe8}, {&(0x7f0000000100)="0b2454401c5dc25c5341cc49658a471d0e946362fc4fcaeaf81713c73f1e620711a187e8e1efbbdd9ec95a403e2b7dfba87d3e150eb8a6a1dc8db0d4751755f17c635101d8995f511db971342e92c93c33d5914aaadb53f0b161a18605d13f363680b9e9c8ed8ab06027183645284cf9caf2fc9df561edfb57da231b42105a76881fc219f30ff44f58a99cd649a9bad37d1a6376b0497be673b1172028209de5dc32286ea523175dc1a0c4dc50b23d49d8baedcd1b203e5872d0bd142d4cc43c4db01031fac5247fd0daf8940d4ed0451593b323a4fbae790c186a344df34cfc65d1b18f", 0xe4}, {&(0x7f0000000200)="aa86090bb1be6ac23ebba12fac51dcde915cd25dba52f903a2eb0f4ffca833aec87cadae1186d3b83b1e915a945d5bb23f8ec23a601279", 0x37}, {&(0x7f0000000240)="daae8c995deac5787190dfa7746877f2998299832717d541d635252013453377408ec0ee26f54dd20ce028068b983c8f7924568d1c9d25d4efe00394bbe493b5c4ca311997e7b46a70fd32219e2f532759b48511e1d2c8fc5fc233dd071875b85de8cdb4c86cee6007d862a28e4357dbe3817c0d38c35e0620d38bc1a44aec6be787d2f772383cbf922df58bf7823240540b8ff9542b5f65e06462b2cd8fe921d4adc0d36efe77024bfd14cbb79bf996d55d33dc7516ae3f6edd5a9bf1f36bce33e107e4ab1d74f26a0cdf5d96ede45d949d8c86656433fb8c3f4c038e24a10692ea08a9d2033da4c21a99d5c2", 0xed}, {&(0x7f0000000340)="161f206bb9a38c2e2f61be9f5b9ced17fca0ce5b250d3d37bf081048bf8c8a7b0dc6e0015b67b62bad2673a4940a1ceed0f0231f8532523bbf7228bb358035a57ee526cf1b398f127f66ab56f5a295eb219a9d7997a97960812731ac4df9462bb0c4592d9315e7b29e628710fa61bd915b38fa3b6ef3d18da69a291d741c32957060da27e3c38012903d95883618a699485747d37de5d223af24da45bfef3714289fbc181ca24e8c2c70f4cf7c91c8c26876d4c479c141b610c6087c99f8f6dce2ecc7a95ec8d0ec725a", 0xca}], 0x5) 2033/05/18 03:37:14 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ppp\x00', 0x2, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0xffffffffffffff20}], 0x1, 0x0) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000004c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) 2033/05/18 03:37:14 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti0l\x00'}) 2033/05/18 03:37:14 executing program 0 (fault-call:0 fault-nth:62): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:14 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:14 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x4000000) 2033/05/18 03:37:14 executing program 6: r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r0, 0x107, 0x13, &(0x7f0000000040), 0x4) 2033/05/18 03:37:14 executing program 5: r0 = socket$inet6(0xa, 0x2, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$int_in(r0, 0x5452, &(0x7f0000001300)=0x78) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x41, 0x0) getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000080)={0xfff, 0x1, 0x4, 0x9, 0xfffffffffffffffa, 0x80, 0x1, 0x9, 0x0}, &(0x7f00000000c0)=0x20) setsockopt$inet_sctp_SCTP_CONTEXT(r1, 0x84, 0x11, &(0x7f0000000100)={r2, 0xcb3}, 0x8) sendto$inet6(r0, &(0x7f0000adb000), 0x0, 0x0, &(0x7f0000809000)={0xa, 0x4e20, 0x0, @loopback={0x0, 0x1}}, 0x1c) [ 349.471989] l2tp_ppp: sess 4/0: set debug=cf10464f [ 349.515276] l2tp_ppp: sess 4/0: get flags=0 [ 349.616452] FAULT_INJECTION: forcing a failure. [ 349.616452] name failslab, interval 1, probability 0, space 0, times 0 [ 349.627818] CPU: 1 PID: 24733 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 349.635098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 349.644452] Call Trace: [ 349.647047] dump_stack+0x1b9/0x294 [ 349.650687] ? dump_stack_print_info.cold.2+0x52/0x52 [ 349.655894] should_fail.cold.4+0xa/0x1a [ 349.659969] ? __kmalloc_track_caller+0x14a/0x760 [ 349.664826] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 349.669939] ? device_create_groups_vargs+0x1ff/0x270 [ 349.675114] ? device_create_vargs+0x46/0x60 [ 349.679509] ? bdi_register_va.part.10+0xbb/0x970 [ 349.684337] ? bdi_register_va+0x68/0x80 [ 349.688383] ? super_setup_bdi_name+0x123/0x220 [ 349.693038] ? fuse_fill_super+0xe6e/0x1e20 [ 349.697343] ? mount_bdev+0x30c/0x3e0 [ 349.701129] ? graph_lock+0x170/0x170 [ 349.704916] ? ksys_mount+0x12d/0x140 [ 349.708697] ? __x64_sys_mount+0xbe/0x150 [ 349.712828] ? do_syscall_64+0x1b1/0x800 [ 349.716871] ? entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 349.722219] ? find_held_lock+0x36/0x1c0 [ 349.726265] ? __lock_is_held+0xb5/0x140 [ 349.730320] ? check_same_owner+0x320/0x320 [ 349.734629] ? rcu_note_context_switch+0x710/0x710 [ 349.739542] ? rcu_read_lock_sched_held+0x108/0x120 [ 349.744544] __should_failslab+0x124/0x180 [ 349.748764] should_failslab+0x9/0x14 [ 349.752547] kmem_cache_alloc+0x2af/0x760 [ 349.756679] ? memcpy+0x45/0x50 [ 349.759946] ? kstrdup+0x59/0x70 [ 349.763307] __kernfs_new_node+0xe7/0x580 [ 349.767443] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 349.772187] ? lock_downgrade+0x8e0/0x8e0 [ 349.776324] ? kasan_check_read+0x11/0x20 [ 349.780455] ? do_raw_spin_unlock+0x9e/0x2e0 [ 349.784849] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 349.789428] kernfs_new_node+0x80/0xf0 [ 349.793302] kernfs_create_link+0x33/0x180 [ 349.797526] sysfs_do_create_link_sd.isra.2+0x90/0x130 [ 349.802788] sysfs_create_link+0x65/0xc0 [ 349.806834] device_add+0x7a0/0x16d0 [ 349.810535] ? device_private_init+0x230/0x230 [ 349.815099] ? kfree+0x1e9/0x260 [ 349.818451] ? kfree_const+0x5e/0x70 [ 349.822150] device_create_groups_vargs+0x1ff/0x270 [ 349.827152] device_create_vargs+0x46/0x60 [ 349.831382] bdi_register_va.part.10+0xbb/0x970 [ 349.836035] ? cgwb_kill+0x630/0x630 [ 349.839745] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 349.845267] ? bdi_init+0x416/0x510 [ 349.848875] ? wb_init+0x9e0/0x9e0 [ 349.852402] ? bdi_alloc_node+0x67/0xe0 [ 349.856359] ? bdi_alloc_node+0x67/0xe0 [ 349.860328] ? rcu_read_lock_sched_held+0x108/0x120 [ 349.865328] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 349.870591] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 349.876112] ? refcount_sub_and_test+0x212/0x330 [ 349.880857] bdi_register_va+0x68/0x80 [ 349.884731] super_setup_bdi_name+0x123/0x220 [ 349.889210] ? kill_block_super+0x100/0x100 [ 349.893517] ? kmem_cache_alloc_trace+0x616/0x780 [ 349.898353] fuse_fill_super+0xe6e/0x1e20 [ 349.902489] ? fuse_get_root_inode+0x190/0x190 [ 349.907058] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 349.912578] ? vsnprintf+0x242/0x1b40 [ 349.916369] ? pointer+0xa20/0xa20 [ 349.919906] ? vsprintf+0x40/0x40 [ 349.923345] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 349.928344] ? set_blocksize+0x2c4/0x350 [ 349.932392] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 349.937914] mount_bdev+0x30c/0x3e0 [ 349.941524] ? fuse_get_root_inode+0x190/0x190 [ 349.946091] fuse_mount_blk+0x34/0x40 [ 349.949876] mount_fs+0xae/0x328 [ 349.953233] vfs_kern_mount.part.34+0xd4/0x4d0 [ 349.957801] ? may_umount+0xb0/0xb0 [ 349.961438] ? _raw_read_unlock+0x22/0x30 [ 349.965570] ? __get_fs_type+0x97/0xc0 [ 349.969445] do_mount+0x564/0x3070 [ 349.972974] ? copy_mount_string+0x40/0x40 [ 349.977194] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 349.982197] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 349.986938] ? retint_kernel+0x10/0x10 [ 349.990813] ? copy_mount_options+0x213/0x380 [ 349.995294] ? copy_mount_options+0x19c/0x380 [ 349.999773] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 350.005291] ? copy_mount_options+0x285/0x380 [ 350.009774] ksys_mount+0x12d/0x140 [ 350.013390] __x64_sys_mount+0xbe/0x150 [ 350.017347] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 350.022350] do_syscall_64+0x1b1/0x800 [ 350.026219] ? finish_task_switch+0x1ca/0x810 [ 350.030698] ? syscall_return_slowpath+0x5c0/0x5c0 [ 350.035612] ? syscall_return_slowpath+0x30f/0x5c0 [ 350.040526] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 350.045877] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 350.050710] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 350.055888] RIP: 0033:0x455979 [ 350.059062] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 2033/05/18 03:37:15 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00') sendmsg$IPVS_CMD_GET_CONFIG(r0, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000280)={&(0x7f0000000100)={0x148, r1, 0x300, 0x70bd25, 0x25dfdbfd, {0xd}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x40}, @IPVS_CMD_ATTR_DEST={0x40, 0x2, [@IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x3f}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x1}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@dev={0xfe, 0x80, [], 0x11}}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0xfffffffffffffff7}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0xa}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e23}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xffff}, @IPVS_CMD_ATTR_DAEMON={0x74, 0x3, [@IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0x3ff}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @local={0xfe, 0x80, [], 0xaa}}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x8, 0x4, 0xfffffffffffffff3}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x4}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x8, 0x8, 0x5}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'gre0\x00'}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'ip6_vti0\x00'}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @ipv4={[], [0xff, 0xff], @remote={0xac, 0x14, 0x14, 0xbb}}}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x9}, @IPVS_CMD_ATTR_SERVICE={0x14, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x8}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e22}]}, @IPVS_CMD_ATTR_DEST={0x4c, 0x2, [@IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x5}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@remote={0xfe, 0x80, [], 0xbb}}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x3}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@loopback={0x0, 0x1}}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e22}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x2}]}]}, 0x148}, 0x1, 0x0, 0x0, 0x20008010}, 0x80) perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) ioctl$EVIOCGPROP(r2, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r2, 0x4010744d, &(0x7f0000001000)=""/174) 2033/05/18 03:37:15 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:15 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={"6970365f76746930fdfdffff00"}) 2033/05/18 03:37:15 executing program 6: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000f8c000)='/dev/ptmx\x00', 0x0, 0x0) r1 = gettid() pwritev(r0, &(0x7f00000005c0)=[{&(0x7f0000000200)="1b23ff85b68bc939c6c6fb2b897c91bd2d0428544162eadf4cd7d5c5f241951792d8ad030eb40664d0319cb368b1ae003cb73368eabe5c1234827eca09ecb0cc217a7d0c80d77773989190589f60b1b6322562fecc5baa711fd0706110e49792cfe30e2e83d8", 0x66}, {&(0x7f0000000280)="3422774ee7588e2c14bcddc85bd00ab2f532d6f35bb9ef436192bec68934055e51f28b7eda5f232f412f8563d8af2bddd27d6285c91264dbc04930ba50aad6ff20c84ed910531f70659b14ce5435126daed4ef1b0aa6128f276e00a482ecd9f2d0d5b00456b8fd29a3156dabe4ef1c1dfce6a64b8a3e16d3fae583b16eae39cbb97c72cab731f34bbcc8b07365a2", 0x8e}, {&(0x7f0000000340)="9a0258102d8b2bd023d91d7bd10795c61e46b7b6d1b42b885ba61a82b7f7dfd4c9c01b278bef5cf51fe0d1b83d633697a01f46d43cf58c922b5d8f49fda58a6497ada6b361a81f8b5bd7a927d4b9f23e1a192e9b3ffb56bcab7e116af1de6b15001ef7f58c9bedf00236b4869fd3ed947ac9a2749eb5a6b12ba5a5fff999f8b1f9eec5037d17b94dcb7059cbe05771d80e1a3f142a1bc1ff8c211f494297fbe660ac5a41a9888697d3d539a152a99f4efc57b0b5c089858d97f5ca665fcf8ffcce3c01ddeb90b9cac75b3da9ba75d0b0e6457d697b8cce433c756847cf33b1322064ea97b6f51b843a9e772b3d40281758", 0xf1}, {&(0x7f0000000440)="77d930d93ff06e02b647df0f14f39d3ff3dd476e88d3f3e0560cadf921c418e72a33ddaf0515e2c95590f9a652de3be80642fe251f58d838e245206eb49843815ddd9bb56472b9d9c894204ffe41fee816c0ae4fb3b45b6b563f6dc37f84e47c2bbe5e4138048cbc45d61205418398ae24359a6171e0ab03c7f5ba1832dcfb4981711d581bf42b8af5e88ab2396c508e95b534cc3889d8a9b4b300fec9e296a12eb52b18f505ffd9438a3d6aa55b8ce44800dbe8e2790a2e9f20ba0a9378f105faa25a3fb9bd36d406fcfc1bbf1f6db9c199571b5470a6244d3e", 0xda}, {&(0x7f0000000540)="c31e458ae93579bcce87a423987ac428c5e3bd38d9226ad030d6fb3bf17bd5910225abe3c5f7da255cb4bf0150da681dfa95bbefa38a3d0c9989202952611dde2fdd41765047fdb8d424e8c2358c1f1aa8f5b433f1d0456cd77416864b42", 0x5e}], 0x5, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f000053b000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r2, 0x5452, &(0x7f0000008ff8)=0x3f) fcntl$setown(r2, 0x8, r1) sendmsg$unix(r2, &(0x7f00000006c0)={&(0x7f0000000040)=@abs, 0x6e, &(0x7f0000000240), 0x0, &(0x7f0000000680)}, 0x0) fcntl$setsig(r2, 0xa, 0x12) poll(&(0x7f0000027ff8)=[{r3}], 0x1, 0x8000) r4 = dup3(r2, r3, 0x0) connect$vsock_stream(r4, &(0x7f00000000c0)={0x28, 0x0, 0xffffffff, @hyper}, 0x10) tkill(r1, 0x15) sendmsg$IPVS_CMD_FLUSH(r4, &(0x7f00000001c0)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x14, 0x0, 0x0, 0x0, 0x0, {0x11}}, 0x14}, 0x1}, 0x0) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x4, 0x4, 0x4, 0x9}, 0x1c) socket$inet6_tcp(0xa, 0x1, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000028000)={r5, &(0x7f00004e5fff), &(0x7f00003a3fff)="16"}, 0x20) bpf$MAP_DELETE_ELEM(0x3, &(0x7f00005ebff0)={r5, &(0x7f0000de6000)}, 0x10) 2033/05/18 03:37:15 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000000000)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:37:15 executing program 5: r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000002800000d380a6217b9c98b79c8825"], &(0x7f0000000000)="47504c00bc3047eb525f484f89fc96dd6ca64da40ff023122e66f6", 0x0, 0xce, &(0x7f0000000180)=""/206}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0xf, 0x5, &(0x7f0000000040)=@framed={{0x18}, [@jmp={0x5}], {0x95}}, &(0x7f0000000200)='syzkaller\x00', 0x80000001, 0x228, &(0x7f0000000300)=""/187}, 0x48) preadv(r0, &(0x7f0000000800)=[{&(0x7f0000000080)=""/6, 0x6}, {&(0x7f0000000140)}, {&(0x7f00000003c0)=""/218, 0xda}, {&(0x7f00000004c0)=""/204, 0xcc}, {&(0x7f00000005c0)=""/192, 0xc0}, {&(0x7f0000000680)=""/139, 0x8b}, {&(0x7f0000000740)=""/188, 0xbc}], 0x7, 0x0) 2033/05/18 03:37:15 executing program 0 (fault-call:0 fault-nth:63): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:15 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = syz_open_dev$sg(&(0x7f0000001000)='/dev/sg#\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x52, r3, 0x0) getpid() ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 350.066755] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 350.074012] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 350.081267] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 350.088517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 350.095767] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 350.177120] l2tp_ppp: sess 4/0: set debug=cf10464f 2033/05/18 03:37:15 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 350.197726] FAULT_INJECTION: forcing a failure. [ 350.197726] name failslab, interval 1, probability 0, space 0, times 0 [ 350.209023] CPU: 0 PID: 24756 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 350.216303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 350.225658] Call Trace: [ 350.228263] dump_stack+0x1b9/0x294 [ 350.231909] ? dump_stack_print_info.cold.2+0x52/0x52 [ 350.237110] ? perf_trace_lock_acquire+0xe3/0x980 [ 350.241960] ? __mutex_lock+0x7d9/0x17f0 2033/05/18 03:37:15 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 350.246040] should_fail.cold.4+0xa/0x1a [ 350.247473] l2tp_ppp: sess 4/0: get flags=0 [ 350.250110] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 350.250135] ? graph_lock+0x170/0x170 [ 350.250159] ? find_held_lock+0x36/0x1c0 [ 350.250181] ? __lock_is_held+0xb5/0x140 [ 350.250211] ? check_same_owner+0x320/0x320 [ 350.275806] ? kasan_check_write+0x14/0x20 [ 350.280051] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 350.284995] ? rcu_note_context_switch+0x710/0x710 [ 350.289940] __should_failslab+0x124/0x180 [ 350.294188] should_failslab+0x9/0x14 [ 350.298004] kmem_cache_alloc+0x2af/0x760 [ 350.302163] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 350.307106] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 350.312133] __kernfs_new_node+0xe7/0x580 [ 350.316292] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 350.321062] ? mutex_unlock+0xd/0x10 [ 350.324788] ? kernfs_activate+0x20e/0x2a0 [ 350.329038] ? kernfs_walk_and_get_ns+0x320/0x320 [ 350.333893] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 350.339424] ? kernfs_link_sibling+0x1d2/0x3b0 [ 350.344005] kernfs_new_node+0x80/0xf0 [ 350.347892] __kernfs_create_file+0x4d/0x330 [ 350.352294] sysfs_add_file_mode_ns+0x21a/0x560 [ 350.356955] sysfs_add_file+0x4e/0x60 [ 350.360742] sysfs_merge_group+0xfa/0x230 [ 350.364882] dpm_sysfs_add+0x161/0x210 [ 350.368754] device_add+0xa11/0x16d0 [ 350.372457] ? device_private_init+0x230/0x230 [ 350.377027] ? kfree+0x1e9/0x260 [ 350.380381] ? kfree_const+0x5e/0x70 [ 350.384085] device_create_groups_vargs+0x1ff/0x270 [ 350.389091] device_create_vargs+0x46/0x60 [ 350.393313] bdi_register_va.part.10+0xbb/0x970 [ 350.397966] ? cgwb_kill+0x630/0x630 [ 350.401667] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 350.407184] ? bdi_init+0x416/0x510 [ 350.410794] ? wb_init+0x9e0/0x9e0 [ 350.414319] ? bdi_alloc_node+0x67/0xe0 [ 350.418279] ? bdi_alloc_node+0x67/0xe0 [ 350.422238] ? rcu_read_lock_sched_held+0x108/0x120 [ 350.427239] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 350.432506] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 350.438034] ? refcount_sub_and_test+0x212/0x330 [ 350.442787] bdi_register_va+0x68/0x80 [ 350.446661] super_setup_bdi_name+0x123/0x220 [ 350.451144] ? kill_block_super+0x100/0x100 [ 350.455452] ? kmem_cache_alloc_trace+0x616/0x780 [ 350.460291] fuse_fill_super+0xe6e/0x1e20 [ 350.464430] ? fuse_get_root_inode+0x190/0x190 [ 350.469000] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 350.474538] ? vsnprintf+0x242/0x1b40 [ 350.478327] ? pointer+0xa20/0xa20 [ 350.481872] ? vsprintf+0x40/0x40 [ 350.485321] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 350.490329] ? set_blocksize+0x2c4/0x350 [ 350.494381] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 350.499906] mount_bdev+0x30c/0x3e0 [ 350.503525] ? fuse_get_root_inode+0x190/0x190 [ 350.508095] fuse_mount_blk+0x34/0x40 [ 350.511882] mount_fs+0xae/0x328 [ 350.515241] vfs_kern_mount.part.34+0xd4/0x4d0 [ 350.519812] ? may_umount+0xb0/0xb0 [ 350.523426] ? _raw_read_unlock+0x22/0x30 [ 350.527565] ? __get_fs_type+0x97/0xc0 [ 350.531443] do_mount+0x564/0x3070 [ 350.534971] ? copy_mount_string+0x40/0x40 [ 350.539192] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 350.544196] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 350.548937] ? retint_kernel+0x10/0x10 [ 350.552814] ? copy_mount_options+0x1f0/0x380 [ 350.557295] ? copy_mount_options+0x1fa/0x380 [ 350.561777] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 350.567297] ? copy_mount_options+0x285/0x380 [ 350.571779] ksys_mount+0x12d/0x140 [ 350.575402] __x64_sys_mount+0xbe/0x150 [ 350.579360] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 350.584363] do_syscall_64+0x1b1/0x800 [ 350.588241] ? syscall_return_slowpath+0x5c0/0x5c0 [ 350.593158] ? syscall_return_slowpath+0x30f/0x5c0 [ 350.598078] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 350.603431] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 350.608263] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 350.613438] RIP: 0033:0x455979 [ 350.616610] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 350.624304] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 350.631559] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 350.638813] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 2033/05/18 03:37:15 executing program 4: r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000)='/dev/urandom\x00', 0x0, 0x0) ioctl$KVM_GET_PIT2(r0, 0x8070ae9f, &(0x7f0000000040)) syslog(0x2, &(0x7f00000000c0), 0x0) fremovexattr(r0, &(0x7f0000000100)=@known='com.apple.FinderInfo\x00') mq_getsetattr(r0, &(0x7f0000000140)={0x80000000, 0x1, 0x7, 0x1, 0x9, 0x4, 0x4e4f, 0x1}, &(0x7f0000000180)) bind$unix(r0, &(0x7f00000001c0)=@abs={0x1, 0x0, 0x4e23}, 0x6e) ioctl$sock_SIOCINQ(r0, 0x541b, &(0x7f0000000240)) ioctl$int_out(r0, 0x5460, &(0x7f0000000280)) ioctl$TIOCGSOFTCAR(r0, 0x5419, &(0x7f00000002c0)) ioctl$KVM_GET_CPUID2(r0, 0xc008ae91, &(0x7f0000000300)={0x1, 0x0, [{}]}) write$binfmt_aout(r0, &(0x7f0000000340)={{0x1cf, 0x8, 0xd43, 0x4e, 0x34f, 0x7, 0x24e, 0x952e}, "b56e377f6217ef9d35c249e545c0b5fced02cfdf70082e50153129afc29331ad34373b3a88c2d878bbb69aa7839f1f212487e2262ed064337a1978f3152da8be82b0eb54e941a4c4cd98a1cd7deb02f3c0203d991f5f401c7c81e7c0be9eef36d3c04c575ea958880e8a2f8c67b1e95c38a908f9201a47a332571dec8040b44562fa9ca80f2b7a450909d729ade09a49d508d852d12cca5599174b", [[], [], [], [], [], []]}, 0x6bb) syz_mount_image$reiserfs(&(0x7f0000000a00)='reiserfs\x00', &(0x7f0000000a40)='./file0\x00', 0x3f, 0x2, &(0x7f0000001b80)=[{&(0x7f0000000a80)="6208bab7e0a821aad7d5c7601cb0601ebaf8b7b407704736e7bac4d40772bfe4999d7f618aba3ba5a21f93cf9cf96ea23fc1d6d6469aa4de815760abeca499152f88058de0eaea5d2d473b9abc2b6af0e20fa675b806d74181285235e4744be23acf2bf40bc52438b275f8a2d5e9434e5b8c7ec6460ab8e01310d94aadcbc9809e6e7dcb16b95f782b5f6825ea9504b9301589acd9d8dc45c2c3d9f39df8b0a551efebff857410abdc6f5cf550f65597a4fa5c616efae0daf9448475444400cb10a08caffc732ad723c71552aa0d33b3c40fb91cefd3465b748a2223b47ba493bbad880cde9a4a84958b060c04792c874a26c6e4eab7c83ce9", 0xf9, 0x1ff}, {&(0x7f0000000b80)="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", 0x1000, 0xff}], 0x800, &(0x7f0000001bc0)={[{@barrier_none='barrier=none', 0x2c}, {@usrjquota='usrjquota', 0x2c}, {@noacl='noacl', 0x2c}, {@hash_tea='hash=tea', 0x2c}, {@nouser_xattr='nouser_xattr', 0x2c}]}) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r0, 0x40605346, &(0x7f0000001c00)={0x0, 0x2, {0x1, 0x3, 0x8000, 0x1, 0x6}}) r1 = dup2(r0, r0) r2 = fcntl$getown(r0, 0x9) ioctl$SNDRV_CTL_IOCTL_ELEM_INFO(r1, 0xc1105511, &(0x7f0000001cc0)={{0x4, 0x5, 0x10000, 0x3, "6fb87427adacdb5f519b17e6374bd3d4d164c386c472da117c6e9fc760763f04bd7c861b58587575526bf5a1", 0x9}, 0x0, 0x0, 0x1f, r2, 0x80000001, 0x817, "f819f70e7451f516c33d8215ee4edeca33d46812a0d5ea5671fc21aecd338498a4c6c9ac89e90a7fdc0a38637dd72672ebfbf002335b9be46d6297bd4447c15e", &(0x7f0000001c80)='reiserfs\x00', 0x9, [], [0x6, 0x4, 0xfffffffffffffff8, 0x1]}) mlock(&(0x7f0000ffb000/0x3000)=nil, 0x3000) geteuid() process_vm_writev(r2, &(0x7f0000002140)=[{&(0x7f0000001e00)=""/103, 0x67}, {&(0x7f0000001e80)=""/85, 0x55}, {&(0x7f0000001f00)=""/89, 0x59}, {&(0x7f0000001f80)=""/88, 0x58}, {&(0x7f0000002000)=""/209, 0xd1}, {&(0x7f0000002100)=""/51, 0x33}], 0x6, &(0x7f0000002840)=[{&(0x7f00000021c0)=""/238, 0xee}, {&(0x7f00000022c0)=""/20, 0x14}, {&(0x7f0000002300)=""/102, 0x66}, {&(0x7f0000002380)=""/189, 0xbd}, {&(0x7f0000002440)=""/249, 0xf9}, {&(0x7f0000002540)=""/63, 0x3f}, {&(0x7f0000002580)=""/167, 0xa7}, {&(0x7f0000002640)=""/146, 0x92}, {&(0x7f0000002700)=""/87, 0x57}, {&(0x7f0000002780)=""/132, 0x84}], 0xa, 0x0) prctl$setfpexc(0xc, 0x140001) bind(r1, &(0x7f0000002900)=@llc={0x1a, 0x108, 0x3, 0x1, 0x96, 0x8, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, 0x80) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) bind$alg(r1, &(0x7f0000002980)={0x26, 'hash\x00', 0x0, 0x0, 'sha384-ssse3\x00'}, 0x58) ioctl$KVM_S390_UCAS_UNMAP(r1, 0x4018ae51, &(0x7f0000002a00)={0xfffffffffffff145, 0x3a9, 0x8}) ioctl$EVIOCGLED(r1, 0x80404519, &(0x7f0000002a40)=""/107) lstat(&(0x7f0000002ac0)='./file0\x00', &(0x7f0000002b00)) r3 = add_key(&(0x7f0000002b80)='rxrpc_s\x00', &(0x7f0000002bc0)={0x73, 0x79, 0x7a, 0x2}, &(0x7f0000002c00)="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", 0x1000, 0xfffffffffffffffe) keyctl$invalidate(0x15, r3) ioctl$SG_SET_RESERVED_SIZE(r0, 0x2275, &(0x7f0000003c00)=0x5) ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(r0, 0x80045530, &(0x7f0000003c40)=""/240) 2033/05/18 03:37:15 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti0\x00\x00\x00\x00\x00\x00\x00\n'}) [ 350.646066] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 350.653321] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:37:15 executing program 5: ioctl$TIOCPKT(0xffffffffffffffff, 0x5420, &(0x7f00000000c0)) mmap(&(0x7f0000000000/0x19000)=nil, 0x19000, 0x3, 0x32, 0xffffffffffffffff, 0x0) r0 = userfaultfd(0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000e53fe8)={0xaa}) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000007fe0)={{&(0x7f0000000000/0x4000)=nil, 0x4000}, 0x1}) r1 = epoll_create1(0x0) epoll_wait(r1, &(0x7f0000000040)=[{}], 0x1, 0x8000) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000cd8ff4)) epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r0) ioctl$UFFDIO_UNREGISTER(r0, 0xc020aa04, &(0x7f0000007ffc)={&(0x7f0000000000/0x2000)=nil, 0x2000}) [ 350.690346] l2tp_ppp: sess 4/0: set debug=cf10464f [ 350.710500] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:37:16 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:16 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x7f}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000ff7)='/dev/ppp\x00', 0x0, 0x0) recvfrom$ax25(r0, &(0x7f00000000c0)=""/238, 0xee, 0x41, &(0x7f0000000040)={0x3, {"6ece6988bff623"}, 0xfe00}, 0x10) vmsplice(0xffffffffffffffff, &(0x7f0000001000)=[{&(0x7f0000000080)="1503b2", 0x3}], 0x1, 0x0) setsockopt$l2tp_PPPOL2TP_SO_RECVSEQ(r0, 0x111, 0x2, 0x1, 0x4) ioctl$EVIOCGPROP(r0, 0xc004743e, &(0x7f00000006c0)=""/246) ioctl$EVIOCGREP(r0, 0x4010744d, &(0x7f0000001000)=""/174) 2033/05/18 03:37:16 executing program 4: r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCBRADDBR(r0, 0x89a0, &(0x7f0000000080)='veth0_to_team\x00') ioctl$sock_SIOCBRADDBR(r0, 0x89a0, &(0x7f0000000040)='bridge_slave_1\x00') ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000000)={"65707370616e30b300", &(0x7f00000002c0)=ANY=[@ANYRES64=r0]}) 2033/05/18 03:37:16 executing program 0 (fault-call:0 fault-nth:64): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:16 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti0\x00\x00\x00\x00\x00\x00\x00 '}) 2033/05/18 03:37:16 executing program 5: r0 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r0, &(0x7f0000000080)={0x18, 0x0, {0x1, @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, 'erspan0\x00'}}, 0x1e) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0xffffffffffffff9c, 0x2, 0x1, 0x10001, &(0x7f0000000100)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x9}, 0x20) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r1, 0xc0605345, &(0x7f0000000180)={0x5, 0x1, {0x1, 0x2, 0x81, 0x3, 0x1}}) sendmmsg(r0, &(0x7f00000043c0)=[{{&(0x7f0000001d40)=@can={0x1d}, 0x80, &(0x7f0000002380), 0x0, &(0x7f0000002440)}}, {{&(0x7f0000002a00)=@can={0x1d}, 0x80, &(0x7f0000003e00), 0x375, &(0x7f0000003e80)}, 0x7}], 0x2, 0x0) r2 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x140, 0x0) ioctl$sock_inet6_tcp_SIOCOUTQ(r2, 0x5411, &(0x7f00000000c0)) setsockopt$IP_VS_SO_SET_ZERO(r2, 0x0, 0x48f, &(0x7f0000000040)={0x2f, @loopback=0x7f000001, 0x4e20, 0x3, 'fo\x00', 0x8, 0x7d, 0x75}, 0x2c) 2033/05/18 03:37:16 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = semget(0x3, 0x2, 0x130) semctl$SEM_STAT(r3, 0x7, 0x12, &(0x7f0000000000)=""/15) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r5 = dup3(r4, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r4, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) r6 = syz_init_net_socket$nfc_raw(0x27, 0x1, 0x0) mmap(&(0x7f0000017000/0x1000)=nil, 0x1000, 0xa, 0x1c812, r6, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) ioctl$KVM_GET_MSR_INDEX_LIST(r2, 0xc004ae02, &(0x7f0000000140)={0x3, [0x0, 0x0, 0x0]}) 2033/05/18 03:37:16 executing program 6: mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0xffffffffffffffff) syz_mount_image$msdos(&(0x7f0000000300)='msdos\x00', &(0x7f0000000180)='./file0\x00', 0x2e000, 0x1, &(0x7f0000000340)=[{&(0x7f0000000080)="eb3c906d6b66732e66617400020401000200027400f8", 0x16}], 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="8a42c6f8961921a6593e649576894a03d7d5b673cdaf27adfd7c7b84be89282344569894618a74207e8ccf0ab170e6919590"]) [ 351.621310] FAT-fs (loop6): Unrecognized mount option "B!Y>dvJնsͯ'|{(#DVat ~ [ 351.621310] p摕" or missing value [ 351.639019] FAULT_INJECTION: forcing a failure. [ 351.639019] name failslab, interval 1, probability 0, space 0, times 0 [ 351.650328] CPU: 0 PID: 24795 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 351.657615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 351.666972] Call Trace: [ 351.669569] dump_stack+0x1b9/0x294 [ 351.673191] ? dump_stack_print_info.cold.2+0x52/0x52 [ 351.678372] ? __mutex_lock+0x7d9/0x17f0 [ 351.682427] should_fail.cold.4+0xa/0x1a [ 351.686478] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 351.691576] ? kasan_kmalloc+0xc4/0xe0 [ 351.695453] ? graph_lock+0x170/0x170 [ 351.699259] ? find_held_lock+0x36/0x1c0 [ 351.703311] ? __lock_is_held+0xb5/0x140 [ 351.707365] ? check_same_owner+0x320/0x320 [ 351.711672] ? kasan_check_write+0x14/0x20 [ 351.715895] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 351.720811] ? rcu_note_context_switch+0x710/0x710 [ 351.725730] __should_failslab+0x124/0x180 [ 351.729954] should_failslab+0x9/0x14 [ 351.733739] kmem_cache_alloc+0x2af/0x760 [ 351.737872] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 351.742789] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 351.747792] __kernfs_new_node+0xe7/0x580 [ 351.751927] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 351.756668] ? mutex_unlock+0xd/0x10 [ 351.760365] ? kernfs_activate+0x20e/0x2a0 [ 351.764589] ? kernfs_walk_and_get_ns+0x320/0x320 [ 351.769420] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 351.774940] ? kernfs_link_sibling+0x1d2/0x3b0 [ 351.779514] kernfs_new_node+0x80/0xf0 [ 351.783393] __kernfs_create_file+0x4d/0x330 [ 351.787789] sysfs_add_file_mode_ns+0x21a/0x560 [ 351.792448] internal_create_group+0x282/0x970 [ 351.797032] sysfs_create_groups+0x9b/0x150 [ 351.801341] device_add+0x84d/0x16d0 [ 351.805045] ? device_private_init+0x230/0x230 [ 351.809610] ? kfree+0x1e9/0x260 [ 351.812962] ? kfree_const+0x5e/0x70 [ 351.816663] device_create_groups_vargs+0x1ff/0x270 [ 351.821674] device_create_vargs+0x46/0x60 [ 351.825899] bdi_register_va.part.10+0xbb/0x970 [ 351.830552] ? cgwb_kill+0x630/0x630 [ 351.834253] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 351.839773] ? bdi_init+0x416/0x510 [ 351.843385] ? wb_init+0x9e0/0x9e0 [ 351.846910] ? bdi_alloc_node+0x67/0xe0 [ 351.850868] ? bdi_alloc_node+0x67/0xe0 [ 351.854827] ? rcu_read_lock_sched_held+0x108/0x120 [ 351.859830] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 351.865096] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 351.870618] ? refcount_sub_and_test+0x212/0x330 [ 351.875359] bdi_register_va+0x68/0x80 [ 351.879236] super_setup_bdi_name+0x123/0x220 [ 351.883715] ? kill_block_super+0x100/0x100 [ 351.888029] ? kmem_cache_alloc_trace+0x616/0x780 [ 351.892864] fuse_fill_super+0xe6e/0x1e20 [ 351.897003] ? fuse_get_root_inode+0x190/0x190 [ 351.901579] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 351.907103] ? vsnprintf+0x242/0x1b40 [ 351.910891] ? pointer+0xa20/0xa20 [ 351.914422] ? vsprintf+0x40/0x40 [ 351.917865] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 351.922866] ? set_blocksize+0x2c4/0x350 [ 351.926913] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 351.932436] mount_bdev+0x30c/0x3e0 [ 351.936046] ? fuse_get_root_inode+0x190/0x190 [ 351.940613] fuse_mount_blk+0x34/0x40 [ 351.944410] mount_fs+0xae/0x328 [ 351.947778] vfs_kern_mount.part.34+0xd4/0x4d0 [ 351.952348] ? may_umount+0xb0/0xb0 [ 351.955963] ? _raw_read_unlock+0x22/0x30 [ 351.960093] ? __get_fs_type+0x97/0xc0 [ 351.963969] do_mount+0x564/0x3070 [ 351.967494] ? do_raw_spin_unlock+0x9e/0x2e0 [ 351.971885] ? interrupt_entry+0xb1/0xf0 [ 351.975930] ? copy_mount_string+0x40/0x40 [ 351.980149] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 351.984894] ? retint_kernel+0x10/0x10 [ 351.988770] ? copy_mount_options+0x1e3/0x380 [ 351.993255] ? write_comp_data+0x11/0x70 [ 351.997302] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 352.002823] ? copy_mount_options+0x285/0x380 [ 352.007313] ksys_mount+0x12d/0x140 [ 352.010925] __x64_sys_mount+0xbe/0x150 [ 352.014881] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 352.019882] do_syscall_64+0x1b1/0x800 [ 352.023752] ? finish_task_switch+0x1ca/0x810 [ 352.028234] ? syscall_return_slowpath+0x5c0/0x5c0 [ 352.033148] ? syscall_return_slowpath+0x30f/0x5c0 [ 352.038062] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 352.043412] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 352.048242] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 352.053423] RIP: 0033:0x455979 [ 352.056607] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 352.064299] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 2033/05/18 03:37:17 executing program 5: r0 = dup(0xffffffffffffff9c) ioctl$PERF_EVENT_IOC_RESET(r0, 0x2403, 0x1ff) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$team(&(0x7f0000000bc0)='team\x00') ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000003e40)={'team0\x00', 0x0}) sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f0000000a80)={&(0x7f00000000c0)={0x10}, 0xc, &(0x7f0000000a40)={&(0x7f0000000000)={0x60, r2, 0x921, 0x0, 0x0, {0x1}, [{{0x8, 0x1, r3}, {0x44, 0x2, [{0x40, 0x8, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, r3}}, {0x8, 0x7}}}]}}]}, 0x60}, 0x1}, 0x200040c4) getpeername$ipx(r0, &(0x7f0000000080), &(0x7f0000000100)=0x10) getpeername(r0, &(0x7f0000000140)=@pppol2tpin6={0x0, 0x0, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, @mcast1}}}, &(0x7f00000001c0)=0x80) [ 352.071551] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 352.078804] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 352.086057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 352.093317] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 352.105885] l2tp_ppp: sess 4/0: set debug=cf10464f 2033/05/18 03:37:17 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:17 executing program 4: r0 = perf_event_open(&(0x7f0000aaa000)={0x2, 0x70, 0x0, 0x1000000000000202}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x210800, 0x0) pipe2(&(0x7f0000000080), 0x80000) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/autofs\x00', 0x80280, 0x0) r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000100)='/dev/uinput\x00', 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x4008240b, r2) read(r1, &(0x7f0000000140)=""/255, 0xff) [ 352.133851] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:37:17 executing program 5: