01, 0x3, 0x400, 0xa0, 0x400, 0x13, 0x6, 0x6, 0x2000000000000000, 0x3, 0x0, 0x9, 0x7f, 0x7, 0x2488, 0x45, 0x8000, 0x3, 0x10000, 0x3, 0x4, 0x3ff, 0x80000000, 0xffff, 0x2, 0x400, 0x2, 0x800, 0x0, 0xffffffff80000001, 0x10000, 0x1f]}) close_range(r0, 0xffffffffffffffff, 0x0) 20:35:48 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x301ac0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 20:35:48 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ip_vs_stats\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) r3 = fcntl$dupfd(r2, 0x406, r2) accept$unix(r3, &(0x7f00000000c0), &(0x7f0000000040)=0x6e) r4 = syz_open_pts(r0, 0x109400) ioctl$TIOCVHANGUP(r4, 0x5437, 0x0) r5 = socket$inet(0x2, 0x800, 0x1000) close_range(r5, r3, 0x0) r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r6, &(0x7f0000000140)=@ocfs2={0xc, 0x1, {0x400, 0x5}}, 0x0) setsockopt$inet_buf(r6, 0x0, 0x2c, &(0x7f0000000000)="8c990a75c607", 0x6) 20:35:48 executing program 1: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/ip_tables_names\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x20400, 0x0) kcmp(0xffffffffffffffff, 0x0, 0x5, r1, 0xffffffffffffffff) close_range(r0, 0xffffffffffffffff, 0x0) ioctl$TIOCNOTTY(r1, 0x5422) 20:35:48 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r1, 0x5437, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x0) 20:35:48 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETPERSIST(r0, 0x400454cb, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r0, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0x1}}, './file0\x00'}) ioctl$TIOCL_SETSEL(r2, 0x541c, &(0x7f00000000c0)={0x2, {0x2, 0x5, 0xfc00, 0x9, 0x1, 0x1}}) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) readv(r2, &(0x7f0000000280)=[{&(0x7f0000000100)=""/60, 0x3c}, {&(0x7f0000000140)=""/61, 0x3d}, {&(0x7f0000000180)=""/246, 0xf6}], 0x3) close_range(r0, 0xffffffffffffffff, 0x0) 20:35:48 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) kcmp(0xffffffffffffffff, 0x0, 0x5, r1, 0xffffffffffffffff) ioctl$TCXONC(r0, 0x540a, 0x1) r2 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TIOCL_SCROLLCONSOLE(r2, 0x541c, &(0x7f0000000040)={0xd, 0x7}) 20:36:03 executing program 7: sendmsg$NFT_MSG_GETOBJ(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040), 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x6c, 0x13, 0xa, 0x101, 0x0, 0x0, {0x2, 0x0, 0x2}, [@NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x9}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x1}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x2}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x1}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x2}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x8}]}, 0x6c}, 0x1, 0x0, 0x0, 0x800}, 0x24000000) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 20:36:03 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r4, 0x6611) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x0) 20:36:03 executing program 6: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r1, 0x5437, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x0) 20:36:03 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') sendmsg$IPVS_CMD_GET_SERVICE(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000140)={&(0x7f00000001c0)={0x34, 0x0, 0x1, 0x70bd26, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0xa70e}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8}, @IPVS_CMD_ATTR_DEST={0x4}, @IPVS_CMD_ATTR_DAEMON={0x4}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x4a}]}, 0x34}, 0x1, 0x0, 0x0, 0x60000}, 0x4000010) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IPVS_CMD_DEL_DEST(r1, &(0x7f0000000240)={&(0x7f00000000c0), 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0x1c, 0x0, 0x300, 0x70bd2c, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x2}, 0x0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) kcmp(0xffffffffffffffff, 0x0, 0x5, r2, 0xffffffffffffffff) close_range(r0, 0xffffffffffffffff, 0x0) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000780), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_CHANNELS_SET(0xffffffffffffffff, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000880)={&(0x7f00000007c0)={0x2c, r3, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_CHANNELS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}]}]}, 0x2c}}, 0x0) accept$packet(r0, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000300)=0x14) r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r6 = socket$nl_audit(0x10, 0x3, 0x9) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000340)={'sit0\x00', 0x0}) sendmsg$inet(r5, &(0x7f0000000780)={&(0x7f0000000000)={0x2, 0x0, @local}, 0x10, &(0x7f00000003c0)=[{&(0x7f0000000300)="6fb9", 0xffeb}], 0x1, &(0x7f0000000700)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r7, @remote, @broadcast}}}], 0x20}, 0x0) r8 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r9 = socket$nl_audit(0x10, 0x3, 0x9) ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000340)={'sit0\x00', 0x0}) sendmsg$inet(r8, &(0x7f0000000780)={&(0x7f0000000000)={0x2, 0x0, @local}, 0x10, &(0x7f00000003c0)=[{&(0x7f0000000300)="6fb9", 0xffeb}], 0x1, &(0x7f0000000700)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r10, @remote, @broadcast}}}], 0x20}, 0x0) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000340)={{{@in6=@private0, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@loopback}, 