program:
r0 = syz_open_dev$dvb_demux(&(0x7f0000000080), 0x0, 0x41)
ioctl$DVB_DEMUX_DMX_SET_PES_FILTER(r0, 0x40146f2c, &(0x7f00000000c0)={0x1, 0x0, 0x3, 0x13, 0x4})
ioctl$DVB_DEMUX_DMX_REMOVE_PID(r0, 0x40026f34, &(0x7f0000000040)=0x1)
ioctl$DVB_DEMUX_DMX_ADD_PID(r0, 0x40026f33, &(0x7f0000000300)=0x5) (fail_nth: 75)
[ 74.033503][ T5303] Bluetooth: hci0: command tx timeout
[ 74.130309][ T5321] FAULT_INJECTION: forcing a failure.
[ 74.130309][ T5321] name failslab, interval 1, probability 0, space 0, times 1
[ 74.137539][ T5321] CPU: 0 UID: 0 PID: 5321 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full)
[ 74.137556][ T5321] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 74.137563][ T5321] Call Trace:
[ 74.137568][ T5321]
[ 74.137573][ T5321] dump_stack_lvl+0xe8/0x150
[ 74.137684][ T5321] should_fail_ex+0x412/0x560
[ 74.137742][ T5321] should_failslab+0xa8/0x100
[ 74.137774][ T5321] __kmalloc_cache_noprof+0x83/0x6e0
[ 74.137808][ T5321] ? __kasan_kmalloc+0x93/0xb0
[ 74.137824][ T5321] ? vidtv_psi_pmt_stream_init+0x5a/0x440
[ 74.137842][ T5321] vidtv_psi_pmt_stream_init+0x5a/0x440
[ 74.137859][ T5321] vidtv_channel_pmt_match_sections+0x229/0x420
[ 74.137881][ T5321] vidtv_channel_si_init+0x12c5/0x1580
[ 74.137910][ T5321] vidtv_mux_init+0x4b0/0x1a70
[ 74.137932][ T5321] vidtv_start_feed+0x34a/0x510
[ 74.137947][ T5321] ? __pfx_vidtv_start_feed+0x10/0x10
[ 74.137958][ T5321] ? do_raw_spin_lock+0x12b/0x2f0
[ 74.137986][ T5321] ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10
[ 74.138010][ T5321] dmx_ts_feed_start_filtering+0x135/0x240
[ 74.138027][ T5321] dvb_dmxdev_add_pid+0x4b2/0x630
[ 74.138044][ T5321] dvb_demux_do_ioctl+0x3d5/0x540
[ 74.138059][ T5321] dvb_usercopy+0x199/0x2e0
[ 74.138069][ T5321] ? __pfx_dvb_demux_do_ioctl+0x10/0x10
[ 74.138081][ T5321] ? __pfx_dvb_usercopy+0x10/0x10
[ 74.138098][ T5321] ? __fget_files+0x3a0/0x420
[ 74.138125][ T5321] ? __fget_files+0x2a/0x420
[ 74.138137][ T5321] ? __pfx_dvb_demux_ioctl+0x10/0x10
[ 74.138149][ T5321] dvb_demux_ioctl+0x29/0x40
[ 74.138185][ T5321] __se_sys_ioctl+0xfc/0x170
[ 74.138220][ T5321] do_syscall_64+0xe2/0xf80
[ 74.138260][ T5321] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 74.138278][ T5321] ? trace_irq_disable+0x37/0x100
[ 74.138308][ T5321] ? clear_bhb_loop+0x60/0xb0
[ 74.138323][ T5321] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 74.138335][ T5321] RIP: 0033:0x7f02c219aeb9
[ 74.138348][ T5321] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 74.138358][ T5321] RSP: 002b:00007f02c3122028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 74.138371][ T5321] RAX: ffffffffffffffda RBX: 00007f02c2415fa0 RCX: 00007f02c219aeb9
[ 74.138379][ T5321] RDX: 0000200000000300 RSI: 0000000040026f33 RDI: 0000000000000003
[ 74.138387][ T5321] RBP: 00007f02c3122090 R08: 0000000000000000 R09: 0000000000000000
[ 74.138394][ T5321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 74.138401][ T5321] R13: 00007f02c2416038 R14: 00007f02c2415fa0 R15: 00007ffec5072928
[ 74.138421][ T5321]
[ 74.138464][ T5321] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN NOPTI
[ 74.256241][ T5321] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[ 74.260174][ T5321] CPU: 0 UID: 0 PID: 5321 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full)
[ 74.263899][ T5321] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[ 74.268086][ T5321] RIP: 0010:vidtv_psi_desc_assign+0x29/0x90
[ 74.270595][ T5321] Code: 90 0f 1f 40 d6 41 57 41 56 41 55 41 54 53 48 89 f3 49 89 fe 49 bc 00 00 00 00 00 fc ff df e8 0e 36 a2 f9 4d 89 f5 49 c1 ed 03 <43> 80 7c 25 00 00 74 08 4c 89 f7 e8 77 13 0c fa 4d 8b 3e 4c 39 fb
[ 74.278538][ T5321] RSP: 0018:ffffc9000e8c7930 EFLAGS: 00010247
[ 74.281165][ T5321] RAX: ffffffff882253b2 RBX: ffff888012e89e80 RCX: ffff8880331d24c0