r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000240)={0x7, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, r0, 0x0) r1 = syz_open_dev$dmmidi(&(0x7f0000000040)='/dev/dmmidi#\x00', 0x80000001, 0x2000) ioctl$KVM_TPR_ACCESS_REPORTING(r1, 0xc028ae92, &(0x7f0000000080)={0x3, 0xffffffff}) 2033/05/18 03:37:17 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti0\x00t\x00'}) 2033/05/18 03:37:17 executing program 4: r0 = syz_open_dev$sndctrl(&(0x7f0000001000)='/dev/snd/controlC#\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x3, 0x0, 0x0, 0x20000, 0x40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000000), 0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_INFO(r0, 0x40045542, &(0x7f0000000000)) r2 = dup3(r1, r1, 0x80000) ioctl$TIOCMGET(r2, 0x5415, &(0x7f0000000140)) 2033/05/18 03:37:17 executing program 6: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x13, &(0x7f0000ffbffc)=0x1, 0x4) syz_extract_tcp_res(&(0x7f0000000080), 0x2, 0xf894) setsockopt$inet_tcp_int(r0, 0x6, 0x14, &(0x7f00005e3ffc)=0x2, 0x4) getsockopt$inet_tcp_int(r0, 0x6, 0x15, &(0x7f0000000000), &(0x7f0000000040)=0x4) [ 352.255754] l2tp_ppp: sess 4/0: set debug=cf10464f 2033/05/18 03:37:17 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 352.279303] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:37:17 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000080)={0xffffffffffffff74}) ioctl$TCSETS(r0, 0x5402, &(0x7f00000000c0)={0x0, 0x8, 0x200, 0x7, 0x605b, 0x8, 0xe4c3, 0x9, 0x4, 0x80, 0xb71d, 0x1}) ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000100)=0xfac) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCGLCKTRMIOS(r1, 0x5412, &(0x7f0000000000)={0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0xfffffffffffffffb}) 2033/05/18 03:37:17 executing program 0 (fault-call:0 fault-nth:65): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:17 executing program 5: r0 = socket(0x40000000015, 0x5, 0x0) r1 = add_key(&(0x7f00000000c0)='+1`^metric\x00', &(0x7f0000000180)={0x73, 0x79, 0x7a, 0x2}, &(0x7f0000000140)="be42bf074e887795c664f0bc98", 0xd, 0x0) add_key$user(&(0x7f0000000000)='user\x00', &(0x7f0000000040)={0x73, 0x79, 0x7a, 0x3}, &(0x7f0000000080)="9144b7", 0x3, r1) ioctl$sock_bt_bnep_BNEPCONNADD(r0, 0x400442c8, &(0x7f0000000340)={r0, 0x9, 0x7fff, "cfb82b7180f9855ae5b1826e90d4a6b3825fb3dc7dd32c34c88aab8b9ea458cfda3ba92896d6c15ec48a585598437e87b83c8d01f93a11a70948053fa785eda617dcc30c13f66dd84fb7890c0e9ffcbcdb577b88905f328d4a55b8b3d17b88039c6f5d8c60ad41fbbe2e259febe8bbb135b4a1fd87c695be471f262629d4516e4117346fd44a2e2955bf8df7cf580226239d1374f3bec4803fffa273a79c21"}) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000001c0)={0x0, 0x0}, &(0x7f0000000200)=0x5) setresuid(0x0, r2, 0x0) r3 = add_key$keyring(&(0x7f00000002c0)='keyring\x00', &(0x7f0000000300)={0x73, 0x79, 0x7a}, 0x0, 0x0, 0xfffffffffffffffd) setresuid(r2, r2, r2) keyctl$get_persistent(0x16, r2, r3) [ 352.393399] FAULT_INJECTION: forcing a failure. [ 352.393399] name failslab, interval 1, probability 0, space 0, times 0 [ 352.404721] CPU: 1 PID: 24842 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 352.411997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 352.421350] Call Trace: [ 352.423931] dump_stack+0x1b9/0x294 [ 352.427547] ? dump_stack_print_info.cold.2+0x52/0x52 [ 352.432727] ? lock_release+0xa10/0xa10 [ 352.436702] ? check_same_owner+0x320/0x320 [ 352.441016] should_fail.cold.4+0xa/0x1a [ 352.445068] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 352.450155] ? kasan_check_write+0x14/0x20 [ 352.454378] ? __mutex_lock+0x7d9/0x17f0 [ 352.458438] ? graph_lock+0x170/0x170 [ 352.462230] ? find_held_lock+0x36/0x1c0 [ 352.466282] ? __lock_is_held+0xb5/0x140 [ 352.470337] ? check_same_owner+0x320/0x320 [ 352.474641] ? find_held_lock+0x36/0x1c0 [ 352.478690] ? rcu_note_context_switch+0x710/0x710 [ 352.483607] __should_failslab+0x124/0x180 [ 352.487828] should_failslab+0x9/0x14 [ 352.491614] kmem_cache_alloc+0x2af/0x760 [ 352.495753] ? kasan_check_write+0x14/0x20 [ 352.499977] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 352.505304] ? lock_downgrade+0x8e0/0x8e0 [ 352.509452] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 352.514455] __kernfs_new_node+0xe7/0x580 [ 352.518589] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 352.523330] ? kasan_check_write+0x14/0x20 [ 352.527551] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 352.532466] ? __lock_is_held+0xb5/0x140 [ 352.536509] ? wait_for_completion+0x870/0x870 [ 352.541085] kernfs_new_node+0x80/0xf0 [ 352.544971] __kernfs_create_file+0x4d/0x330 [ 352.549366] sysfs_add_file_mode_ns+0x21a/0x560 [ 352.554030] internal_create_group+0x282/0x970 [ 352.558612] sysfs_create_groups+0x9b/0x150 [ 352.562919] device_add+0x84d/0x16d0 [ 352.566633] ? device_private_init+0x230/0x230 [ 352.571209] ? kfree+0x1e9/0x260 [ 352.574563] ? kfree_const+0x5e/0x70 [ 352.578263] device_create_groups_vargs+0x1ff/0x270 [ 352.583265] device_create_vargs+0x46/0x60 [ 352.587489] bdi_register_va.part.10+0xbb/0x970 [ 352.592143] ? cgwb_kill+0x630/0x630 [ 352.595844] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 352.601364] ? bdi_init+0x416/0x510 [ 352.604974] ? wb_init+0x9e0/0x9e0 [ 352.608500] ? bdi_alloc_node+0x67/0xe0 [ 352.612457] ? bdi_alloc_node+0x67/0xe0 [ 352.616420] ? rcu_read_lock_sched_held+0x108/0x120 [ 352.621424] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 352.626688] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 352.632211] ? refcount_sub_and_test+0x212/0x330 [ 352.636963] bdi_register_va+0x68/0x80 [ 352.640841] super_setup_bdi_name+0x123/0x220 [ 352.645320] ? kill_block_super+0x100/0x100 [ 352.649626] ? kmem_cache_alloc_trace+0x616/0x780 [ 352.654460] fuse_fill_super+0xe6e/0x1e20 [ 352.658601] ? fuse_get_root_inode+0x190/0x190 [ 352.663174] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 352.668697] ? vsnprintf+0x242/0x1b40 [ 352.672497] ? pointer+0xa20/0xa20 [ 352.676044] ? vsprintf+0x40/0x40 [ 352.679496] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 352.684494] ? set_blocksize+0x2c4/0x350 [ 352.688542] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 352.694065] mount_bdev+0x30c/0x3e0 [ 352.697689] ? fuse_get_root_inode+0x190/0x190 [ 352.702256] fuse_mount_blk+0x34/0x40 [ 352.706045] mount_fs+0xae/0x328 [ 352.709410] vfs_kern_mount.part.34+0xd4/0x4d0 [ 352.713988] ? may_umount+0xb0/0xb0 [ 352.717612] ? _raw_read_unlock+0x22/0x30 [ 352.721745] ? __get_fs_type+0x97/0xc0 [ 352.725621] do_mount+0x564/0x3070 [ 352.729149] ? do_raw_spin_unlock+0x9e/0x2e0 [ 352.733547] ? copy_mount_string+0x40/0x40 [ 352.737766] ? rcu_pm_notify+0xc0/0xc0 [ 352.741641] ? copy_mount_options+0x5f/0x380 [ 352.746037] ? rcu_read_lock_sched_held+0x108/0x120 [ 352.751039] ? kmem_cache_alloc_trace+0x616/0x780 [ 352.755881] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 352.761406] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 352.766931] ? copy_mount_options+0x285/0x380 [ 352.771415] ksys_mount+0x12d/0x140 [ 352.775031] __x64_sys_mount+0xbe/0x150 [ 352.778990] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 352.783996] do_syscall_64+0x1b1/0x800 [ 352.787900] ? finish_task_switch+0x1ca/0x810 [ 352.792389] ? syscall_return_slowpath+0x5c0/0x5c0 [ 352.797302] ? syscall_return_slowpath+0x30f/0x5c0 [ 352.802218] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 352.807569] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 352.812398] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 352.817569] RIP: 0033:0x455979 [ 352.820743] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 352.828436] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 352.835689] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 352.842941] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 352.850192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 352.857454] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:37:17 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti0H\x00'}) 2033/05/18 03:37:17 executing program 4: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00007a0000)) r0 = syz_open_dev$dmmidi(&(0x7f0000000040)='/dev/dmmidi#\x00', 0x1, 0x80) ioctl$sock_ipx_SIOCGIFADDR(r0, 0x8915, &(0x7f0000000080)={'ipddp0\x00', {0x4, 0x3f, 0x7, "42b13a2a8988", 0x5}}) seccomp(0x1, 0x0, &(0x7f0000000540)={0x2, &(0x7f0000000500)=[{0x60}, {0x6}]}) close(0xffffffffffffffff) 2033/05/18 03:37:17 executing program 6: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000)='/dev/zero\x00', 0x98001, 0x0) getsockopt$inet_mreqn(0xffffffffffffff9c, 0x0, 0x20, &(0x7f0000000040)={@multicast1, @empty, 0x0}, &(0x7f0000000080)=0xc) bind$packet(r0, &(0x7f00000000c0)={0x11, 0xff, r1, 0x1, 0x0, 0x6, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xf}}, 0x14) mmap(&(0x7f0000000000/0x95c000)=nil, 0x95c000, 0x0, 0x44031, 0xffffffffffffffff, 0x0) io_getevents(0x0, 0x0, 0x0, &(0x7f0000000080), &(0x7f0000000100)) 2033/05/18 03:37:17 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$team(&(0x7f0000000180)='team\x00') ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000002e80)={'team0\x00', 0x0}) sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x10}, 0xc, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB="00f4ff00", @ANYRES16=r1, @ANYBLOB="050400000000000000000100000008000100", @ANYRES32=r2, @ANYBLOB="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", @ANYRES32=0x0], 0x94}, 0x1}, 0x0) 2033/05/18 03:37:17 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x6666666666667ff, 0x0, [{0x0, 0xfffffffffffffff7, 0x40000000000, 0x0, 0xffffffffffffffff, 0x0, 0x20}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:37:17 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:17 executing program 0 (fault-call:0 fault-nth:66): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:17 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setrlimit(0x7, &(0x7f0000000140)={0x0, 0x1ff}) modify_ldt$write2(0x11, &(0x7f00000000c0)={0x401, 0xffffffff, 0x1400, 0x3, 0xffffffff, 0xad8, 0x8927, 0x40, 0x80000001, 0xf5}, 0x10) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000100)='/dev/hwrng\x00', 0x109200, 0x0) getsockopt$inet_sctp6_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f00000001c0)={0x0, 0x1, 0x2, 0x6772f21a, 0x20, 0x3, 0x1, 0x5, {0x0, @in6={{0xa, 0x4e22, 0xa62, @mcast2={0xff, 0x2, [], 0x1}, 0x9}}, 0x6, 0x0, 0x400, 0x3, 0x9}}, &(0x7f0000000280)=0xb0) getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f00000002c0)={r1, 0x101, 0xb28, 0x5}, &(0x7f0000000300)=0x10) ioctl$BLKBSZSET(r0, 0x40081271, &(0x7f0000000180)=0x80000001) perf_event_open$cgroup(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) [ 352.966106] l2tp_ppp: sess 4/0: set debug=cf10464f [ 352.983997] FAULT_INJECTION: forcing a failure. [ 352.983997] name failslab, interval 1, probability 0, space 0, times 0 [ 352.993084] l2tp_ppp: sess 4/0: get flags=0 [ 352.995313] CPU: 0 PID: 24871 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 352.995327] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 353.016226] Call Trace: [ 353.018809] dump_stack+0x1b9/0x294 [ 353.022429] ? dump_stack_print_info.cold.2+0x52/0x52 [ 353.027612] should_fail.cold.4+0xa/0x1a [ 353.031661] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 353.036752] ? lock_release+0xa10/0xa10 [ 353.040711] ? graph_lock+0x170/0x170 [ 353.044498] ? rcu_note_context_switch+0x710/0x710 [ 353.049411] ? find_held_lock+0x36/0x1c0 [ 353.053459] ? find_held_lock+0x36/0x1c0 [ 353.057509] ? __lock_is_held+0xb5/0x140 [ 353.061565] ? check_same_owner+0x320/0x320 [ 353.065877] ? rcu_note_context_switch+0x710/0x710 [ 353.070801] __should_failslab+0x124/0x180 [ 353.075032] should_failslab+0x9/0x14 [ 353.078822] kmem_cache_alloc+0x2af/0x760 [ 353.082959] ? kasan_check_write+0x14/0x20 [ 353.087184] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 353.092192] __kernfs_new_node+0xe7/0x580 [ 353.096326] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 353.101073] ? kasan_check_write+0x14/0x20 [ 353.105296] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 353.110210] ? graph_lock+0x170/0x170 [ 353.113998] ? wait_for_completion+0x870/0x870 [ 353.118572] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 353.124096] kernfs_new_node+0x80/0xf0 [ 353.127991] __kernfs_create_file+0x4d/0x330 [ 353.132390] sysfs_add_file_mode_ns+0x21a/0x560 [ 353.137052] sysfs_add_file+0x4e/0x60 [ 353.140838] sysfs_merge_group+0xfa/0x230 [ 353.144976] dpm_sysfs_add+0x161/0x210 [ 353.148850] device_add+0xa11/0x16d0 [ 353.152552] ? device_private_init+0x230/0x230 [ 353.157122] ? kfree+0x1e9/0x260 [ 353.160485] ? kfree_const+0x5e/0x70 [ 353.164196] device_create_groups_vargs+0x1ff/0x270 [ 353.169201] device_create_vargs+0x46/0x60 [ 353.173423] bdi_register_va.part.10+0xbb/0x970 [ 353.178075] ? cgwb_kill+0x630/0x630 [ 353.181777] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 353.187296] ? bdi_init+0x416/0x510 [ 353.190912] ? wb_init+0x9e0/0x9e0 [ 353.194446] ? bdi_alloc_node+0x67/0xe0 [ 353.198403] ? bdi_alloc_node+0x67/0xe0 [ 353.202362] ? rcu_read_lock_sched_held+0x108/0x120 [ 353.207366] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 353.212629] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 353.218153] ? refcount_sub_and_test+0x212/0x330 [ 353.222895] bdi_register_va+0x68/0x80 [ 353.226769] super_setup_bdi_name+0x123/0x220 [ 353.231258] ? kill_block_super+0x100/0x100 [ 353.235574] ? kmem_cache_alloc_trace+0x616/0x780 [ 353.240407] fuse_fill_super+0xe6e/0x1e20 [ 353.244545] ? fuse_get_root_inode+0x190/0x190 [ 353.249134] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 353.254656] ? vsnprintf+0x242/0x1b40 [ 353.258446] ? pointer+0xa20/0xa20 [ 353.261981] ? vsprintf+0x40/0x40 [ 353.265423] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 353.270429] ? set_blocksize+0x2c4/0x350 [ 353.274476] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 353.280001] mount_bdev+0x30c/0x3e0 [ 353.283629] ? fuse_get_root_inode+0x190/0x190 [ 353.288197] fuse_mount_blk+0x34/0x40 [ 353.291984] mount_fs+0xae/0x328 [ 353.295344] vfs_kern_mount.part.34+0xd4/0x4d0 [ 353.299911] ? may_umount+0xb0/0xb0 [ 353.303532] ? _raw_read_unlock+0x22/0x30 [ 353.307663] ? __get_fs_type+0x97/0xc0 [ 353.311541] do_mount+0x564/0x3070 [ 353.315080] ? copy_mount_string+0x40/0x40 [ 353.319306] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 353.324049] ? retint_kernel+0x10/0x10 [ 353.327924] ? copy_mount_options+0x1a1/0x380 [ 353.332405] ? __sanitizer_cov_trace_pc+0x48/0x50 [ 353.337233] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 353.342762] ? copy_mount_options+0x285/0x380 [ 353.347254] ksys_mount+0x12d/0x140 [ 353.350868] __x64_sys_mount+0xbe/0x150 [ 353.354826] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 353.359831] do_syscall_64+0x1b1/0x800 [ 353.363703] ? finish_task_switch+0x1ca/0x810 [ 353.368183] ? syscall_return_slowpath+0x5c0/0x5c0 [ 353.373101] ? syscall_return_slowpath+0x30f/0x5c0 [ 353.378025] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 353.383383] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 353.388217] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 353.393392] RIP: 0033:0x455979 [ 353.396564] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 353.404269] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 2033/05/18 03:37:18 executing program 3: r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x40000, 0x0) ioctl$TUNSETOFFLOAD(r0, 0x400454d0, 0x12) r1 = socket$can_raw(0x1d, 0x3, 0x1) bind$can_raw(r1, &(0x7f0000000200)={0x1d}, 0x10) bind$can_raw(r1, &(0x7f0000af7000)={0x1d}, 0x10) [ 353.411523] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 353.418778] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 353.426033] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 353.433288] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:37:18 executing program 5: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x15, 0x5, 0x0) sendmsg(r0, &(0x7f0000001480)={0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000480)=[{0x10}], 0x10}, 0x0) 2033/05/18 03:37:18 executing program 6: r0 = openat$vnet(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/vhost-net\x00', 0x2, 0x0) connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e23, @loopback=0x7f000001}, 0x10) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f0000000100)={0x0, @in6={{0xa, 0x4e24, 0x8, @ipv4={[], [0xff, 0xff]}, 0xbc}}, [0x8, 0x3ad2dfef, 0x631c20d1, 0xce, 0x9, 0x3, 0x1000, 0x8, 0x0, 0x9, 0x8000, 0x3b1, 0x1, 0x8001, 0x7]}, &(0x7f0000000200)=0x100) setsockopt$inet_sctp6_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f0000000240)={r1, 0x73, 0xc00, 0x6, 0x5, 0x101}, 0x14) write$vnet(r0, &(0x7f0000000340)={0x1, {&(0x7f00000002c0)=""/89, 0xfffffffffffffd9f, &(0x7f0000000680)=""/191, 0x0, 0x3}}, 0x68) 2033/05/18 03:37:18 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:18 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti0`\x00'}) 2033/05/18 03:37:18 executing program 4: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x42, &(0x7f0000000000)={@local={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xaa}, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, [], {@ipv4={0x800, {{0x8, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0x0, 0x6, 0x0, @dev={0xac, 0x14, 0x14}, @remote={0xac, 0x14, 0x14, 0xbb}, {[@timestamp={0x44, 0xc, 0x7, 0x0, 0x0, [{}, {}]}]}}, @tcp={{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, &(0x7f00000002c0)) openat$dir(0xffffffffffffff9c, &(0x7f0000e21ff6)='./control\x00', 0x0, 0x0) r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000080)='/dev/null\x00', 0x10200, 0x0) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00') sendmsg$IPVS_CMD_GET_INFO(r0, &(0x7f0000000280)={&(0x7f00000000c0)={0x10}, 0xc, &(0x7f0000000240)={&(0x7f0000000140)={0xc8, r1, 0x0, 0x70bd29, 0x25dfdbfe, {0xf}, [@IPVS_CMD_ATTR_SERVICE={0x24, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x1}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0xff}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x7f}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0x2}]}, @IPVS_CMD_ATTR_DEST={0x2c, 0x2, [@IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x10001}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e23}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x8}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x6}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e24}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xfffffffffffff000}, @IPVS_CMD_ATTR_DEST={0x44, 0x2, [@IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x2}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x5}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x1}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e24}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0xa}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x1}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x3f}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xac}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x2}]}, 0xc8}, 0x1, 0x0, 0x0, 0x4000010}, 0x4000010) ioprio_get$uid(0x3, 0x0) [ 353.580685] l2tp_ppp: sess 4/0: set debug=cf10464f [ 353.597946] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:37:18 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f000076c000)={0xffffffffffffffff, 0xffffffffffffffff}) bind$unix(r0, &(0x7f0000000100)=@file={0x1, './file0\x00'}, 0x6e) perf_event_open(&(0x7f0000d2af88)={0x0, 0x78}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_open_dev$dmmidi(&(0x7f0000000040)='/dev/dmmidi#\x00', 0x8cb0, 0x400000) perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f000031f000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$getown(0xffffffffffffffff, 0x9) connect$unix(r1, &(0x7f000071eff8)=@file={0x1, './file0\x00'}, 0xa) 2033/05/18 03:37:18 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:18 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x8) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={[], [0xff, 0xff], @remote={0xac, 0x14, 0x14, 0xbb}}}, 0x1c) sendmsg$key(r0, &(0x7f0000000040)={0x20480, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x2, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, [@sadb_x_filter={0x5, 0x1a, @in=@broadcast=0xffffffff, @in=@local={0xac, 0x14, 0x14, 0xaa}}]}, 0x38}, 0x1}, 0x0) 2033/05/18 03:37:18 executing program 6: r0 = socket(0x0, 0x0, 0x0) getpgrp(0xffffffffffffffff) r1 = fcntl$getown(r0, 0x9) r2 = getpgid(r1) sched_setattr(r2, &(0x7f0000000000)={0x0, 0x1, 0xfffffffffffffffc, 0x0, 0x3, 0x0, 0x401}, 0x0) mmap(&(0x7f0000011000/0x3000)=nil, 0x3000, 0x4, 0x32, 0xffffffffffffffff, 0x0) r3 = userfaultfd(0x0) ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000001fe8)={0xaa}) r4 = epoll_create1(0x0) ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000019fe0)={{&(0x7f0000012000/0x2000)=nil, 0x2000}, 0x1}) close(r4) r5 = memfd_create(&(0x7f0000000040)='y#\x00W', 0x0) pwritev(r5, &(0x7f0000000000)=[{&(0x7f0000012000)="ca", 0x1}], 0x1, 0x0) fremovexattr(r4, &(0x7f00002a8000)=@known='system.posix_acl_default\x00') getsockopt$inet_sctp6_SCTP_ASSOCINFO(r5, 0x84, 0x1, &(0x7f0000000080)={0x0, 0x1, 0x0, 0x8, 0x6, 0x9}, &(0x7f00000000c0)=0x14) getsockopt$inet_sctp_SCTP_LOCAL_AUTH_CHUNKS(r0, 0x84, 0x1b, &(0x7f0000000100)={r6, 0xd7, "870b07090748643b4ab4a0c5797fb438f2f7c854db9dcf4f2452fa0c41d322b3bf264c3f1a4ecf5fa587cfd92c11f5c2b7bfd81ed15a37792169fdcc2b7af40e50c41941a6490ebc7f479e0ed005b5c0211d0aefa4a08b61b5c19147fb989b2fd7aa5cd86ef43c645bce27ba02736ae6469fb002d2a6c7b6421a6dafd519972566b480f0f4dfd57c7b9c1c0446d4b297181be3129a73e671df23d26979727b40c66f9d6bf2917c20de081841699827453a6ced86bee064e1736e2012406a79b2a328cf6125c167a7055042c0c421df7eb00ae1e2d9533c"}, &(0x7f0000000200)=0xdf) write(r4, &(0x7f000014d000), 0x0) close(r3) 2033/05/18 03:37:18 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={"6970365f767469300600"}) 2033/05/18 03:37:18 executing program 0 (fault-call:0 fault-nth:67): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:18 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:37:18 executing program 4: r0 = socket$inet6(0xa, 0x2, 0x0) r1 = open(&(0x7f0000000000)='./bus\x00', 0x141041, 0x0) ftruncate(r1, 0x8000) r2 = open(&(0x7f000000fffa)='./bus\x00', 0x141042, 0x0) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f0000000040)={0x0, 0x28}, &(0x7f0000000080)=0x8) setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(r1, 0x84, 0x23, &(0x7f00000000c0)={r3, 0x9}, 0x8) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x800002, 0x11, r2, 0x0) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x4}, 0x1c) sendmmsg(r0, &(0x7f0000007e00), 0x3c5, 0x0) [ 353.734183] l2tp_ppp: sess 4/0: set debug=cf10464f [ 353.745627] FAULT_INJECTION: forcing a failure. [ 353.745627] name failslab, interval 1, probability 0, space 0, times 0 [ 353.756926] CPU: 0 PID: 24915 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 353.764201] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 353.773553] Call Trace: [ 353.776156] dump_stack+0x1b9/0x294 2033/05/18 03:37:18 executing program 3: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getpid() r0 = openat$ion(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ion\x00', 0x0, 0x0) ioctl$ION_IOC_ALLOC(r0, 0xc0184900, &(0x7f0000000040)={0x40000000fffb, 0xa, 0x0, 0xffffffffffffffff}) ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f0000000300)={0xbc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x31}) r2 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vga_arbiter\x00', 0x0, 0x0) r3 = syz_genetlink_get_family_id$team(&(0x7f0000000100)='team\x00') getsockopt$inet_mreqn(r2, 0x0, 0x20, &(0x7f0000000240)={@dev, @broadcast, 0x0}, &(0x7f0000000280)=0xc) getsockname$packet(r2, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast}, &(0x7f0000000480)=0x14) accept4$packet(r2, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, &(0x7f0000000500)=0x14, 0x80000) getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000640)={{{@in=@dev, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@dev}, 0x0, @in=@dev}}, &(0x7f0000000740)=0xe8) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000002d80)={{{@in=@multicast1, @in=@rand_addr, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in=@local}}, &(0x7f0000002e80)=0xe8) getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, &(0x7f0000002ec0)={{{@in=@rand_addr, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast2}, 0x0, @in=@multicast1}}, &(0x7f0000002fc0)=0xe8) ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000003200)={'vcan0\x00', 0x0}) getsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f0000003240)={@empty, 0x0}, &(0x7f0000003280)=0x14) getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, &(0x7f00000032c0)={{{@in6=@local, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@dev}, 0x0, @in=@loopback}}, &(0x7f00000033c0)=0xe8) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000003400)={'bridge0\x00', 0x0}) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000003440)={{{@in6=@loopback, @in6=@ipv4={[], [], @remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@rand_addr}, 0x0, @in6=@remote}}, &(0x7f0000003540)=0xe8) accept4$packet(0xffffffffffffff9c, &(0x7f00000035c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, &(0x7f0000003600)=0x14, 0x800) getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000003640)={0x0, @loopback, @dev}, &(0x7f0000003680)=0xc) getpeername$packet(r2, &(0x7f00000036c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @remote}, &(0x7f0000003700)=0x14) ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000003740)={'vcan0\x00', 0x0}) getsockname$packet(r2, &(0x7f0000003780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, &(0x7f00000037c0)=0x14) getsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f0000003900)={{{@in=@local, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@dev}, 0x0, @in=@local}}, &(0x7f0000003a00)=0xe8) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000003a40)={{{@in6, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@dev}, 0x0, @in6=@mcast1}}, &(0x7f0000003b40)=0xe8) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000003b80)={{{@in=@rand_addr, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in6=@loopback}}, &(0x7f0000003c80)=0xe8) getsockname$packet(r2, &(0x7f0000003cc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000003d00)=0x14) getsockopt$inet_mreqn(r2, 0x0, 0x23, &(0x7f0000003d40)={@multicast2, @empty, 0x0}, &(0x7f0000003d80)=0xc) getpeername(r2, &(0x7f0000005380)=@ll={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, &(0x7f0000005400)=0x80) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000005440)={'veth0_to_team\x00', 0x0}) getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, &(0x7f0000005780)={{{@in=@broadcast, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{}, 0x0, @in6=@remote}}, &(0x7f0000005880)=0xe8) getsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000058c0)={{{@in, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{}, 0x0, @in6=@ipv4={[], [], @broadcast}}}, &(0x7f00000059c0)=0xe8) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000005a00)={'vcan0\x00', 0x0}) ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000005b00)={'vcan0\x00', 0x0}) getsockopt$inet_pktinfo(r2, 0x0, 0x8, &(0x7f0000005b40)={0x0, @dev, @multicast2}, &(0x7f0000005b80)=0xc) recvmsg(r2, &(0x7f0000005d80)={&(0x7f0000005bc0)=@hci={0x0, 0x0}, 0x80, &(0x7f0000005cc0)=[{&(0x7f0000005c40)=""/123, 0x7b}], 0x1, &(0x7f0000005d00)=""/108, 0x6c, 0x9ef}, 0x40) getsockopt$inet6_mreq(r2, 0x29, 0x1c, &(0x7f00000071c0)={@mcast1, 0x0}, &(0x7f0000007200)=0x14) getsockname$packet(r2, &(0x7f0000007340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, &(0x7f0000007380)=0x14) getpeername(r2, &(0x7f0000007900)=@ll={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, &(0x7f0000007980)=0x80) ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f000000c0c0)={'vcan0\x00', 0x0}) sendmsg$TEAM_CMD_OPTIONS_SET(r1, &(0x7f000000cd00)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80a00240}, 0xc, &(0x7f000000ccc0)={&(0x7f000000c100)={0xba8, r3, 0x100, 0x70bd28, 0x25dfdbfb, {0x1}, [{{0x8, 0x1, r4}, {0x40, 0x2, [{0x3c, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8, 0x3, 0xb}, {0xc, 0x4, [{0x0, 0x31a4, 0x400, 0x4}]}}}]}}, {{0x8, 0x1, r5}, {0x1e4, 0x2, [{0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r6}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r7}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r8}}}, {0x40, 0x1, @lb_hash_stats={{{0x24, 0x1, 'lb_hash_stats\x00'}, {0x8, 0x3, 0xb}, {0x8, 0x4, 0x2}}, {0x8, 0x7}}}, {0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r9}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r10}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x822a}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r11}}}]}}, {{0x8, 0x1, r12}, {0x130, 0x2, [{0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x4}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, r13}}}, {0x44, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8, 0x3, 0xb}, {0x14, 0x4, [{0x6306, 0x6, 0x3, 0x87}, {0x7, 0x8, 0xffffffffffffff7f, 0x5}]}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, r14}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4}}, {0x8, 0x6, r15}}}]}}, {{0x8, 0x1, r16}, {0x1dc, 0x2, [{0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r17}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x8}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0xfffffffffffffffc}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x2}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x5}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0xe8}}}, {0x40, 0x1, @priority={{{0x24, 0x1, 'priority\x00'}, {0x8, 0x3, 0xe}, {0x8, 0x4, 0x1574d340}}, {0x8, 0x6, r18}}}, {0x44, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8, 0x3, 0x5}, {0x14, 0x4, 'activebackup\x00'}}}]}}, {{0x8, 0x1, r19}, {0x19c, 0x2, [{0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8, 0x3, 0xb}, {0x8, 0x4, 0x8000}}, {0x8, 0x6, r20}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, r21}}}, {0x40, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8, 0x3, 0x5}, {0x10, 0x4, 'roundrobin\x00'}}}, {0x38, 0x1, @lb_stats_refresh_interval={{0x24, 0x1, 'lb_stats_refresh_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x4}}}, {0x38, 0x1, @notify_peers_interval={{0x24, 0x1, 'notify_peers_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x4}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4}}}, {0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x2}}}]}}, {{0x8, 0x1, r22}, {0x1ac, 0x2, [{0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r23}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0xf33}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x1}}, {0x8, 0x6, r24}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x100000001}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, r25}}}, {0x44, 0x1, @name={{0x24, 0x1, 'mode\x00'}, {0x8, 0x3, 0x5}, {0x14, 0x4, 'activebackup\x00'}}}, {0x40, 0x1, @queue_id={{{0x24, 0x1, 'queue_id\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0xff8}}, {0x8, 0x6, r26}}}]}}, {{0x8, 0x1, r27}, {0xb8, 0x2, [{0x3c, 0x1, @user_linkup_enabled={{{0x24, 0x1, 'user_linkup_enabled\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r28}}}, {0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8, 0x3, 0xb}, {0x8, 0x4, 0x1}}, {0x8, 0x6, r29}}}, {0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, r30}}}]}}, {{0x8, 0x1, r31}, {0x44, 0x2, [{0x40, 0x1, @lb_port_stats={{{0x24, 0x1, 'lb_port_stats\x00'}, {0x8, 0x3, 0xb}, {0x8, 0x4, 0x80}}, {0x8, 0x6, r32}}}]}}, {{0x8, 0x1, r33}, {0x1d8, 0x2, [{0x38, 0x1, @mcast_rejoin_count={{0x24, 0x1, 'mcast_rejoin_count\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x7fff}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4}}}, {0x3c, 0x1, @enabled={{{0x24, 0x1, 'enabled\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r34}}}, {0x3c, 0x1, @user_linkup={{{0x24, 0x1, 'user_linkup\x00'}, {0x8, 0x3, 0x6}, {0x4, 0x4}}, {0x8, 0x6, r35}}}, {0x74, 0x1, @bpf_hash_func={{0x24, 0x1, 'bpf_hash_func\x00'}, {0x8, 0x3, 0xb}, {0x44, 0x4, [{0x9, 0x4, 0x7, 0x2}, {0x6, 0xfe6, 0x9, 0x1ff}, {0x630f15d9, 0x6, 0xee73, 0xffff}, {0x3f, 0x0, 0x8}, {0x4, 0x5, 0x7fffffff, 0x100000000}, {0x7fffffff, 0x4, 0x8, 0x4}, {0x3, 0x30, 0x200, 0xa8f4}, {0x81, 0x7, 0x7f, 0x7ff}]}}}, {0x38, 0x1, @notify_peers_count={{0x24, 0x1, 'notify_peers_count\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0xb86}}}, {0x40, 0x1, @lb_tx_hash_to_port_mapping={{{0x24, 0x1, 'lb_tx_hash_to_port_mapping\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, r36}}, {0x8, 0x7}}}]}}]}, 0xba8}, 0x1, 0x0, 0x0, 0x40000}, 0x4) 2033/05/18 03:37:18 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 353.779801] ? dump_stack_print_info.cold.2+0x52/0x52 [ 353.785011] should_fail.cold.4+0xa/0x1a [ 353.789093] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 353.794213] ? graph_lock+0x170/0x170 [ 353.798023] ? lock_downgrade+0x8e0/0x8e0 [ 353.802187] ? find_held_lock+0x36/0x1c0 [ 353.806261] ? __lock_is_held+0xb5/0x140 [ 353.810342] ? check_same_owner+0x320/0x320 [ 353.814677] ? wait_for_completion+0x870/0x870 [ 353.819270] ? rcu_note_context_switch+0x710/0x710 [ 353.824205] ? graph_lock+0x170/0x170 [ 353.828019] __should_failslab+0x124/0x180 [ 353.832269] should_failslab+0x9/0x14 [ 353.836086] kmem_cache_alloc+0x2af/0x760 [ 353.840251] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 353.845282] __kernfs_new_node+0xe7/0x580 [ 353.849439] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 353.854192] ? kernfs_walk_and_get_ns+0x320/0x320 [ 353.859043] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 353.864584] ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20 [ 353.870115] ? kernfs_put+0x493/0x750 [ 353.873906] ? kernfs_add_one+0x129/0x4d0 [ 353.878055] ? kernfs_get+0x30/0x30 [ 353.881677] kernfs_new_node+0x80/0xf0 [ 353.885556] kernfs_create_dir_ns+0x3d/0x140 [ 353.889958] internal_create_group+0x110/0x970 [ 353.894532] ? internal_create_group+0x347/0x970 [ 353.899286] sysfs_create_group+0x1f/0x30 [ 353.903428] dpm_sysfs_add+0x26/0x210 [ 353.907222] device_add+0xa11/0x16d0 [ 353.910934] ? device_private_init+0x230/0x230 [ 353.915507] ? kfree+0x1e9/0x260 [ 353.918869] ? kfree_const+0x5e/0x70 [ 353.922576] device_create_groups_vargs+0x1ff/0x270 [ 353.927585] device_create_vargs+0x46/0x60 [ 353.931813] bdi_register_va.part.10+0xbb/0x970 [ 353.936475] ? cgwb_kill+0x630/0x630 [ 353.940182] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 353.945707] ? bdi_init+0x416/0x510 [ 353.949324] ? wb_init+0x9e0/0x9e0 [ 353.952854] ? bdi_alloc_node+0x67/0xe0 [ 353.956819] ? bdi_alloc_node+0x67/0xe0 [ 353.960785] ? rcu_read_lock_sched_held+0x108/0x120 [ 353.965790] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 353.971075] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 353.976602] ? refcount_sub_and_test+0x212/0x330 [ 353.981351] bdi_register_va+0x68/0x80 [ 353.985241] super_setup_bdi_name+0x123/0x220 [ 353.989731] ? kill_block_super+0x100/0x100 [ 353.994052] ? kmem_cache_alloc_trace+0x616/0x780 [ 353.998896] fuse_fill_super+0xe6e/0x1e20 [ 354.003052] ? fuse_get_root_inode+0x190/0x190 [ 354.007627] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 354.013154] ? vsnprintf+0x242/0x1b40 [ 354.016947] ? pointer+0xa20/0xa20 [ 354.020486] ? vsprintf+0x40/0x40 [ 354.023929] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 354.028935] ? set_blocksize+0x2c4/0x350 [ 354.032990] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 354.038521] mount_bdev+0x30c/0x3e0 [ 354.042143] ? fuse_get_root_inode+0x190/0x190 [ 354.046715] fuse_mount_blk+0x34/0x40 [ 354.050507] mount_fs+0xae/0x328 [ 354.053871] vfs_kern_mount.part.34+0xd4/0x4d0 [ 354.058442] ? may_umount+0xb0/0xb0 [ 354.062061] ? _raw_read_unlock+0x22/0x30 [ 354.066205] ? __get_fs_type+0x97/0xc0 [ 354.070086] do_mount+0x564/0x3070 [ 354.073619] ? copy_mount_string+0x40/0x40 [ 354.077842] ? rcu_pm_notify+0xc0/0xc0 [ 354.081727] ? copy_mount_options+0x5f/0x380 [ 354.086121] ? rcu_read_lock_sched_held+0x108/0x120 [ 354.091125] ? kmem_cache_alloc_trace+0x616/0x780 [ 354.095959] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 354.101495] ? _copy_from_user+0xdf/0x150 [ 354.105636] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 354.111160] ? copy_mount_options+0x285/0x380 [ 354.115646] ksys_mount+0x12d/0x140 [ 354.119266] __x64_sys_mount+0xbe/0x150 [ 354.123229] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 354.128238] do_syscall_64+0x1b1/0x800 [ 354.132114] ? finish_task_switch+0x1ca/0x810 [ 354.136605] ? syscall_return_slowpath+0x5c0/0x5c0 [ 354.141526] ? syscall_return_slowpath+0x30f/0x5c0 [ 354.146449] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 354.151806] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 354.156645] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 354.161820] RIP: 0033:0x455979 [ 354.164994] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 354.172701] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 2033/05/18 03:37:19 executing program 4: r0 = perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) lseek(r0, 0x9, 0x3) sendmsg$nl_netfilter(r1, &(0x7f0000d7a000)={&(0x7f0000aeaff4)={0x10}, 0xc, &(0x7f00004e2000)={&(0x7f000007afe0)={0x14, 0xc, 0x6, 0x1}, 0x14}, 0x1}, 0x0) [ 354.179957] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 354.187216] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 354.194471] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 354.201726] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 354.215342] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:37:19 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:19 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti0\x00\x00\x00\x00\x00\x00\x00`'}) 2033/05/18 03:37:19 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5, 0xb6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$dmmidi(&(0x7f0000000040)='/dev/dmmidi#\x00', 0x2, 0xef94c948f46d411a) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000080)={'veth1\x00'}) setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x4, &(0x7f00000000c0)={0x0, 'ip6_vti0\x00'}, 0x18) [ 354.309461] l2tp_ppp: sess 4/0: set debug=cf10464f 2033/05/18 03:37:19 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000000000000000000000000000000000000000000000000000000000000"]) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:37:19 executing program 4: perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000d7a000)={&(0x7f0000aeaff4)={0x10}, 0xc, &(0x7f0000001100)={&(0x7f000007afe0)={0x1c, 0x3, 0x6, 0x1, 0x0, 0x0, {}, [@typed={0x8, 0x1, @fd}]}, 0x1c}, 0x1}, 0x0) ioctl$sock_SIOCADDDLCI(r0, 0x8980, &(0x7f0000000040)={'ip6tnl0\x00', 0x7ff}) [ 354.330409] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:37:19 executing program 0 (fault-call:0 fault-nth:68): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) [ 354.410070] netlink: 'syz-executor4': attribute type 1 has an invalid length. [ 354.468960] netlink: 'syz-executor4': attribute type 1 has an invalid length. [ 354.481477] FAULT_INJECTION: forcing a failure. [ 354.481477] name failslab, interval 1, probability 0, space 0, times 0 [ 354.492752] CPU: 1 PID: 24962 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 354.500027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 354.509798] Call Trace: [ 354.512379] dump_stack+0x1b9/0x294 [ 354.515996] ? dump_stack_print_info.cold.2+0x52/0x52 [ 354.521183] should_fail.cold.4+0xa/0x1a [ 354.525229] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 354.530317] ? lock_release+0xa10/0xa10 [ 354.534277] ? check_same_owner+0x320/0x320 [ 354.538583] ? graph_lock+0x170/0x170 [ 354.542370] ? rcu_note_context_switch+0x710/0x710 [ 354.547285] ? find_held_lock+0x36/0x1c0 [ 354.551332] ? find_held_lock+0x36/0x1c0 [ 354.555379] ? __lock_is_held+0xb5/0x140 [ 354.559432] ? check_same_owner+0x320/0x320 [ 354.563761] ? rcu_note_context_switch+0x710/0x710 [ 354.568680] __should_failslab+0x124/0x180 [ 354.572905] should_failslab+0x9/0x14 [ 354.576694] kmem_cache_alloc+0x2af/0x760 [ 354.580830] ? kasan_check_write+0x14/0x20 [ 354.585051] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 354.590056] __kernfs_new_node+0xe7/0x580 [ 354.594201] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 354.598945] ? kasan_check_write+0x14/0x20 [ 354.603167] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 354.608083] ? graph_lock+0x170/0x170 [ 354.611868] ? wait_for_completion+0x870/0x870 [ 354.616437] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 354.621961] kernfs_new_node+0x80/0xf0 [ 354.625839] __kernfs_create_file+0x4d/0x330 [ 354.630235] sysfs_add_file_mode_ns+0x21a/0x560 [ 354.634893] sysfs_add_file+0x4e/0x60 [ 354.638679] sysfs_merge_group+0xfa/0x230 [ 354.642815] dpm_sysfs_add+0x161/0x210 [ 354.646689] device_add+0xa11/0x16d0 [ 354.650393] ? device_private_init+0x230/0x230 [ 354.654958] ? kfree+0x1e9/0x260 [ 354.658311] ? kfree_const+0x5e/0x70 [ 354.662015] device_create_groups_vargs+0x1ff/0x270 [ 354.667024] device_create_vargs+0x46/0x60 [ 354.671257] bdi_register_va.part.10+0xbb/0x970 [ 354.675914] ? cgwb_kill+0x630/0x630 [ 354.679615] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 354.685138] ? bdi_init+0x416/0x510 [ 354.688749] ? wb_init+0x9e0/0x9e0 [ 354.692273] ? bdi_alloc_node+0x67/0xe0 [ 354.696229] ? bdi_alloc_node+0x67/0xe0 [ 354.700190] ? rcu_read_lock_sched_held+0x108/0x120 [ 354.705210] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 354.710480] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 354.716002] ? refcount_sub_and_test+0x212/0x330 [ 354.720751] bdi_register_va+0x68/0x80 [ 354.724636] super_setup_bdi_name+0x123/0x220 [ 354.729116] ? kill_block_super+0x100/0x100 [ 354.733433] ? kmem_cache_alloc_trace+0x616/0x780 [ 354.738270] fuse_fill_super+0xe6e/0x1e20 [ 354.742404] ? fuse_get_root_inode+0x190/0x190 [ 354.746987] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 354.752513] ? vsnprintf+0x242/0x1b40 [ 354.756300] ? pointer+0xa20/0xa20 [ 354.759855] ? vsprintf+0x40/0x40 [ 354.763294] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 354.768303] ? set_blocksize+0x2c4/0x350 [ 354.772350] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 354.777882] mount_bdev+0x30c/0x3e0 [ 354.781492] ? fuse_get_root_inode+0x190/0x190 [ 354.786062] fuse_mount_blk+0x34/0x40 [ 354.789853] mount_fs+0xae/0x328 [ 354.793210] vfs_kern_mount.part.34+0xd4/0x4d0 [ 354.797791] ? may_umount+0xb0/0xb0 [ 354.801402] ? _raw_read_unlock+0x22/0x30 [ 354.805531] ? __get_fs_type+0x97/0xc0 [ 354.809413] do_mount+0x564/0x3070 [ 354.812941] ? do_raw_spin_unlock+0x9e/0x2e0 [ 354.817335] ? copy_mount_string+0x40/0x40 [ 354.821554] ? rcu_pm_notify+0xc0/0xc0 [ 354.825430] ? copy_mount_options+0x5f/0x380 [ 354.829821] ? rcu_read_lock_sched_held+0x108/0x120 [ 354.834820] ? kmem_cache_alloc_trace+0x616/0x780 [ 354.839652] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 354.845178] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 354.850702] ? copy_mount_options+0x285/0x380 [ 354.855183] ksys_mount+0x12d/0x140 [ 354.858800] __x64_sys_mount+0xbe/0x150 [ 354.862760] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 354.867766] do_syscall_64+0x1b1/0x800 [ 354.871646] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 354.876479] ? syscall_return_slowpath+0x5c0/0x5c0 [ 354.881403] ? syscall_return_slowpath+0x30f/0x5c0 [ 354.886320] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 354.891670] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 354.896499] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 354.901679] RIP: 0033:0x455979 [ 354.904860] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 354.912555] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 354.919809] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 354.927072] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 354.934323] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 354.941585] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:37:20 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:20 executing program 5: r0 = add_key(&(0x7f0000000000)='user\x00', &(0x7f00000000c0)={0x73, 0x79, 0x7a, 0x2}, &(0x7f0000000100)="2e43ce6fc3e952b9a7d1b8c25b5e78c1b64d4b2bc3dc8e1e0d18d2b7d4d9fa7ae5625bacd6d2adb9ebb3ee92904a490276fa7bcbb42bb9cc2744b173ba0160dd6d5be6c0aec77ef3a2658f830725d2a3dea790ac6f608c979862e5890114361553637b45e5c140dba287c570d2969bfb4364fe4af4b3dc6762b573c0130e00db4817cd03032ffde5eed4b0c4e20b610a66d8cc761caad35089c7f9d94aa1ec00ca3cdf0e3463d7fdaf8b179831804c598d0981be3716", 0xb6, 0xfffffffffffffffa) keyctl$invalidate(0x15, r0) r1 = syz_open_procfs(0x0, &(0x7f0000000280)='sessionid\x00') preadv(r1, &(0x7f0000000040)=[{&(0x7f0000000080)=""/1}], 0x2000000000000021, 0x0) 2033/05/18 03:37:20 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={"6970365f767469300000000000000004"}) 2033/05/18 03:37:20 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) dup3(r4, r3, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r4, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000096dc000001000000000000000000000000000000000000000000000007000000000000000000"]) ioctl$KVM_RUN(r3, 0xae80, 0x0) 2033/05/18 03:37:20 executing program 3: r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000)='/dev/sequencer\x00', 0x202000, 0x0) ioctl$PIO_FONTRESET(r0, 0x4b6d, 0x0) syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0xffff, 0x40000) r1 = syz_open_dev$sg(&(0x7f0000000240)='/dev/sg#\x00', 0xffffffffdffffffd, 0x800) r2 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000280)='IPVS\x00') sendmsg$IPVS_CMD_SET_SERVICE(r0, &(0x7f0000000480)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8041000}, 0xc, &(0x7f0000000440)={&(0x7f0000000380)={0x24, r2, 0xa16, 0x70bd29, 0x25dfdbfc, {0x2}, [@IPVS_CMD_ATTR_SERVICE={0x10, 0x1, [@IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x22, 0x1}}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x94}, 0x24004040) ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0xffffffffffffffff, 0x21, 0x0, @scatter={0x2, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000100)=""/116, 0x74}, {&(0x7f0000000180)=""/40, 0x28}]}, &(0x7f00000000c0)="7f2911fa31fa4f4b2f5687dbd490bd09e476cb6b139f5686379495446bcea9c334", &(0x7f00000002c0)=""/182, 0x0, 0x0, 0x0, &(0x7f0000000200)}) 2033/05/18 03:37:20 executing program 4: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sloppy_tcp\x00', 0x2, 0x0) getsockopt$inet_mtu(r0, 0x0, 0xa, &(0x7f0000000140), &(0x7f0000000180)=0x4) syz_mount_image$minix(&(0x7f0000000000)='minix\x00', &(0x7f0000000100)='./file0\x00', 0x4000, 0x1, &(0x7f0000000200)=[{&(0x7f00000002c0)="000010000500010005000000001c08108f13", 0x12, 0x400}], 0x0, 0x0) setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000300)="75bb8894cfd14c5c28186b71f4930afdf1c27f9a091857fba2c58eaec4f13c9b6a53689ffa73340bd8208874c3db96542cf34c6f718d40f05a748d4350a0f6525c9a4bcad4663390cba9d2b1a0e5e236ed2ecce984ba8250be3bdabaccd46cb0e7fc63ab99dda8d59545b73acf8426a835eb03a4199b583a033944604da3d827c29ec96d26c76088f384d783a4624e58cb580d85e254be45225c742b0ae6ce3f8734bd7e2e98c280ca635779c1925a7084818c3e6041d32bf778ab1518688aadf0791fcc09495ad38bf54ac6d26add", 0xcf) socketpair$inet6(0xa, 0x3, 0x81, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$int_in(r1, 0x5421, &(0x7f0000000080)=0x6) 2033/05/18 03:37:20 executing program 6: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000240)=[@text64={0x40, &(0x7f00000001c0)="470f01c9440f0766b8ca000f00d8b9620b00000f322626660f38823b0f06c744240094000000c744240266950000c7442406000000000f011424b9600200000f3266b8e0008ee866baf80cb852ae7b83ef66bafc0cec", 0x56}], 0x1, 0x78, &(0x7f0000000280), 0x0) ioctl$KVM_SMI(r2, 0xaeb7) fremovexattr(0xffffffffffffffff, &(0x7f0000000140)=ANY=[@ANYPTR=&(0x7f0000000080)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00']]) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000000)='/dev/urandom\x00', 0x200, 0x0) bind$bt_sco(r3, &(0x7f0000000040)={0x1f, {0x82, 0xc5, 0xffffffffffff0001, 0x4800, 0x40}}, 0x8) r4 = openat$zero(0xffffffffffffff9c, &(0x7f0000000100)='/dev/zero\x00', 0x321000, 0x0) listen(r4, 0xd9) 2033/05/18 03:37:20 executing program 0 (fault-call:0 fault-nth:69): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) [ 355.041196] l2tp_ppp: sess 4/0: set debug=cf10464f [ 355.061364] FAULT_INJECTION: forcing a failure. [ 355.061364] name failslab, interval 1, probability 0, space 0, times 0 [ 355.072663] CPU: 0 PID: 24984 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 355.079952] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 355.089299] Call Trace: [ 355.091885] dump_stack+0x1b9/0x294 [ 355.095502] ? dump_stack_print_info.cold.2+0x52/0x52 [ 355.100677] ? __mutex_lock+0x7d9/0x17f0 [ 355.104733] should_fail.cold.4+0xa/0x1a [ 355.108783] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 355.113871] ? kasan_kmalloc+0xc4/0xe0 [ 355.117748] ? graph_lock+0x170/0x170 [ 355.121535] ? find_held_lock+0x36/0x1c0 [ 355.125582] ? __lock_is_held+0xb5/0x140 [ 355.129634] ? check_same_owner+0x320/0x320 [ 355.133943] ? kasan_check_write+0x14/0x20 [ 355.138162] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 355.143079] ? rcu_note_context_switch+0x710/0x710 [ 355.147996] __should_failslab+0x124/0x180 [ 355.152222] should_failslab+0x9/0x14 [ 355.156009] kmem_cache_alloc+0x2af/0x760 [ 355.160146] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 355.165063] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 355.170069] __kernfs_new_node+0xe7/0x580 [ 355.174206] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 355.178950] ? mutex_unlock+0xd/0x10 [ 355.182648] ? kernfs_activate+0x20e/0x2a0 [ 355.186868] ? kernfs_walk_and_get_ns+0x320/0x320 [ 355.191697] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 355.197221] ? kernfs_link_sibling+0x1d2/0x3b0 [ 355.201792] kernfs_new_node+0x80/0xf0 [ 355.205666] __kernfs_create_file+0x4d/0x330 [ 355.210072] sysfs_add_file_mode_ns+0x21a/0x560 [ 355.214733] sysfs_add_file+0x4e/0x60 [ 355.218519] sysfs_merge_group+0xfa/0x230 [ 355.222654] dpm_sysfs_add+0x161/0x210 [ 355.226526] device_add+0xa11/0x16d0 [ 355.230239] ? device_private_init+0x230/0x230 [ 355.234807] ? kfree+0x1e9/0x260 [ 355.238162] ? kfree_const+0x5e/0x70 [ 355.241873] device_create_groups_vargs+0x1ff/0x270 [ 355.246875] device_create_vargs+0x46/0x60 [ 355.251098] bdi_register_va.part.10+0xbb/0x970 [ 355.255753] ? cgwb_kill+0x630/0x630 [ 355.259454] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 355.264976] ? bdi_init+0x416/0x510 [ 355.268587] ? wb_init+0x9e0/0x9e0 [ 355.272110] ? bdi_alloc_node+0x67/0xe0 [ 355.276068] ? bdi_alloc_node+0x67/0xe0 [ 355.280036] ? rcu_read_lock_sched_held+0x108/0x120 [ 355.285040] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 355.290314] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 355.295838] ? refcount_sub_and_test+0x212/0x330 [ 355.300581] bdi_register_va+0x68/0x80 [ 355.304458] super_setup_bdi_name+0x123/0x220 [ 355.308942] ? kill_block_super+0x100/0x100 [ 355.313251] ? kmem_cache_alloc_trace+0x616/0x780 [ 355.318083] fuse_fill_super+0xe6e/0x1e20 [ 355.322218] ? fuse_get_root_inode+0x190/0x190 [ 355.326787] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 355.332308] ? vsnprintf+0x242/0x1b40 [ 355.336098] ? pointer+0xa20/0xa20 [ 355.339629] ? vsprintf+0x40/0x40 [ 355.343071] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 355.348074] ? set_blocksize+0x2c4/0x350 [ 355.352135] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 355.357657] mount_bdev+0x30c/0x3e0 [ 355.361267] ? fuse_get_root_inode+0x190/0x190 [ 355.365844] fuse_mount_blk+0x34/0x40 [ 355.369629] mount_fs+0xae/0x328 [ 355.372985] vfs_kern_mount.part.34+0xd4/0x4d0 [ 355.377563] ? may_umount+0xb0/0xb0 [ 355.381175] ? _raw_read_unlock+0x22/0x30 [ 355.385304] ? __get_fs_type+0x97/0xc0 [ 355.389190] do_mount+0x564/0x3070 [ 355.392718] ? copy_mount_string+0x40/0x40 [ 355.396938] ? rcu_pm_notify+0xc0/0xc0 [ 355.400814] ? copy_mount_options+0x5f/0x380 [ 355.405205] ? rcu_read_lock_sched_held+0x108/0x120 [ 355.410215] ? kmem_cache_alloc_trace+0x616/0x780 [ 355.415049] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 355.420572] ? _copy_from_user+0xdf/0x150 [ 355.424710] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 355.430229] ? copy_mount_options+0x285/0x380 [ 355.434719] ksys_mount+0x12d/0x140 [ 355.438331] __x64_sys_mount+0xbe/0x150 [ 355.442289] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 355.447291] do_syscall_64+0x1b1/0x800 [ 355.451165] ? finish_task_switch+0x1ca/0x810 [ 355.455645] ? syscall_return_slowpath+0x5c0/0x5c0 [ 355.460560] ? syscall_return_slowpath+0x30f/0x5c0 [ 355.465499] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 355.470872] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 355.475700] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 355.480870] RIP: 0033:0x455979 [ 355.484045] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 355.491750] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 355.499004] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 355.506266] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 2033/05/18 03:37:20 executing program 5: r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000500)='/dev/snapshot\x00', 0x0, 0x0) membarrier(0x10, 0x0) write$rdma_cm(r0, &(0x7f0000000340)=@create_id={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000300)={0xffffffff}, 0x117, 0x100b}}, 0x20) write$rdma_cm(r0, &(0x7f0000001300)=@query={0x13, 0x10, 0xfa00, {&(0x7f0000000040), r1}}, 0x18) write$rdma_cm(r0, &(0x7f0000001340)=@migrate_id={0x12, 0x10, 0xfa00, {&(0x7f0000000000), 0xffffffff, r0}}, 0x18) link(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='./file0\x00') 2033/05/18 03:37:20 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:20 executing program 3: r0 = memfd_create(&(0x7f0000000000)="17", 0x0) write$binfmt_elf32(r0, &(0x7f00000016c0)=ANY=[@ANYBLOB="7f454c460000000000000000000000000200060000000000000000003800000000000000000000052a000000000300000000000000000000000000000000000000000000000000000000000000"], 0x58) pread64(r0, &(0x7f0000000040)=""/84, 0x54, 0x0) perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) execveat(r0, &(0x7f0000ff7000)='./file0\x00', &(0x7f0000000580), &(0x7f000034bff8)=[&(0x7f0000ff7000)="00000000000000060804002000fffc0c6565643b799365005f1b76"], 0x1000) [ 355.513530] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 355.520782] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 355.541646] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:37:20 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti0\x00\x00\x00 \x00'}) 2033/05/18 03:37:20 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffff9c, 0x0, 0x10, &(0x7f0000000180)={{{@in6=@ipv4={[], [], @loopback}, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@loopback}, 0x0, @in6=@mcast1}}, &(0x7f0000000040)=0xe8) r2 = getgid() lchown(&(0x7f0000000000)='./file0\x00', r1, r2) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000013000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f00000000c0)="b9810500000f3241cfc421addc54c1adc4a3394c7a00602e8d5f380f21cd0f01c2c744240000800000c7442402a1f504f3c7442406000000000f011c240fc71fc422a997a778000000", 0x49}], 0x1, 0x0, &(0x7f00000003c0), 0x0) getegid() ioctl$KVM_NMI(r4, 0xae9a) ioctl$KVM_RUN(r4, 0xae80, 0x0) 2033/05/18 03:37:20 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f000016d000)={"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"}) r3 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000000c0)='memory.swap.current\x00', 0x0, 0x0) setsockopt$inet6_tcp_TLS_TX(r3, 0x6, 0x1, &(0x7f0000000100)={0x303, 0x33}, 0x4) ioctl$KVM_SIGNAL_MSI(r1, 0x4020aea5, &(0x7f0000000080)={0xfffffffffffffffb}) 2033/05/18 03:37:20 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000200)=ANY=[@ANYBLOB="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"]) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:37:20 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 355.665738] l2tp_ppp: sess 4/0: set debug=cf10464f [ 355.697806] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:37:20 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={"6970365f767469300000000500"}) 2033/05/18 03:37:20 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 355.730808] kvm: apic: phys broadcast and lowest prio 2033/05/18 03:37:20 executing program 4: request_key(&(0x7f00000000c0)='dns_resolver\x00', &(0x7f00000002c0)={0x73, 0x79, 0x7a, 0x0}, &(0x7f00000003c0)='\x00', 0xffffffffffffffff) personality(0x5000007) add_key(&(0x7f0000000000)='dns_resolver\x00', &(0x7f0000000080)={0x73, 0x79, 0x7a, 0x3}, &(0x7f0000000180)="c6a34e987940ea478d9bd365b9e4621e334652733324b7773a3df8a7504d9e18e2e4a839fcd9030000000000000028945d12a9caae603ff81c4dc32ed3d70fb5d4c5b866305249060000005277822d0e0616a2e5b74c48e38b9936f298c6feec95ad327c724ec507bd34b94e99623f014bf81ea54900ac54a99aa04e1a7f000000e8d3bfa2f3abce9736aac3e0b19d5a697bc438cd49bc1cf3af72c2180bbee78e9a7237c02e10ac77e3a4fd8a6e2bdca6a9a1d7da1a3e559fdafb6703c73b3c4c10865302fb324f16327996273625d9f0a54ef16bdb08f22ed11fd80b74eb861aebe51b0912c0f79486c25c49524ffe4f00", 0xf2, 0xffffffffffffffff) request_key(&(0x7f0000000300)='dns_resolver\x00', &(0x7f0000000340)={0x73, 0x79, 0x7a, 0x3}, &(0x7f0000000380)="fd2d6c6f287b00", 0xfffffffffffffffd) [ 355.771526] l2tp_ppp: sess 4/0: set debug=cf10464f [ 355.804821] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:37:20 executing program 3: 2033/05/18 03:37:20 executing program 0 (fault-call:0 fault-nth:70): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:20 executing program 5: r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcs\x00', 0x100, 0x0) ioctl$DRM_IOCTL_GET_MAP(r0, 0xc0286404, &(0x7f0000000340)={&(0x7f0000ffc000/0x2000)=nil, 0x6b, 0x3, 0xa6, &(0x7f0000ffb000/0x3000)=nil, 0x8}) r1 = socket(0x10, 0x3, 0x0) ioctl$DRM_IOCTL_ADD_CTX(r0, 0xc0086420, &(0x7f0000000300)={0x0}) ioctl$DRM_IOCTL_SET_SAREA_CTX(r0, 0x4010641c, &(0x7f0000000180)={r2, &(0x7f0000000140)=""/3}) write(r1, &(0x7f0000951000)="2400000032001f1546f9ff7f0000055b090007010c00020050ff01000293727599afd4cb", 0xc) setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r1, 0x28, 0x1, &(0x7f0000000280)=0x8, 0x8) ioctl$EVIOCGPROP(r0, 0x80404509, &(0x7f00000001c0)=""/148) accept4$ipx(r0, &(0x7f0000000080), &(0x7f00000000c0)=0x10, 0x80800) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000100), &(0x7f00000002c0)=0x4) 2033/05/18 03:37:20 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:20 executing program 4: perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket(0x2, 0x0, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000300)={@in={{0x2, 0x0, @dev={0xac, 0x14, 0x14}}}, 0x0, 0x2, 0x0, "cb6877df719ef176b8aadd2b57325fa30238548c70ff84d8045f5e01de83ca0b309332f21e7cd045bfefb1a715bed93420a9eb7487e2e6ea0bb78818f5eb5e936cf482307cbb35bb56f2165e879f025a"}, 0xd8) close(0xffffffffffffffff) 2033/05/18 03:37:20 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$DRM_IOCTL_AGP_INFO(r2, 0x80386433, &(0x7f0000000140)=""/235) dup3(r4, r3, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r4, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="0100000000000000000000000000000000000000000000000000000000000007000000000000001000000000000000000000000000"]) ioctl$KVM_RUN(r3, 0xae80, 0x0) 2033/05/18 03:37:20 executing program 6: clock_adjtime(0x0, &(0x7f0000000200)={0x20000000000007ff, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xffffffff88ca6c54, 0x974}) r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dsp\x00', 0x4000, 0x0) ioctl$ASHMEM_SET_PROT_MASK(r0, 0x40087705, &(0x7f0000000040)={0x2, 0xd42}) 2033/05/18 03:37:20 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti0\x00z\x00'}) [ 355.944948] l2tp_ppp: sess 4/0: set debug=cf10464f [ 355.970820] FAULT_INJECTION: forcing a failure. [ 355.970820] name failslab, interval 1, probability 0, space 0, times 0 [ 355.982155] CPU: 1 PID: 25044 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 355.989436] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 355.998793] Call Trace: [ 356.001399] dump_stack+0x1b9/0x294 [ 356.005043] ? dump_stack_print_info.cold.2+0x52/0x52 [ 356.010246] ? perf_trace_lock_acquire+0xe3/0x980 [ 356.015110] should_fail.cold.4+0xa/0x1a 2033/05/18 03:37:21 executing program 3: r0 = getpid() r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) sync_file_range(r1, 0x100000001, 0x7, 0x6) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff97, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x5}, r0, 0x0, 0xffffffffffffffff, 0x0) 2033/05/18 03:37:21 executing program 3: r0 = gettid() rt_sigqueueinfo(r0, 0x403f, &(0x7f0000000280)) r1 = request_key(&(0x7f0000000080)='logon\x00', &(0x7f00000000c0)={0x73, 0x79, 0x7a, 0x2}, &(0x7f0000000100)='\x00', 0xfffffffffffffff9) r2 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/vs/backup_only\x00', 0x2, 0x0) getsockopt$inet6_IPV6_IPSEC_POLICY(r2, 0x29, 0x22, &(0x7f00000002c0)={{{@in6, @in6=@dev}}, {{@in=@remote}, 0x0, @in6=@mcast1}}, &(0x7f0000000200)=0xe8) keyctl$update(0x2, r1, 0x0, 0x0) rt_tgsigqueueinfo(r0, r0, 0x1c, &(0x7f0000000040)={0x3, 0xffffffff, 0x20, 0x1}) r3 = dup3(r2, 0xffffffffffffffff, 0x80000) splice(r3, &(0x7f0000000140), r3, &(0x7f0000000180), 0x3, 0x8) ioctl$KVM_ARM_SET_DEVICE_ADDR(r3, 0x4010aeab, &(0x7f0000000000)={0x7, 0x1000}) 2033/05/18 03:37:21 executing program 5: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x22000, 0x0) ioctl$sock_inet_tcp_SIOCINQ(r0, 0x541b, &(0x7f0000000140)) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$inet6_group_source_req(r0, 0x29, 0x2f, &(0x7f0000000180)={0x749, {{0xa, 0x4e21, 0x7e000, @mcast1={0xff, 0x1, [], 0x1}, 0x80}}, {{0xa, 0x4e22, 0x1, @mcast1={0xff, 0x1, [], 0x1}, 0x1}}}, 0x108) r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040)='/dev/snapshot\x00', 0x400000, 0x0) getsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000100), &(0x7f00000000c0)=0xb) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000019ff8)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$lock(r2, 0x11, &(0x7f000001d000)) [ 356.019191] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 356.024312] ? lock_release+0xa10/0xa10 [ 356.028299] ? graph_lock+0x170/0x170 [ 356.032114] ? rcu_note_context_switch+0x710/0x710 [ 356.037056] ? find_held_lock+0x36/0x1c0 [ 356.041129] ? find_held_lock+0x36/0x1c0 [ 356.045202] ? __lock_is_held+0xb5/0x140 [ 356.049285] ? check_same_owner+0x320/0x320 [ 356.053623] ? rcu_note_context_switch+0x710/0x710 [ 356.058567] __should_failslab+0x124/0x180 [ 356.062815] should_failslab+0x9/0x14 [ 356.066627] kmem_cache_alloc+0x2af/0x760 2033/05/18 03:37:21 executing program 3: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8) perf_event_open(&(0x7f00000000c0)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$sndpcmp(&(0x7f0000000040)='/dev/snd/pcmC#D#p\x00', 0x9, 0xc000) write$cgroup_int(r1, &(0x7f0000000140)={[0x35, 0x33, 0x3a, 0x33, 0x34, 0x34, 0x0, 0x39, 0x2f, 0x30]}, 0xa) ioctl$PPPIOCGMRU(r1, 0x80047453, &(0x7f0000000080)) syz_mount_image$bfs(&(0x7f0000000180)='bfs\x00', &(0x7f00000001c0)='./bus\x00', 0x0, 0x0, &(0x7f00000007c0), 0x0, 0x0) open(&(0x7f0000002000)='./bus\x00', 0x0, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000cf6fe4)=[@in6={0xa, 0x4e23, 0x0, @loopback={0x0, 0x1}}], 0x1c) getsockopt$inet_sctp_SCTP_STATUS(r1, 0x84, 0xe, &(0x7f0000000200)={0x0, 0xc40, 0x1, 0x0, 0x5, 0x0, 0x9, 0x1, {0x0, @in={{0x2, 0x4e23, @loopback=0x7f000001}}, 0x100, 0x81, 0x1, 0x3, 0x4}}, &(0x7f00000002c0)=0xb0) setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000107ff8)={r2, 0x10040000}, 0x8) connect$inet6(r0, &(0x7f00008c0000)={0xa, 0x4e23, 0x0, @loopback={0x0, 0x1}}, 0x1c) setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f00000000c0)={0x0, 0x2}, 0x8) setsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x79, &(0x7f0000000000)=ANY=[], 0x0) [ 356.070793] ? kasan_check_write+0x14/0x20 [ 356.075060] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 356.080098] __kernfs_new_node+0xe7/0x580 [ 356.084265] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 356.089034] ? kasan_check_write+0x14/0x20 [ 356.093278] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 356.098219] ? graph_lock+0x170/0x170 [ 356.102037] ? wait_for_completion+0x870/0x870 [ 356.106635] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 356.112187] kernfs_new_node+0x80/0xf0 [ 356.116097] __kernfs_create_file+0x4d/0x330 [ 356.120536] sysfs_add_file_mode_ns+0x21a/0x560 [ 356.125227] sysfs_add_file+0x4e/0x60 [ 356.129031] sysfs_merge_group+0xfa/0x230 [ 356.133180] dpm_sysfs_add+0x161/0x210 [ 356.137060] device_add+0xa11/0x16d0 [ 356.140773] ? device_private_init+0x230/0x230 [ 356.145363] ? kfree+0x1e9/0x260 [ 356.148723] ? kfree_const+0x5e/0x70 [ 356.152434] device_create_groups_vargs+0x1ff/0x270 [ 356.157452] device_create_vargs+0x46/0x60 [ 356.161681] bdi_register_va.part.10+0xbb/0x970 [ 356.166339] ? cgwb_kill+0x630/0x630 [ 356.170053] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 356.175576] ? bdi_init+0x416/0x510 [ 356.179191] ? wb_init+0x9e0/0x9e0 [ 356.182732] ? bdi_alloc_node+0x67/0xe0 [ 356.186693] ? bdi_alloc_node+0x67/0xe0 [ 356.190657] ? rcu_read_lock_sched_held+0x108/0x120 [ 356.195665] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 356.200934] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 356.206464] ? refcount_sub_and_test+0x212/0x330 [ 356.211216] bdi_register_va+0x68/0x80 [ 356.215110] super_setup_bdi_name+0x123/0x220 [ 356.219594] ? kill_block_super+0x100/0x100 [ 356.223906] ? kmem_cache_alloc_trace+0x616/0x780 [ 356.228748] fuse_fill_super+0xe6e/0x1e20 [ 356.232896] ? fuse_get_root_inode+0x190/0x190 [ 356.237472] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 356.243000] ? vsnprintf+0x242/0x1b40 [ 356.246803] ? pointer+0xa20/0xa20 [ 356.250352] ? vsprintf+0x40/0x40 [ 356.253797] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 356.258803] ? set_blocksize+0x2c4/0x350 [ 356.262858] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 356.268386] mount_bdev+0x30c/0x3e0 [ 356.272003] ? fuse_get_root_inode+0x190/0x190 [ 356.276582] fuse_mount_blk+0x34/0x40 [ 356.280375] mount_fs+0xae/0x328 [ 356.283735] vfs_kern_mount.part.34+0xd4/0x4d0 [ 356.288309] ? may_umount+0xb0/0xb0 [ 356.291925] ? _raw_read_unlock+0x22/0x30 [ 356.296060] ? __get_fs_type+0x97/0xc0 [ 356.299941] do_mount+0x564/0x3070 [ 356.303470] ? do_raw_spin_unlock+0x9e/0x2e0 [ 356.307872] ? copy_mount_string+0x40/0x40 [ 356.312094] ? rcu_pm_notify+0xc0/0xc0 [ 356.315979] ? copy_mount_options+0x5f/0x380 [ 356.320378] ? rcu_read_lock_sched_held+0x108/0x120 [ 356.325386] ? kmem_cache_alloc_trace+0x616/0x780 [ 356.330222] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 356.335755] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 356.341279] ? copy_mount_options+0x285/0x380 [ 356.345767] ksys_mount+0x12d/0x140 [ 356.349390] __x64_sys_mount+0xbe/0x150 [ 356.353359] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 356.358369] do_syscall_64+0x1b1/0x800 [ 356.362245] ? finish_task_switch+0x1ca/0x810 [ 356.366731] ? syscall_return_slowpath+0x5c0/0x5c0 [ 356.371650] ? syscall_return_slowpath+0x30f/0x5c0 [ 356.376572] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 356.381929] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 356.386766] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 356.391942] RIP: 0033:0x455979 [ 356.395121] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 356.402819] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 356.410076] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 356.417335] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 356.424602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 356.431857] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 356.460787] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:37:21 executing program 6: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) setsockopt$bt_BT_SECURITY(r0, 0x112, 0x4, &(0x7f0000000080)={0x4}, 0x2) 2033/05/18 03:37:21 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 356.475328] BFS-fs: bfs_fill_super(): No BFS filesystem on loop3 (magic=00000000) 2033/05/18 03:37:21 executing program 4: r0 = syz_open_dev$vcsn(&(0x7f0000000080)='/dev/vcs#\x00', 0x3, 0x1) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f0000000280)={&(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000140)=[0x0, 0x0], &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000240)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x5, 0x2, 0x9, 0x7}) add_key(&(0x7f0000000200)='big_key\x00', &(0x7f0000000180)={0x73, 0x79, 0x7a}, &(0x7f0000000240), 0x0, 0xffffffffffffffff) r1 = accept(0xffffffffffffff9c, 0x0, &(0x7f0000000000)=0xfffffffffffffee7) renameat2(r0, &(0x7f0000000040)='./file0\x00', r0, &(0x7f0000000300)='./file0\x00', 0x6) setsockopt$inet6_tcp_TLS_TX(r1, 0x6, 0x1, &(0x7f0000000380)={0x303, 0x33}, 0x3c7) mkdir(&(0x7f0000000100)='./file0\x00', 0x1) [ 356.575622] BFS-fs: bfs_fill_super(): No BFS filesystem on loop3 (magic=00000000) 2033/05/18 03:37:21 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={"6970365f767469300500"}) 2033/05/18 03:37:21 executing program 0 (fault-call:0 fault-nth:71): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:21 