[ 74.284445][ T5321] RDX: 0000000000000000 RSI: ffff888012e89e80 RDI: 0000000000000005
[ 74.287687][ T5321] RBP: ffff888040eecd00 R08: 0000000000000000 R09: 4453534204050000
[ 74.290924][ T5321] R10: dffffc0000000000 R11: ffffed10025d13d1 R12: dffffc0000000000
[ 74.294186][ T5321] R13: 0000000000000000 R14: 0000000000000005 R15: ffff888000848180
[ 74.297445][ T5321] FS: 00007f02c31226c0(0000) GS:ffff88808cce8000(0000) knlGS:0000000000000000
[ 74.301114][ T5321] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 74.303882][ T5321] CR2: 00007f02c2f4d9d0 CR3: 000000004415c000 CR4: 0000000000352ef0
[ 74.307202][ T5321] Call Trace:
[ 74.308702][ T5321]
[ 74.310010][ T5321] vidtv_channel_pmt_match_sections+0x289/0x420
[ 74.312649][ T5321] vidtv_channel_si_init+0x12c5/0x1580
[ 74.315015][ T5321] vidtv_mux_init+0x4b0/0x1a70
[ 74.317073][ T5321] vidtv_start_feed+0x34a/0x510
[ 74.319195][ T5321] ? __pfx_vidtv_start_feed+0x10/0x10
[ 74.321436][ T5321] ? do_raw_spin_lock+0x12b/0x2f0
[ 74.323572][ T5321] ? __pfx_vidtv_bridge_on_new_pkts_avail+0x10/0x10
[ 74.326151][ T5321] dmx_ts_feed_start_filtering+0x135/0x240
[ 74.328671][ T5321] dvb_dmxdev_add_pid+0x4b2/0x630
[ 74.330825][ T5321] dvb_demux_do_ioctl+0x3d5/0x540
[ 74.332980][ T5321] dvb_usercopy+0x199/0x2e0
[ 74.334959][ T5321] ? __pfx_dvb_demux_do_ioctl+0x10/0x10
[ 74.337356][ T5321] ? __pfx_dvb_usercopy+0x10/0x10
[ 74.339537][ T5321] ? __fget_files+0x3a0/0x420
[ 74.341556][ T5321] ? __fget_files+0x2a/0x420
[ 74.343531][ T5321] ? __pfx_dvb_demux_ioctl+0x10/0x10
[ 74.345764][ T5321] dvb_demux_ioctl+0x29/0x40
[ 74.347700][ T5321] __se_sys_ioctl+0xfc/0x170
[ 74.349713][ T5321] do_syscall_64+0xe2/0xf80
[ 74.351606][ T5321] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 74.354127][ T5321] ? trace_irq_disable+0x37/0x100
[ 74.356202][ T5321] ? clear_bhb_loop+0x60/0xb0
[ 74.358131][ T5321] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 74.360611][ T5321] RIP: 0033:0x7f02c219aeb9
[ 74.362449][ T5321] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 74.370784][ T5321] RSP: 002b:00007f02c3122028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 74.374232][ T5321] RAX: ffffffffffffffda RBX: 00007f02c2415fa0 RCX: 00007f02c219aeb9
[ 74.377619][ T5321] RDX: 0000200000000300 RSI: 0000000040026f33 RDI: 0000000000000003
[ 74.381036][ T5321] RBP: 00007f02c3122090 R08: 0000000000000000 R09: 0000000000000000
[ 74.384111][ T5321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 74.387301][ T5321] R13: 00007f02c2416038 R14: 00007f02c2415fa0 R15: 00007ffec5072928
[ 74.390674][ T5321]
[ 74.391987][ T5321] Modules linked in:
[ 74.394284][ T5321] ---[ end trace 0000000000000000 ]---
[ 74.406941][ T5321] RIP: 0010:vidtv_psi_desc_assign+0x29/0x90
[ 74.409567][ T5321] Code: 90 0f 1f 40 d6 41 57 41 56 41 55 41 54 53 48 89 f3 49 89 fe 49 bc 00 00 00 00 00 fc ff df e8 0e 36 a2 f9 4d 89 f5 49 c1 ed 03 <43> 80 7c 25 00 00 74 08 4c 89 f7 e8 77 13 0c fa 4d 8b 3e 4c 39 fb
[ 74.418537][ T5321] RSP: 0018:ffffc9000e8c7930 EFLAGS: 00010247
[ 74.422024][ T5321] RAX: ffffffff882253b2 RBX: ffff888012e89e80 RCX: ffff8880331d24c0
[ 74.425845][ T5321] RDX: 0000000000000000 RSI: ffff888012e89e80 RDI: 0000000000000005
[ 74.429438][ T5321] RBP: ffff888040eecd00 R08: 0000000000000000 R09: 4453534204050000
[ 74.433117][ T5321] R10: dffffc0000000000 R11: ffffed10025d13d1 R12: dffffc0000000000
[ 74.437397][ T5321] R13: 0000000000000000 R14: 0000000000000005 R15: ffff888000848180
[ 74.441054][ T5321] FS: 00007f02c31226c0(0000) GS:ffff88808cce8000(0000) knlGS:0000000000000000
[ 74.445476][ T5321] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 74.448338][ T5321] CR2: 00007f050d96ead0 CR3: 000000004415c000 CR4: 0000000000352ef0
[ 74.451893][ T5321] Kernel panic - not syncing: Fatal exception
[ 74.455068][ T5321] Kernel Offset: disabled
[ 74.457014][ T5321] Rebooting in 86400 seconds..