executing program 5: r0 = accept$unix(0xffffffffffffff9c, &(0x7f0000000000)=@abs, &(0x7f0000000080)=0x6e) getsockopt$SO_COOKIE(r0, 0x1, 0x39, &(0x7f00000000c0), &(0x7f0000000100)=0x8) modify_ldt$read(0x0, &(0x7f0000000140)=""/88, 0x58) r1 = dup3(r0, r0, 0x80000) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f00000001c0)={0x4, [0x0, 0x0, 0x0, 0x0]}, &(0x7f0000000200)=0x14) r5 = accept4(r1, &(0x7f0000000240)=@ethernet={0x0, @local}, &(0x7f00000002c0)=0x80, 0x800) getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r5, 0x84, 0xa, &(0x7f0000000300)={0x3f, 0xffffffffffffff00, 0x8203, 0x4, 0x6, 0x7, 0x1, 0x1, r4}, &(0x7f0000000340)=0x20) ioctl$ASHMEM_SET_SIZE(r1, 0x40087703, 0x3fffc000) r7 = accept4(r5, &(0x7f0000000380)=@hci, &(0x7f0000000400)=0x80, 0x80800) perf_event_open$cgroup(&(0x7f0000000440)={0x3, 0x70, 0x0, 0x7, 0x9, 0x3, 0x0, 0x7fff, 0x110, 0x4, 0x3, 0x80000001, 0x339c3a6f, 0x1c, 0x0, 0x897, 0x1ff, 0x0, 0x6, 0x10001, 0x8, 0xfffffffffffffff7, 0x80000001, 0x9, 0x200, 0x7, 0xfffffffffffff942, 0x8, 0x4, 0xfffffffffffffff9, 0x497, 0x437, 0x9, 0xfffffffffffffffb, 0x41, 0x80000000, 0x7, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xffffffffffff1a12}, 0x4, 0x0, 0xfffffffffffffffe, 0x0, 0x400, 0x7, 0x4}, r1, 0x2, r1, 0x0) ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r1, 0x4010ae74, &(0x7f00000004c0)={0xffffffffffffff01, 0x4, 0x10001}) r8 = socket$key(0xf, 0x3, 0x2) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r1, 0xc0a85352, &(0x7f0000000500)={{0xd21, 0x73f}, 'port1\x00', 0x2, 0x0, 0x8, 0x20, 0xee, 0x9, 0x0, 0x0, 0x6, 0x350e}) getsockopt$inet_tcp_int(r1, 0x6, 0x19, &(0x7f00000005c0), &(0x7f0000000600)=0x4) getsockopt$nfc_llcp(r7, 0x118, 0x1, &(0x7f0000000640)=""/110, 0x6e) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r1, 0x6, 0x16, &(0x7f00000006c0)=[{0x3, 0x800}, {0x0, 0x9}, {0x8, 0xd4}, {0x0, 0x39}, {0x3, 0x4}], 0x5) ioctl$KVM_SET_VCPU_EVENTS(r1, 0x4040aea0, &(0x7f0000000700)={0x1, 0x0, 0x400, 0x0, 0x0, 0x6, 0x7, 0x6, 0x101, 0xfffffffffffffff7, 0x8, 0x2, 0x0, 0x2, 0x1f, 0xee, 0x2, 0x9, 0x3}) r9 = fcntl$dupfd(r0, 0x406, r8) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r9, 0x84, 0x9, &(0x7f0000000740)={r2, @in={{0x2, 0x4e22, @loopback=0x7f000001}}, 0xffffffffffffff55, 0x1ff, 0x1, 0x3, 0xc9}, 0x98) getsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r9, 0x84, 0x13, &(0x7f0000000800)={r6, 0x1}, &(0x7f0000000840)=0x8) renameat2(r1, &(0x7f0000000880)='./file0\x00', r1, &(0x7f00000008c0)='./file0\x00', 0x1) connect$inet6(r1, &(0x7f0000000900)={0xa, 0x4e23, 0x6, @local={0xfe, 0x80, [], 0xaa}, 0x3}, 0x1c) ioctl$sock_SIOCETHTOOL(r5, 0x8946, &(0x7f0000000a40)={'sit0\x00', &(0x7f0000000940)=@ethtool_dump={0x40, 0x80, 0x795f, 0xd3, "e2c051045a80a363cf06936dc97bfd308864338979de629d234b5521160dba25abc8d338dcd0222c2110ed5c97ca5f4d15f0d939f991c16f03614a9b0ef3e11205c410487396e9179a8aeda2d7a64853ad4708a4fa0a212767c7bb98f4f6434b76540f089ebc9c05a2e630ef04342b52c02e19fe09f4d4824178f7f1bf32d392563035ea537e7dd9c8028ce5a366fbf3fef200d66ae748d2d36d033999ad535de6c68196635eff2ee3eed263ff5022b6bba5cc8f9d7054d817aa64e21267aab9f4088cba7d0ddd80b694743995a6100d601bbe"}}) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x4058534c, &(0x7f0000000a80)={0x5, 0xfffffffffffffe01, 0x7fff, 0x2, 0x0, 0x1}) getsockopt$inet_sctp_SCTP_PR_SUPPORTED(r7, 0x84, 0x71, &(0x7f0000000b00)={r3, 0x5}, &(0x7f0000000b40)=0x8) r10 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000bc0)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DEST(r9, &(0x7f0000000c80)={&(0x7f0000000b80)={0x10, 0x0, 0x0, 0x11400600}, 0xc, &(0x7f0000000c40)={&(0x7f0000000c00)={0x14, r10, 0x10, 0x70bd2d, 0x25dfdbfb, {0x5}}, 0x14}, 0x1}, 0x4000081) getsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000cc0), 0x10) getsockopt$IP_VS_SO_GET_DESTS(r8, 0x0, 0x484, &(0x7f0000000d00)=""/80, &(0x7f0000000d80)=0x50) recvfrom(r7, &(0x7f0000000dc0)=""/164, 0xa4, 0x2000, &(0x7f0000000e80)=@nfc={0x27, 0x1, 0x2, 0x7}, 0x80) 2033/05/18 03:37:21 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$VHOST_SET_VRING_ENDIAN(r2, 0x4008af13, &(0x7f0000000100)={0x3, 0x1}) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)=ANY=[@ANYBLOB="0100000000000000e9068cb0525076606420ed00000000000000000000000000000000000000000000000007000000000000000000000000000000"]) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:37:21 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:21 executing program 6: r0 = socket$inet6(0xa, 0x2000000000001, 0x0) setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000687000)=0x5c802861, 0x4) setsockopt$inet6_int(r0, 0x29, 0x31, &(0x7f0000000000)=0x3, 0x4) r1 = add_key(&(0x7f00000000c0)='id_legacy\x00', &(0x7f0000000100)={0x73, 0x79, 0x7a, 0x3}, &(0x7f0000000140)="24d0e2d6c4fb56a09f33275086b67dfe6c843f5cf93251e2fc3fca929e26f7283f875746997c93c72b69e28531c079f05bbdcfce90111ca25c41566cf669c441b802e1a58c3d70ac852435bcfcbd3049a556f250b18cc1467baab2b3a3b69522f3ffcb723ba107917b5c6cdd90daf201f0c3c1a4ae011b49f06dfea2c6b92e3a32e3296faf26548f974588d7cec74264c91fea6711a2ea", 0x97, 0xfffffffffffffffd) add_key$keyring(&(0x7f0000000040)='keyring\x00', &(0x7f0000000080)={0x73, 0x79, 0x7a, 0x2}, 0x0, 0x0, r1) bind$inet6(r0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @loopback={0x0, 0x1}}, 0x1c) sendto$inet6(r0, &(0x7f00007a8fff), 0x0, 0xfffffefffffffffe, &(0x7f0000f62fe4)={0xa, 0x4e20, 0x0, @loopback={0x0, 0x1}}, 0x1c) getsockopt$inet6_buf(r0, 0x29, 0x6, &(0x7f0000501000)=""/95, &(0x7f0000f12000)=0x5f) ioctl$sock_SIOCADDDLCI(r0, 0x8980, &(0x7f0000000200)={'team_slave_1\x00'}) 2033/05/18 03:37:21 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0xfffffffffffffffe, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="0f6f6a"], 0x3) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000010000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, &(0x7f0000000100)="0f09c744240000380000c74424028f000000c7442406000000000f0114240f9a9f00800000670f209a642e3e0f01f7670f080fc7aeb2440000660f388153940f30ad", 0x42}], 0x59, 0x0, &(0x7f00000001c0), 0x0) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x47}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) lsetxattr(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)=@known='system.sockprotoname\x00', &(0x7f00000001c0)='cpuset{\x00', 0x8, 0x2) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:37:21 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000a8eff8)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f00000001c0), 0x4) recvfrom(r0, &(0x7f0000000000)=""/245, 0xb, 0x0, &(0x7f0000000200)=@l2={0x1f, 0x8, {0x0, 0x1f, 0x7fffffff, 0x2, 0x81, 0xffff}, 0x5, 0x8785}, 0x3e7) sendmmsg$unix(r0, &(0x7f00000bd000), 0x80, 0x0) connect$unix(r0, &(0x7f00002ffff6)=@file={0x0, './file0\x00'}, 0xa) [ 356.735262] l2tp_ppp: sess 4/0: set debug=cf10464f 2033/05/18 03:37:21 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 356.764346] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:37:21 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f000076c000)={0xffffffffffffffff, 0xffffffffffffffff}) bind$unix(r0, &(0x7f0000000100)=@file={0x1, './file0\x00'}, 0x6e) perf_event_open(&(0x7f0000d2af88)={0x0, 0x78}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f000031f000)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$getown(0xffffffffffffffff, 0x9) socketpair$inet6_icmp(0xa, 0x2, 0x3a, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$inet_pktinfo(0xffffffffffffff9c, 0x0, 0x8, &(0x7f0000000080)={0x0, @loopback, @rand_addr}, &(0x7f00000000c0)=0xc) ioctl$sock_inet6_SIOCDIFADDR(r2, 0x8936, &(0x7f0000000180)={@empty, 0x54, r3}) connect$unix(r1, &(0x7f000071eff8)=@file={0x1, './file0\x00'}, 0xa) 2033/05/18 03:37:21 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000001180)='stack\x00') preadv(r0, &(0x7f0000b42000)=[{&(0x7f0000000140)=""/4096, 0x1000}], 0x1, 0x0) rt_sigtimedwait(&(0x7f00000000c0)={0x80000001}, &(0x7f0000000100), &(0x7f0000001140)={0x0, 0x1c9c380}, 0x8) 2033/05/18 03:37:21 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={"6970365f767469300000000000000006"}) [ 356.871675] FAULT_INJECTION: forcing a failure. [ 356.871675] name failslab, interval 1, probability 0, space 0, times 0 [ 356.883084] CPU: 0 PID: 25127 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 356.890360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 356.899698] Call Trace: [ 356.902274] dump_stack+0x1b9/0x294 [ 356.905890] ? dump_stack_print_info.cold.2+0x52/0x52 [ 356.911063] ? __mutex_lock+0x7d9/0x17f0 [ 356.915136] should_fail.cold.4+0xa/0x1a [ 356.919186] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 356.924279] ? kasan_kmalloc+0xc4/0xe0 [ 356.928159] ? graph_lock+0x170/0x170 [ 356.931948] ? find_held_lock+0x36/0x1c0 [ 356.935995] ? __lock_is_held+0xb5/0x140 [ 356.940057] ? check_same_owner+0x320/0x320 [ 356.944366] ? kasan_check_write+0x14/0x20 [ 356.948588] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 356.953508] ? rcu_note_context_switch+0x710/0x710 [ 356.958426] __should_failslab+0x124/0x180 [ 356.962653] should_failslab+0x9/0x14 [ 356.966445] kmem_cache_alloc+0x2af/0x760 [ 356.970582] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 356.975498] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 356.980499] __kernfs_new_node+0xe7/0x580 [ 356.984636] ? kernfs_dop_revalidate+0x3c0/0x3c0 [ 356.989387] ? mutex_unlock+0xd/0x10 [ 356.993097] ? kernfs_activate+0x20e/0x2a0 [ 356.997321] ? kernfs_walk_and_get_ns+0x320/0x320 [ 357.002153] ? __sanitizer_cov_trace_const_cmp2+0x18/0x20 [ 357.007674] ? kernfs_link_sibling+0x1d2/0x3b0 [ 357.012244] kernfs_new_node+0x80/0xf0 [ 357.016118] __kernfs_create_file+0x4d/0x330 [ 357.020512] sysfs_add_file_mode_ns+0x21a/0x560 [ 357.025180] sysfs_add_file+0x4e/0x60 [ 357.028970] sysfs_merge_group+0xfa/0x230 [ 357.033108] dpm_sysfs_add+0x161/0x210 [ 357.036980] device_add+0xa11/0x16d0 [ 357.040685] ? device_private_init+0x230/0x230 [ 357.045254] ? kfree+0x1e9/0x260 [ 357.048616] ? kfree_const+0x5e/0x70 [ 357.052315] device_create_groups_vargs+0x1ff/0x270 [ 357.057319] device_create_vargs+0x46/0x60 [ 357.061542] bdi_register_va.part.10+0xbb/0x970 [ 357.066196] ? cgwb_kill+0x630/0x630 [ 357.069905] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 357.075424] ? bdi_init+0x416/0x510 [ 357.079035] ? wb_init+0x9e0/0x9e0 [ 357.082558] ? bdi_alloc_node+0x67/0xe0 [ 357.086517] ? bdi_alloc_node+0x67/0xe0 [ 357.090475] ? rcu_read_lock_sched_held+0x108/0x120 [ 357.095475] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 357.100757] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 357.106289] ? refcount_sub_and_test+0x212/0x330 [ 357.111035] bdi_register_va+0x68/0x80 [ 357.114919] super_setup_bdi_name+0x123/0x220 [ 357.119397] ? kill_block_super+0x100/0x100 [ 357.123704] ? kmem_cache_alloc_trace+0x616/0x780 [ 357.128542] fuse_fill_super+0xe6e/0x1e20 [ 357.132677] ? fuse_get_root_inode+0x190/0x190 [ 357.137256] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 357.142782] ? vsnprintf+0x242/0x1b40 [ 357.146577] ? pointer+0xa20/0xa20 [ 357.150109] ? vsprintf+0x40/0x40 [ 357.153549] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 357.158549] ? set_blocksize+0x2c4/0x350 [ 357.162597] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 357.168120] mount_bdev+0x30c/0x3e0 [ 357.171734] ? fuse_get_root_inode+0x190/0x190 [ 357.176304] fuse_mount_blk+0x34/0x40 [ 357.180091] mount_fs+0xae/0x328 [ 357.183447] vfs_kern_mount.part.34+0xd4/0x4d0 [ 357.188030] ? may_umount+0xb0/0xb0 [ 357.191644] ? _raw_read_unlock+0x22/0x30 [ 357.195783] ? __get_fs_type+0x97/0xc0 [ 357.199667] do_mount+0x564/0x3070 [ 357.203196] ? copy_mount_string+0x40/0x40 [ 357.207417] ? rcu_pm_notify+0xc0/0xc0 [ 357.211295] ? copy_mount_options+0x5f/0x380 [ 357.215686] ? rcu_read_lock_sched_held+0x108/0x120 [ 357.220689] ? kmem_cache_alloc_trace+0x616/0x780 [ 357.225516] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 357.231038] ? _copy_from_user+0xdf/0x150 [ 357.235182] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 357.240705] ? copy_mount_options+0x285/0x380 [ 357.245189] ksys_mount+0x12d/0x140 [ 357.248803] __x64_sys_mount+0xbe/0x150 [ 357.252763] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 357.257770] do_syscall_64+0x1b1/0x800 [ 357.261643] ? finish_task_switch+0x1ca/0x810 [ 357.266125] ? syscall_return_slowpath+0x5c0/0x5c0 [ 357.271043] ? syscall_return_slowpath+0x30f/0x5c0 [ 357.275962] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 357.281311] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 357.286143] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 357.291323] RIP: 0033:0x455979 [ 357.294493] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 357.302188] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 357.309438] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 357.316692] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 357.323942] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 357.331195] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 357.355472] l2tp_ppp: sess 4/0: set debug=cf10464f [ 357.361159] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:37:22 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:22 executing program 6: r0 = socket(0x11, 0x2, 0x0) accept$unix(r0, 0x0, &(0x7f0000000000)) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000180)={"6c6f0000000000000000000100", &(0x7f00000001c0)=@ethtool_cmd={0x18}}) 2033/05/18 03:37:22 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r4, r3, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r4, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) getsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r3, 0x84, 0x7c, &(0x7f0000000000)={0x0, 0x1, 0xdf8}, &(0x7f0000000140)=0x8) getsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r2, 0x84, 0x71, &(0x7f0000000180)={r5, 0x4}, &(0x7f00000001c0)=0x8) 2033/05/18 03:37:22 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti0\x00\x00\x00\x00\x00\x00\x00z'}) 2033/05/18 03:37:22 executing program 0 (fault-call:0 fault-nth:72): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:22 executing program 3: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'tgr160\x00'}, 0x58) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/net/pfkey\x00', 0x88002, 0x0) ioctl$RNDADDTOENTCNT(r1, 0x40045201, &(0x7f00000000c0)=0x1) ioctl$BLKTRACESTART(r1, 0x1274, 0x0) accept4$alg(r0, 0x0, 0x0, 0x0) r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000)='/dev/uinput\x00', 0x143000, 0x0) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r2, 0x4010ae68, &(0x7f0000000040)={0x0, 0x3000}) 2033/05/18 03:37:22 executing program 4: r0 = socket$inet6_sctp(0xa, 0x5, 0x84) r1 = fcntl$dupfd(r0, 0x0, r0) mknod$loop(&(0x7f00000000c0)='./file0\x00', 0x6000, 0x1) sendmmsg$inet_sctp(r1, &(0x7f00000010c0)=[{&(0x7f0000000040)=@in6={0xa, 0x0, 0x0, @loopback={0x0, 0x1}}, 0x1c, &(0x7f0000000140)=[{&(0x7f0000000080)='(', 0x1}], 0x1, &(0x7f0000000300)=ANY=[@ANYBLOB="1800b40200000000000000000500000000000200000000007b2400c0fdd7527bf79c0db1edee5a7cf9278fd202e4cb905a2deff10bbfc9a5487b3b0800766ab968cf18fd6c60be7a2f427fd0a84642fdbad30941ead07ace8ded203242b8a5af7ced2053870fbe4e5b0c31a22af576883f325ebdc72142b8b5a595a364ac8598cbf6a05527ba7b53b6ad6e62a25d2d1fd7051911692397a9b3720fef2cd1c2ae0dd85794b55592a939a94aa7ddc3c0bf6ddcfe0d0fe9271f1800e85ac3d8db93676181a189da127763866cb418e9661ddc97e886a871485d5f2cfef797faddab2086"], 0x18}], 0x1, 0x0) umount2(&(0x7f0000000000)='./file0\x00', 0xc) ioctl$DRM_IOCTL_GET_STATS(r1, 0x80f86406, &(0x7f0000000180)=""/239) 2033/05/18 03:37:22 executing program 5: r0 = socket$inet6(0xa, 0x800000000000003, 0x3a) ioctl$void(r0, 0xc0045878) setsockopt$inet6_int(r0, 0x29, 0xd1, &(0x7f0000000040)=0xfe, 0x4) [ 357.837059] l2tp_ppp: sess 4/0: set debug=cf10464f [ 357.854827] FAULT_INJECTION: forcing a failure. [ 357.854827] name failslab, interval 1, probability 0, space 0, times 0 [ 357.866635] CPU: 1 PID: 25159 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 357.873915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 357.883267] Call Trace: [ 357.885865] dump_stack+0x1b9/0x294 [ 357.889507] ? dump_stack_print_info.cold.2+0x52/0x52 [ 357.894699] ? kobject_uevent_env+0x62e/0xea0 [ 357.899196] should_fail.cold.4+0xa/0x1a [ 357.903252] ? debug_check_no_locks_freed+0x310/0x310 [ 357.908429] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 357.913519] ? __might_sleep+0x95/0x190 [ 357.917479] ? graph_lock+0x170/0x170 [ 357.921268] ? __mutex_lock+0x7d9/0x17f0 [ 357.925315] ? unwind_get_return_address+0x61/0xa0 [ 357.930232] ? find_held_lock+0x36/0x1c0 [ 357.934282] ? __lock_is_held+0xb5/0x140 [ 357.938335] ? check_same_owner+0x320/0x320 [ 357.942645] ? rcu_note_context_switch+0x710/0x710 [ 357.947574] ? put_dec+0xf0/0xf0 [ 357.950926] ? format_decode+0x1a9/0xae0 [ 357.954974] __should_failslab+0x124/0x180 [ 357.959200] should_failslab+0x9/0x14 [ 357.962986] kmem_cache_alloc_node+0x272/0x780 [ 357.967563] __alloc_skb+0x111/0x780 [ 357.971267] ? skb_scrub_packet+0x580/0x580 [ 357.975575] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 357.980759] ? netlink_has_listeners+0x2ff/0x4c0 [ 357.985501] ? netlink_tap_init_net+0x3c0/0x3c0 [ 357.990159] kobject_uevent_env+0x801/0xea0 [ 357.994466] ? device_pm_add+0x221/0x340 [ 357.998523] kobject_uevent+0x1f/0x30 [ 358.002310] device_add+0xb01/0x16d0 [ 358.006018] ? device_private_init+0x230/0x230 [ 358.010589] ? kfree+0x1e9/0x260 [ 358.013943] ? kfree_const+0x5e/0x70 [ 358.017644] device_create_groups_vargs+0x1ff/0x270 [ 358.022646] device_create_vargs+0x46/0x60 [ 358.026868] bdi_register_va.part.10+0xbb/0x970 [ 358.031523] ? cgwb_kill+0x630/0x630 [ 358.035225] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 358.040744] ? bdi_init+0x416/0x510 [ 358.044357] ? wb_init+0x9e0/0x9e0 [ 358.047883] ? bdi_alloc_node+0x67/0xe0 [ 358.051840] ? bdi_alloc_node+0x67/0xe0 [ 358.055801] ? rcu_read_lock_sched_held+0x108/0x120 [ 358.060805] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 358.066080] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 358.071604] ? refcount_sub_and_test+0x212/0x330 [ 358.076345] bdi_register_va+0x68/0x80 [ 358.080221] super_setup_bdi_name+0x123/0x220 [ 358.084699] ? kill_block_super+0x100/0x100 [ 358.089010] ? kmem_cache_alloc_trace+0x616/0x780 [ 358.093851] fuse_fill_super+0xe6e/0x1e20 [ 358.097985] ? fuse_get_root_inode+0x190/0x190 [ 358.102555] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 358.108086] ? vsnprintf+0x242/0x1b40 [ 358.111874] ? pointer+0xa20/0xa20 [ 358.115404] ? vsprintf+0x40/0x40 [ 358.118844] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 358.123844] ? set_blocksize+0x2c4/0x350 [ 358.127901] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 358.133423] mount_bdev+0x30c/0x3e0 [ 358.137037] ? fuse_get_root_inode+0x190/0x190 [ 358.141615] fuse_mount_blk+0x34/0x40 [ 358.145402] mount_fs+0xae/0x328 [ 358.148768] vfs_kern_mount.part.34+0xd4/0x4d0 [ 358.153344] ? may_umount+0xb0/0xb0 [ 358.156958] ? _raw_read_unlock+0x22/0x30 [ 358.161090] ? __get_fs_type+0x97/0xc0 [ 358.164963] do_mount+0x564/0x3070 [ 358.168493] ? copy_mount_string+0x40/0x40 [ 358.172711] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 358.177713] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 358.182454] ? retint_kernel+0x10/0x10 [ 358.186333] ? copy_mount_options+0x1f0/0x380 [ 358.190813] ? copy_mount_options+0x1f6/0x380 [ 358.195296] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 358.200826] ? copy_mount_options+0x285/0x380 [ 358.205307] ksys_mount+0x12d/0x140 [ 358.208920] __x64_sys_mount+0xbe/0x150 [ 358.212889] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 358.217891] do_syscall_64+0x1b1/0x800 [ 358.221762] ? finish_task_switch+0x1ca/0x810 [ 358.226244] ? syscall_return_slowpath+0x5c0/0x5c0 [ 358.231161] ? syscall_return_slowpath+0x30f/0x5c0 [ 358.236077] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 358.241426] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 358.246256] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 358.251428] RIP: 0033:0x455979 [ 358.254600] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 358.262295] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 358.269557] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 358.276812] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 2033/05/18 03:37:23 executing program 5: perf_event_open(&(0x7f000001d000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_bp={&(0x7f0000000000), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) futex(&(0x7f0000000040), 0x400000085, 0x0, &(0x7f0000004000)={0x77359400}, &(0x7f0000000000), 0x402ffffffd) 2033/05/18 03:37:23 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000140)={0x26, 'hash\x00', 0x0, 0x0, 'sha224-ssse3\x00'}, 0xfffffffffffffffb) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000ff8000)="0a0775b005e381e5b3b60ced5c54dbb7295df0df8217ad4000000000000000e6", 0x20) r1 = accept$alg(r0, 0x0, 0x0) sendmmsg$alg(r1, &(0x7f0000003f80)=[{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000001c0)="c484b4a4eff66871b6a98a2275ba15fe", 0x10}], 0x1, &(0x7f00000014c0)}], 0x1, 0x0) recvmsg(r1, &(0x7f0000001440)={&(0x7f0000000280)=@sco, 0x80, &(0x7f0000000000)=[{&(0x7f00000003c0)=""/4096, 0x1000}], 0x1, &(0x7f0000001400)=""/6, 0x6}, 0x0) 2033/05/18 03:37:23 executing program 3: r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_group_source_req(r0, 0x29, 0x2a, &(0x7f0000001000)={0x1, {{0xa, 0x0, 0x0, @mcast2={0xff, 0x2, [], 0x1}}}, {{0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xffffffffffffffff}}}}, 0x104) fcntl$getown(r0, 0x9) r1 = getpgrp(0x0) r2 = gettid() r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ppp\x00', 0x240, 0x0) ioctl$VT_ACTIVATE(r3, 0x5606, 0x10001) r4 = syz_open_procfs(r2, &(0x7f000012bff2)='net/mcfilter6\x00') setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000f46000)={0x1, {{0xa, 0x0, 0x0, @mcast2={0xff, 0x2, [], 0x1}}}, 0x0, 0x2, [{{0xa, 0x0, 0x0, @local={0xfe, 0x80, [], 0xffffffffffffffff}}}, {{0xa, 0x0, 0x0, @mcast2={0xff, 0x2, [], 0x1}}}]}, 0x190) getsockopt$inet_sctp6_SCTP_MAXSEG(r4, 0x84, 0xd, &(0x7f0000000680)=@assoc_value={0x0, 0x7fffffff}, &(0x7f00000006c0)=0x8) getsockopt$inet_sctp_SCTP_RESET_STREAMS(r4, 0x84, 0x77, &(0x7f0000000980)={0x0, 0xfffffffffffffffe, 0xa, [0xf3c4, 0x1, 0x7ff, 0x4a, 0x8, 0x6689, 0x8, 0xfffffffffffffffc, 0xbc, 0x100000001]}, &(0x7f00000009c0)=0x1c) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r4, 0x84, 0x72, &(0x7f0000000a00)={0x0}, &(0x7f0000000a40)=0xc) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r4, 0x84, 0x72, &(0x7f0000000a80)={0x0, 0x5, 0x20}, &(0x7f0000000ac0)=0xc) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r4, 0x84, 0x7b, &(0x7f0000003a00)={0x0, 0x3}, &(0x7f0000003a40)=0x8) getsockopt$inet_sctp6_SCTP_STATUS(r4, 0x84, 0xe, &(0x7f0000006940)={r7, 0x7, 0xffffffff, 0x9, 0xb, 0x9, 0x5, 0x4, {r6, @in6={{0xa, 0x4e22, 0x101, @empty, 0xe4}}, 0x4, 0x8, 0x5c, 0x10001, 0x96}}, &(0x7f00000036c0)=0xb0) getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0x14, &(0x7f0000003a80)=@assoc_value={0x0}, &(0x7f0000003ac0)=0x8) syz_open_dev$vcsn(&(0x7f00000037c0)='/dev/vcs#\x00', 0x8, 0x200000) getsockopt$inet_sctp6_SCTP_CONTEXT(r4, 0x84, 0x11, &(0x7f0000003b00)={0x0, 0x1}, &(0x7f0000003b40)=0x8) ptrace$getregset(0x4204, r1, 0x201, &(0x7f0000006700)={&(0x7f00000066c0)=""/64, 0x40}) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r4, 0x84, 0x6, &(0x7f0000005440)={0x0, @in6={{0xa, 0x4e20, 0x7, @loopback={0x0, 0x1}, 0x20}}}, &(0x7f0000005500)=0x84) getsockopt$inet_sctp6_SCTP_STATUS(r4, 0x84, 0xe, &(0x7f0000005540)={0x0, 0x8000, 0x9, 0x0, 0x7f, 0xb3f7, 0x7eb, 0x3, {0x0, @in={{0x2, 0x4e23, @remote={0xac, 0x14, 0x14, 0xbb}}}, 0x10001, 0x4, 0x5, 0x1, 0x7ff}}, &(0x7f0000005600)=0xb0) r14 = geteuid() lstat(&(0x7f0000006a00)='./file0\x00', &(0x7f0000006a40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fchown(r0, r14, r15) getsockopt$inet_sctp6_SCTP_LOCAL_AUTH_CHUNKS(r4, 0x84, 0x1b, &(0x7f0000005640)={0x0, 0x1000, "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"}, &(0x7f0000006680)=0x1008) sendmmsg$inet_sctp(r4, &(0x7f0000006780)=[{&(0x7f0000000200)=@in={0x2, 0x4e24}, 0x10, &(0x7f0000000400)=[{&(0x7f0000000240)}, {&(0x7f0000000280)="0ef7102b1e47e69072c7ec5f63503221e45ed788d16484b536afb726d4fb10b672a0599be8897257a9a285d4549473baf1f4de27515e13e5087ec902d78eaa655ee33e55ce5785d60f20f37bcbd81069524c84225cac16d596dd44d5912071326188aa8d6dd01b3ffab3107b2f954597d0f206f6a64caef02a0096c59259cd562c398608b5794613fde7df99a9fcf06ca054ba9dd1095f36eca82d85cffdfe93eb6742911511a90f71b0d68d7b346b10ea8d61033d7b43e03b", 0xb9}, {&(0x7f0000000340)="57ad758632b36009ca87d512abc8dd40bc5a5858710e941ea2273e222993fad4f0a5f6c0bcccf7f2bf3a88a70ca92035ce5b1da5dc4f16eab5731e0b7a21721dd327c839b14249e639b24975dac99dd3d5c59824b933470ba5643a71c5910bee3e9ff9eba07a3552310eda0c39ffa055e6356ac6cad409579a118cb336f4a36632fb360aefdfcd8903b3f4ee1798f22bf7d0aa4549", 0x95}, {&(0x7f0000002140)="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", 0x1000}, {&(0x7f0000000580)="a59597982a49b499be240d23cbce45f8f36265bf81c7a7790e27ca1ab597d83a610f1d8a137e2b39e51e687cd21685f1afec54193657cf7b9270eed31e445d34b358b6a8dda514fd34ac62d2abd7970eda22f173553a43f91fc8ba54a445f296de62c6d698ad1caf233d3e8a3626f3a0549e2b7466a411b993732774afcb48db8bd99a8701b7ada7bc8d407d3947a5e29a5c62897fb608a3e83666b695e7467598e4d61e4cfafa70806a12f14a7415e44d79f318672c97328a94d78b9587d7c1768de89f8b5ccb8b6f1e4cb0f97b29c4222ced3ed27e600d896a8edb6f68fcc90e88228bfcf26dbf896ddbb0f5a19873861836fd", 0xf4}], 0x5, &(0x7f0000000700)=[@sndinfo={0x20, 0x84, 0x2, {0xff, 0x206, 0x80000000, 0x1, r5}}], 0x20, 0x20000080}, {&(0x7f0000000740)=@in6={0xa, 0x4e24, 0x8000, @remote={0xfe, 0x80, [], 0xbb}, 0x4}, 0x1c, &(0x7f0000000940)=[{&(0x7f0000000780)="143f7e0080f1c04f70cd908d117003fcc9329f829d9b0c594427b58f8079087b736635a52f32382cc815f7d5605230b3", 0x30}, {&(0x7f00000007c0)="abf7e29d9365d20076dca95967ffc0059ee378b9c222e81281908268bbb91a59288604b46faaa9d021c783641b26cbd75f5e6733516180af", 0x38}, {&(0x7f0000000800)="c384f92ce6f79a283f197518448f2841764c6df668e94c3f59da0361278dbe7df593c25fdf83868afeb4bfbac3b4b5f5671038d2c3cbb991884a8622d9c87ea86179f7fe6077a664a290a0a4b5e72720aa518afe14c423e929350a63b59c9480b18b60eefea20bfec1b3cdf7bf3c38db6e0f5773d6864003c4b6bc53c56915c2d9fdb6492235303a965ae48cf87324d09c398fa397ddf064dd6ddfb51d5ea04eb8cbd14217a25c0c2f8f5a58", 0xac}, {&(0x7f00000008c0)="722624a99b4cb163f0c390c167db9e3d1a18f540fbcf23ec745c7049e8d004037707f3ea65aedfad1ec9605f6faaeac3b06230c38fbecf3b980fd14cd7067f1dc6da472b4561ce178ed5e9d6604641b8aa44b8f7b95669c5f72718bcd89753168e517399", 0x64}], 0x4, &(0x7f0000000b00)=[@sndrcv={0x30, 0x84, 0x1, {0x400000, 0x1, 0x0, 0x80000001, 0xa26b, 0x2, 0x7ff, 0xff, r6}}, @prinfo={0x18, 0x84, 0x5, {0x30, 0x7}}, @sndinfo={0x20, 0x84, 0x2, {0x1, 0x200, 0x0, 0x7, r7}}, @prinfo={0x18, 0x84, 0x5, {0x30, 0x1}}, @sndinfo={0x20, 0x84, 0x2, {0x2, 0x200, 0x200, 0x7, r8}}, @prinfo={0x18, 0x84, 0x5, {0x30, 0xfffc000000000000}}, @init={0x18, 0x84, 0x0, {0x40, 0xe1, 0x10000, 0xe583}}, @dstaddrv6={0x20, 0x84, 0x8}, @authinfo={0x18, 0x84, 0x6, {0x2}}, @authinfo={0x18, 0x84, 0x6, {0x1}}], 0x120, 0x8000}, {&(0x7f0000000c40)=@in6={0xa, 0x4e23, 0xba7, @loopback={0x0, 0x1}, 0x3}, 0x1c, &(0x7f0000003240)=[{&(0x7f0000000c80)="601e58fb25e878acacea93f93829ecac1ea5e2dbabee82b920a0e286a992c415f21ff9f508b52bb1f6403f1410df0b2c70fdd679c6750280a5a18d7598f518c100edcf38da17dc635b205d46612db6eb046d4c8da48d9199a222cf70591264ea5134256eb4f55e9ad11e74070f2a4046410ecc1e9b0f2139b45c04ac50d2a5ec4c88ce6f4217bed74f095dca882e4dfffe5ef6ec30e067c3e759b2eb5c510f8b", 0xa0}, {&(0x7f0000000d40)="2626e60cc0740b47595a6ca85bea7dac4637ce80e698d87284312bedd9d0cee2880f3d6bb990971a31fbdb704220eda424", 0x31}, {&(0x7f0000000d80)="d90a512d3ffdbdef5ce5a41ae64ce5f151b193baafb0b6d74151306f90a805dac6453604c7620bf51a2880675081c626ca31ca8121bd62ddd7fae1f377aca96ebe051ff443056b60027988b80289aa4896a194c0421ca2ed771c93bff537910e854aa5be7c8053e08dcd128c154ce9d1b706f05b0c547d6dd7d5872a4f4f32b75adccf5d2c186dbdf507cca59ea2eea26746482fe97187310eddf525c94747d7050c1b535b319f5281d68967c56c30e849f1f70d986daf3ef0f8ca3ddc016d54a712668e31c8fbe0d07dd3256a5832f3cb6dc56f6e898e44e4eda61cbd3390", 0xdf}, {&(0x7f0000000e80)="e03cdd1395d0cdbb2a2d7ec0d94700945fbd5c81ff9f1bc474f8897b4ba217ca978dbd270c05644e762ef20837ca29ff298613b3bee1edc50eb72af2148dd42445559007ebc9b66add9804803a7f5026ed54c972628e7dea4acdee5e98ad84e73d5e87208ce4bc2ec09b8e3e639b4e110c96fee9d103e05a329c243bc417cb1d8015ad6748111b17678f75ea89d392e3bbf9", 0x92}, {&(0x7f0000003140)="88c41b1ab365e90e831e6146cf62b796d16fa0b77836a5824a741a2f0689b9f0265097a9a22571887a4ddc252066e811701a1af523d0141ebe50fc02b6035b9270427e5dae46873d3f32a6eac996989b0e05a457b2f9b80c14db84300b6d86ec782a2897bc824171f8fdbf856410e83fdfe2a1a9ce3fdb422ce785832cb25b521aa5fa0d016b3b4bdf755721cd131a602e5072c1b1c08058ea8dbad5a1e6961bf19533b14d748de8f567aa91c210dfc59e1b32fd50dde95118fb999498509cea62577211555a454ab7080037bec6c74da38d7c56bb19af776ed5183d77d578b81b6755ff4fad40b2914374586339d6fba6c060c5", 0xf4}, {&(0x7f0000000f40)="827120b6687db03bc55d1d20526c47d7201eef6399d819bfc1dc007edf439b1ab56bd4a9e89210508375f8af479b996bad522cb9331f4efaccbf5c865311315a28fa33c3e37dbae1a905b45e", 0x4c}, {&(0x7f0000000fc0)="89e3c54cb0cdd546a8747fdbe550cf4b6f3b5cd32711eaacdb24a2ed187cdd7adedc48083ecc356100699a9f59351f30646120e3609a", 0x36}], 0x7, &(0x7f00000032c0)=[@dstaddrv4={0x18, 0x84, 0x7}], 0x18, 0x24000000}, {&(0x7f0000003300)=@in={0x2, 0x4e20, @rand_addr=0x1000}, 0x10, &(0x7f00000034c0)=[{&(0x7f0000003340)="6830a87cc8be4819dbac87106c406b8cee9d81c53e35cc3c30185f17d265b18572dfe51be8321857327f6854e30020a36c9b1ce13d8e7ad1766431bb2f129c3fd41b1f91b89d5ff41a48c6edbf51f04e4594fa1985a0b0ca35fc85bd80b5cb2d41b6777dba429ede76ed95dd94856e7d2a3e97fef4daadd24142b027d48a2f054b575a9d4089872ce331236b7d692a118a794d18599026", 0x97}, {&(0x7f0000003400)="710f59b4dd073627aa11ed7acb40b64de49ec33de185ad5695ed12ffe064936749f116cf75f9c6ffcd4e1f42b09140226908a0016b82b15949e0f18857b90f92ba745db83355b0845e927c58fb3beab959c0f0f1dfc256d5ea9b313cbf846cb7a66a74e106144eb312c7728506a395fa137ecf6fcbd5181ea66fdb22b388deb176ba8db4c3f36444fab15c4a6f413ac31c908940692133", 0x97}], 0x2, 0x0, 0x0, 0x4000}, {&(0x7f0000003500)=@in6={0xa, 0x4e21, 0x1000000000000, @loopback={0x0, 0x1}, 0x4}, 0x1c, &(0x7f0000003740)=[{&(0x7f0000003540)="d6b63d14077a1ffb95e8da6a730f7b7616608003b1cf9e7f88d45b42966151ed1af1320240ba2aabdf284c05aebd3b8cb10f91d64c667b5692988972fe6e2ca40899e6e08a4b960f639e77484df330d5b0e7d42443c001e723309607fb694f8d77aeb42cb477da3b5562d32e798c498a5e2303e0d130c7b6a37a7c909f58c4", 0x7f}, {&(0x7f00000035c0)="693cbcd1e61dbdb2b91ac95101fe6a868045", 0x12}, {&(0x7f0000003600)="67c41e89da1b670a9307b323a454ccc15ed68b4bb0784a36b779b6464302111c7fd01e5e14ba796616bc5ac9071890f71400c29448cbaf1815d6f9cf9ebb3a1075f1cd80c5cf8eac819f8f376b2fa2cfac4c397d91ab6faad46276c5a970ce8354a9447247e13c2b2299396f3c742bc268a137cbf1f95f3b3ab9b9ecfe88d47c38229cc45431f3451f978be357cb0cf14e5063bdbea19772afc168c080", 0x9d}, {&(0x7f00000036c0)}, {&(0x7f0000003700)="a046941240a3372d269070b12f3542e7835c9320125ae862a0e8d41b3625b4", 0x1f}], 0x5, &(0x7f00000037c0), 0x0, 0x20000000}, {&(0x7f0000003800)=@in6={0xa, 0x4e21, 0xffffffffffffffff, @loopback={0x0, 0x1}, 0x8001}, 0x1c, &(0x7f00000039c0)=[{&(0x7f0000003840)="e16e6bee58f69700b1a46722261fe492800b10c7c6ab7d274ed2e209ec3b9c9942082841bbfe3c4046ac83246ae8f0aa569117b4dd771a010cff7ba3616801ab8af46c6fc30516f02e971a553cf327c8b067b26ce21d3e794de1af08d32a3f00df8fc563200445d90cd1821d77fa3b216c945a55e356d77fde21", 0x7a}, {&(0x7f00000038c0)="fc486bc0df262e3ec99179cd962904945368a56bc7a36eefda8132cb4df3d18d0e1b7651c2dfd53014bdd1948e5a4eb98828b8d3a0f323a7febe77dc10a5bcda243fa74a2f51ec00adae2dffdb5a8f3f4aa82aa2d57d5af7822102aa69e3a98c7285fd808fb4f1ae88c354dc3e87b1e1779e11303da0d4a2ff11a26b707cdd0cd07e150589f1085743f0c80677c38ee509ff3f2fba9b9916ce80439daf6fe0f3d335b1badee786675a5e35f025bdfe871286217d248d9e38a45975848d3add58d552bc15ee1793fed80e0e22fc754f081a101c2e6001cfa8c425d84569bbe0a5b460f6089ae02f690f5c99cf18a6a5161a3d66fcd1c5", 0xf6}], 0x2, &(0x7f0000003b80)=[@dstaddrv6={0x20, 0x84, 0x8, @local={0xfe, 0x80, [], 0xaa}}, @authinfo={0x18, 0x84, 0x6, {0x6}}, @sndrcv={0x30, 0x84, 0x1, {0x4, 0x3, 0x208, 0x0, 0x5, 0x8da, 0x621, 0x8000, r9}}, @init={0x18, 0x84, 0x0, {0x177, 0x80000001, 0xe91, 0x100000000}}, @dstaddrv6={0x20, 0x84, 0x8, @local={0xfe, 0x80, [], 0xaa}}, @dstaddrv6={0x20, 0x84, 0x8}, @prinfo={0x18, 0x84, 0x5, {0x30, 0x1}}, @sndrcv={0x30, 0x84, 0x1, {0x6, 0x7, 0x2, 0xfffffffffffffffa, 0x81, 0x8, 0x40, 0x2, r10}}, @sndrcv={0x30, 0x84, 0x1, {0x9, 0x0, 0x214479c15272b830, 0x5, 0x0, 0x1000, 0x0, 0x1, r11}}], 0x138, 0xfa2b7cf4d31c799a}, {&(0x7f0000003cc0)=@in={0x2, 0x4e23, @multicast2=0xe0000002}, 0x10, &(0x7f0000004f40)=[{&(0x7f0000003d00)="8ae9d1dd06c499f37713aaa8f5158c84e8a1fab09251b7d6a904fa076981521a66bbae323bd5", 0x26}, {&(0x7f0000003d40)="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", 0x1000}, {&(0x7f0000004d40)="a8c7047a80e15fa0c9e29f225cd836b514d98f921c99b013828c7069bd43ca506fdfb68b066257c8711e73071590a81ae284b958b9f91838a99fa860b724b5bd694daefb271be3c1d3229a80872b9e935d5c83c2a32af8abbbef69636071ddc70d12d6bf930b3574db4fd5ac09ab9da1b45edd5378c0fbf698881ec082617e84480301e45f5091c8e5", 0x89}, {&(0x7f0000004e00)="d18c947567759190c94004a6416040b2097b8e6a97cabe222eb0f5c7476975fdac6f73b7ea3058c7c53d9bddaec6cc0b01dc26874367f0f5df00952f5b0beb21709a9528b7c196ebc3c6bb186ae011f694c7dae7e6213a5a48c393e67aeb04540ec94cd7fb0e3355fae795cc86445634ff81b92b7d8312510d6cb476343b77932319a4150de06c50abf270643cdf72b42ef548222cf85f79637d95082f7a348998ca42e515b31615a4247f65519cde892a6e141dac2b0be94048ddd37135140e9fce003516cab7a240903fff752cb2f45fcac534f76031bb03a73713a426b7674381a4235c8a0ce52dda852723760c054c19a2", 0xf3}, {&(0x7f0000004f00)="c867ef4536e8a3209ca5da85ee445171c796820c2f49461af7480c8f1dfb4967c9c3c340905d493d552c6e57e1bd75d710ea14cd", 0x34}], 0x5, &(0x7f0000004fc0)=[@authinfo={0x18, 0x84, 0x6, {0x3f}}, @authinfo={0x18, 0x84, 0x6, {0x2}}, @authinfo={0x18, 0x84, 0x6, {0x40}}], 0x48, 0xc000}, {&(0x7f0000005040)=@in6={0xa, 0x4e20, 0x0, @ipv4={[], [0xff, 0xff], @remote={0xac, 0x14, 0x14, 0xbb}}, 0x2}, 0x1c, &(0x7f00000053c0)=[{&(0x7f0000005080)="6b13f5af7c62a5e8c7fba25b93b445334a9134ef1544dbeac8552d00993bf130bef2b59aad083553a16a7f825608bba5791eac0ac09f3a67b0cb3df5c63fa33dedb1d663944939a09b1279b32e9674996a8351cc9047f4f23aa5170cf3989f840ff968b2a4d299ce5df6973bd13265b74206690361f289dddece312222f0e0c857cbd45138017a49d1f0c3d79d584a9531962125864bf5923c4098eb90324d9942ea131bddc1bd25b882c0a93f4e21", 0xaf}, {&(0x7f0000005140)="440592a9a401bbbf7591aa28120b193c92c893bbbc8fa6c34d86676b8909042cbe8fcec9bf8482eae6a9a7d881d44e6009ceb160c513906cde35adc0f89313b5a01c8d231f97f643423c1427680d7297502555ff048c390ac660645325e9e3f01d1d713ee6f96fa7ea2952515afcaea8473da363cc2f0b43901b6b9b77e9b7fccaf491c1344c9c4396497f178664c6909b8e479fe957fbfd9c8f03b1dfaa834ee3459e3e7c305bdaf65b3c4615115f9ebf921a19674202268f9fffa2bf1ee3", 0xbf}, {&(0x7f0000005200)="f9e96ccf501ce0ae0403f04767a02ed62982a876ff6a4a2f792493872cc03b0bf9ca995a2d73a84b54406da588c4caba2eeb676c61a9a952e4bc6bf583e977cb14812ffa", 0x44}, {&(0x7f0000005280)="30a2c2088613c05761cde4d492dfbbcc7261b621ea288737cc31f19359f0b3f0d87e502e9e7f2d2fbc93011173ec1c0e8fcf14842c00a44b5a6656e753a3f9dcf85c246b9563182fb88f250bd275915e8cc64e6b5d6d8205baa4e04351486b56fdce06f0c29d633e105e75fe2eb3be0a5abbb774b2c46b2fd050fc64163eda30ed7890170715a46a13088b96a46f758cf5f86d20c4a4e9c11a59051d6c64628c9322ec0eab348e15974493c100e364f8567c51eef18b485bf0d2aea85ff4520b58538f393a93f0ddd68fdea6f2a122f18760305b0cabede1bfdbe0e922e2ddb0368725406436c419", 0xe8}, {&(0x7f0000005380)="6f8e14d3fbc98521fe83d7e13ff2481b87bf", 0x12}], 0x5, &(0x7f0000006ac0)=ANY=[@ANYBLOB="200000000000000084000000020000000300010009000000e6000000", @ANYRES32=r12, @ANYBLOB="186016a4000000000000008400000007000000e000000100000000200000000000000084000000020000000000008007000000b2030000ea", @ANYRES32=r13, @ANYBLOB="180000000000000084000000070000007f00000100000000300000000000000084000000010000000600440e0900000001010000de770000040000000500000000000000", @ANYRES32=r16], 0xa0, 0x8084}], 0x8, 0x81) timer_create(0x7, &(0x7f0000000000)={0x0, 0x3d, 0x4, @thr={&(0x7f0000000140)="2601939aa2b7e401f9dfe0ba85996e7b9f73e8ae516344fc237f2ea2bb05c95c0b837d2e00d146f95144df0a572dd3961fea82963df2e7af24f5a3d275afed0cef1788eeea24060f5135cea44fbde2f485a42595607adbf84444b0c724ae1eff084186679f6a9140b30e1785cb936d4c13323ee94be3e6c9e64fe733a1a656eecc5cf356e8ce02", &(0x7f0000001140)="bcd1be13555b57213abd42a530e5b1d0ee847e213f057fd11bb291fa3a554a50de9568969c1d5e85d393342e015361ee702290d3a0a2b82e9d7b7e85c1615dfa2053aedf0e4639919dbbbc3eab1db4903820deb3d7fe1100f88a68bf97a9ebb431876fdf295b7bd9c298c0fe15d4e93dc9a2a4e5558160c76bd0ca83fd6150bb8224f072d2d929bacdd5f848945eccb8add81212ff3725eb6ccac235aaac4d799ae61c7e5af70a298dc79500931a73282850cdb041f977eb6938ab49cabb2138d882c818c202027338e0f61540e6e9fcb19c6b65dccb2a41352e2b87346136c670110c78249a661c2da1cc889f6f16b14deed7b08e42f8b4076019ba2c9924c97cc4323acf0d15bb4db053479be086faf8a94e431df6e906ed9e28e3d19954e5e30006ffe6a9f06ea576d97474e2a77a2405d8b8d10423b9dbf924dcb5da6074d03a3c69e95fed50aec1760c4a09ea8fdc84e69ca4650bfb38aba70f49ecfc2ce49a5f90785ac1c776c57fcfd791000c39d41becb6904b3f61f3641a55128dd84557622acd092384ea253faa2e88631cf2a68e51598030cdd09fb1be7edc0bf16f3c73a79cd8abe411c7e3d0816b3c9d79a577dee66ca53e3f01a91d70e33d4f20d3566981e6009835315289b52f6e6583ab68fb2849290406d283adfa41e0c9dc6c2105d4586b9d29e4808fcb3084b5f413cd124180a5ea995ca19dcf98c15a91584604832461e2369e9d0ba1dcbd196c4e39e127dbfd2d433b9a774eaa31bcc89cf90b25117c8d2c83fea2bfcadd9896ab24b51ee5b232f40c154405b495b592a9d16b261d1855f7c44508c37ec1af5c03dce2bfd72b4a4405a9450fd8fea6619a973bf8fc8646b87b51d7f4fabceab062bb9e95f72cdc7a08c0ba2421e2dfa2a26ab80915161ed29522656db601fefad52b03cc8537c1ff68ab010b8c82836fa0859d979312cd898cdd5ddb336d43124def4ba6aed8a36f7a867a7a6d1f6d24e985a13a624668d60000bff25a2107f2c4b8abebe2ad6b68ffb44feb06ebf18a731e3bd55203f7daff1a180cc7fa8ea1ee7f213cf943d868ec192a3b19a91f9b109127094ba933b12f5c34b743c1e9ab5e0887fefb10cb1ae2e868c6c215969c3467fce4294e350d3951db5e38a7e3583302d5d75052b2bc580a3203f5904eaaa323484f8402dfd3c095b4b31c66e3a369595fad1ed120b6107e72a2e7483d748f3dabf0d59379fa974d452695d2f650afdeb431e10374e4e05e237149dfa0eab762a2488566d252537c349ccb9c06e57a5a3cbc2dcef118f771d740ce2bd138363f1462bad6e6837674f60af61c5f07563d2902a38e4b79309c2649d75f51dd71dd67a667754e69ef495e0c7a7a59423fd53b3285a2a75b3a1b55d27f32675e55ef86b40f669791a8a9e3d84e22dd9718c577bc051fd4978cbd99f417b869ca15961bf9e7de549f4cbc9b9678b623c413ef7894af8ae9355b4dcd18f593e2bd01c88a6dfe9345fd6d6b9d973528984105308f450d2d550890e74c1c3f01834f7a38d62d42ee7c963ce7d56288aa856177b564c8f46e9b3b745e654d7476f73bea6edd840f0008bf531c204e6001b58bae716487ee02d6b5940f9bf057529b9349ba04c5ad6e2ff7e3831eed4fe2764b0e6c8088fab75ade679882e932802eafb6e58059d583c6b55d003555017d87d41519ffec8e041aeb2dbc83cf099c7dfa9f91352688ea47c6cb07912106c10fb4990f735fd244ef5729a96d80ee5a1cfbadf7df5048a3743d7da0880bd37e2c3d8959bc0cebd166003da9b5705bd2927e1cb55c0bced3a86075e998cd625bcab7ba613ccad18b4ece26c73708b6e6da0c49b429dbda1760ea351a3f273afc86a775acb46c1b6afc45b1bc57a38226b20c5f4005e24905085423a9f31317cea372ce9b74d0701b5768af6723ee0ba74696f39ebfaf722820ca98a915a80f5e215644716cd894db1beaa7bbe2e364f69de9f3aa558ed6231010066f6ed4973aaacf951e9155185f2a87021586137e9d8c196e57bb058ada8b1b741c4c9e501524980816939f2bf539d734d0a31c9d3ef21712c009d47f07feb23872e219a2ffec2cd953c31629fdcf2825ee78da00a6acc7163c58f9c6a59643d35e46391cf43f9656e9b40c1f39bc6cae55e15636a5b7637c9ebb77e2d155dd7433b4ab8cbadae8bb45b7009a1a4dd8fd9c33702cb4393c952208a44020f53d1784d3b2830f281ae185e6af7d82739b058aecbf59a25bdb96fc60c4d3b2fba4ef9594a6c660bdcbd1d7fc0b011d9c9412bc9e0bcb8198b908ea945cafc5baa4254bfd9ca52f6c59856c326e395c5d7b1766c20b3cf11b221fcfdf6b6cdad889564453180bfc38a21a82ef63bc2b2ca1f7538cadd51a8a25076c4bd44394f6666fd7780fbe03ff03ced31fb0732516ff79d969c11547510f06e59ba3a034b48cf3541f031e52caa0887748f7d655bc93c1d4623a6b3d9335e7dd19718458f5b2ab43dbc8bc77f1bb3396c453b02083fedc564778ba4ba3f57cd743898fe6ef196de3aae2d4be7acc7d7c8a497bfdbc8299f802bd480ab5797af06c40eae1e018e08ebd39323c68d34c0882dbe82f771fe78505c10c9f0bd611c0d62e53f2bff13c8e96c03d86dfe53453084c9539b3384ea505ef7859ded9802ee3cbdfaa7e117eab8900669638531a45b566e8fd93e16b5d53b3827f3bb50daf470d869a469295578dfd08c29991cfd33cfad669208945ade8d63ebe0997e320643969c4804f4aeb66a37b788d59c07c3dbcef9bfda6cd93c684b60499f3a28e8292d893f0afa98f81791f379e968073be2f7ebc1f5c48d63883fabb3cbd4add051e1be666c3022fa8f975160c2954793231d1afe0f7c832575a6549906012ee9b4e2d3b3cf71b28f5978edee3ac0b10766f7fc8bd24ea10004821c6d58c8d865009517aaff5f47c11a4bd35378ecd3d06953dba0a06065969bde0de037e0fa40148807f734b7d2dbe21b54b3661bfc6cdf5680f5e6e461de5cc65f4ea5c83f0caea1dea16276c035091aa5341991f372f7de52c837badb21bb6b4a0d2cd7522e9f587de3bab663e0fd7c2ab991c3bf45ec490fa364c1c8217e79f639e2f8d2f970fadd10e101fda53af36fc89da6fdf2c66560559930ce8f632241431954455d9ec81aa3f22f1cb2f6bb3225e1f5fd5fcbcee350f08156c9bbd6a3b5abd6560de2b0a564575a19cee4380325e57403a41c14a48875d168edd7d14ff3b1495a04e76c6c71650ce4141165d654c5f33329f0f74443bb5d184ea0bdfe0ede992a7b316a33455b17809141f9bec675d03d57e265f0e0d70c957b67de1506a1e6ce7af8bee326cb549e2212535d1993715d3f7b269037e4fa2c5a6786d5941b238034f5cdc5729cb52f100b98bdfc167d80d3a46e8da6db0206ec0999b60cdbc898c77195ec644630a6aeb4ef31c731fd6f7fed224fefd23316b001c76cd81abdd1123b1b650ec73dab342546e7f49d283957c2d49600a5db524cacc0815d60a0952aa0b10d417d73e96e85dc85d674cdbf9bbc1ea158baa7f457eb2ebeed86ccea6e3835735c8a460a36aa38003cc2991a15ab4942be08b2389732d0289ca4177a573aa86ca97d1487c3258f6a258fb90d25c3d12c36ee3e395c5f81af758eeedb6c478a365f3e54552fe09427d766e5c51d631d2c2909e87b18c0edbd8a9b13b08f39a0dc5d110a071512b93ee79bf989f18803bcf2934e7a13c876ec532ab26b02125eea5fb9978985d345750054dc2af72cf25997b13dc533a2180606b4eee29168bc198d0622c32137eced2ee9afa9021b5d368cc4bbd7328cb2cf79b82c3d8407e52984a7b50ef8db668ac2f4171ab078cc115bf3390bf80a84959dccdc34d809a186088776006b575204aaef64138cf90379450c5895a4d9cfe9b2bdd6fc5ee42a026c1f1e98f1c415d850b14602d6b737d8e82e527778b09071e335a5928b10886a33bff657739aa298c643921a40cc9afdf5da4ba3faf576d28389c516abfdee851e65faf1201781b7916b8c4ea73b3adb26d0852e01068459d3bdbce3b7ce1881738313b76f40d41392feaeb7cca3ee29522e89f7def662ace020f5fe616df48511ff87529b79aedbb2465dec5c096692a5acc1e62a33c14453a98f476c515047b4bf41cf072d50de7be6f236d50769acf0899b9e2aff5ce39f15b81a91c0fe7401e162ddf995d9dc62eb056bb8ba982d1e8ec41f668fa0fa95f6844c107e3e3eae1122490790b870ac0b5dafd9469748510a9e6219f51d5ed063882b9522e567cf85a2f75a841b971ba02d56d9813419d49f25deaab920edf30e92684de22c469015c986acbf98950f1b7efd656fa699100f023304441bfff966d8bccaf1d9ec7b79c3aa29d77b4d57413950c2caaf473fc66a42dc4ed67f3e5e55fa76dcbe87657cdacbc83906c12c6cc7d29f0110d69a35bbbaea3f7970b7ba7905f2650087a676b65d1d5e50883ca93e2bc2428a2b635028e3b21d29146aa111ba23e64fb5d10a01f1c6ce6ba8bb497e9cba898d8941ad3a5a9ff4dadb799f97817085d3b6bdfa90b0b0e42e348f889fa9a2a57de117506b76a670823cf72556178e0794e7d6a60859e2bc04b15f72217b6902d7d5ffdbd655eb1fa6cf358aedef189550145e83ddbf99f6d24c48700c9a36e269723c7b5cd5841d53854f47dda15ebeaab8c1999e2eaa0133f3e20a2942d109f38849d921c18121552651db40570706e5bf20860f6d9a5648c6df5d8a65b5ce7b1ee8c41f6873f9b13e0b3e4d8844fccd0b565e6f5c16e227273084612ca1beb596b5b7e4537c68bafa06c20f52f3277b4486908d3f459cc84fb449d4b9c28d630661e21ab1429430e40201bfda19b0c798816e4158fb43d4ba8fe6efc8f56eb17686662803085b183f66683d365ad30b010c655499ab64087dca185764355ebf35d547e26fa713910e6575870107972a9fe0aeb306e0454c34735501b210e4aa4a94a89c328db3f0586adeb98ddcc94a9c8541aaed834bfe22a637c1c2e6723240adea1208bee6ea6161f09aae5b35666b539f59466b6df9b67054a3965be6dbb93795a904ae4afbd9ea665649c11f48a1996c12296239a1f131af8b199d9e5f46b9bef81962b7a5193a67792f889b363a948bcb69fc8f80ccde28852709791691aa7c2d0a0537d01a35c2ecbf1eddf555bc7f3e911314fdba0575cf64b2a9c08b4398d39173618cc1b69d069fab9c79ee70359c4488cde198354b6282a4c8f8076eeba11d97d1b30308d5d16695a3e626e36121e04c1f2c44ac2e4adc377ba9a536c8204ed924e4b038431e49d935e655bc9b950fce07abcdb7a391494391c29de0098265240959a6e5951f3598609a7b4496aa52f0e96caba1d96b74076a429c39cfac3ad26e1767c24db94248ca28f03b3e9ad2ecdd2b69f9f1aa4d43d9268dcbcf05ffc6ed9af0ebc66c21adf0ceb26f4fef8bb0b30c5b4c1be1cf5c98f5487d7fc20d491908e78c2f9ea3beedb2adca977e820034f3fd9936f1b001e20d62b5e1515f874014d014bbc9d3e5b421d82b38aac70b493bb2246f05bdc912563f2eee40bfb2684b5f9545dcd67ba858e11152f66de7cc386c1f4102bc6e26ab52a28fae003e39fbecc672c3a77f61c44e65ce47b80fcef8f3977a0283154b4a9bded7c49e48f7092306bb813df3a2b02035c3f765dba174a90a0cfcd0d74c4c5847c74ce7a3feebaddf678dbafa1b2a53fc21628da8f8b3e99dc55e049459d720d17c99a2be1918c313d"}}, &(0x7f0000000040)=0x0) timer_getoverrun(r17) readv(r4, &(0x7f0000000540)=[{&(0x7f0000000080)=""/81, 0x51}, {&(0x7f0000000100)=""/57, 0x39}, {&(0x7f0000000480)=""/141, 0x8d}], 0x3) 2033/05/18 03:37:23 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 358.284062] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 358.291313] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 358.319483] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:37:23 executing program 6: r0 = socket(0x2, 0x3, 0x40000000000000ff) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='bridge0\x00', 0x10) sendto$unix(r0, &(0x7f00000004c0)="ee087d8955854a71cb4fef74e9601927e79436d5e4218a286737134367585e5b67add9b477e765b4346960e8e1ec9d607cb9874491299c50", 0x38, 0x0, &(0x7f0000000540)=@file={0x0, './file0/file0\x00'}, 0x6e) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f0000000080)={0x0, @in6={{0xa, 0x4e22, 0x6, @empty, 0x10000000000}}, [0x0, 0x81, 0xffffffffffffffff, 0x1, 0x1ff, 0x1, 0xb07, 0x8, 0x7fff, 0x8, 0x7b0, 0x76, 0x1000, 0x4, 0x8]}, &(0x7f0000000000)=0x100) setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000180)={r1, 0x100000000}, 0x8) setsockopt$SO_VM_SOCKETS_BUFFER_MAX_SIZE(r0, 0x28, 0x2, &(0x7f00000001c0)=0x9, 0x8) 2033/05/18 03:37:23 executing program 4: mkdir(&(0x7f00000000c0)='./file0\x00', 0x0) mount(&(0x7f0000000100)='./file0/file0\x00', &(0x7f0000000380)='./file0\x00', &(0x7f0000000180)='hugetlbfs\x00', 0x0, 0x0) mkdir(&(0x7f0000000000)='./file0/file0\x00', 0x0) syz_fuseblk_mount(&(0x7f0000000140)='./file0/file0\x00', &(0x7f00000001c0)='./file0/file0/file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:23 executing program 0 (fault-call:0 fault-nth:73): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:23 executing program 5: syz_mount_image$iso9660(&(0x7f0000000040)='iso9660\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000001200), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="faa4128c9ab84d14d96d6f64653d32002c00"]) 2033/05/18 03:37:23 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti0\x00\x00\x00h\x00'}) [ 358.427161] raw_sendmsg: syz-executor6 forgot to set AF_INET. Fix it! 2033/05/18 03:37:23 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 358.515146] l2tp_ppp: sess 4/0: set debug=cf10464f [ 358.523358] FAULT_INJECTION: forcing a failure. [ 358.523358] name failslab, interval 1, probability 0, space 0, times 0 [ 358.534639] CPU: 0 PID: 25192 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 358.541922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 358.551274] Call Trace: [ 358.553878] dump_stack+0x1b9/0x294 [ 358.557521] ? dump_stack_print_info.cold.2+0x52/0x52 [ 358.562727] ? mutex_trylock+0x2a0/0x2a0 [ 358.566799] should_fail.cold.4+0xa/0x1a [ 358.570875] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 358.575993] ? graph_lock+0x170/0x170 [ 358.579803] ? lock_downgrade+0x8e0/0x8e0 [ 358.583959] ? kasan_check_write+0x14/0x20 [ 358.588205] ? __mutex_unlock_slowpath+0x180/0x8a0 [ 358.593156] ? find_held_lock+0x36/0x1c0 [ 358.597226] ? __lock_is_held+0xb5/0x140 [ 358.601310] ? check_same_owner+0x320/0x320 [ 358.605658] ? rcu_note_context_switch+0x710/0x710 [ 358.610599] __should_failslab+0x124/0x180 [ 358.614845] should_failslab+0x9/0x14 [ 358.618659] kmem_cache_alloc_trace+0x2cb/0x780 [ 358.623343] ? device_create_file+0x1e0/0x1e0 [ 358.627850] kobject_uevent_env+0x20f/0xea0 [ 358.632182] ? device_pm_add+0x221/0x340 [ 358.636272] kobject_uevent+0x1f/0x30 [ 358.640082] device_add+0xb01/0x16d0 [ 358.643117] l2tp_ppp: sess 4/0: get flags=0 [ 358.643799] ? device_private_init+0x230/0x230 [ 358.652669] ? kfree+0x1e9/0x260 [ 358.656032] ? kfree_const+0x5e/0x70 [ 358.659749] device_create_groups_vargs+0x1ff/0x270 [ 358.664769] device_create_vargs+0x46/0x60 [ 358.669010] bdi_register_va.part.10+0xbb/0x970 [ 358.673685] ? cgwb_kill+0x630/0x630 [ 358.677407] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 358.682939] ? bdi_init+0x416/0x510 [ 358.686556] ? wb_init+0x9e0/0x9e0 [ 358.690084] ? bdi_alloc_node+0x67/0xe0 [ 358.694043] ? bdi_alloc_node+0x67/0xe0 [ 358.698004] ? rcu_read_lock_sched_held+0x108/0x120 [ 358.703015] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 358.708291] bdi_register_va+0x68/0x80 [ 358.712164] super_setup_bdi_name+0x123/0x220 [ 358.716646] ? kill_block_super+0x100/0x100 [ 358.720955] ? kmem_cache_alloc_trace+0x616/0x780 [ 358.725797] fuse_fill_super+0xe6e/0x1e20 [ 358.729933] ? fuse_get_root_inode+0x190/0x190 [ 358.734502] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 358.740031] ? vsnprintf+0x242/0x1b40 [ 358.743828] ? pointer+0xa20/0xa20 [ 358.747358] ? vsprintf+0x40/0x40 [ 358.750798] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 358.755800] ? set_blocksize+0x2c4/0x350 [ 358.759846] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 358.765377] mount_bdev+0x30c/0x3e0 [ 358.768987] ? fuse_get_root_inode+0x190/0x190 [ 358.773558] fuse_mount_blk+0x34/0x40 [ 358.777342] mount_fs+0xae/0x328 [ 358.780695] vfs_kern_mount.part.34+0xd4/0x4d0 [ 358.785260] ? may_umount+0xb0/0xb0 [ 358.788871] ? _raw_read_unlock+0x22/0x30 [ 358.793000] ? __get_fs_type+0x97/0xc0 [ 358.796876] do_mount+0x564/0x3070 [ 358.800405] ? copy_mount_string+0x40/0x40 [ 358.804625] ? rcu_pm_notify+0xc0/0xc0 [ 358.808499] ? copy_mount_options+0x5f/0x380 [ 358.812888] ? rcu_read_lock_sched_held+0x108/0x120 [ 358.817887] ? kmem_cache_alloc_trace+0x616/0x780 [ 358.822718] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 358.828240] ? _copy_from_user+0xdf/0x150 [ 358.832375] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 358.837894] ? copy_mount_options+0x285/0x380 [ 358.842375] ksys_mount+0x12d/0x140 [ 358.845990] __x64_sys_mount+0xbe/0x150 [ 358.849950] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 358.854953] do_syscall_64+0x1b1/0x800 [ 358.858823] ? finish_task_switch+0x1ca/0x810 [ 358.863304] ? syscall_return_slowpath+0x5c0/0x5c0 [ 358.868219] ? syscall_return_slowpath+0x30f/0x5c0 [ 358.873134] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 358.878484] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 358.883312] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 358.888484] RIP: 0033:0x455979 [ 358.891659] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 358.899350] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 358.906603] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 2033/05/18 03:37:24 executing program 6: recvmsg(0xffffffffffffffff, &(0x7f0000346fc8)={&(0x7f0000baefec)=@ll, 0x14, &(0x7f0000ca3000)=[{&(0x7f00000b4000)=""/15, 0xf}, {&(0x7f0000f6afa9)=""/87, 0x57}, {&(0x7f00008e3f35)=""/203, 0xcb}, {&(0x7f0000cd5ffe)=""/2, 0x2}], 0x4, &(0x7f0000a01f13)=""/237, 0xed}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000ba000)={0x7, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000fe8d00000000d051f04a3f630100001000000000000000000000009500000000000000236456cb86f747b56672788be4c8559c3b"], &(0x7f0000f59000)='GPL\x00', 0x200003ff, 0xfb, &(0x7f00005d4000)=""/251}, 0x48) 2033/05/18 03:37:24 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:24 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000023000)={&(0x7f00000000c0)={0x10}, 0xc, &(0x7f0000000000)={&(0x7f0000000140)={0x14, 0x2e, 0xaff, 0x0, 0x0, {0x2}, [@generic]}, 0x14}, 0x1}, 0x0) socket$inet_udp(0x2, 0x2, 0x0) 2033/05/18 03:37:24 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000000c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni\x00'}, 0x58) r1 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/dev/qat_adf_ctl\x00', 0x18000, 0x0) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(0xffffffffffffff9c, 0x84, 0x70, &(0x7f0000000140)={0x0, @in6={{0xa, 0x4e21, 0x1, @local={0xfe, 0x80, [], 0xaa}, 0x7}}, [0x72f, 0x1eb4, 0x1, 0x3, 0x7fff, 0x34685b6d, 0x6, 0x0, 0x84c4, 0x5, 0x2, 0x4, 0x1f, 0xfff, 0x1f]}, &(0x7f0000000080)=0x100) openat$rtc(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/rtc0\x00', 0x10000, 0x0) getsockopt$inet_sctp_SCTP_MAXSEG(r1, 0x84, 0xd, &(0x7f0000000240)=@assoc_id=r2, &(0x7f0000000280)=0x4) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00001ec000)="0a0775b0d5e383e5b3b60ced5c54dbb7", 0x10) r3 = accept$alg(r0, 0x0, 0x0) getsockopt$IP_VS_SO_GET_VERSION(r1, 0x0, 0x480, &(0x7f0000000300), &(0x7f0000000340)=0x40) recvmsg(r3, &(0x7f000022efc8)={&(0x7f0000bb5ff0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000400)=[{&(0x7f0000fb0ff4)=""/12, 0xc}], 0x1, &(0x7f0000000380)=""/70, 0x46, 0x4000000}, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) 2033/05/18 03:37:24 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) mlockall(0x1) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:37:24 executing program 0 (fault-call:0 fault-nth:74): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:24 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti0\x00\x00\x00L\x00'}) 2033/05/18 03:37:24 executing program 3: r0 = request_key(&(0x7f0000000040)='ceph\x00', &(0x7f0000000080)={0x73, 0x79, 0x7a, 0x0}, &(0x7f00000001c0)='GPL\'\x00', 0xfffffffffffffffd) keyctl$invalidate(0x15, r0) r1 = add_key(&(0x7f0000002000)='big_key\x00', &(0x7f0000000000)={0x73, 0x79, 0x7a}, &(0x7f0000000140)="c4babd4854e1e897195b6a6d2cc6c85182517decb2763fb6039b8a9dab3796aa4c87fed7eb953c0ee3f610ef15f6a52912b4d60d79d3f6ebf80cc17f9490e5a14d3475885b23a1579bab021b970a1201a97f", 0x52, 0xfffffffffffffffc) keyctl$read(0xb, r1, &(0x7f00000000c0)=""/81, 0xffffffffffffff6a) r2 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000200)='/dev/uinput\x00', 0x103000, 0x0) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(0xffffffffffffff9c, 0x84, 0x9, &(0x7f00000002c0)={0x0, @in6={{0xa, 0x4e20, 0x100000000, @ipv4={[], [0xff, 0xff], @remote={0xac, 0x14, 0x14, 0xbb}}, 0x7fffffff}}, 0xda82, 0x6, 0x3e, 0x3f}, &(0x7f0000000380)=0x98) getsockopt$inet_sctp_SCTP_PR_ASSOC_STATUS(r2, 0x84, 0x73, &(0x7f00000003c0)={r3, 0x3, 0x30, 0x3, 0x1}, &(0x7f0000000400)=0x18) [ 358.913867] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 358.921120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 358.928393] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 358.993780] l2tp_ppp: sess 4/0: set debug=cf10464f 2033/05/18 03:37:24 executing program 5: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10}, 0x207, &(0x7f0000000200)={&(0x7f0000000380)={0x14, 0x10000000000027, 0x331, 0x0, 0x0, {0x8}}, 0x14}, 0x1}, 0x0) syz_open_dev$sndmidi(&(0x7f0000000040)='/dev/snd/midiC#D#\x00', 0x0, 0x20000) [ 359.038954] FAULT_INJECTION: forcing a failure. [ 359.038954] name failslab, interval 1, probability 0, space 0, times 0 [ 359.049762] l2tp_ppp: sess 4/0: get flags=0 [ 359.050282] CPU: 1 PID: 25234 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 359.061797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 359.071140] Call Trace: [ 359.073723] dump_stack+0x1b9/0x294 [ 359.077365] ? dump_stack_print_info.cold.2+0x52/0x52 [ 359.082542] ? lock_downgrade+0x8e0/0x8e0 [ 359.086681] should_fail.cold.4+0xa/0x1a [ 359.090733] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 359.095824] ? graph_lock+0x170/0x170 [ 359.099609] ? kernel_text_address+0x79/0xf0 [ 359.104004] ? __unwind_start+0x166/0x330 [ 359.108145] ? __kernel_text_address+0xd/0x40 [ 359.112626] ? find_held_lock+0x36/0x1c0 [ 359.116720] ? __lock_is_held+0xb5/0x140 [ 359.120776] ? check_same_owner+0x320/0x320 [ 359.125086] ? device_create_groups_vargs+0x1ff/0x270 [ 359.130276] ? device_create_vargs+0x46/0x60 [ 359.134670] ? bdi_register_va.part.10+0xbb/0x970 [ 359.139498] ? rcu_note_context_switch+0x710/0x710 [ 359.144426] ? mount_bdev+0x30c/0x3e0 [ 359.148210] ? fuse_mount_blk+0x34/0x40 [ 359.152170] ? mount_fs+0xae/0x328 [ 359.155698] __should_failslab+0x124/0x180 [ 359.159922] should_failslab+0x9/0x14 [ 359.163708] kmem_cache_alloc+0x2af/0x760 [ 359.167850] skb_clone+0x1ed/0x4f0 [ 359.171378] ? refcount_add_not_zero+0x2d0/0x320 [ 359.176121] ? skb_split+0x11d0/0x11d0 [ 359.179993] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 359.184997] ? netlink_trim+0x1b2/0x370 [ 359.188960] ? netlink_skb_destructor+0x210/0x210 [ 359.193788] ? cleanup_uevent_env+0x40/0x40 [ 359.198105] netlink_broadcast_filtered+0x1024/0x1580 [ 359.203282] ? __netlink_sendskb+0xd0/0xd0 [ 359.207507] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 359.213034] ? refcount_inc_not_zero+0x1dd/0x2d0 [ 359.217776] ? refcount_add_not_zero+0x320/0x320 [ 359.222518] ? cleanup_uevent_env+0x40/0x40 [ 359.226824] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 359.231826] kobject_uevent_env+0x6e4/0xea0 [ 359.236133] ? device_pm_add+0x221/0x340 [ 359.240185] kobject_uevent+0x1f/0x30 [ 359.243968] device_add+0xb01/0x16d0 [ 359.247668] ? device_private_init+0x230/0x230 [ 359.252235] ? kfree+0x1e9/0x260 [ 359.255587] ? kfree_const+0x5e/0x70 [ 359.259287] device_create_groups_vargs+0x1ff/0x270 [ 359.264289] device_create_vargs+0x46/0x60 [ 359.268509] bdi_register_va.part.10+0xbb/0x970 [ 359.273161] ? cgwb_kill+0x630/0x630 [ 359.276860] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 359.282379] ? bdi_init+0x416/0x510 [ 359.285989] ? wb_init+0x9e0/0x9e0 [ 359.289515] ? bdi_alloc_node+0x67/0xe0 [ 359.293469] ? bdi_alloc_node+0x67/0xe0 [ 359.297428] ? rcu_read_lock_sched_held+0x108/0x120 [ 359.302427] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 359.307689] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 359.313213] ? refcount_sub_and_test+0x212/0x330 [ 359.317953] bdi_register_va+0x68/0x80 [ 359.321827] super_setup_bdi_name+0x123/0x220 [ 359.326314] ? kill_block_super+0x100/0x100 [ 359.330632] ? kmem_cache_alloc_trace+0x616/0x780 [ 359.335467] fuse_fill_super+0xe6e/0x1e20 [ 359.339603] ? fuse_get_root_inode+0x190/0x190 [ 359.344174] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 359.349694] ? vsnprintf+0x242/0x1b40 [ 359.353482] ? pointer+0xa20/0xa20 [ 359.357019] ? vsprintf+0x40/0x40 [ 359.360462] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 359.365463] ? set_blocksize+0x2c4/0x350 [ 359.369510] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 359.375036] mount_bdev+0x30c/0x3e0 [ 359.378646] ? fuse_get_root_inode+0x190/0x190 [ 359.383213] fuse_mount_blk+0x34/0x40 [ 359.386998] mount_fs+0xae/0x328 [ 359.390358] vfs_kern_mount.part.34+0xd4/0x4d0 [ 359.394924] ? may_umount+0xb0/0xb0 [ 359.398537] ? _raw_read_unlock+0x22/0x30 [ 359.402667] ? __get_fs_type+0x97/0xc0 [ 359.406540] do_mount+0x564/0x3070 [ 359.410073] ? copy_mount_string+0x40/0x40 [ 359.414292] ? rcu_pm_notify+0xc0/0xc0 [ 359.418171] ? copy_mount_options+0x5f/0x380 [ 359.422573] ? rcu_read_lock_sched_held+0x108/0x120 [ 359.427574] ? kmem_cache_alloc_trace+0x616/0x780 [ 359.432406] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 359.437928] ? _copy_from_user+0xdf/0x150 [ 359.442063] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 359.447588] ? copy_mount_options+0x285/0x380 [ 359.452073] ksys_mount+0x12d/0x140 [ 359.455687] __x64_sys_mount+0xbe/0x150 [ 359.459647] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 359.464652] do_syscall_64+0x1b1/0x800 [ 359.468522] ? finish_task_switch+0x1ca/0x810 [ 359.473003] ? syscall_return_slowpath+0x5c0/0x5c0 [ 359.477926] ? syscall_return_slowpath+0x30f/0x5c0 [ 359.482842] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 359.488192] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 359.493028] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 359.498202] RIP: 0033:0x455979 [ 359.501385] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 359.509080] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 359.516334] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 359.523585] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 359.530839] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 2033/05/18 03:37:24 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 359.538091] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:37:24 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$int_in(r0, 0x0, &(0x7f0000000000)=0x1) r1 = syz_open_procfs(0x0, &(0x7f0000000040)="2f65786500000000000035abe1e80d903e0d717ac1889a45e581c9e14a5c8f95f5d2968ae8c767e9d18fd69a") ioctl$fiemap(r1, 0x40106614, &(0x7f0000000240)=ANY=[@ANYBLOB="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"]) ppoll(&(0x7f0000000080)=[{r1, 0x1}, {r0, 0x400}, {r1, 0x8}], 0x3, &(0x7f00000000c0)={0x0, 0x1c9c380}, &(0x7f0000000100)={0x400}, 0x8) 2033/05/18 03:37:24 executing program 6: r0 = socket$inet6(0xa, 0x6, 0x0) ioctl$int_in(r0, 0x5452, &(0x7f0000000000)=0x101) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x280, 0x0) ioctl$EVIOCSABS3F(r1, 0x401845ff, &(0x7f0000000080)={0x7ff, 0x4, 0x8, 0x0, 0x3ffc0000000}) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bind$inet6(r0, &(0x7f0000000380)={0xa, 0x4e20}, 0x1c) r2 = socket$inet_dccp(0x2, 0x6, 0x0) listen(r0, 0x4000000006) connect$inet(r2, &(0x7f0000e5c000)={0x2, 0x4e1e, @remote={0xac, 0x14, 0x14, 0xbb}}, 0x10) dup3(r2, r0, 0x0) 2033/05/18 03:37:24 executing program 4: r0 = socket$inet_dccp(0x2, 0x6, 0x0) getsockname$packet(0xffffffffffffff9c, &(0x7f0000000000)={0x0, 0x0, 0x0}, &(0x7f0000000080)=0x14) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bpq0\x00', r1}) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x20000, 0x0) signalfd4(r0, &(0x7f0000000180)={0x1ca5d616}, 0x8, 0x80000) ioctl$SNDRV_TIMER_IOCTL_GINFO(r2, 0xc0f85403, &(0x7f0000000200)={{0x2, 0xae1634903decb4d0, 0x8000, 0x3, 0x81}, 0x8, 0x80000001, 'id0\x00', 'timer1\x00', 0x0, 0x3f, 0x4, 0x40, 0x8}) ioctl$KVM_CHECK_EXTENSION_VM(r2, 0xae03, 0x6) ioctl$int_in(r0, 0x5473, &(0x7f00000001c0)=0xffffffffffffffff) ioctl$SG_SCSI_RESET(r2, 0x2284, 0x0) r3 = syz_genetlink_get_family_id$team(&(0x7f0000000400)='team\x00') sendmsg$TEAM_CMD_OPTIONS_SET(r2, &(0x7f0000000540)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000500)={&(0x7f0000000440)={0x90, r3, 0x302, 0x70bd26, 0x25dfdbfd, {0x1}, [{{0x8, 0x1, r1}, {0x74, 0x2, [{0x38, 0x1, @activeport={{0x24, 0x1, 'activeport\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, r1}}}, {0x38, 0x1, @mcast_rejoin_interval={{0x24, 0x1, 'mcast_rejoin_interval\x00'}, {0x8, 0x3, 0x3}, {0x8, 0x4, 0x4}}}]}}]}, 0x90}, 0x1, 0x0, 0x0, 0x4000}, 0x10) r4 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$sock_int(r4, 0x1, 0x7, &(0x7f0000000040), &(0x7f0000000340)=0x4) setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r2, 0x84, 0xc, &(0x7f0000000300)=0x800, 0x4) setsockopt$IP6T_SO_SET_ADD_COUNTERS(r2, 0x29, 0x41, &(0x7f0000000640)=ANY=[], 0x0) 2033/05/18 03:37:24 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:24 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={"6970365f767469300400"}) [ 359.684413] l2tp_ppp: sess 4/0: set debug=cf10464f [ 359.714550] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:37:25 executing program 3: r0 = socket$can_bcm(0x1d, 0x2, 0x2) r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000040)={0x100000001}, 0x8, 0x800) r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r3 = accept4$unix(0xffffffffffffff9c, &(0x7f0000000080), &(0x7f0000000100)=0x6e, 0x0) ppoll(&(0x7f0000000140)=[{r0, 0x80}, {r1, 0x80}, {r2, 0x101}, {r3, 0x8000}, {0xffffffffffffffff, 0x200}], 0x5, &(0x7f0000000180)={0x0, 0x1c9c380}, &(0x7f00000001c0)={0x4}, 0x8) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r4, &(0x7f0000018000)={&(0x7f000001a000)={0x10}, 0xc, &(0x7f000000e000)={&(0x7f0000d35ff9)=ANY=[@ANYBLOB="1cfeff001d00ffff00008000000000000100000008000300da000000"], 0x1c}, 0x1}, 0x0) 2033/05/18 03:37:25 executing program 5: r0 = perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) tee(r0, r0, 0x1, 0xb) ustat(0x2, &(0x7f0000000040)) 2033/05/18 03:37:25 executing program 4: capset(&(0x7f0000866ffc)={0x19980330}, &(0x7f00001dd000)) r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000140)='/dev/rfkill\x00', 0x0, 0x0) ioctl$KDDELIO(r0, 0x4b35, 0x6) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000)='/dev/autofs\x00', 0x1e080, 0x0) ioctl$PPPIOCSMRU(r1, 0x40047452, &(0x7f0000000040)=0x401) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) pwrite64(r2, &(0x7f0000000080)="cd92f2d57610816bccde5dc309ba53091fedd055ef083f7ef18d611470f61945489bf3fc57a1bdcc8a25cdbb48cab4a8a2a152b2640ab59de57d1cbaae3e2b89779fc42268eabe5f5dfc2b403f6f948fcfc007b1d651e7b833daa18fcfe2e131cd95e713e03a41a47393b21e89716b8138527a3d8d07f680de8f4372bb6566a25c338d1c92c94567014e7af49c79b2ce2073491ef87f3b31ab42f06e4fd9", 0x9e, 0x0) 2033/05/18 03:37:25 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:25 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti0\x00 \x00'}) 2033/05/18 03:37:25 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000000000000000000deffffff000000000000000000000000000000000007000000e2ad00000000000000000000"]) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:37:25 executing program 0 (fault-call:0 fault-nth:75): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:25 executing program 6: r0 = syz_open_dev$binder(&(0x7f000000cff3)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) mmap$binder(&(0x7f000000c000/0x2000)=nil, 0x2000, 0x0, 0x12, r0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000002c0)={0xbb, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="00634040000000000000000000000000000000000000000000000000000000000000000040000000000000000800000000000000e4083972d0f555ab75cfe0b40d8490ff88a44ae7fdb413c5994b763332c0422ce20cc1b1e654327d231d765a7bdbb20b36c775b09f96c72c8656c6db70b955fee75270a85849df5de22d3b5373b4daff817b871851a01a848cea2c7c08b7509494639e3e5b5e253bcce544dc2d1784eda01abd1e8dbf712e7b6a0612f7ee1618e6d8e4b213a494"], 0x6, 0x0, &(0x7f0000000280)="0e41e97e0000"}) r1 = syz_open_dev$loop(&(0x7f0000308000)='/dev/loop#\x00', 0x200000000, 0x42442) ioctl$LOOP_SET_STATUS(r1, 0xc0481273, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "3900ea631d00000000020000010000009f00000023f7b7d65f90b0e6330ee739b319d8f6aa6bd58d1443474482e85040fb4947ebb55bd19f335b5bffff0001f3", "cfa430745a540dc1c149b7b81579f6a41c51f7d51933223e82ab867dac761faf"}) r2 = socket(0x0, 0x0, 0x0) write(r2, &(0x7f00000001c0), 0x0) setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r2, 0x84, 0x21, &(0x7f00000004c0)=0x203, 0xfffffffffffffe8f) getsockopt$netrom_NETROM_T4(0xffffffffffffffff, 0x103, 0x6, &(0x7f0000000300)=0x8, &(0x7f0000000340)=0x4) getpid() r3 = syz_open_dev$loop(&(0x7f0000000640)='/dev/loop#\x00', 0xfffffffffffffc01, 0x86) r4 = memfd_create(&(0x7f0000614000)="74086e750000000000000000008c00", 0x0) pwritev(r4, &(0x7f0000f50f90)=[{&(0x7f0000000040)="aa", 0x1}], 0x1, 0x81006) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r6, &(0x7f0000000500)={0xa, 0x4e22, 0x0, @mcast2={0xff, 0x2, [], 0x1}}, 0x1c) setsockopt$inet6_tcp_int(r5, 0x6, 0x2, &(0x7f00004fe000)=0x101, 0x4) recvmmsg(r5, &(0x7f00000096c0)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000100)=""/245, 0xf5}, {&(0x7f0000000280)=""/59, 0x3b}], 0x2, &(0x7f0000000300)=""/175, 0xaf, 0x2}, 0x6}, {{&(0x7f00000003c0)=@ethernet, 0x80, &(0x7f00000017c0)=[{&(0x7f0000000440)=""/67, 0x43}, {&(0x7f00000014c0)=""/12, 0xc}, {&(0x7f0000001500)=""/71, 0x47}, {&(0x7f0000001580)=""/125, 0x7d}, {&(0x7f0000001600)}, {&(0x7f00000016c0)=""/148, 0x94}], 0x6, &(0x7f0000001880)=""/4096, 0x1000, 0x100000001}}, {{0x0, 0x0, &(0x7f0000002d80)=[{&(0x7f0000002a00)=""/236, 0xec}, {&(0x7f0000002b80)=""/69, 0x45}, {&(0x7f0000002d00)=""/98, 0x62}], 0x3, &(0x7f0000002e40)=""/93, 0x5d}}, {{&(0x7f0000002ec0)=@nl=@unspec, 0x80, &(0x7f0000004040), 0x0, &(0x7f0000004080)=""/8, 0x8}}, {{&(0x7f00000040c0)=@generic, 0x80, &(0x7f00000041c0), 0x0, &(0x7f0000004200)=""/232, 0xe8, 0x97f}, 0x80}, {{&(0x7f0000004300)=@ethernet={0x0, @remote}, 0x80, &(0x7f0000006780)=[{&(0x7f0000004440)=""/155, 0x9b}, {&(0x7f0000004600)=""/4096, 0x1000}, {&(0x7f0000006680)=""/240, 0xf0}], 0x3, &(0x7f0000006800)=""/212, 0xd4, 0xffffffff}}, {{&(0x7f0000006900)=@in6={0x0, 0x0, 0x0, @loopback}, 0x80, &(0x7f0000007d00)=[{&(0x7f0000006a00)=""/228, 0xe4}, {&(0x7f0000006b00)=""/4096, 0x1000}], 0x2, &(0x7f0000007d80)=""/4096, 0x1000}, 0xb53}], 0x7, 0x0, 0x0) listen(r6, 0x0) sendto$inet6(r5, &(0x7f00000000c0)='\f\t@b', 0x4, 0x20000004, &(0x7f000031e000)={0xa, 0x4e22, 0x0, @loopback={0x0, 0x1}, 0x100000}, 0x1c) shutdown(r6, 0x0) ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c00, r4) getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f00000007c0)={0x0, 0x0, 0x0}, &(0x7f0000000540)=0xc) fchown(r4, 0x0, r7) r8 = syz_open_dev$binder(&(0x7f0000000100)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r8, 0x40046207, 0x0) ioctl$BINDER_WRITE_READ(r8, 0xc0306201, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000800)=ANY=[], 0x0, 0x0, &(0x7f0000011f9d)}) sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000080), 0x102000004) signalfd(r3, &(0x7f0000000240)={0x9}, 0x8) [ 359.986401] l2tp_ppp: sess 4/0: set debug=cf10464f [ 359.994611] binder: 25274:25277 got transaction to context manager from process owning it [ 360.003145] binder: 25274:25277 transaction failed 29201/-22, size 64-8 line 2847 [ 360.009049] l2tp_ppp: sess 4/0: get flags=0 [ 360.024639] FAULT_INJECTION: forcing a failure. [ 360.024639] name failslab, interval 1, probability 0, space 0, times 0 [ 360.035943] CPU: 1 PID: 25283 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 360.043218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 360.052573] Call Trace: [ 360.055172] dump_stack+0x1b9/0x294 [ 360.058810] ? dump_stack_print_info.cold.2+0x52/0x52 [ 360.064008] ? kobject_uevent_env+0x62e/0xea0 [ 360.068529] should_fail.cold.4+0xa/0x1a [ 360.072596] ? debug_check_no_locks_freed+0x310/0x310 [ 360.077802] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 360.082912] ? __might_sleep+0x95/0x190 [ 360.086877] ? graph_lock+0x170/0x170 [ 360.090666] ? __mutex_lock+0x7d9/0x17f0 [ 360.094714] ? unwind_get_return_address+0x61/0xa0 [ 360.099650] ? find_held_lock+0x36/0x1c0 [ 360.103705] ? __lock_is_held+0xb5/0x140 [ 360.107768] ? check_same_owner+0x320/0x320 [ 360.112084] ? rcu_note_context_switch+0x710/0x710 [ 360.117000] ? put_dec+0xf0/0xf0 [ 360.120361] ? format_decode+0x1a9/0xae0 [ 360.124412] __should_failslab+0x124/0x180 [ 360.128639] should_failslab+0x9/0x14 [ 360.132427] kmem_cache_alloc_node+0x272/0x780 [ 360.137013] __alloc_skb+0x111/0x780 [ 360.140726] ? skb_scrub_packet+0x580/0x580 [ 360.145043] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 360.150233] ? netlink_has_listeners+0x2ff/0x4c0 [ 360.154979] ? netlink_tap_init_net+0x3c0/0x3c0 [ 360.159648] kobject_uevent_env+0x801/0xea0 [ 360.163957] ? device_pm_add+0x221/0x340 [ 360.168022] kobject_uevent+0x1f/0x30 [ 360.171815] device_add+0xb01/0x16d0 [ 360.175523] ? device_private_init+0x230/0x230 [ 360.180095] ? kfree+0x1e9/0x260 [ 360.183452] ? kfree_const+0x5e/0x70 [ 360.187160] device_create_groups_vargs+0x1ff/0x270 [ 360.192166] device_create_vargs+0x46/0x60 [ 360.196398] bdi_register_va.part.10+0xbb/0x970 [ 360.201056] ? cgwb_kill+0x630/0x630 [ 360.204761] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 360.210342] ? bdi_init+0x416/0x510 [ 360.213955] ? wb_init+0x9e0/0x9e0 [ 360.217483] ? bdi_alloc_node+0x67/0xe0 [ 360.221443] ? bdi_alloc_node+0x67/0xe0 [ 360.225405] ? rcu_read_lock_sched_held+0x108/0x120 [ 360.230409] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 360.235679] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 360.241204] ? refcount_sub_and_test+0x212/0x330 [ 360.245951] bdi_register_va+0x68/0x80 [ 360.249828] super_setup_bdi_name+0x123/0x220 [ 360.254336] ? kill_block_super+0x100/0x100 [ 360.258657] ? kmem_cache_alloc_trace+0x616/0x780 [ 360.263498] fuse_fill_super+0xe6e/0x1e20 [ 360.267640] ? fuse_get_root_inode+0x190/0x190 [ 360.272216] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 360.277741] ? vsnprintf+0x242/0x1b40 [ 360.281539] ? pointer+0xa20/0xa20 [ 360.285077] ? vsprintf+0x40/0x40 [ 360.288522] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 360.293525] ? set_blocksize+0x2c4/0x350 [ 360.297578] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 360.303107] mount_bdev+0x30c/0x3e0 [ 360.306720] ? fuse_get_root_inode+0x190/0x190 [ 360.311292] fuse_mount_blk+0x34/0x40 [ 360.315082] mount_fs+0xae/0x328 [ 360.318441] vfs_kern_mount.part.34+0xd4/0x4d0 [ 360.323020] ? may_umount+0xb0/0xb0 [ 360.326641] ? _raw_read_unlock+0x22/0x30 [ 360.330775] ? __get_fs_type+0x97/0xc0 [ 360.334659] do_mount+0x564/0x3070 [ 360.338194] ? copy_mount_string+0x40/0x40 [ 360.342417] ? rcu_pm_notify+0xc0/0xc0 [ 360.346298] ? copy_mount_options+0x5f/0x380 [ 360.350695] ? rcu_read_lock_sched_held+0x108/0x120 [ 360.355698] ? kmem_cache_alloc_trace+0x616/0x780 [ 360.360530] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 360.366057] ? _copy_from_user+0xdf/0x150 [ 360.370206] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 360.375729] ? copy_mount_options+0x285/0x380 [ 360.380214] ksys_mount+0x12d/0x140 [ 360.383831] __x64_sys_mount+0xbe/0x150 [ 360.387790] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 360.392796] do_syscall_64+0x1b1/0x800 [ 360.396671] ? finish_task_switch+0x1ca/0x810 [ 360.401155] ? syscall_return_slowpath+0x5c0/0x5c0 [ 360.406074] ? syscall_return_slowpath+0x30f/0x5c0 [ 360.410999] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 360.416360] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 360.421195] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 360.426372] RIP: 0033:0x455979 [ 360.429546] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 2033/05/18 03:37:25 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:25 executing program 5: r0 = creat(&(0x7f0000000200)='./file1\x00', 0x2) ioctl$DRM_IOCTL_RES_CTX(r0, 0x6611, &(0x7f0000000080)={0x0, &(0x7f0000000140)}) ioctl$TCSBRKP(r0, 0x5425, 0x3ff) ioctl$GIO_CMAP(r0, 0x4b70, &(0x7f0000000000)) 2033/05/18 03:37:25 executing program 4: uselib(&(0x7f0000000040)='./file1\x00') mkdir(&(0x7f0000000600)='./file0\x00', 0x0) mount(&(0x7f0000000000)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='sysfs\x00', 0x0, &(0x7f0000000400)) mount(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)='./file0/bus\x00', &(0x7f0000000380)='openpromfs\x00', 0x30b0040, &(0x7f00000003c0)="d2bc7880971b621a71038146eb3a27c28a506751f374a43368fa84cfd6515baf5b21") socketpair(0x2, 0x5, 0x8, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$EVIOCGBITSND(r0, 0x80404532, &(0x7f0000000640)=""/167) sysfs$2(0x2, 0x0, &(0x7f0000000240)=""/133) ioctl$sock_bt_bnep_BNEPGETCONNLIST(r1, 0x800442d2, &(0x7f0000000200)={0x2, &(0x7f00000001c0)=[{0x0, 0x0, 0x0, @link_local}, {}]}) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pivot_root(&(0x7f0000000080)='./file0/bus\x00', &(0x7f0000000180)='./file0\x00') [ 360.437247] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 360.444502] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 360.451756] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 360.459015] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 360.466275] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:37:25 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti0z\x00'}) 2033/05/18 03:37:25 executing program 3: r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000)='/dev/hwrng\x00', 0x2005, 0x0) connect$vsock_stream(r0, &(0x7f0000000040)={0x28, 0x0, 0x2710, @hyper}, 0x10) r1 = socket(0x14, 0x5, 0x0) write(r1, &(0x7f00005eef60)="220000001e0007ffe901000f09000700000900ebfeffa7001a00ffff050008800100", 0x22) 2033/05/18 03:37:25 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000001540)={0x26, 'aead\x00', 0x0, 0x0, 'rfc7539(ctr-aes-aesni,tgr128)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="0a0775b005e381e5b3b60ced5c54dbb7295df0df8217ad4000000000000000e6", 0x20) prctl$setname(0xf, &(0x7f0000000180)='\x00') r1 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r1, &(0x7f0000001500)={0x0, 0x0, &(0x7f0000001600), 0x0, &(0x7f0000001680)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0) write$binfmt_script(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="2321202e2f66696c65300aab723c437768dc62839bb2bd890d5d5a0dee8f26580b8d72d63cabbfa83edd9f8f1f29e67a1eb4aa39bc7f73dfcc53c9ec6c625d1077e83786fc4c955a311ab9618d1aca5d63e6b8fd18839ac078b8cdd993fbe34cc6a9e8d41b4b8f55df0e6228e593bd88d46961fdcbbbac7832e58bdb3931bcedbdf00e7123fcea95a1"], 0xb) r2 = syz_open_dev$sndmidi(&(0x7f0000000000)='/dev/snd/midiC#D#\x00', 0x7f, 0x101400) ioctl$BLKSECTGET(r2, 0x1267, &(0x7f0000000040)) recvmsg(r1, &(0x7f0000001440)={&(0x7f0000000280)=@sco, 0x80, &(0x7f00000013c0)=[{&(0x7f00000003c0)=""/4096, 0x1000}], 0x1, &(0x7f0000001400)=""/6, 0x6}, 0x0) 2033/05/18 03:37:25 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:25 executing program 0 (fault-call:0 fault-nth:76): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) [ 360.567776] l2tp_ppp: sess 4/0: set debug=cf10464f [ 360.569689] binder: BINDER_SET_CONTEXT_MGR already set [ 360.588361] l2tp_ppp: sess 4/0: get flags=0 [ 360.598641] binder: 25274:25277 ioctl 40046207 0 returned -16 [ 360.630966] binder: BINDER_SET_CONTEXT_MGR already set 2033/05/18 03:37:25 executing program 3: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000) r0 = syz_open_procfs(0x0, &(0x7f0000000140)="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") setsockopt$inet_sctp_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f0000000100)=ANY=[@ANYRES32], 0x1) ioctl$DRM_IOCTL_RES_CTX(r0, 0xc0c0583b, &(0x7f0000000080)={0x0, &(0x7f0000000040)}) 2033/05/18 03:37:25 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r4 = dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_ARM_SET_DEVICE_ADDR(r3, 0x4010aeab, &(0x7f0000000140)={0x2a07, 0x10000}) connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e23, @broadcast=0xffffffff}, 0x10) [ 360.658736] binder: 25274:25277 ioctl 40046207 0 returned -16 [ 360.706633] binder_alloc: 25274: binder_alloc_buf, no vma [ 360.712374] binder: 25274:25277 transaction failed 29189/-3, size 64-8 line 2971 [ 360.751672] binder: BINDER_SET_CONTEXT_MGR already set [ 360.757388] binder: 25274:25311 ioctl 40046207 0 returned -16 [ 360.791713] FAULT_INJECTION: forcing a failure. [ 360.791713] name failslab, interval 1, probability 0, space 0, times 0 [ 360.803103] CPU: 1 PID: 25326 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 360.810381] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 360.819736] Call Trace: [ 360.822339] dump_stack+0x1b9/0x294 [ 360.825156] binder: undelivered TRANSACTION_ERROR: 29189 [ 360.825984] ? dump_stack_print_info.cold.2+0x52/0x52 [ 360.826002] ? is_bpf_text_address+0xd7/0x170 [ 360.826029] should_fail.cold.4+0xa/0x1a [ 360.826047] ? __save_stack_trace+0x7e/0xd0 [ 360.826074] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 360.826095] ? graph_lock+0x170/0x170 [ 360.834179] binder: undelivered TRANSACTION_ERROR: 29201 [ 360.836721] ? save_stack+0x43/0xd0 [ 360.836739] ? kasan_kmalloc+0xc4/0xe0 [ 360.836755] ? kasan_slab_alloc+0x12/0x20 [ 360.836775] ? find_held_lock+0x36/0x1c0 [ 360.836799] ? __lock_is_held+0xb5/0x140 [ 360.883635] ? check_same_owner+0x320/0x320 [ 360.887959] ? rcu_note_context_switch+0x710/0x710 [ 360.892882] __should_failslab+0x124/0x180 [ 360.897106] should_failslab+0x9/0x14 [ 360.900897] kmem_cache_alloc_node_trace+0x26f/0x770 [ 360.906009] __kmalloc_node_track_caller+0x33/0x70 [ 360.910940] __kmalloc_reserve.isra.38+0x3a/0xe0 [ 360.915687] __alloc_skb+0x14d/0x780 [ 360.919394] ? skb_scrub_packet+0x580/0x580 [ 360.923705] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 360.928892] ? netlink_has_listeners+0x2ff/0x4c0 [ 360.933635] ? netlink_tap_init_net+0x3c0/0x3c0 [ 360.938310] kobject_uevent_env+0x801/0xea0 [ 360.942618] ? device_pm_add+0x221/0x340 [ 360.946674] kobject_uevent+0x1f/0x30 [ 360.950462] device_add+0xb01/0x16d0 [ 360.954172] ? device_private_init+0x230/0x230 [ 360.958740] ? kfree+0x1e9/0x260 [ 360.962099] ? kfree_const+0x5e/0x70 [ 360.965806] device_create_groups_vargs+0x1ff/0x270 [ 360.970816] device_create_vargs+0x46/0x60 [ 360.975047] bdi_register_va.part.10+0xbb/0x970 [ 360.979705] ? cgwb_kill+0x630/0x630 [ 360.983411] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 360.988939] ? bdi_init+0x416/0x510 [ 360.992554] ? wb_init+0x9e0/0x9e0 [ 360.996093] ? bdi_alloc_node+0x67/0xe0 [ 361.000055] ? bdi_alloc_node+0x67/0xe0 [ 361.004022] ? rcu_read_lock_sched_held+0x108/0x120 [ 361.009040] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 361.014309] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 361.019836] ? refcount_sub_and_test+0x212/0x330 [ 361.024583] bdi_register_va+0x68/0x80 [ 361.028460] super_setup_bdi_name+0x123/0x220 [ 361.032948] ? kill_block_super+0x100/0x100 [ 361.037258] ? kmem_cache_alloc_trace+0x616/0x780 [ 361.042107] fuse_fill_super+0xe6e/0x1e20 [ 361.046260] ? fuse_get_root_inode+0x190/0x190 [ 361.050843] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 361.056381] ? vsnprintf+0x242/0x1b40 [ 361.060177] ? pointer+0xa20/0xa20 [ 361.063719] ? vsprintf+0x40/0x40 [ 361.067161] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 361.072166] ? set_blocksize+0x2c4/0x350 [ 361.076218] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 361.081744] mount_bdev+0x30c/0x3e0 [ 361.085359] ? fuse_get_root_inode+0x190/0x190 [ 361.089932] fuse_mount_blk+0x34/0x40 [ 361.093721] mount_fs+0xae/0x328 [ 361.097079] vfs_kern_mount.part.34+0xd4/0x4d0 [ 361.101650] ? may_umount+0xb0/0xb0 [ 361.105266] ? _raw_read_unlock+0x22/0x30 [ 361.109399] ? __get_fs_type+0x97/0xc0 [ 361.113281] do_mount+0x564/0x3070 [ 361.116815] ? copy_mount_string+0x40/0x40 [ 361.121040] ? rcu_pm_notify+0xc0/0xc0 [ 361.124928] ? copy_mount_options+0x5f/0x380 [ 361.129323] ? rcu_read_lock_sched_held+0x108/0x120 [ 361.134328] ? kmem_cache_alloc_trace+0x616/0x780 [ 361.139163] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 361.144688] ? _copy_from_user+0xdf/0x150 [ 361.148826] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 361.154349] ? copy_mount_options+0x285/0x380 [ 361.158835] ksys_mount+0x12d/0x140 [ 361.162452] __x64_sys_mount+0xbe/0x150 [ 361.166415] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 361.171426] do_syscall_64+0x1b1/0x800 [ 361.175302] ? syscall_slow_exit_work+0x4f0/0x4f0 [ 361.180133] ? syscall_return_slowpath+0x5c0/0x5c0 [ 361.185053] ? syscall_return_slowpath+0x30f/0x5c0 [ 361.189974] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 361.195331] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 361.200164] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 361.205339] RIP: 0033:0x455979 [ 361.208514] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 361.216213] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 361.223468] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 361.230724] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 361.237979] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 361.245234] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:37:26 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti0\x00\x00\x00\x00\x00\x00\x00h'}) 2033/05/18 03:37:26 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:26 executing program 5: r0 = socket(0x8000000000011, 0x100000802, 0x0) r1 = syz_open_dev$tun(&(0x7f0000000140)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'ifb0\x00', 0xe86824d2c1c833cb}) setsockopt$inet6_dccp_int(r0, 0x21, 0x6, &(0x7f0000000100)=0xe8, 0x4) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000040)={'ifb0\x00', 0xa201}) getsockopt$bt_BT_FLUSHABLE(0xffffffffffffffff, 0x112, 0x8, &(0x7f0000000000)=0x5, &(0x7f0000000080)=0x4) dup2(r0, r1) 2033/05/18 03:37:26 executing program 6: r0 = syz_open_dev$binder(&(0x7f000000cff3)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) mmap$binder(&(0x7f000000c000/0x2000)=nil, 0x2000, 0x0, 0x12, r0, 0x0) r1 = syz_open_dev$binder(&(0x7f0000000040)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000000c0)={0x4, 0x0, &(0x7f0000000080)=[@release={0x40046306}], 0x2c, 0x0, &(0x7f0000000000)="226da9078b1792aa138fe16e93a66d1a4a16036e5ff54069fbefd434e98037e0dfdf7540c91aefc2fd195b0b"}) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000002c0)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040), &(0x7f00000000c0)}}}], 0x0, 0x0, &(0x7f00000001c0)}) 2033/05/18 03:37:26 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = fcntl$dupfd(r0, 0x0, r0) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r1, 0x84, 0x70, &(0x7f0000000380)={0x0, @in6={{0xa, 0x4e20, 0xd9, @loopback={0x0, 0x1}, 0x8}}, [0x2, 0x7fff, 0x0, 0x8, 0x1f, 0x6, 0x4, 0x9, 0x7f, 0x0, 0x9, 0x8000, 0x5, 0x7f, 0x2]}, &(0x7f00000000c0)=0x100) getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r1, 0x84, 0x66, &(0x7f0000000280)={r2, 0x2}, &(0x7f0000000480)=0x8) sendto(r1, &(0x7f0000000140)="b9306c525424cc6dc27e04dfa38cbc215589f7a004e1193def444d8a8425d572", 0x20, 0x4, &(0x7f0000000180)=@pptp={0x18, 0x2, {0x1, @remote={0xac, 0x14, 0x14, 0xbb}}}, 0x80) fcntl$getownex(r0, 0x10, &(0x7f0000000000)={0x0, 0x0}) fcntl$setownex(r1, 0xf, &(0x7f0000000100)={0x2, r3}) getsockopt$inet_sctp_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f0000000200)=ANY=[@ANYRES32=0x0, @ANYBLOB="b80005007b0000ad8e2567aa6ef283c4009a228342d7873468a5b47ce265a82acffb23e429310a219c6c86074ac77dc70ffb4d0cb606c7f301b6c3ab9b06152ec7273f0649d6"], &(0x7f0000000040)=0x12) getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f0000000300)={0x0, 0x1}, &(0x7f0000000340)=0xc) setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r1, 0x84, 0x72, &(0x7f00000002c0)={r4, 0x1000000000000000, 0x30}, 0xc) ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r1, 0xc4c85512, &(0x7f00000004c0)={{0xfffffffffffffffc, 0x4, 0x4, 0xfffffffffffffffa, "7282ad3c508f8c8d9b128defb3476d1fca9c49b3da0702449f698f08d9382aff01cdb56542e0e5b4527f5fe9", 0x3}, 0x0, [0x8001, 0x7, 0x80, 0x4000000000, 0x7, 0x47be, 0x0, 0x0, 0x70, 0x5, 0x8, 0x2d3fc789, 0xffff, 0x6a84bc7c, 0xfffffffffffffffb, 0x20, 0x9, 0x3f, 0x0, 0x7, 0x1, 0x1ba, 0x3, 0x7, 0x7ff, 0x80000000, 0x3, 0x100000000, 0x81, 0x7fffffff, 0xd9, 0x80000001, 0x1ff, 0x2, 0x7, 0x401, 0x7, 0x3, 0x2, 0xbc, 0x9, 0x7, 0x1, 0x6, 0x3, 0xfffffffffffffff8, 0x9, 0xfff, 0x7, 0x81, 0x1, 0x100000000, 0xfffffffffffffe30, 0x7fffffff, 0x8, 0x2, 0x8, 0x3f, 0xfffffffffffffffd, 0x6, 0x5, 0xfff, 0x1000, 0x2, 0x0, 0x9, 0x4, 0x7fffffff, 0x6, 0x2, 0x0, 0x3f, 0xfffffffffffffffd, 0x5, 0x0, 0x1, 0x200, 0x313b832d, 0x7f, 0x77, 0x4, 0x2, 0x1, 0x9, 0x9, 0x7, 0x5, 0x3, 0xfffffffffffff800, 0xc90e, 0x4, 0x5f, 0x81, 0x8, 0xfffffffffffffff9, 0x2, 0x6, 0x1ff, 0x0, 0x8a, 0x80, 0x5, 0x80000000, 0x9, 0x2, 0x400, 0x24, 0x200000000000, 0x2000000000000, 0x7, 0xca, 0x3, 0xff, 0x2, 0x6, 0x1, 0x85, 0x200, 0xfffffffffffffff9, 0x100, 0x2, 0x40, 0x19375fdc, 0x5, 0x100000001, 0x7, 0xafe, 0x33c], {0x0, 0x1c9c380}}) ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000080)) 2033/05/18 03:37:26 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:37:26 executing program 0 (fault-call:0 fault-nth:77): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:26 executing program 3: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040)='/dev/uinput\x00', 0x4000, 0x0) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f00000001c0)={{{@in=@rand_addr, @in=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@mcast1}, 0x0, @in6=@remote}}, &(0x7f00000005c0)=0xfffffd4e) setsockopt$inet6_IPV6_IPSEC_POLICY(r0, 0x29, 0x22, &(0x7f0000000740)={{{@in6=@ipv4={[], [0xff, 0xff], @remote={0xac, 0x14, 0x14, 0xbb}}, @in=@multicast1=0xe0000001, 0x4e22, 0x800000, 0x4e21, 0x0, 0xa, 0xa0, 0x80, 0x29, r1}, {0x80000001, 0x8, 0x10000, 0x239a472e, 0x8, 0x4, 0xc8aff1a, 0xfffffffffffffffe}, {0x81, 0x80, 0x8, 0x8001}, 0x4, 0x6e6bb2, 0x3, 0x1, 0x1, 0x2}, {{@in6=@mcast1={0xff, 0x1, [], 0x1}, 0x4d4, 0x32}, 0x2, @in6=@local={0xfe, 0x80, [], 0xaa}, 0x0, 0x3, 0x3, 0xc3, 0x81, 0x7ff, 0xb5f2}}, 0xe8) accept4$netrom(r0, &(0x7f0000000440), &(0x7f0000000480)=0x10, 0x0) time(&(0x7f0000000000)) r2 = socket$nl_route(0x10, 0x3, 0x0) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r0, 0x84, 0x22, &(0x7f00000000c0)={0x1, 0x0, 0x10000, 0x800, 0x0}, &(0x7f00000002c0)=0x10) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000300)=ANY=[@ANYRES32=r3, @ANYBLOB="d0000000b068dc0d2228200000000000000001dfc7d6b270c21f0a9cfd1a6973436933ed52cfc8d5a55bd64430bc58853af5d78ceb62f964ec730e981069b7db0eab2e0d19646702378e05d983c406967d020ced543cf1fb0a77e4628ab5a8d4149f976ebe8d2a961b4f6202d5cfb00bcd535b92148f9a2a36c59361c9fedd65ce23c65ad748b0f37e9cdfb42b7c189098cb34b58a9a127f9d13109c9573023f2642d3d72fcf591031b6f35915e1fbb5f66ee8976c2e83b3e8751b17811c74a365c8166a935852dc4bb3"], &(0x7f0000000400)=0xd8) sendmsg$nl_route(r2, &(0x7f0000000180)={&(0x7f0000000080)={0x10}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)=@getlink={0x28, 0x12, 0x31, 0x0, 0x0, {}, [@IFLA_NET_NS_PID={0x8, 0x13}]}, 0x28}, 0x1}, 0x0) 2033/05/18 03:37:26 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:26 executing program 3: r0 = syz_open_dev$amidi(&(0x7f0000000040)='/dev/amidi#\x00', 0x3, 0x800) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) read(r0, &(0x7f0000000400)=""/194, 0x95) [ 361.330446] l2tp_ppp: sess 4/0: set debug=cf10464f [ 361.333270] binder: 25341:25346 Release 1 refcount change on invalid ref 0 ret -22 [ 361.347651] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:37:26 executing program 4: r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/conntrack\x00', 0x2, 0x0) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000001100)={0x0, 0x0, &(0x7f0000000040)=""/11, &(0x7f0000000080)=""/92, &(0x7f0000000100)=""/4096, 0x2000}) io_setup(0xfffffffffffffff9, &(0x7f0000001180)=0x0) io_destroy(r1) ftruncate(r0, 0x0) ioctl$DRM_IOCTL_GET_MAP(r0, 0xc0286404, &(0x7f0000001140)={&(0x7f0000ffc000/0x2000)=nil, 0x227, 0x1, 0x20, &(0x7f0000ffd000/0x2000)=nil, 0x8}) [ 361.390687] binder: BINDER_SET_CONTEXT_MGR already set [ 361.413671] binder: 25341:25346 ioctl 40046207 0 returned -16 2033/05/18 03:37:26 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:26 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={"6970365f7674693000000000fffffdfd"}) 2033/05/18 03:37:26 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x80000, 0x0) ioctl$KVM_GET_MP_STATE(r2, 0x8004ae98, &(0x7f0000000140)) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) syz_kvm_setup_cpu$x86(r2, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@textreal={0x8, &(0x7f0000000180)="baf80c66b83d3bcb8766efbafc0cb000ee3e0fc71f66b91f0001c00f320f090f56fbbaf80c66b89b7ed48e66efbafc0cec0fb24400ba2000ecbaf80c66b806b0fa8866efbafc0cb8e584ef66b8040000000f23c00f21f86635020006000f23f8", 0x60}], 0x1, 0x43, &(0x7f0000000240), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) dup3(r4, r3, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r4, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 361.442166] binder: 25341:25362 Release 1 refcount change on invalid ref 0 ret -22 [ 361.528748] l2tp_ppp: sess 4/0: set debug=cf10464f [ 361.548267] binder: release 25341:25346 transaction 56 out, still active [ 361.552490] l2tp_ppp: sess 4/0: get flags=0 [ 361.555225] binder: undelivered TRANSACTION_COMPLETE [ 361.578875] binder: send failed reply for transaction 56, target dead [ 361.665480] FAULT_INJECTION: forcing a failure. [ 361.665480] name failslab, interval 1, probability 0, space 0, times 0 [ 361.677152] CPU: 0 PID: 25360 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 361.684419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 361.693764] Call Trace: [ 361.696357] dump_stack+0x1b9/0x294 [ 361.699991] ? dump_stack_print_info.cold.2+0x52/0x52 [ 361.705179] ? is_bpf_text_address+0xd7/0x170 [ 361.709678] ? kernel_text_address+0x79/0xf0 [ 361.714085] ? __unwind_start+0x166/0x330 [ 361.718236] should_fail.cold.4+0xa/0x1a [ 361.722300] ? __save_stack_trace+0x7e/0xd0 [ 361.726623] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 361.731730] ? graph_lock+0x170/0x170 [ 361.735533] ? save_stack+0x43/0xd0 [ 361.739161] ? kasan_kmalloc+0xc4/0xe0 [ 361.743048] ? kasan_slab_alloc+0x12/0x20 [ 361.747195] ? find_held_lock+0x36/0x1c0 [ 361.751262] ? __lock_is_held+0xb5/0x140 [ 361.755333] ? check_same_owner+0x320/0x320 [ 361.759660] ? rcu_note_context_switch+0x710/0x710 [ 361.764591] __should_failslab+0x124/0x180 [ 361.768827] should_failslab+0x9/0x14 [ 361.772628] kmem_cache_alloc_node_trace+0x26f/0x770 [ 361.777739] __kmalloc_node_track_caller+0x33/0x70 [ 361.782674] __kmalloc_reserve.isra.38+0x3a/0xe0 [ 361.787432] __alloc_skb+0x14d/0x780 [ 361.791148] ? skb_scrub_packet+0x580/0x580 [ 361.795473] ? rcu_bh_force_quiescent_state+0x20/0x20 [ 361.800671] ? netlink_has_listeners+0x2ff/0x4c0 [ 361.805427] ? netlink_tap_init_net+0x3c0/0x3c0 [ 361.810103] kobject_uevent_env+0x801/0xea0 [ 361.814427] ? device_pm_add+0x221/0x340 [ 361.818496] kobject_uevent+0x1f/0x30 [ 361.822294] device_add+0xb01/0x16d0 [ 361.826015] ? device_private_init+0x230/0x230 [ 361.830595] ? kfree+0x1e9/0x260 [ 361.833966] ? kfree_const+0x5e/0x70 [ 361.837682] device_create_groups_vargs+0x1ff/0x270 [ 361.842700] device_create_vargs+0x46/0x60 [ 361.846937] bdi_register_va.part.10+0xbb/0x970 [ 361.851604] ? cgwb_kill+0x630/0x630 [ 361.855320] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 361.860854] ? bdi_init+0x416/0x510 [ 361.864478] ? wb_init+0x9e0/0x9e0 [ 361.868022] ? bdi_alloc_node+0x67/0xe0 [ 361.871994] ? bdi_alloc_node+0x67/0xe0 [ 361.875966] ? rcu_read_lock_sched_held+0x108/0x120 [ 361.880981] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 361.886260] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 361.891796] ? refcount_sub_and_test+0x212/0x330 [ 361.896551] bdi_register_va+0x68/0x80 [ 361.900442] super_setup_bdi_name+0x123/0x220 [ 361.904933] ? kill_block_super+0x100/0x100 [ 361.909256] ? kmem_cache_alloc_trace+0x616/0x780 [ 361.914106] fuse_fill_super+0xe6e/0x1e20 [ 361.918257] ? fuse_get_root_inode+0x190/0x190 [ 361.922841] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 361.928382] ? vsnprintf+0x242/0x1b40 [ 361.932191] ? pointer+0xa20/0xa20 [ 361.935744] ? vsprintf+0x40/0x40 [ 361.939200] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 361.944214] ? set_blocksize+0x2c4/0x350 [ 361.948277] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 361.953814] mount_bdev+0x30c/0x3e0 [ 361.957439] ? fuse_get_root_inode+0x190/0x190 [ 361.962020] fuse_mount_blk+0x34/0x40 [ 361.965823] mount_fs+0xae/0x328 [ 361.969190] vfs_kern_mount.part.34+0xd4/0x4d0 [ 361.973774] ? may_umount+0xb0/0xb0 [ 361.977400] ? _raw_read_unlock+0x22/0x30 [ 361.981543] ? __get_fs_type+0x97/0xc0 [ 361.985434] do_mount+0x564/0x3070 [ 361.988980] ? copy_mount_string+0x40/0x40 [ 361.993212] ? rcu_pm_notify+0xc0/0xc0 [ 361.997102] ? copy_mount_options+0x5f/0x380 [ 362.001507] ? rcu_read_lock_sched_held+0x108/0x120 [ 362.006521] ? kmem_cache_alloc_trace+0x616/0x780 [ 362.011367] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 362.016904] ? _copy_from_user+0xdf/0x150 [ 362.021054] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 362.026587] ? copy_mount_options+0x285/0x380 [ 362.031082] ksys_mount+0x12d/0x140 [ 362.034708] __x64_sys_mount+0xbe/0x150 [ 362.038679] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 362.043695] do_syscall_64+0x1b1/0x800 [ 362.047583] ? syscall_return_slowpath+0x5c0/0x5c0 [ 362.052512] ? syscall_return_slowpath+0x30f/0x5c0 [ 362.057442] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 362.062811] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 362.067657] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 362.072839] RIP: 0033:0x455979 [ 362.076021] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 362.083728] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 362.090995] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 362.098261] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 362.105524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 362.112790] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:37:27 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000044ff8)={0xffffffffffffffff, 0xffffffffffffffff}) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) connect$unix(r0, &(0x7f00000bc000)=@abs, 0x8) sendmmsg$unix(r1, &(0x7f00000bd000), 0x49249249249269e, 0x0) socketpair$inet_udp(0x2, 0x2, 0x0, &(0x7f0000000100)) connect$unix(r0, &(0x7f00003de000)=@file={0x1, './file0\x00'}, 0xa) connect$unix(r0, &(0x7f0000681000)=@abs, 0x8) mmap(&(0x7f0000000000/0xfff000)=nil, 0xfff000, 0x0, 0x10, 0xffffffffffffffff, 0x0) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000040)={&(0x7f0000000000)='./file0\x00'}, 0x10) 2033/05/18 03:37:27 executing program 0 (fault-call:0 fault-nth:78): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:27 executing program 4: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mkdir(&(0x7f0000000100)='./file0/file0/file0\x00', 0x0) r0 = creat(&(0x7f000037ffea)='./file0/control/file0\x00', 0x0) syz_mount_image$reiserfs(&(0x7f0000000180)='reiserfs\x00', &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x0, &(0x7f00000002c0), 0x4, &(0x7f00000001c0)=ANY=[@ANYRES16=r0]) ioctl$KVM_SET_LAPIC(r0, 0x4400ae8f, &(0x7f0000000200)={"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"}) rename(&(0x7f0000347fea)='./file0/control/file0\x00', &(0x7f00007d7fec)='./file0/file0/file0\x00') fcntl$getown(r0, 0x9) ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f00000000c0)) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000000600)=0x0) r2 = getpgid(r1) ptrace$setregs(0xf, r2, 0x3, &(0x7f0000000080)="63ca8486caf716d41f7695980970497bb7") ioctl$DRM_IOCTL_ADD_CTX(r0, 0xc0086420, &(0x7f0000000640)={0x0}) ioctl$DRM_IOCTL_GET_CTX(r0, 0xc0086423, &(0x7f0000000680)={r3, 0x3}) ioctl$sock_inet_tcp_SIOCINQ(r0, 0x541b, &(0x7f0000000040)) 2033/05/18 03:37:27 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:27 executing program 6: r0 = syz_open_dev$binder(&(0x7f0000000180)='/dev/binder#\x00', 0xffffffffffffffff, 0xfffffffffffffffc) ioctl$BINDER_SET_CONTEXT_MGR(r0, 0x40046207, 0x0) ioctl$DMA_BUF_IOCTL_SYNC(r0, 0x40086200, &(0x7f0000000040)=0x6) r1 = mmap$binder(&(0x7f000000d000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0) socketpair$inet6_icmp(0xa, 0x2, 0x3a, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$inet6_IPV6_ADDRFORM(r2, 0x29, 0x1, &(0x7f00000000c0)=0x2, 0x4) r3 = syz_open_dev$binder(&(0x7f0000e0f000)='/dev/binder#\x00', 0xffffffffffffffff, 0x0) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f000075afd0)={0x4c, 0x0, &(0x7f000092b000)=[@transaction_sg={0x40486311, {{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bd1fb8), &(0x7f0000a81fe8)}}}], 0x0, 0x0, &(0x7f000005af7e)}) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000480)={0xc, 0x0, &(0x7f0000000380)=[@free_buffer={0x40086303, r1}], 0x0, 0x0, &(0x7f00000003c0)}) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000280)={0xc, 0x0, &(0x7f0000000100)=[@free_buffer={0x40086303, r1}], 0x0, 0x0, &(0x7f0000000180)}) 2033/05/18 03:37:27 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={"6970365f767469300000000100"}) 2033/05/18 03:37:27 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_GET_CPUID2(r1, 0xc008ae91, &(0x7f0000000000)={0x1, 0x0, [{}]}) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) dup3(r4, r3, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r4, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) r5 = getgid() ioctl$TUNSETGROUP(r0, 0x400454ce, r5) 2033/05/18 03:37:27 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f00000000c0)={0x1, 0x0, [{0x2ff, 0x0, 0x9}]}) [ 362.272261] l2tp_ppp: sess 4/0: set debug=cf10464f [ 362.295511] l2tp_ppp: sess 4/0: get flags=0 [ 362.298696] FAULT_INJECTION: forcing a failure. [ 362.298696] name failslab, interval 1, probability 0, space 0, times 0 [ 362.311590] CPU: 0 PID: 25395 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 362.318861] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 362.328201] Call Trace: [ 362.330778] dump_stack+0x1b9/0x294 [ 362.334393] ? dump_stack_print_info.cold.2+0x52/0x52 [ 362.339567] ? finish_task_switch+0x1ca/0x810 [ 362.344046] ? finish_task_switch+0x182/0x810 [ 362.348528] should_fail.cold.4+0xa/0x1a [ 362.352575] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 362.357679] ? __schedule+0x809/0x1e30 [ 362.361555] ? __sched_text_start+0x8/0x8 [ 362.365686] ? find_held_lock+0x36/0x1c0 [ 362.369736] ? __lock_is_held+0xb5/0x140 [ 362.373790] ? check_same_owner+0x320/0x320 [ 362.378105] __should_failslab+0x124/0x180 [ 362.382328] should_failslab+0x9/0x14 [ 362.386115] kmem_cache_alloc+0x2af/0x760 [ 362.390248] ? find_held_lock+0x36/0x1c0 [ 362.394298] __d_alloc+0xc0/0xd30 [ 362.397742] ? shrink_dcache_for_umount+0x290/0x290 [ 362.402744] ? __lock_acquire+0x7f5/0x5140 [ 362.406963] ? rcu_is_watching+0x85/0x140 [ 362.411101] ? debug_check_no_locks_freed+0x310/0x310 [ 362.416295] ? graph_lock+0x170/0x170 [ 362.420091] ? find_held_lock+0x36/0x1c0 [ 362.424141] d_alloc+0x8e/0x370 [ 362.427415] ? print_usage_bug+0xc0/0xc0 [ 362.431459] ? __d_alloc+0xd30/0xd30 [ 362.435162] d_alloc_parallel+0x152/0x1e80 [ 362.439393] ? kobject_uevent+0x1f/0x30 [ 362.443525] ? graph_lock+0x170/0x170 [ 362.447314] ? __lock_acquire+0x7f5/0x5140 [ 362.451537] ? __d_lookup_rcu+0xa80/0xa80 [ 362.455667] ? print_usage_bug+0xc0/0xc0 [ 362.459710] ? find_held_lock+0x36/0x1c0 [ 362.463760] ? lock_downgrade+0x8e0/0x8e0 [ 362.467894] ? mark_held_locks+0xc9/0x160 [ 362.472034] ? __raw_spin_lock_init+0x1c/0x100 [ 362.476609] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 362.481607] ? __lockdep_init_map+0x105/0x590 [ 362.486086] ? __lockdep_init_map+0x105/0x590 [ 362.490565] ? lockdep_init_map+0x9/0x10 [ 362.494608] ? __init_waitqueue_head+0x96/0x140 [ 362.499262] ? init_wait_entry+0x1b0/0x1b0 [ 362.503486] ? d_alloc_parallel+0x1e80/0x1e80 [ 362.507967] ? lock_release+0xa10/0xa10 [ 362.511924] ? graph_lock+0x170/0x170 [ 362.515710] __lookup_slow+0x1e6/0x540 [ 362.519583] ? vfs_unlink+0x510/0x510 [ 362.523373] ? d_lookup+0x219/0x330 [ 362.526993] lookup_one_len+0x1c7/0x210 [ 362.530956] ? lookup_one_len_unlocked+0xf0/0xf0 [ 362.535699] ? down_write+0x87/0x120 [ 362.539399] ? start_creating+0xb1/0x200 [ 362.543444] ? down_read+0x1b0/0x1b0 [ 362.547141] ? mntput+0x74/0xa0 [ 362.550405] ? simple_pin_fs+0xa4/0x190 [ 362.554366] start_creating+0xc6/0x200 [ 362.558239] debugfs_create_dir+0x23/0x3c0 [ 362.562459] bdi_register_va.part.10+0x318/0x970 [ 362.567198] ? cgwb_kill+0x630/0x630 [ 362.570899] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 362.576429] ? bdi_init+0x416/0x510 [ 362.580042] ? wb_init+0x9e0/0x9e0 [ 362.583566] ? bdi_alloc_node+0x67/0xe0 [ 362.587522] ? bdi_alloc_node+0x67/0xe0 [ 362.591484] ? rcu_read_lock_sched_held+0x108/0x120 [ 362.596494] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 362.601757] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 362.607278] ? refcount_sub_and_test+0x212/0x330 [ 362.612029] bdi_register_va+0x68/0x80 [ 362.615905] super_setup_bdi_name+0x123/0x220 [ 362.620384] ? kill_block_super+0x100/0x100 [ 362.624693] ? kmem_cache_alloc_trace+0x616/0x780 [ 362.629535] fuse_fill_super+0xe6e/0x1e20 [ 362.633670] ? fuse_get_root_inode+0x190/0x190 [ 362.638238] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 362.643758] ? vsnprintf+0x242/0x1b40 [ 362.647545] ? pointer+0xa20/0xa20 [ 362.651076] ? vsprintf+0x40/0x40 [ 362.654514] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 362.659513] ? set_blocksize+0x2c4/0x350 [ 362.663561] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 362.669086] mount_bdev+0x30c/0x3e0 [ 362.673167] ? fuse_get_root_inode+0x190/0x190 [ 362.677735] fuse_mount_blk+0x34/0x40 [ 362.681519] mount_fs+0xae/0x328 [ 362.684872] vfs_kern_mount.part.34+0xd4/0x4d0 [ 362.689437] ? may_umount+0xb0/0xb0 [ 362.693052] ? _raw_read_unlock+0x22/0x30 [ 362.697182] ? __get_fs_type+0x97/0xc0 [ 362.701056] do_mount+0x564/0x3070 [ 362.704608] ? copy_mount_string+0x40/0x40 [ 362.708826] ? rcu_pm_notify+0xc0/0xc0 [ 362.712700] ? copy_mount_options+0x5f/0x380 [ 362.717091] ? rcu_read_lock_sched_held+0x108/0x120 [ 362.722092] ? kmem_cache_alloc_trace+0x616/0x780 [ 362.726930] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 362.732452] ? _copy_from_user+0xdf/0x150 [ 362.736589] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 362.742113] ? copy_mount_options+0x285/0x380 [ 362.746593] ksys_mount+0x12d/0x140 [ 362.750207] __x64_sys_mount+0xbe/0x150 [ 362.754166] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 362.759167] do_syscall_64+0x1b1/0x800 [ 362.763042] ? finish_task_switch+0x1ca/0x810 [ 362.767520] ? syscall_return_slowpath+0x5c0/0x5c0 [ 362.772433] ? syscall_return_slowpath+0x30f/0x5c0 [ 362.777347] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 362.782695] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 362.787525] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 362.792695] RIP: 0033:0x455979 [ 362.795866] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 362.803557] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 362.810809] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 362.818062] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 362.825314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 362.832568] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:37:27 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:27 executing program 4: syz_mount_image$jfs(&(0x7f0000000080)='jfs\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x0, &(0x7f00000004c0), 0x0, &(0x7f00000005c0)={[{@errors_continue='errors=continue', 0x2c}]}) r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000)='/dev/cuse\x00', 0x1, 0x0) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(0xffffffffffffff9c, 0x84, 0x73, &(0x7f0000000040)={0x0, 0x6, 0x20, 0x1ff, 0x100000000}, &(0x7f00000000c0)=0x18) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000100)={r1, 0x7fff, 0x7, 0x7ff, 0x7f}, &(0x7f0000000180)=0x14) [ 362.846101] binder: 25388:25391 transaction failed 29189/-22, size 0-0 line 2856 2033/05/18 03:37:27 executing program 0 (fault-call:0 fault-nth:79): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:27 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti0\x00\x00\x00H\x00'}) [ 362.909394] binder: 25388:25391 transaction failed 29189/-22, size 0-0 line 2856 2033/05/18 03:37:28 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 362.951754] l2tp_ppp: sess 4/0: set debug=cf10464f [ 362.985606] FAULT_INJECTION: forcing a failure. [ 362.985606] name failslab, interval 1, probability 0, space 0, times 0 [ 362.986052] l2tp_ppp: sess 4/0: get flags=0 [ 362.996879] CPU: 1 PID: 25410 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 362.996890] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 362.996895] Call Trace: [ 362.996924] dump_stack+0x1b9/0x294 [ 363.013581] binder: undelivered TRANSACTION_ERROR: 29189 [ 363.017840] ? dump_stack_print_info.cold.2+0x52/0x52 2033/05/18 03:37:28 executing program 4: perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, &(0x7f0000edfff0)={0x77359400, 0x4}, &(0x7f0000048000), 0x0) futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000dac000), &(0x7f0000048000)=0x1, 0x0) r0 = gettid() ioctl$KVM_S390_INTERRUPT_CPU(0xffffffffffffffff, 0x4010ae94, &(0x7f00000000c0)) timer_create(0x0, &(0x7f0000ec5000)={0x0, 0x12}, &(0x7f0000044000)) r1 = syz_open_dev$vcsa(&(0x7f0000000040)='/dev/vcsa#\x00', 0x80000001, 0x20400) ioctl$KVM_SET_MSRS(r1, 0x4008ae89, &(0x7f0000000100)={0x5, 0x0, [{0xb5e, 0x0, 0x841}, {0xfff}, {0x8ea, 0x0, 0x6}, {0x857, 0x0, 0x40}, {0x948, 0x0, 0x7}]}) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x1c9c380}}, &(0x7f0000040000)) tkill(r0, 0x1000000000013) 2033/05/18 03:37:28 executing program 5: setsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f0000001000)={0x10000, 0x4, 0x100, 0x400}, 0x10) socketpair$inet_dccp(0x2, 0x6, 0x0, &(0x7f0000000000)) socket$kcm(0x29, 0x5, 0x0) socketpair$inet6(0xa, 0x6, 0x2, &(0x7f0000000040)) socket$kcm(0x29, 0x0, 0x0) socketpair$inet6_sctp(0xa, 0x1, 0x84, &(0x7f0000000080)) socketpair$inet_tcp(0x2, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xe, 0x13, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, [@exit={0x95}, @call={0x85, 0x0, 0x0, 0x1e}, @alu={0x7, 0x7966, 0x0, 0x9, 0x5, 0x0, 0xffffffffffffffff}, @generic={0x7f, 0x968, 0x697}, @initr0={0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0xffffffffffffffc0}, @jmp={0x5, 0x400, 0xa, 0x3, 0x7, 0xfffffff8, 0xfffffffffffffff1}, @jmp={0x5, 0x80000001, 0x8, 0x9, 0xf, 0xfffffff4, 0xfffffffffffffffc}, @initr0={0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x2}], {0x95}}, &(0x7f0000000100)='syzkaller\x00', 0xcf, 0x8c, &(0x7f0000000140)=""/140, 0x41f00, 0x1}, 0x48) r1 = socket$kcm(0x29, 0x5, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xf, 0x14, &(0x7f00000002c0)=@raw=[@jmp={0x5, 0x2, 0x0, 0x9, 0x7, 0x50, 0x10}, @map={0x18, 0xa342e40de9d8422f, 0x1}, @exit={0x95}, @alu={0x7, 0xfffffffffffffffc, 0xa, 0x9, 0xf, 0x50, 0x1}, @exit={0x95}, @alu={0x7, 0xc97f, 0xf, 0x7, 0xa, 0x96, 0xfffffffffffffff0}, @generic={0x2, 0x1b63, 0x300a, 0x4}, @exit={0x95}, @alu={0x4, 0x5, 0xe, 0x2, 0x3, 0xfffffff0, 0xfffffffffffffff1}, @generic={0x1ff, 0x200, 0x8, 0x81}], &(0x7f0000000380)='syzkaller\x00', 0x0, 0xc9, &(0x7f00000003c0)=""/201, 0x41000, 0x1}, 0x48) ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x89e0, &(0x7f0000000540)={r0, r2}) socket$kcm(0x29, 0x5, 0x0) mkdir(&(0x7f0000000580)='./file0\x00', 0x10) r3 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f00000005c0)={0x0, 0x6c55}, 0xc) bpf$MAP_CREATE(0x0, &(0x7f0000000600)={0xa, 0x1ff, 0x1, 0x5, 0x1d, r3, 0x57}, 0x2c) bpf$MAP_CREATE(0x0, &(0x7f0000000640)={0xf, 0x0, 0x5, 0x4, 0x11, r3, 0x19}, 0x2c) bpf$OBJ_GET_MAP(0x7, &(0x7f00000006c0)={&(0x7f0000000280)='./file0/file0\x00', 0x0, 0xc}, 0x10) mount(&(0x7f0000000700)='./file0\x00', &(0x7f0000000740)='./file0\x00', &(0x7f0000000780)='9p\x00', 0x0, &(0x7f00000007c0)="587f") socketpair(0xa, 0x3, 0x80000001, &(0x7f0000000800)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_kcm_SIOCKCMUNATTACH(r5, 0x89e1, &(0x7f0000000840)={r1}) mount(&(0x7f0000000880)='./file0\x00', &(0x7f00000008c0)='./file0\x00', &(0x7f0000000900)='bdev\x00', 0x2000010, &(0x7f0000000940)="512f456d8b95445247012d0fbfbb3a9e953c7b3f7d1ccfde5395fb21f303af86d0dd42b8492b5c6f6756b984b54f12bdf0cc3ef61c9989b574fd64f8d71ad755236bb715b925b3641ab490c37082e03e6225c50226e24eb3a975c781b09233afaa87ebfe1a21555a4932ab1b63266c4bd9837bb49366561c0384953933c4655d68a3bf7b4c22b3460c89f1a5d611796bc864cfb906204a1edd50fa82e7a148d0ec78f049e16d2f1fa02d1389165695447e0837fb441e3f86ee13bd766fb0741bc722dc225d12") recvmsg(r1, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000c80)=[{&(0x7f0000000a40)=""/171, 0xab}, {&(0x7f0000000b00)=""/34, 0x22}, {&(0x7f0000000b40)=""/161, 0xa1}, {&(0x7f0000000c00)=""/81, 0x51}], 0x4, &(0x7f0000000cc0)=""/107, 0x6b, 0x3}, 0x40000041) setsockopt$sock_attach_bpf(r4, 0x1, 0x32, &(0x7f0000000d80)=r2, 0x4) r6 = socket$kcm(0x29, 0x2, 0x0) recvmsg(0xffffffffffffffff, &(0x7f0000002600)={&(0x7f0000000dc0)=@nfc, 0x80, &(0x7f00000024c0)=[{&(0x7f0000000e40)=""/87, 0x57}, {&(0x7f0000000ec0)=""/103, 0x67}, {&(0x7f0000000f40)=""/154, 0x9a}, {&(0x7f0000001000)=""/194, 0xc2}, {&(0x7f0000001100)=""/202, 0xca}, {&(0x7f0000001200)=""/224, 0xe0}, {&(0x7f0000001300)=""/4096, 0x1000}, {&(0x7f0000002300)=""/152, 0x98}, {&(0x7f00000023c0)=""/170, 0xaa}, {&(0x7f0000002480)=""/39, 0x27}], 0xa, &(0x7f0000002580)=""/95, 0x5f, 0x69}, 0x10002) mount(&(0x7f0000002640)='./file0\x00', &(0x7f0000002680)='./file0\x00', &(0x7f00000026c0)='adfs\x00', 0x255542c7d125f19c, 0x0) sendmsg$kcm(r5, &(0x7f0000004c00)={&(0x7f0000002700)=@alg={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_hmac_sha256\x00'}, 0x80, &(0x7f0000004b80)=[{&(0x7f0000002780)="63ea197191f594c41d951de7344b73be307ab0a41efba8a1a874edec8866521c7432e3fe61fb355684bbe053fb02ae42555ad8ee2a9dd09985a956f2f4687be7a4e44e58d9c0a8f33582dcd80102449414d8d5c8d6a83dceb6b15121f5885bfdf368d4fabd8a1abee11a2a2a18010d02662141f000e34ac215d9672764343dda72a40c376fa18cc4c8f57b7d31c708a9d80b63a77439897d4d6111457b4479cf89e4def4f18b0d0e9a16c12ef5102667d0d10b25f9d461b616da34a62c686332cf4f12b5ee7616e3e9ae", 0xca}], 0x1, 0x0, 0x0, 0x4000}, 0x44880) sendmsg$kcm(r6, &(0x7f0000006100)={&(0x7f0000004c40)=@sco={0x1f, {0x3, 0x7, 0x3ff, 0x6, 0x7fffffff, 0x4}}, 0x80, &(0x7f0000005fc0)=[{&(0x7f0000004cc0)="ba50d524f5fd85b498ab2d6538f219f613ac43537932b4a095c158b11f07f7092148433432a2a6db5e0c3fa3dedd0d6e3390f08326b24401ba34b4717b256688c36bfe4bd30c5f15dc824be05efb2b005f866feb4c3868239b9b107192e48d172c780d7db435749a68a81c002e3b7ddfe491c6f25a27be8eaa8019b2adee0e2f2468e449f27db29e3a", 0x89}], 0x1, &(0x7f0000006040), 0x0, 0x40}, 0x4000) recvmsg(r4, &(0x7f0000009700)={&(0x7f00000094c0)=@hci={0x0, 0x0}, 0x80, &(0x7f0000009600)=[{&(0x7f0000009540)=""/163, 0xa3}], 0x1, &(0x7f0000009640)=""/190, 0xbe, 0x6}, 0x40000000) bpf$PROG_LOAD(0x5, &(0x7f0000009740)={0xf, 0x6, &(0x7f0000006140)=@raw=[@alu={0x4, 0x401, 0x0, 0xf, 0x5, 0xfffffff8}, @alu={0x68c32edd467c8d1f, 0xfff, 0x7, 0x7, 0x8, 0x6, 0x8}, @generic={0x5, 0x7f, 0x9, 0x3}], &(0x7f0000006180)='GPL\x00', 0x3, 0x67, &(0x7f00000061c0)=""/103, 0x41000, 0x1, [], r7}, 0x48) [ 363.017859] ? d_add+0x605/0xa10 [ 363.017875] ? lock_downgrade+0x8e0/0x8e0 [ 363.017898] should_fail.cold.4+0xa/0x1a [ 363.017917] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 363.017937] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 363.022063] binder: undelivered TRANSACTION_ERROR: 29189 [ 363.024128] ? graph_lock+0x170/0x170 [ 363.024145] ? __lockdep_init_map+0x105/0x590 [ 363.024167] ? find_held_lock+0x36/0x1c0 [ 363.024188] ? __lock_is_held+0xb5/0x140 [ 363.024213] ? check_same_owner+0x320/0x320 [ 363.024233] ? rcu_note_context_switch+0x710/0x710 [ 363.087471] __should_failslab+0x124/0x180 [ 363.091715] should_failslab+0x9/0x14 [ 363.095524] kmem_cache_alloc+0x2af/0x760 [ 363.099687] alloc_inode+0xb2/0x190 [ 363.103321] new_inode_pseudo+0x69/0x1a0 [ 363.107389] ? prune_icache_sb+0x1a0/0x1a0 [ 363.111626] ? down_read+0x1b0/0x1b0 [ 363.115330] ? mntput+0x74/0xa0 [ 363.118599] new_inode+0x1c/0x40 [ 363.121959] debugfs_get_inode+0x19/0x120 [ 363.126099] debugfs_create_dir+0x75/0x3c0 [ 363.130324] bdi_register_va.part.10+0x318/0x970 [ 363.135064] ? cgwb_kill+0x630/0x630 [ 363.138767] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 363.144295] ? bdi_init+0x416/0x510 [ 363.147904] ? wb_init+0x9e0/0x9e0 [ 363.151429] ? bdi_alloc_node+0x67/0xe0 [ 363.155385] ? bdi_alloc_node+0x67/0xe0 [ 363.159344] ? rcu_read_lock_sched_held+0x108/0x120 [ 363.164344] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 363.169608] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 363.175129] ? refcount_sub_and_test+0x212/0x330 [ 363.179874] bdi_register_va+0x68/0x80 [ 363.183750] super_setup_bdi_name+0x123/0x220 [ 363.188241] ? kill_block_super+0x100/0x100 [ 363.192547] ? kmem_cache_alloc_trace+0x616/0x780 [ 363.197380] fuse_fill_super+0xe6e/0x1e20 [ 363.201515] ? fuse_get_root_inode+0x190/0x190 [ 363.206087] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 363.211608] ? vsnprintf+0x242/0x1b40 [ 363.215398] ? pointer+0xa20/0xa20 [ 363.218929] ? vsprintf+0x40/0x40 [ 363.222378] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 363.227381] ? set_blocksize+0x2c4/0x350 [ 363.231428] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 363.236951] mount_bdev+0x30c/0x3e0 [ 363.240561] ? fuse_get_root_inode+0x190/0x190 [ 363.245128] fuse_mount_blk+0x34/0x40 [ 363.248913] mount_fs+0xae/0x328 [ 363.252278] vfs_kern_mount.part.34+0xd4/0x4d0 [ 363.256843] ? may_umount+0xb0/0xb0 [ 363.260454] ? _raw_read_unlock+0x22/0x30 [ 363.264595] ? __get_fs_type+0x97/0xc0 [ 363.268470] do_mount+0x564/0x3070 [ 363.271998] ? copy_mount_string+0x40/0x40 [ 363.276220] ? rcu_pm_notify+0xc0/0xc0 [ 363.280100] ? copy_mount_options+0x5f/0x380 [ 363.284493] ? rcu_read_lock_sched_held+0x108/0x120 [ 363.289492] ? kmem_cache_alloc_trace+0x616/0x780 [ 363.294322] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 363.299844] ? _copy_from_user+0xdf/0x150 [ 363.303980] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 363.309519] ? copy_mount_options+0x285/0x380 [ 363.314004] ksys_mount+0x12d/0x140 [ 363.317623] __x64_sys_mount+0xbe/0x150 [ 363.321580] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 363.326582] do_syscall_64+0x1b1/0x800 [ 363.330454] ? finish_task_switch+0x1ca/0x810 [ 363.334935] ? syscall_return_slowpath+0x5c0/0x5c0 [ 363.339850] ? syscall_return_slowpath+0x30f/0x5c0 [ 363.344767] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 363.350116] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 363.354947] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 363.360118] RIP: 0033:0x455979 [ 363.363292] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 363.370985] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 363.378239] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 2033/05/18 03:37:28 executing program 6: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000600)='./cgroup\x00', 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.threads\x00', 0x2, 0x0) unshare(0x40600) readahead(r1, 0x0, 0x0) fcntl$setstatus(r0, 0x4, 0x0) [ 363.385495] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 363.392748] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 363.400004] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 363.439066] 9pnet_virtio: no channels available for device ./file0 [ 363.514338] 9pnet_virtio: no channels available for device ./file0 2033/05/18 03:37:29 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={"6970365f767469300000000400"}) 2033/05/18 03:37:29 executing program 6: r0 = openat$urandom(0xffffffffffffff9c, &(0x7f0000000040)='/dev/urandom\x00', 0x200, 0x0) ioctl$DRM_IOCTL_ADD_CTX(r0, 0xc0086420, &(0x7f0000000080)) fstatfs(r0, &(0x7f0000000200)=""/32) r1 = perf_event_open(&(0x7f000025c000)={0x2, 0x78, 0x3e2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x4008240b, &(0x7f00000000c0)="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") 2033/05/18 03:37:29 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:29 executing program 0 (fault-call:0 fault-nth:80): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:37:29 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rfkill\x00', 0x8000, 0x0) sendmsg$alg(r1, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000140)="ec6e8c52991f6cbe75e4ea478ee542bb4989cb74facd16c2dc5a40e6f1a5eaf03884e9c22aef5851d7b12451a9bb1603aa29fc1a2d47e3ba14abb2931fe5afd9dab3d99ac0e18c542b8404f91683fbd9db8364e99ff27135f4feb40a9d9485aa4fd0edd7ec6cd1a49ba04328046c4b442e38b0c3223a475ce9f99d0667d26fc070d32058c9323206db193eb1e1b1c0e454a5ad", 0x93}, {&(0x7f0000000200)="bdedacf6033f672aaecfe1c574054108a9438c179b4624b899d8f6ae672f6b2b8b3557c91e728eea3a0c3b0abb1ba83bd6a74dc993e0da169c2db17bebec861608824851a79334d4b02828b5054228c6732627f22f28386691b1fe92f06acbc6fcf7dbdc1462d8187c2ee8864de8b8a12f8000debe9574b7e6c3745def5d9cc1", 0x80}, {&(0x7f0000000280)="dcd496c9c46e9b20d14da63420a02beea8924d7a98d5a12789f808dc9c67669ef48ff953170e77182b3a219f0b5a8e162210274fe4aced1d92701ea27759aea8d0946679370296e8fb89fa4b12e6c473ecb52449c7c27cb9a19dedfd72e50d5ab1ea06c1ce3f0f7fe738c246f8a2948ee3e589354add0a45d71d", 0x7a}], 0x3, &(0x7f0000000340)=[@iv={0xe0, 0x117, 0x2, 0xcb, "3b78f1f6a9371533b28f754fce9c991362fac29d51e26477ecc5ba3c18a2f3aee60ec5b15b28a99f2bf58546a7377714a51270b2005359918db3cb1870c61edadd58f9d0b04f8ee864441c7224190a380360bf413299d7a97f06e79c38c954e729213fa6211240e1dab0239a05d7aec032f8e49e185c34f5acad5943a28e8e7fd3bfa7c59a7165a8705904484509fde326959f5d83cdf90ab924fccacbed8fafda956681ca04bd23e0c67d6369b9a507418be2e383349c2ad5e81ed96e8e50657ed9119c3293e111810a00"}, @op={0x18, 0x117, 0x3, 0x1}], 0xf8, 0x4000}, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) dup3(r4, r3, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r4, 0x0) ioctl$KVM_GET_SREGS(r1, 0x8138ae83, &(0x7f0000000480)) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)={0x1, 0x0, [{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) 2033/05/18 03:37:29 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/wireless\x00') readv(r0, &(0x7f00000006c0)=[{&(0x7f0000000400)=""/250, 0x287}], 0x1) r1 = syz_open_dev$tun(&(0x7f0000000140)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={"6966623000faffffffffffffff00", 0x4001}) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f0000000180)={0x0, @in={{0x2, 0x4e21, @remote={0xac, 0x14, 0x14, 0xbb}}}, [0x10001, 0x4, 0x0, 0xfffffffffffffff9, 0x4d50, 0x1, 0x7, 0x4, 0x0, 0x5, 0x39, 0x6, 0x27, 0x7, 0x17]}, &(0x7f0000000280)=0x100) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f00000005c0)={r2, @in={{0x2, 0x4e21, @multicast2=0xe0000002}}, 0x7, 0x1, 0x5, 0x5, 0x3}, &(0x7f0000000540)=0x98) fcntl$F_SET_RW_HINT(r0, 0x40c, &(0x7f0000000680)=0x5) read(r0, &(0x7f0000000040)=""/241, 0xf1) accept4$inet(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, @broadcast}, &(0x7f0000000380)=0x10, 0x80000) sendmsg$can_raw(r0, &(0x7f0000000500)={&(0x7f00000002c0)={0x1d}, 0x10, &(0x7f00000003c0)={&(0x7f0000000300)=@can={{0x2, 0x0, 0x893e, 0x400}, 0x7, 0x3, 0x0, 0x0, "e634796e49f986bd"}, 0x10}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000800) 2033/05/18 03:37:29 executing program 4: r0 = syz_open_dev$sndpcmc(&(0x7f0000000240)='/dev/snd/pcmC#D#c\x00', 0x0, 0x0) mq_open(&(0x7f0000000080)="2f6465765d01eac8990d6b98bc752f736e649ca01ce7827f3b94a014418d4620e5d7cc1b8665fb9028bb91f2cf1163c10751afdfab44638006612570c2", 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x2}) preadv(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000009f7c)=""/132, 0x84}, {&(0x7f0000012000)=""/252, 0xfc}, {&(0x7f0000012000)=""/155, 0x9b}, {&(0x7f00000001c0)=""/11, 0xb}, {&(0x7f0000000000)=""/102, 0xfffffffffffffef8}], 0x5, 0x0) ioctl(r0, 0xc2604110, &(0x7f0000000000)) accept(r0, &(0x7f0000000140)=@pppol2tpin6, &(0x7f00000000c0)=0x80) 2033/05/18 03:37:29 executing program 3: setrlimit(0x8, &(0x7f0000000000)) r0 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000040)='/dev/mixer\x00', 0x1, 0x0) setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f00000000c0)={0x3, &(0x7f0000000080)=[{0x4, 0x1, 0x2, 0x7}, {0x7, 0x0, 0x80000001, 0x98}, {0x8, 0xf93, 0x3, 0x8}]}, 0x10) r1 = shmget$private(0x0, 0x3000, 0x0, &(0x7f0000910000/0x3000)=nil) shmctl$SHM_LOCK(r1, 0xb) 2033/05/18 03:37:29 executing program 6: r0 = perf_event_open(&(0x7f0000940000)={0x2, 0x78, 0xfffffffffffffffd}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_setup(0x2, &(0x7f0000000080)=0x0) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x901, 0x0) r3 = dup3(r2, r0, 0x0) ioctl$BLKROSET(r3, 0x125d, &(0x7f0000000140)=0x4) getsockopt$netrom_NETROM_T2(r2, 0x103, 0x2, &(0x7f00000000c0)=0x6, &(0x7f0000000100)=0x4) io_submit(r1, 0x1, &(0x7f0000000500)=[&(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f00000000c0), 0x0, 0x0, 0x0, 0x0, r2}]) 2033/05/18 03:37:29 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:29 executing program 4: socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$sock_int(r0, 0x1, 0x23, &(0x7f00007ae000)=0x4, 0x4) pipe2(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80801) ioctl$GIO_UNIMAP(r2, 0x4b66, &(0x7f0000000100)={0x8, &(0x7f00000000c0)=[{}, {}, {}, {}, {}, {}, {}, {}]}) ioctl$sock_inet_SIOCSIFBRDADDR(r1, 0x891a, &(0x7f0000000000)={'vlan0\x00', {0x2, 0x4e21, @broadcast=0xffffffff}}) write(r1, &(0x7f0000019f97), 0x0) stat(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)) recvmsg(r0, &(0x7f0000019fc8)={0x0, 0x0, &(0x7f000001a000), 0x0, &(0x7f000001b000)}, 0x0) getsockopt$sock_timeval(r2, 0x1, 0x14, &(0x7f0000000080), &(0x7f0000000180)=0x10) [ 364.070491] l2tp_ppp: sess 4/0: set debug=cf10464f [ 364.079260] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:37:29 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={"6970365f767469300000000000000003"}) 2033/05/18 03:37:29 executing program 3: r0 = socket$inet_sctp(0x2, 0x1, 0x84) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x80, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000005800)={'team0\x00', 0x0}) setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000005840)={@ipv4={[], [0xff, 0xff], @local={0xac, 0x14, 0x14, 0xaa}}, r2}, 0x14) recvfrom$inet6(r1, &(0x7f0000000040)=""/118, 0x76, 0x40000000, &(0x7f00000000c0)={0xa, 0x4e23, 0x7, @remote={0xfe, 0x80, [], 0xbb}, 0x1f}, 0x1c) mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x1, 0x32, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0x9, &(0x7f0000001500)={0x0, @in={{0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff, 0xbb}}}}, &(0x7f00000001c0)=0x2e2) 2033/05/18 03:37:29 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000040)={0x26, 'skcipher\x00', 0x0, 0x0, 'kw(aes-generic)\x00'}, 0x58) r1 = accept$alg(r0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00003bcfd0)="d3ab27191a01002356ba602dff05000b", 0x10) sendmmsg$alg(r1, &(0x7f0000002c80)=[{0x0, 0x0, &(0x7f00000001c0), 0x0, &(0x7f0000000200)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0) write(r1, &(0x7f0000000340)="791f7dfde0815c48c13197fc2e324dea", 0x10) recvmsg(r1, &(0x7f0000158000)={&(0x7f00002fffa0)=@nfc_llcp, 0x5c, &(0x7f0000000000)=[{&(0x7f000080f000)=""/4096, 0x1000}], 0x1, &(0x7f0000da2000)}, 0x0) r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp\x00', 0x40000, 0x0) getsockopt$inet_sctp_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f0000000240)={0x0, @in={{0x2, 0x4e24, @remote={0xac, 0x14, 0x14, 0xbb}}}, [0x8000, 0xd6, 0x1, 0x2, 0x8000, 0x401, 0x2, 0xffffffff7fffffff, 0x400, 0x4, 0x19, 0x2, 0xfffffffffffff000, 0x100, 0x2]}, &(0x7f0000000140)=0x100) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r2, 0x84, 0x7c, &(0x7f0000000180)={r3, 0x7317, 0x5}, 0x8) accept$alg(r0, 0x0, 0x0) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000000c0)='team_slave_0\x00', 0x10) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r2, 0x84, 0x1f, &(0x7f0000000380)={r3, @in={{0x2, 0x4e21, @remote={0xac, 0x14, 0x14, 0xbb}}}, 0x3, 0x5}, &(0x7f00000001c0)=0x90) [ 364.148548] l2tp_ppp: sess 4/0: set debug=cf10464f 2033/05/18 03:37:29 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 364.190754] l2tp_ppp: sess 4/0: get flags=0 [ 364.240376] FAULT_INJECTION: forcing a failure. [ 364.240376] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 364.252213] CPU: 0 PID: 25476 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 364.259484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 364.268833] Call Trace: [ 364.271427] dump_stack+0x1b9/0x294 [ 364.275068] ? dump_stack_print_info.cold.2+0x52/0x52 [ 364.280261] ? __wake_up_common_lock+0x1c2/0x300 [ 364.285014] should_fail.cold.4+0xa/0x1a [ 364.289066] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 364.294165] ? find_held_lock+0x36/0x1c0 [ 364.298212] ? graph_lock+0x170/0x170 [ 364.301998] ? lock_acquire+0x1dc/0x520 [ 364.305960] ? lock_downgrade+0x8e0/0x8e0 [ 364.310096] ? find_held_lock+0x36/0x1c0 [ 364.314158] __alloc_pages_nodemask+0x34e/0xd70 [ 364.318813] ? kasan_check_read+0x11/0x20 [ 364.322946] ? __alloc_pages_slowpath+0x2db0/0x2db0 [ 364.327955] ? rcu_read_unlock+0x35/0x70 [ 364.332001] ? __lock_is_held+0xb5/0x140 [ 364.336062] ? check_same_owner+0x320/0x320 [ 364.340370] cache_grow_begin+0x72/0x6c0 [ 364.344419] kmem_cache_alloc+0x689/0x760 [ 364.348557] alloc_inode+0xb2/0x190 [ 364.352170] new_inode_pseudo+0x69/0x1a0 [ 364.356218] ? prune_icache_sb+0x1a0/0x1a0 [ 364.360438] ? down_read+0x1b0/0x1b0 [ 364.364140] ? mntput+0x74/0xa0 [ 364.367406] new_inode+0x1c/0x40 [ 364.370759] debugfs_get_inode+0x19/0x120 [ 364.374894] debugfs_create_dir+0x75/0x3c0 [ 364.379115] bdi_register_va.part.10+0x318/0x970 [ 364.383859] ? cgwb_kill+0x630/0x630 [ 364.387560] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 364.393081] ? bdi_init+0x416/0x510 [ 364.396692] ? wb_init+0x9e0/0x9e0 [ 364.400216] ? bdi_alloc_node+0x67/0xe0 [ 364.404173] ? bdi_alloc_node+0x67/0xe0 [ 364.408131] ? rcu_read_lock_sched_held+0x108/0x120 [ 364.413140] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 364.418402] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 364.423926] ? refcount_sub_and_test+0x212/0x330 [ 364.428666] bdi_register_va+0x68/0x80 [ 364.432540] super_setup_bdi_name+0x123/0x220 [ 364.437022] ? kill_block_super+0x100/0x100 [ 364.441328] ? kmem_cache_alloc_trace+0x616/0x780 [ 364.446160] fuse_fill_super+0xe6e/0x1e20 [ 364.450295] ? fuse_get_root_inode+0x190/0x190 [ 364.454862] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 364.460382] ? vsnprintf+0x242/0x1b40 [ 364.464171] ? pointer+0xa20/0xa20 [ 364.467702] ? vsprintf+0x40/0x40 [ 364.471146] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 364.476153] ? set_blocksize+0x2c4/0x350 [ 364.480201] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 364.485722] mount_bdev+0x30c/0x3e0 [ 364.489332] ? fuse_get_root_inode+0x190/0x190 [ 364.493901] fuse_mount_blk+0x34/0x40 [ 364.497686] mount_fs+0xae/0x328 [ 364.501043] vfs_kern_mount.part.34+0xd4/0x4d0 [ 364.505615] ? may_umount+0xb0/0xb0 [ 364.509229] ? _raw_read_unlock+0x22/0x30 [ 364.513359] ? __get_fs_type+0x97/0xc0 [ 364.517234] do_mount+0x564/0x3070 [ 364.520761] ? copy_mount_string+0x40/0x40 [ 364.524978] ? rcu_pm_notify+0xc0/0xc0 [ 364.528853] ? copy_mount_options+0x5f/0x380 [ 364.533244] ? rcu_read_lock_sched_held+0x108/0x120 [ 364.538244] ? kmem_cache_alloc_trace+0x616/0x780 [ 364.543079] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 364.548606] ? copy_mount_options+0x285/0x380 [ 364.553087] ksys_mount+0x12d/0x140 [ 364.556700] __x64_sys_mount+0xbe/0x150 [ 364.560657] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 364.565658] do_syscall_64+0x1b1/0x800 [ 364.569528] ? finish_task_switch+0x1ca/0x810 [ 364.574017] ? syscall_return_slowpath+0x5c0/0x5c0 [ 364.578935] ? syscall_return_slowpath+0x30f/0x5c0 [ 364.583848] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 364.589199] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 364.594031] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 364.599205] RIP: 0033:0x455979 [ 364.602376] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 364.610070] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 364.617321] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 364.624573] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 364.631824] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 2033/05/18 03:37:29 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'cfb(aes-asm)\x00'}, 0x58) r1 = accept$alg(r0, 0x0, 0x0) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00003bcfd0)="d3ab27191a01002356ba602dff05000b", 0x10) write(r1, &(0x7f00000000c0)='y', 0x1) recvmsg(r1, &(0x7f0000158000)={&(0x7f00002fffa0)=@nfc_llcp, 0x60, &(0x7f0000b9c000)=[{&(0x7f000080f000)=""/4096, 0x1000}], 0x1, &(0x7f0000da2000)}, 0x0) fcntl$setlease(r1, 0x400, 0x1) [ 364.639076] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:37:29 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={"6970365f767469300200"}) 2033/05/18 03:37:29 executing program 6: r0 = dup(0xffffffffffffffff) setsockopt$inet6_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f0000000000)={0x303, 0x33}, 0x4) ioctl$fiemap(r0, 0xc020660b, &(0x7f0000000040)={0x3, 0x2, 0x0, 0x9, 0x5, [{0x9, 0x5, 0x75b5, 0x0, 0x0, 0x1}, {0x7, 0x5, 0x1, 0x0, 0x0, 0x100}, {0xfffffffffffffffe, 0x2, 0x6, 0x0, 0x0, 0x401}, {0x5, 0x0, 0xfffffffffffffff9, 0x0, 0x0, 0x480}, {0x3, 0x8, 0x6, 0x0, 0x0, 0x4}]}) clock_gettime(0x0, &(0x7f0000000180)={0x0, 0x0}) setsockopt$sock_timeval(r0, 0x1, 0x15, &(0x7f00000001c0)={r1, r2/1000+10000}, 0x10) listen(r0, 0x0) r3 = fcntl$dupfd(r0, 0x0, r0) r4 = syz_open_dev$usbmon(&(0x7f0000000200)='/dev/usbmon#\x00', 0x2, 0x4001) r5 = socket$key(0xf, 0x3, 0x2) clock_settime(0x0, &(0x7f0000000240)={0x77359400}) setsockopt$inet_sctp_SCTP_DISABLE_FRAGMENTS(r4, 0x84, 0x8, &(0x7f0000000280)=0x10000000200000, 0x4) socket$kcm(0x29, 0x7, 0x0) socket$key(0xf, 0x3, 0x2) ioctl$TIOCGSID(r3, 0x5429, &(0x7f00000002c0)=0x0) ptrace$getsig(0x4202, r6, 0x3e68, &(0x7f0000000300)) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000380)={0x0, 0x2c, &(0x7f0000000340)=[@in={0x2, 0x4e21, @multicast2=0xe0000002}, @in6={0xa, 0x4e20, 0x0, @dev={0xfe, 0x80, [], 0x1f}, 0x1}]}, &(0x7f00000003c0)=0x10) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000400)={r7, @in6={{0xa, 0x4e22, 0x1, @remote={0xfe, 0x80, [], 0xbb}, 0x1758e6e6}}, 0x4, 0x9, 0x10001, 0x5, 0x1}, 0x98) fanotify_mark(r3, 0x1, 0x2, r3, &(0x7f00000004c0)='./file0\x00') write(r5, &(0x7f0000000500)="42c36a1a9f077186c9685f8456edc4f30eda85fb94232d67ac36f2b3348cd619adaeb725b5bec52d1896f17e004c12b2e563022edfc3a4cbb1103b4a39cfc0d588c64054e852bbb337821a5843f358b9160ff6591c08831bdbaab3040a8b0057ad8baf067b7b653f914c323ed2be402227621a993b59391912a2ec63ef9319df900448af3d0174ea18b40b6fdd818383485155cdc340f9b3bc05dcfe0b6c65bcc6ca0529963c129edd3d9c17162dac5a503ed93aa5266bca986526be08b939defe", 0xc1) setsockopt$inet6_buf(r0, 0x29, 0x2c, &(0x7f0000000600)="1bf315f78fe0cab449ddf64be1afdcd40935970910e637bccdce98f483ed8b8bff5d669675d6af4966737ef0d6b8fe08757956a0517cf32ca190887db0576200d96b4963d06859c532299ea29cfe869b4fa1fe79ca9b2f6a1e404012225d5fd39c749b517438054e7433fb20be06dd9c26c3d49028a3632bef", 0x79) getsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000680)={@ipv4={[], [0xff, 0xff], @rand_addr=0x8}, 0x400, 0x1, 0x1, 0x0, 0x9, 0x4}, &(0x7f00000006c0)=0x20) r8 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000700)='/dev/dsp\x00', 0x4142, 0x0) bind$pptp(r3, &(0x7f0000000740)={0x18, 0x2, {0x0, @rand_addr=0xfffffffffffffff7}}, 0x1e) fcntl$getown(r4, 0x9) setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r8, 0x84, 0xa, &(0x7f0000000780)={0x906, 0xd4, 0x8, 0x80000000, 0x2, 0x2, 0x2, 0x8, r7}, 0x20) getsockopt$inet_opts(r4, 0x0, 0xd, &(0x7f00000007c0)=""/2, &(0x7f0000000800)=0x2) getpeername$ax25(r3, &(0x7f0000000840), &(0x7f0000000880)=0x10) r9 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000900)='IPVS\x00') sendmsg$IPVS_CMD_GET_SERVICE(r0, &(0x7f0000000ac0)={&(0x7f00000008c0)={0x10, 0x0, 0x0, 0x10000010}, 0xc, &(0x7f0000000a80)={&(0x7f0000000940)={0x118, r9, 0x0, 0x70bd27, 0x25dfdbfb, {0x4}, [@IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0xffffffff}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x7}, @IPVS_CMD_ATTR_SERVICE={0x24, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x3f}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0xa}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x32}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x6}, @IPVS_CMD_ATTR_DEST={0x24, 0x2, [@IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0x2}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x1}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x677}]}, @IPVS_CMD_ATTR_SERVICE={0x30, 0x1, [@IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x2f}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0x2}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x80}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0xa96c}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x1, 0x10}}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7b25}, @IPVS_CMD_ATTR_DEST={0x6c, 0x2, [@IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0xff}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@loopback=0x7f000001}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@multicast1=0xe0000001}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@mcast2={0xff, 0x2, [], 0x1}}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e24}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@dev={0xac, 0x14, 0x14, 0xb}}]}]}, 0x118}, 0x1, 0x0, 0x0, 0x4081}, 0x1) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000b00)={r4, r0, 0xb}, 0x10) 2033/05/18 03:37:29 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:37:29 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00006a4ff7)='/dev/kvm\x00', 0x1, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendfile(r1, r0, &(0x7f0000000040), 0xffffffffffffa2bb) ioctl$KVM_SET_BOOT_CPU_ID(r1, 0x4018aebd, &(0x7f0000000000)=0x80ffff00000000) 2033/05/18 03:37:29 executing program 3: r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vcs\x00', 0x10000, 0x0) ioctl$TIOCGSID(0xffffffffffffff9c, 0x5429, &(0x7f00000000c0)=0x0) perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, r1, 0xffffffffffffffff, r0, 0x0) open_by_handle_at(0xffffffffffffff9c, &(0x7f0000000040)={0x9, 0x800000001, "86"}, 0x0) 2033/05/18 03:37:29 executing program 4: r0 = socket$alg(0x26, 0x5, 0x0) close(r0) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-blowfish-asm\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000001f3a)="ad56b6c5", 0x4) r2 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/qat_adf_ctl\x00', 0x420200, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r2, 0xc0045540, &(0x7f00000000c0)=0x8) r3 = accept$alg(r0, 0x0, 0x0) sendmsg$alg(r3, &(0x7f0000704000)={0x0, 0x0, &(0x7f0000724ff0)=[{&(0x7f0000fa7f12)="b1c54112aad2c4c3c495962c2e68b6455b79accaad45c65a1270dce257777350e2ea63300c04f8e3a2918b719d1a509471e6aedf6210a53e3397a5557e143ffc1c106af5452f296befba34bfaafb53dfd72d8b115f633e4fd99491f57d2178ac50c94957ae79071af2f524819d44731d892a83cae4a3788b", 0x78}], 0x1, &(0x7f00000003c0)}, 0x0) recvmsg(r3, &(0x7f0000b2f000)={&(0x7f00008e8000)=@nfc, 0x80, &(0x7f0000030fa0)=[{&(0x7f000034df41)=""/191, 0xbf}, {&(0x7f0000000380)=""/26, 0x1a}], 0x2, &(0x7f0000590000)}, 0x0) 2033/05/18 03:37:29 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000000)={0x1, 0x0, [{0x0, 0x8001, 0x1, 0x0, 0x0, 0x0, 0x7}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2033/05/18 03:37:29 executing program 0 (fault-call:0 fault-nth:81): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) [ 364.792133] l2tp_ppp: sess 4/0: set debug=cf10464f [ 364.799914] FAULT_INJECTION: forcing a failure. [ 364.799914] name failslab, interval 1, probability 0, space 0, times 0 [ 364.811295] CPU: 1 PID: 25500 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 364.818572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 364.827924] Call Trace: [ 364.830505] dump_stack+0x1b9/0x294 [ 364.834126] ? dump_stack_print_info.cold.2+0x52/0x52 [ 364.839309] ? perf_trace_lock_acquire+0xe3/0x980 [ 364.844139] ? perf_trace_lock+0x900/0x900 [ 364.848367] should_fail.cold.4+0xa/0x1a [ 364.852417] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 364.857512] ? graph_lock+0x170/0x170 [ 364.861311] ? find_held_lock+0x36/0x1c0 [ 364.865361] ? __lock_is_held+0xb5/0x140 [ 364.869418] ? check_same_owner+0x320/0x320 [ 364.873729] ? rcu_note_context_switch+0x710/0x710 [ 364.878649] __should_failslab+0x124/0x180 [ 364.882874] should_failslab+0x9/0x14 [ 364.886662] kmem_cache_alloc+0x2af/0x760 [ 364.890802] ? find_held_lock+0x36/0x1c0 [ 364.894858] __d_alloc+0xc0/0xd30 [ 364.898299] ? shrink_dcache_for_umount+0x290/0x290 [ 364.903312] ? debug_check_no_locks_freed+0x310/0x310 [ 364.908501] ? graph_lock+0x170/0x170 [ 364.912290] ? find_held_lock+0x36/0x1c0 [ 364.916341] d_alloc+0x8e/0x370 [ 364.919612] ? __d_alloc+0xd30/0xd30 [ 364.923319] d_alloc_parallel+0x152/0x1e80 [ 364.927538] ? graph_lock+0x170/0x170 [ 364.931325] ? __lock_acquire+0x7f5/0x5140 [ 364.935551] ? __d_lookup_rcu+0xa80/0xa80 [ 364.939683] ? print_usage_bug+0xc0/0xc0 [ 364.943729] ? find_held_lock+0x36/0x1c0 [ 364.947786] ? lock_downgrade+0x8e0/0x8e0 [ 364.951937] ? mark_held_locks+0xc9/0x160 [ 364.956086] ? __raw_spin_lock_init+0x1c/0x100 [ 364.960659] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 364.965663] ? __lockdep_init_map+0x105/0x590 [ 364.970147] ? __lockdep_init_map+0x105/0x590 [ 364.974630] ? lockdep_init_map+0x9/0x10 [ 364.978679] ? __init_waitqueue_head+0x96/0x140 [ 364.983334] ? init_wait_entry+0x1b0/0x1b0 [ 364.987563] ? d_alloc_parallel+0x1e80/0x1e80 [ 364.992055] ? lock_release+0xa10/0xa10 [ 364.996015] ? graph_lock+0x170/0x170 [ 364.999809] __lookup_slow+0x1e6/0x540 [ 365.003684] ? vfs_unlink+0x510/0x510 [ 365.007473] ? d_lookup+0x219/0x330 [ 365.011109] lookup_one_len+0x1c7/0x210 [ 365.015070] ? lookup_one_len_unlocked+0xf0/0xf0 [ 365.019824] ? down_write+0x87/0x120 [ 365.023523] ? start_creating+0xb1/0x200 [ 365.027568] ? down_read+0x1b0/0x1b0 [ 365.031272] ? mntput+0x74/0xa0 [ 365.034535] ? simple_pin_fs+0xa4/0x190 [ 365.038498] start_creating+0xc6/0x200 [ 365.042374] debugfs_create_dir+0x23/0x3c0 [ 365.046603] bdi_register_va.part.10+0x318/0x970 [ 365.051343] ? cgwb_kill+0x630/0x630 [ 365.055048] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 365.060569] ? bdi_init+0x416/0x510 [ 365.064194] ? wb_init+0x9e0/0x9e0 [ 365.067727] ? bdi_alloc_node+0x67/0xe0 [ 365.071687] ? bdi_alloc_node+0x67/0xe0 [ 365.075650] ? rcu_read_lock_sched_held+0x108/0x120 [ 365.080655] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 365.085921] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 365.091444] ? refcount_sub_and_test+0x212/0x330 [ 365.096185] bdi_register_va+0x68/0x80 [ 365.100064] super_setup_bdi_name+0x123/0x220 [ 365.104545] ? kill_block_super+0x100/0x100 [ 365.108863] ? kmem_cache_alloc_trace+0x616/0x780 [ 365.113701] fuse_fill_super+0xe6e/0x1e20 [ 365.117838] ? fuse_get_root_inode+0x190/0x190 [ 365.122409] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 365.127952] ? vsnprintf+0x242/0x1b40 [ 365.131746] ? pointer+0xa20/0xa20 [ 365.135281] ? vsprintf+0x40/0x40 [ 365.138725] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 365.143726] ? set_blocksize+0x2c4/0x350 [ 365.147774] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 365.153300] mount_bdev+0x30c/0x3e0 [ 365.156912] ? fuse_get_root_inode+0x190/0x190 [ 365.161480] fuse_mount_blk+0x34/0x40 [ 365.165279] mount_fs+0xae/0x328 [ 365.168636] vfs_kern_mount.part.34+0xd4/0x4d0 [ 365.173207] ? may_umount+0xb0/0xb0 [ 365.176821] ? _raw_read_unlock+0x22/0x30 [ 365.180953] ? __get_fs_type+0x97/0xc0 [ 365.184831] do_mount+0x564/0x3070 [ 365.188359] ? interrupt_entry+0xb1/0xf0 [ 365.192406] ? copy_mount_string+0x40/0x40 [ 365.196629] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 365.201371] ? retint_kernel+0x10/0x10 [ 365.205249] ? copy_mount_options+0x213/0x380 [ 365.209730] ? write_comp_data+0x1/0x70 [ 365.213694] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 365.219215] ? copy_mount_options+0x285/0x380 [ 365.223698] ksys_mount+0x12d/0x140 [ 365.227311] __x64_sys_mount+0xbe/0x150 [ 365.231271] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 365.236275] do_syscall_64+0x1b1/0x800 [ 365.240148] ? finish_task_switch+0x1ca/0x810 [ 365.244631] ? syscall_return_slowpath+0x5c0/0x5c0 [ 365.249545] ? syscall_return_slowpath+0x30f/0x5c0 [ 365.254464] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 365.259815] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 365.264648] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 365.269820] RIP: 0033:0x455979 [ 365.272994] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 365.280696] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 365.287950] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 365.295203] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 365.302464] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 365.309716] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 2033/05/18 03:33:20 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 365.341617] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:33:20 executing program 3: r0 = socket$rds(0x15, 0x5, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000700)={'erspan0\x00', &(0x7f00000006c0)=@ethtool_sset_info={0x37}}) r1 = accept4(r0, &(0x7f0000000000)=@can, &(0x7f0000000080)=0x80, 0x80000) setsockopt$inet6_buf(r1, 0x29, 0x55, &(0x7f00000000c0)="f33d8adfbc7d5a21e51c7b20df5b166b0c2d2a7da5fab800ece4a2a9d5d92ce5a6cd77747abbef79c7cec043a234d215c6dc978757e079d90f955fb42867e1f8787200461ef558fbecd67d8054ebb7b624d0011d78f4c7193b6e4ce55d8b41f3488ed0d15e9b99f986fa6aca5cd2948894a926b9ff69100686f4b6edbce8ab9ce31bc99999af66770b8dd7b3b6706c44c9da140aee8871a8e442ef2724847c38e4ccec1b44a2ce342a67d459be5d26dbe29a676f7cea8268334ac27308ac53fa9fe9f32f8a1efd6108", 0xc9) 2033/05/18 03:33:20 executing program 0 (fault-call:0 fault-nth:82): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:33:20 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={"6970365f767469307fffffff00"}) 2033/05/18 03:33:20 executing program 6: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000903000)={0x1, 0x5, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000ff0000000000f5ffff620a20fe000000002f000000000000009500000000000000"], &(0x7f0000c43000)='syzkaller\x00', 0x8000, 0x1000, &(0x7f00009ab000)=""/4096}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r0, 0x0, 0xe, 0x12, &(0x7f0000000000)="5b51b30ced6fe7cdea3c6a17d78b", &(0x7f0000000080)=""/18}, 0x28) r1 = syz_open_dev$sndpcmc(&(0x7f0000000040)='/dev/snd/pcmC#D#c\x00', 0x5, 0x0) write$cgroup_int(r1, &(0x7f0000000100)={[0x3a, 0x31, 0x0, 0x2b, 0x0, 0x0, 0x0, 0x38, 0x0]}, 0x9) 2033/05/18 03:33:20 executing program 5: r0 = syz_open_dev$midi(&(0x7f0000000880)='/dev/midi#\x00', 0x5, 0x2) setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000008c0)=0x100, 0x4) mmap(&(0x7f0000000000/0xfbf000)=nil, 0xfbf000, 0x0, 0x800000000000032, 0xffffffffffffffff, 0x0) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f0000000000)={0x0, @in6={{0xa, 0x4e22, 0x81, @loopback={0x0, 0x1}, 0xfffffffffffffffc}}, 0x200, 0x7, 0x0, 0x7199, 0xfff}, &(0x7f00000000c0)=0x98) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(r0, 0x84, 0x70, &(0x7f0000000100)={r1, @in6={{0xa, 0x4e20, 0x7f, @ipv4={[], [0xff, 0xff]}, 0x26}}, [0x5f5162eb, 0x1ff, 0x8, 0x80000001, 0x1f, 0x6, 0x3, 0x9, 0x3ff, 0x8, 0x5cd, 0x0, 0x2565, 0x100000001, 0xffffffffffffff00]}, &(0x7f0000000200)=0x100) mq_notify(0xffffffffffffffff, &(0x7f0000012000)) sched_yield() 2033/05/18 03:33:20 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:33:20 executing program 4: r0 = perf_event_open(&(0x7f00000001c0)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @perf_config_ext={0x0, 0x8}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socketpair(0x4, 0xf, 0x1, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$KVM_SET_IDENTITY_MAP_ADDR(r1, 0x4008ae48, &(0x7f0000000100)) ioctl$PERF_EVENT_IOC_RESET(r0, 0x2403, 0x0) 2033/05/18 03:33:20 executing program 3: r0 = syz_open_dev$tun(&(0x7f0000000180)='/dev/net/tun\x00', 0x0, 0x30040) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000240)={'vlan0\x00', 0x32}) 2033/05/18 03:33:20 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) [ 365.507255] l2tp_ppp: sess 4/0: set debug=cf10464f [ 365.525495] l2tp_ppp: sess 4/0: get flags=0 2033/05/18 03:33:20 executing program 5: r0 = socket$inet6_dccp(0xa, 0x6, 0x0) capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000244000)) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/hwrng\x00', 0x800, 0x0) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000180)={0x2, [0x0, 0x0]}, &(0x7f00000001c0)=0xc) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000040)={@mcast1={0xff, 0x1, [], 0x1}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x20) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000080)='/dev/snapshot\x00', 0x20c40, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000100)={r2, 0x2, 0x1, 0x7fffffff, &(0x7f0000000140)=[0x0], 0x1}, 0x20) 2033/05/18 03:33:20 executing program 4: r0 = syz_open_dev$admmidi(&(0x7f0000000100)='/dev/admmidi#\x00', 0x6, 0x20080) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffff9c, 0x8933, &(0x7f00000001c0)={'team0\x00', 0x0}) sendto$packet(r0, &(0x7f0000000140)="af9425c87e8966b26388d8561626d232f942eea0c510c35f66ea6000ab548e9e903c3ec31045c5dcb9eaad943e5131a1721310da1a99ce559c0aa88bd9196c5cf8946fd03708686313e85c1b58e7bd5b6548565db0c2e32e4d2d9b97106ee61b8a38b34c2d04556655", 0x69, 0x4, &(0x7f0000000200)={0x11, 0x0, r1, 0x1, 0x8, 0x6, @broadcast=[0xff, 0xff, 0xff, 0xff, 0xff, 0xff]}, 0x14) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e5}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'syz_tun\x00'}) r2 = socket$inet_smc(0x2b, 0x1, 0x0) listen(r2, 0x0) ppoll(&(0x7f0000000000)=[{r2}], 0x1, &(0x7f0000000080), &(0x7f00000000c0), 0x8) shutdown(0xffffffffffffffff, 0x0) 2033/05/18 03:33:20 executing program 3: mlockall(0xffffffffffffffff) r0 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) r1 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0) sendfile(r1, r0, &(0x7f0000000040), 0x8) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x2, 0x11, r1, 0x0) 2033/05/18 03:33:20 executing program 6: perf_event_open(&(0x7f0000348f88)={0x2, 0x70, 0x3e6}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$vcsn(&(0x7f0000000040)='/dev/vcs#\x00', 0x2, 0x22002) r1 = syz_open_procfs(0x0, &(0x7f0000000180)='net/rt_acct\x00') sendfile(r0, r1, &(0x7f0000000080), 0x100) utimes(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={{0x77359400}, {0x77359400}}) [ 365.786877] FAULT_INJECTION: forcing a failure. [ 365.786877] name failslab, interval 1, probability 0, space 0, times 0 [ 365.798280] CPU: 1 PID: 25551 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 365.805550] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 365.814897] Call Trace: [ 365.817488] dump_stack+0x1b9/0x294 [ 365.821124] ? dump_stack_print_info.cold.2+0x52/0x52 [ 365.826314] ? d_add+0x605/0xa10 [ 365.829682] ? lock_downgrade+0x8e0/0x8e0 [ 365.833830] ? __kernel_text_address+0xd/0x40 [ 365.838328] should_fail.cold.4+0xa/0x1a [ 365.842393] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 365.847499] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 365.852522] ? graph_lock+0x170/0x170 [ 365.856322] ? __lockdep_init_map+0x105/0x590 [ 365.860823] ? find_held_lock+0x36/0x1c0 [ 365.864890] ? __lock_is_held+0xb5/0x140 [ 365.868964] ? check_same_owner+0x320/0x320 [ 365.873287] ? rcu_note_context_switch+0x710/0x710 [ 365.878221] __should_failslab+0x124/0x180 [ 365.882461] should_failslab+0x9/0x14 [ 365.886262] kmem_cache_alloc+0x2af/0x760 [ 365.890417] alloc_inode+0xb2/0x190 [ 365.894044] new_inode_pseudo+0x69/0x1a0 [ 365.898108] ? prune_icache_sb+0x1a0/0x1a0 [ 365.902343] ? down_read+0x1b0/0x1b0 [ 365.906055] ? mntput+0x74/0xa0 [ 365.909340] new_inode+0x1c/0x40 [ 365.912708] debugfs_get_inode+0x19/0x120 [ 365.916861] __debugfs_create_file+0xb5/0x400 [ 365.921364] debugfs_create_file+0x57/0x70 [ 365.925608] bdi_register_va.part.10+0x365/0x970 [ 365.930364] ? cgwb_kill+0x630/0x630 [ 365.934080] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 365.939614] ? bdi_init+0x416/0x510 [ 365.943237] ? wb_init+0x9e0/0x9e0 [ 365.946781] ? bdi_alloc_node+0x67/0xe0 [ 365.950755] ? bdi_alloc_node+0x67/0xe0 [ 365.954730] ? rcu_read_lock_sched_held+0x108/0x120 [ 365.959750] ? kmem_cache_alloc_node_trace+0x34e/0x770 [ 365.965034] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 365.970570] ? refcount_sub_and_test+0x212/0x330 [ 365.975331] bdi_register_va+0x68/0x80 [ 365.979221] super_setup_bdi_name+0x123/0x220 [ 365.983714] ? kill_block_super+0x100/0x100 [ 365.988039] ? kmem_cache_alloc_trace+0x616/0x780 [ 365.992888] fuse_fill_super+0xe6e/0x1e20 [ 365.997041] ? fuse_get_root_inode+0x190/0x190 [ 366.001631] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 366.007171] ? vsnprintf+0x242/0x1b40 [ 366.010978] ? pointer+0xa20/0xa20 [ 366.014533] ? vsprintf+0x40/0x40 [ 366.017988] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 366.023003] ? set_blocksize+0x2c4/0x350 [ 366.027068] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 366.032606] mount_bdev+0x30c/0x3e0 [ 366.036236] ? fuse_get_root_inode+0x190/0x190 [ 366.040819] fuse_mount_blk+0x34/0x40 [ 366.044619] mount_fs+0xae/0x328 [ 366.047991] vfs_kern_mount.part.34+0xd4/0x4d0 [ 366.052573] ? may_umount+0xb0/0xb0 [ 366.056199] ? _raw_read_unlock+0x22/0x30 [ 366.060368] ? __get_fs_type+0x97/0xc0 [ 366.064261] do_mount+0x564/0x3070 [ 366.067805] ? copy_mount_string+0x40/0x40 [ 366.072042] ? rcu_pm_notify+0xc0/0xc0 [ 366.075935] ? copy_mount_options+0x5f/0x380 [ 366.080342] ? rcu_read_lock_sched_held+0x108/0x120 [ 366.085368] ? kmem_cache_alloc_trace+0x616/0x780 [ 366.090213] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 366.095750] ? _copy_from_user+0xdf/0x150 [ 366.099902] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 366.105438] ? copy_mount_options+0x285/0x380 [ 366.109934] ksys_mount+0x12d/0x140 [ 366.113563] __x64_sys_mount+0xbe/0x150 [ 366.117539] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 366.122555] do_syscall_64+0x1b1/0x800 [ 366.126445] ? finish_task_switch+0x1ca/0x810 [ 366.130940] ? syscall_return_slowpath+0x5c0/0x5c0 [ 366.135869] ? syscall_return_slowpath+0x30f/0x5c0 [ 366.140802] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 366.146168] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 366.151017] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 366.156201] RIP: 0033:0x455979 [ 366.159383] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 366.167093] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 366.174360] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 366.181627] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 2033/05/18 03:33:20 executing program 2: r0 = socket(0x18, 0x0, 0x1) connect(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x4, 0x0, 0x0, 0x2, {0xa}}}, 0x32) setsockopt(r0, 0x400000000000111, 0x1, &(0x7f0000000080)="4f4610cf", 0x4) ioctl$SIOCSIFMTU(r0, 0x8004745a, &(0x7f0000000000)={'ip6_vti0\x00\x00\x00t\x00'}) 2033/05/18 03:33:20 executing program 1: r0 = socket$inet6(0xa, 0x3, 0x2c) connect$inet6(r0, &(0x7f0000017000)={0xa, 0x0, 0x0, @dev={0xfe, 0x80}, 0x9}, 0x1c) sendmsg(r0, &(0x7f0000009fc8)={0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000001900)="11", 0x1}], 0x1, &(0x7f00000000c0)}, 0xc100) sendmsg(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000180)="98d450", 0x3}], 0x1, &(0x7f0000028000)}, 0x0) 2033/05/18 03:33:20 executing program 4: r0 = syz_open_dev$sndmidi(&(0x7f0000000240)='/dev/snd/midiC#D#\x00', 0x3f, 0x101000) ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000280)={0xffffffff, 0x80, 0x8000, @remote={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa], 0xbb}, 'veth0\x00'}) syz_mount_image$reiserfs(&(0x7f0000000180)='reiserfs\x00', &(0x7f00000000c0)='./control\x00', 0x0, 0x0, &(0x7f00000001c0), 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="6a64657687e1ac66696c6530002c00"]) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000)='/dev/rtc0\x00', 0x230000, 0x0) ioctl$TIOCMBIC(r1, 0x5417, &(0x7f0000000040)=0x100) syz_extract_tcp_res(&(0x7f0000000140), 0x0, 0x0) accept(r1, &(0x7f00000001c0)=@ll={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @link_local}, &(0x7f0000000080)=0x80) 2033/05/18 03:33:20 executing program 3: r0 = socket$pppoe(0x18, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$KDSKBMODE(r1, 0x4b45, &(0x7f0000000000)=0xffffffff) connect$pppoe(r0, &(0x7f0000000080)={0x18, 0x0, {0x4, @dev={[0xaa, 0xaa, 0xaa, 0xaa, 0xaa]}, 'gre0\x00'}}, 0x1e) socket$pppoe(0x18, 0x1, 0x0) write(r0, &(0x7f0000000040), 0x0) 2033/05/18 03:33:20 executing program 6: perf_event_open(&(0x7f0000940000)={0x2, 0x70, 0xd6b, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x80002, 0xc5) ioctl$sock_netrom_TIOCOUTQ(r0, 0x5411, &(0x7f00000000c0)) socketpair$inet_icmp(0x2, 0x2, 0x1, &(0x7f0000000040)) 2033/05/18 03:33:20 executing program 5: r0 = open(&(0x7f000000fffa)='./bus\x00', 0x141042, 0x0) ioctl$SNDRV_CTL_IOCTL_CARD_INFO(r0, 0x81785501, &(0x7f0000000080)=""/159) fallocate(r0, 0xffffffffffffffff, 0x4a, 0x4) r1 = open(&(0x7f0000002000)='./bus\x00', 0x141042, 0x0) sendfile(r1, r0, &(0x7f0000000040), 0x10001) fallocate(r1, 0x11, 0x1, 0x8001) 2033/05/18 03:33:20 executing program 0 (fault-call:0 fault-nth:83): syz_fuseblk_mount(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00', 0xa000, 0x0, 0x0, 0x0, 0x0, 0x0) 2033/05/18 03:33:20 executing program 7: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000002000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, &(0x7f0000000080)="0f3566b8385bcd5e0f23c00f21f86635000002000f23f8660f1bdbba4300ed660f1ba0de8a65f36cbad104ec0f21067a003e3e660ffcb30900", 0x39}], 0x1, 0x0, &(0x7f0000000100), 0x0) pipe2(&(0x7f0000e3eff8)={0x0, 0x0}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) dup3(r3, r2, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x2, 0xc011, r3, 0x0) ioctl$KVM_SET_CPUID2(0xffffffffffffffff, 0x4008ae90, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000"]) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 366.188891] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 366.196159] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 366.259668] l2tp_ppp: sess 4/0: set debug=cf10464f [ 366.281446] l2tp_ppp: sess 4/0: get flags=0 [ 366.297864] FAULT_INJECTION: forcing a failure. [ 366.297864] name failslab, interval 1, probability 0, space 0, times 0 [ 366.309218] CPU: 1 PID: 25572 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 366.316506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 366.325863] Call Trace: [ 366.328463] dump_stack+0x1b9/0x294 [ 366.332106] ? dump_stack_print_info.cold.2+0x52/0x52 [ 366.337296] ? __lock_acquire+0x7f5/0x5140 [ 366.341522] ? __lock_acquire+0x7f5/0x5140 [ 366.345755] should_fail.cold.4+0xa/0x1a [ 366.349810] ? fault_create_debugfs_attr+0x1f0/0x1f0 [ 366.354909] ? debug_check_no_locks_freed+0x310/0x310 [ 366.360088] ? kasan_check_write+0x14/0x20 [ 366.364307] ? __init_rwsem+0x1c4/0x290 [ 366.368298] ? graph_lock+0x170/0x170 [ 366.372086] ? find_held_lock+0x36/0x1c0 [ 366.376133] ? find_held_lock+0x36/0x1c0 [ 366.380180] ? __lock_is_held+0xb5/0x140 [ 366.384232] ? check_same_owner+0x320/0x320 [ 366.388537] ? graph_lock+0x170/0x170 [ 366.392324] ? rcu_note_context_switch+0x710/0x710 [ 366.397239] __should_failslab+0x124/0x180 [ 366.401477] should_failslab+0x9/0x14 [ 366.405265] kmem_cache_alloc+0x2af/0x760 [ 366.409397] ? find_held_lock+0x36/0x1c0 [ 366.413451] fuse_alloc_inode+0x96/0x4f0 [ 366.417501] ? fuse_dev_alloc+0x4e0/0x4e0 [ 366.421634] ? lock_downgrade+0x8e0/0x8e0 [ 366.425770] ? kasan_check_read+0x11/0x20 [ 366.429905] ? do_raw_spin_unlock+0x9e/0x2e0 [ 366.434297] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 366.438865] ? kasan_check_write+0x14/0x20 [ 366.443084] ? find_inode.isra.19+0xc3/0x1d0 [ 366.447492] ? fuse_dev_alloc+0x4e0/0x4e0 [ 366.451625] alloc_inode+0x63/0x190 [ 366.455240] iget5_locked+0x20e/0x570 [ 366.459028] ? fuse_inode_eq+0x80/0x80 [ 366.462899] ? fuse_init_file_inode+0x70/0x70 [ 366.467383] ? inode_lru_isolate+0x580/0x580 [ 366.471778] ? cgwb_kill+0x630/0x630 [ 366.475489] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 366.481014] ? print_usage_bug+0xc0/0xc0 [ 366.485065] fuse_iget+0x1cc/0x820 [ 366.488596] ? fuse_change_attributes+0x810/0x810 [ 366.493427] fuse_get_root_inode+0x121/0x190 [ 366.497832] ? fuse_iget+0x820/0x820 [ 366.501976] ? _raw_spin_unlock_bh+0x30/0x40 [ 366.506373] ? bdi_set_max_ratio+0x112/0x150 [ 366.510766] fuse_fill_super+0x11e0/0x1e20 [ 366.515000] ? fuse_get_root_inode+0x190/0x190 [ 366.519579] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 366.525101] ? vsnprintf+0x242/0x1b40 [ 366.528888] ? pointer+0xa20/0xa20 [ 366.532419] ? vsprintf+0x40/0x40 [ 366.535860] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 366.540873] ? set_blocksize+0x2c4/0x350 [ 366.544920] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 366.550444] mount_bdev+0x30c/0x3e0 [ 366.554065] ? fuse_get_root_inode+0x190/0x190 [ 366.558635] fuse_mount_blk+0x34/0x40 [ 366.562419] mount_fs+0xae/0x328 [ 366.565774] vfs_kern_mount.part.34+0xd4/0x4d0 [ 366.570340] ? may_umount+0xb0/0xb0 [ 366.573953] ? _raw_read_unlock+0x22/0x30 [ 366.578085] ? __get_fs_type+0x97/0xc0 [ 366.581962] do_mount+0x564/0x3070 [ 366.585490] ? copy_mount_string+0x40/0x40 [ 366.589709] ? rcu_pm_notify+0xc0/0xc0 [ 366.593584] ? copy_mount_options+0x5f/0x380 [ 366.597977] ? rcu_read_lock_sched_held+0x108/0x120 [ 366.602978] ? kmem_cache_alloc_trace+0x616/0x780 [ 366.607806] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 366.613328] ? _copy_from_user+0xdf/0x150 [ 366.617465] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 366.622984] ? copy_mount_options+0x285/0x380 [ 366.627470] ksys_mount+0x12d/0x140 [ 366.631086] __x64_sys_mount+0xbe/0x150 [ 366.635045] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 366.640051] do_syscall_64+0x1b1/0x800 [ 366.643923] ? finish_task_switch+0x1ca/0x810 [ 366.648416] ? syscall_return_slowpath+0x5c0/0x5c0 [ 366.653342] ? syscall_return_slowpath+0x30f/0x5c0 [ 366.658258] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 366.663606] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 366.668442] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 366.673617] RIP: 0033:0x455979 [ 366.676790] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 366.684483] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 366.691734] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 366.698985] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 366.706588] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 366.713841] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 366.730982] ================================================================== [ 366.738381] BUG: KASAN: use-after-free in __lock_acquire+0x3888/0x5140 [ 366.745044] Read of size 8 at addr ffff8801cc7b1dc8 by task syz-executor0/25572 [ 366.752471] [ 366.754086] CPU: 0 PID: 25572 Comm: syz-executor0 Not tainted 4.17.0-rc3+ #25 [ 366.761337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 366.770676] Call Trace: [ 366.773250] dump_stack+0x1b9/0x294 [ 366.776872] ? dump_stack_print_info.cold.2+0x52/0x52 [ 366.782045] ? printk+0x9e/0xba [ 366.785306] ? kmsg_dump_rewind_nolock+0xe4/0xe4 [ 366.790045] ? kasan_check_write+0x14/0x20 [ 366.794269] print_address_description+0x6c/0x20b [ 366.799091] ? __lock_acquire+0x3888/0x5140 [ 366.803393] kasan_report.cold.7+0x242/0x2fe [ 366.807782] __asan_report_load8_noabort+0x14/0x20 [ 366.812691] __lock_acquire+0x3888/0x5140 [ 366.816819] ? lock_downgrade+0x8e0/0x8e0 [ 366.820950] ? kasan_check_read+0x11/0x20 [ 366.825078] ? rcu_is_watching+0x85/0x140 [ 366.829209] ? debug_check_no_locks_freed+0x310/0x310 [ 366.834380] ? is_bpf_text_address+0xd7/0x170 [ 366.838855] ? kernel_text_address+0x79/0xf0 [ 366.843245] ? __unwind_start+0x166/0x330 [ 366.847371] ? __kernel_text_address+0xd/0x40 [ 366.851847] ? unwind_get_return_address+0x61/0xa0 [ 366.856759] ? __save_stack_trace+0x7e/0xd0 [ 366.861064] ? save_stack+0xa9/0xd0 [ 366.864673] ? save_stack+0x43/0xd0 [ 366.868280] ? __kasan_slab_free+0x11a/0x170 [ 366.872667] ? kasan_slab_free+0xe/0x10 [ 366.876620] ? kfree+0xd9/0x260 [ 366.879879] ? unregister_shrinker+0x216/0x3a0 [ 366.884442] ? deactivate_locked_super+0x70/0x100 [ 366.889263] ? mount_bdev+0x37d/0x3e0 [ 366.893045] ? fuse_mount_blk+0x34/0x40 [ 366.897002] ? mount_fs+0xae/0x328 [ 366.900527] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 366.905271] ? do_mount+0x564/0x3070 [ 366.908964] ? ksys_mount+0x12d/0x140 [ 366.912747] ? graph_lock+0x170/0x170 [ 366.916527] ? kasan_check_read+0x11/0x20 [ 366.920656] ? do_raw_spin_unlock+0x9e/0x2e0 [ 366.925046] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 366.929607] ? print_usage_bug+0xc0/0xc0 [ 366.933652] ? kasan_check_write+0x14/0x20 [ 366.937869] ? do_raw_spin_lock+0xc1/0x200 [ 366.942084] lock_acquire+0x1dc/0x520 [ 366.945863] ? fuse_kill_sb_blk+0x50/0xb0 [ 366.949994] ? lock_release+0xa10/0xa10 [ 366.953954] ? check_same_owner+0x320/0x320 [ 366.958257] ? quarantine_put+0xeb/0x190 [ 366.962300] ? rcu_note_context_switch+0x710/0x710 [ 366.967210] ? __might_sleep+0x95/0x190 [ 366.971166] down_write+0x87/0x120 [ 366.974696] ? fuse_kill_sb_blk+0x50/0xb0 [ 366.978827] ? down_read+0x1b0/0x1b0 [ 366.982523] ? perf_trace_mm_vmscan_writepage+0x750/0x750 [ 366.988043] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 366.993039] fuse_kill_sb_blk+0x50/0xb0 [ 366.996998] deactivate_locked_super+0x97/0x100 [ 367.001650] mount_bdev+0x37d/0x3e0 [ 367.005259] ? fuse_get_root_inode+0x190/0x190 [ 367.009821] fuse_mount_blk+0x34/0x40 [ 367.013601] mount_fs+0xae/0x328 [ 367.016947] vfs_kern_mount.part.34+0xd4/0x4d0 [ 367.021508] ? may_umount+0xb0/0xb0 [ 367.025120] ? _raw_read_unlock+0x22/0x30 [ 367.029249] ? __get_fs_type+0x97/0xc0 [ 367.033115] do_mount+0x564/0x3070 [ 367.036635] ? copy_mount_string+0x40/0x40 [ 367.040853] ? rcu_pm_notify+0xc0/0xc0 [ 367.044720] ? copy_mount_options+0x5f/0x380 [ 367.049111] ? rcu_read_lock_sched_held+0x108/0x120 [ 367.054108] ? kmem_cache_alloc_trace+0x616/0x780 [ 367.058933] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 367.064452] ? _copy_from_user+0xdf/0x150 [ 367.068581] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 367.074098] ? copy_mount_options+0x285/0x380 [ 367.078573] ksys_mount+0x12d/0x140 [ 367.082181] __x64_sys_mount+0xbe/0x150 [ 367.086137] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 367.091135] do_syscall_64+0x1b1/0x800 [ 367.095008] ? finish_task_switch+0x1ca/0x810 [ 367.099487] ? syscall_return_slowpath+0x5c0/0x5c0 [ 367.104396] ? syscall_return_slowpath+0x30f/0x5c0 [ 367.109307] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 367.114659] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 367.119482] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 367.124649] RIP: 0033:0x455979 [ 367.127818] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 367.135507] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 367.142758] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 367.150010] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 367.157262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 367.164510] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 367.171758] [ 367.173365] Allocated by task 25572: [ 367.177061] save_stack+0x43/0xd0 [ 367.180493] kasan_kmalloc+0xc4/0xe0 [ 367.184186] kmem_cache_alloc_trace+0x152/0x780 [ 367.188834] fuse_fill_super+0xc92/0x1e20 [ 367.192964] mount_bdev+0x30c/0x3e0 [ 367.196568] fuse_mount_blk+0x34/0x40 [ 367.200346] mount_fs+0xae/0x328 [ 367.203692] vfs_kern_mount.part.34+0xd4/0x4d0 [ 367.208254] do_mount+0x564/0x3070 [ 367.211772] ksys_mount+0x12d/0x140 [ 367.215376] __x64_sys_mount+0xbe/0x150 [ 367.219333] do_syscall_64+0x1b1/0x800 [ 367.223201] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 367.228362] [ 367.229967] Freed by task 25568: [ 367.233323] save_stack+0x43/0xd0 [ 367.236760] __kasan_slab_free+0x11a/0x170 [ 367.240975] kasan_slab_free+0xe/0x10 [ 367.244754] kfree+0xd9/0x260 [ 367.247841] rcu_process_callbacks+0xa69/0x15f0 [ 367.252489] __do_softirq+0x2e0/0xaf5 [ 367.256266] [ 367.257873] The buggy address belongs to the object at ffff8801cc7b1b00 [ 367.257873] which belongs to the cache kmalloc-1024 of size 1024 [ 367.270695] The buggy address is located 712 bytes inside of [ 367.270695] 1024-byte region [ffff8801cc7b1b00, ffff8801cc7b1f00) [ 367.282630] The buggy address belongs to the page: [ 367.287542] page:ffffea000731ec00 count:1 mapcount:0 mapping:ffff8801cc7b0000 index:0xffff8801cc7b1680 compound_mapcount: 0 [ 367.298791] flags: 0x2fffc0000008100(slab|head) [ 367.303443] raw: 02fffc0000008100 ffff8801cc7b0000 ffff8801cc7b1680 0000000100000006 [ 367.311303] raw: ffffea0006fdc420 ffffea0006d5b1a0 ffff8801da800ac0 0000000000000000 [ 367.319156] page dumped because: kasan: bad access detected [ 367.324849] [ 367.326453] Memory state around the buggy address: [ 367.331359] ffff8801cc7b1c80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 367.338696] ffff8801cc7b1d00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 367.346035] >ffff8801cc7b1d80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 367.353368] ^ [ 367.359056] ffff8801cc7b1e00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 367.366394] ffff8801cc7b1e80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 367.373730] ================================================================== [ 367.381064] Disabling lock debugging due to kernel taint [ 367.386489] Kernel panic - not syncing: panic_on_warn set ... [ 367.386489] [ 367.393833] CPU: 0 PID: 25572 Comm: syz-executor0 Tainted: G B 4.17.0-rc3+ #25 [ 367.402470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 367.411798] Call Trace: [ 367.414367] dump_stack+0x1b9/0x294 [ 367.417979] ? dump_stack_print_info.cold.2+0x52/0x52 [ 367.423162] ? lock_downgrade+0x8e0/0x8e0 [ 367.427289] ? vprintk_default+0x28/0x30 [ 367.431335] ? __lock_acquire+0x3830/0x5140 [ 367.435637] panic+0x22f/0x4de [ 367.438810] ? add_taint.cold.5+0x16/0x16 [ 367.442939] ? add_taint.cold.5+0x5/0x16 [ 367.446989] ? do_raw_spin_unlock+0x9e/0x2e0 [ 367.451380] ? __lock_acquire+0x3888/0x5140 [ 367.455683] kasan_end_report+0x47/0x4f [ 367.459636] kasan_report.cold.7+0x76/0x2fe [ 367.463940] __asan_report_load8_noabort+0x14/0x20 [ 367.468846] __lock_acquire+0x3888/0x5140 [ 367.472989] ? lock_downgrade+0x8e0/0x8e0 [ 367.477121] ? kasan_check_read+0x11/0x20 [ 367.481248] ? rcu_is_watching+0x85/0x140 [ 367.485378] ? debug_check_no_locks_freed+0x310/0x310 [ 367.490551] ? is_bpf_text_address+0xd7/0x170 [ 367.495026] ? kernel_text_address+0x79/0xf0 [ 367.499415] ? __unwind_start+0x166/0x330 [ 367.503544] ? __kernel_text_address+0xd/0x40 [ 367.508023] ? unwind_get_return_address+0x61/0xa0 [ 367.512938] ? __save_stack_trace+0x7e/0xd0 [ 367.517241] ? save_stack+0xa9/0xd0 [ 367.520854] ? save_stack+0x43/0xd0 [ 367.524464] ? __kasan_slab_free+0x11a/0x170 [ 367.528872] ? kasan_slab_free+0xe/0x10 [ 367.532826] ? kfree+0xd9/0x260 [ 367.536086] ? unregister_shrinker+0x216/0x3a0 [ 367.540649] ? deactivate_locked_super+0x70/0x100 [ 367.545469] ? mount_bdev+0x37d/0x3e0 [ 367.549249] ? fuse_mount_blk+0x34/0x40 [ 367.553203] ? mount_fs+0xae/0x328 [ 367.556722] ? vfs_kern_mount.part.34+0xd4/0x4d0 [ 367.561455] ? do_mount+0x564/0x3070 [ 367.565151] ? ksys_mount+0x12d/0x140 [ 367.568932] ? graph_lock+0x170/0x170 [ 367.572712] ? kasan_check_read+0x11/0x20 [ 367.576838] ? do_raw_spin_unlock+0x9e/0x2e0 [ 367.581228] ? do_raw_spin_trylock+0x1b0/0x1b0 [ 367.585790] ? print_usage_bug+0xc0/0xc0 [ 367.589831] ? kasan_check_write+0x14/0x20 [ 367.594048] ? do_raw_spin_lock+0xc1/0x200 [ 367.598262] lock_acquire+0x1dc/0x520 [ 367.602042] ? fuse_kill_sb_blk+0x50/0xb0 [ 367.606171] ? lock_release+0xa10/0xa10 [ 367.610131] ? check_same_owner+0x320/0x320 [ 367.614431] ? quarantine_put+0xeb/0x190 [ 367.618476] ? rcu_note_context_switch+0x710/0x710 [ 367.623386] ? __might_sleep+0x95/0x190 [ 367.627343] down_write+0x87/0x120 [ 367.630866] ? fuse_kill_sb_blk+0x50/0xb0 [ 367.634993] ? down_read+0x1b0/0x1b0 [ 367.638689] ? perf_trace_mm_vmscan_writepage+0x750/0x750 [ 367.644207] ? __sanitizer_cov_trace_cmp4+0x16/0x20 [ 367.649201] fuse_kill_sb_blk+0x50/0xb0 [ 367.653157] deactivate_locked_super+0x97/0x100 [ 367.657806] mount_bdev+0x37d/0x3e0 [ 367.661415] ? fuse_get_root_inode+0x190/0x190 [ 367.665977] fuse_mount_blk+0x34/0x40 [ 367.669758] mount_fs+0xae/0x328 [ 367.673106] vfs_kern_mount.part.34+0xd4/0x4d0 [ 367.677669] ? may_umount+0xb0/0xb0 [ 367.681277] ? _raw_read_unlock+0x22/0x30 [ 367.685403] ? __get_fs_type+0x97/0xc0 [ 367.689270] do_mount+0x564/0x3070 [ 367.692790] ? copy_mount_string+0x40/0x40 [ 367.697005] ? rcu_pm_notify+0xc0/0xc0 [ 367.700877] ? copy_mount_options+0x5f/0x380 [ 367.705264] ? rcu_read_lock_sched_held+0x108/0x120 [ 367.710260] ? kmem_cache_alloc_trace+0x616/0x780 [ 367.715084] ? __sanitizer_cov_trace_const_cmp8+0x18/0x20 [ 367.720602] ? _copy_from_user+0xdf/0x150 [ 367.724733] ? __sanitizer_cov_trace_const_cmp4+0x16/0x20 [ 367.730253] ? copy_mount_options+0x285/0x380 [ 367.734729] ksys_mount+0x12d/0x140 [ 367.738336] __x64_sys_mount+0xbe/0x150 [ 367.742291] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 367.747289] do_syscall_64+0x1b1/0x800 [ 367.751158] ? finish_task_switch+0x1ca/0x810 [ 367.755633] ? syscall_return_slowpath+0x5c0/0x5c0 [ 367.760541] ? syscall_return_slowpath+0x30f/0x5c0 [ 367.765451] ? entry_SYSCALL_64_after_hwframe+0x59/0xbe [ 367.770794] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 367.775619] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 367.780787] RIP: 0033:0x455979 [ 367.783955] RSP: 002b:00007fe260309b08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 367.791642] RAX: ffffffffffffffda RBX: 0000000000000014 RCX: 0000000000455979 [ 367.798891] RDX: 00000000004ba2e5 RSI: 0000000020000080 RDI: 00000000200000c0 [ 367.806140] RBP: 00000000200000c0 R08: 00007fe260309b20 R09: 0000000000000000 [ 367.813388] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 367.820637] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 367.828352] Dumping ftrace buffer: [ 367.831873] (ftrace buffer empty) [ 367.835557] Kernel Offset: disabled [ 367.839157] Rebooting in 86400 seconds..