0x0, @in6=@empty}}, &(0x7f0000000440)=0xe8) sendmsg$ETHTOOL_MSG_LINKINFO_GET(r0, &(0x7f00000005c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000580)={&(0x7f0000000480)={0xf4, r3, 0x10, 0x70bd2a, 0x25dfdbfb, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}]}, @HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netpci0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_virt_wifi\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r11}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x4}, @HEADER={0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}]}]}, 0xf4}, 0x1, 0x0, 0x0, 0x40040d0}, 0x4000100) 20:36:03 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r1, 0x1, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000040)={0x0, 0x1, 0x0, 0x1}) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fallocate(r0, 0x8a, 0x100000001, 0x1d) ioctl$TIOCGPTPEER(r2, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 20:36:03 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040), 0x400, 0x0) recvmsg(r5, &(0x7f0000001780)={&(0x7f00000010c0)=@in6={0xa, 0x0, 0x0, @remote}, 0x80, &(0x7f0000001680)=[{&(0x7f0000001140)=""/202, 0xca}, {&(0x7f0000001240)=""/67, 0x43}, {&(0x7f00000012c0)=""/192, 0xc0}, {&(0x7f0000001380)=""/121, 0x79}, {&(0x7f0000001400)=""/37, 0x25}, {&(0x7f0000001440)=""/234, 0xea}, {&(0x7f0000001540)=""/193, 0xc1}, {&(0x7f0000001640)=""/39, 0x27}], 0x8, &(0x7f0000001700)=""/76, 0x4c}, 0x140) sendto$inet6(r4, &(0x7f00000000c0)="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", 0x1000, 0x4040044, 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 20:36:03 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') sendfile(r0, r0, &(0x7f0000000040)=0x4, 0x9ed) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) kcmp(0xffffffffffffffff, 0x0, 0x5, r1, 0xffffffffffffffff) close_range(r0, 0xffffffffffffffff, 0x0) 20:36:03 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r1, &(0x7f0000000640)=ANY=[@ANYBLOB="0c00000001000000000400000550349af1ce6201007ec7fcff"], 0x0) clone3(&(0x7f0000000540)={0x40102400, &(0x7f0000000200), &(0x7f0000000240), &(0x7f0000000280), {0x26}, &(0x7f00000002c0)=""/52, 0x34, &(0x7f0000000480)=""/71, &(0x7f0000000500)=[0xffffffffffffffff], 0x1, {r1}}, 0x58) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r2, 0x5441, 0x0) r3 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000005c0), 0x1, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r3, 0x40286608, &(0x7f0000000600)={0x3, 0x4, 0x0, 0x6, 0x3, 0x81}) close_range(r0, 0xffffffffffffffff, 0x0) r4 = syz_open_dev$mouse(&(0x7f00000001c0), 0x0, 0x8c0) syz_io_uring_setup(0x2b4f, &(0x7f0000000080)={0x0, 0x0, 0x8}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r7 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_setup(0x4866, &(0x7f00000006c0)={0x0, 0x7176, 0x0, 0x0, 0x3, 0x0, r1}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000680)=0x0) r10 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r8, r9, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r10, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r8, r6, &(0x7f0000000040)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r11}}, 0x3) syz_io_uring_submit(r5, 0x0, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x5, 0x0, r7, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}, 0x0, 0x0, 0x1}, 0x0) getsockopt$IP_VS_SO_GET_DESTS(r4, 0x0, 0x484, &(0x7f0000000380)=""/200, &(0x7f0000000180)=0xc8) socket$netlink(0x10, 0x3, 0x1) 20:36:03 executing program 3: getsockopt$packet_int(0xffffffffffffffff, 0x107, 0x0, &(0x7f0000000540), &(0x7f0000000580)=0x4) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = syz_open_dev$vcsn(&(0x7f0000000400), 0x7f, 0x200000) sendmsg$FOU_CMD_ADD(r1, &(0x7f0000000500)={&(0x7f0000000440)={0x10, 0x0, 0x0, 0x10080000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x28, 0x0, 0x1, 0x70bd2c, 0x25dfdbfc, {}, [@FOU_ATTR_PEER_V6={0x14, 0x9, @rand_addr=' \x01\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x840}, 0x4c820) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x214282, 0x0) ioctl$TIOCGPTPEER(r2, 0x5441, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)=0x0) close_range(r0, 0xffffffffffffffff, 0x0) sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000500)={0x1c, 0x0, 0x1, 0x0, 0x0, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_PROBE_MESH_LINK(0xffffffffffffffff, &(0x7f0000001340)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000001300)={&(0x7f0000000a40)={0x890, 0x0, 0x200, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0xb533, 0x3e}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_FRAME={0x26, 0x33, @mgmt_frame=@action_no_ack={@with_ht={{{0x0, 0x0, 0xe, 0x0, 0x0, 0x1, 0x1}, {0x81}, @broadcast, @device_b, @random="10bad1d74623", {0x2, 0x8}}, @ver_80211n={0x0, 0x80, 0x3, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1}}, @ext_ch_sw={0x4, 0x4, {{0x0, 0x20, 0xd, 0x7}, @void}}}}, @NL80211_ATTR_FRAME={0x5e8, 0x33, @data_frame={@qos_ht={{{@type11={{0x0, 0x2, 0xb, 0x1, 0x1, 0x1, 0x0, 0x1}, {}, @broadcast, @device_a, @device_b, {0x9, 0x1}, @broadcast}, {0xe, 0x1, 0x2, 0x0, 0x90}}, {@type01={{0x0, 0x2, 0xf, 0x0, 0x1, 0x1, 0x1, 0x1}, {0x8}, @broadcast, @from_mac, @initial, {0x6, 0x74}}, {0x2, 0x0, 0x0, 0x1, 0x7f}}}, @ver_80211n={0x0, 0x6, 0x3, 0x2, 0x0, 0x1}}, @random="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"}}, @NL80211_ATTR_FRAME={0x23c, 0x33, @data_frame={@qos_no_ht={{@type00={{0x0, 0x2, 0x8, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1}, {0x6a}, @broadcast, @device_b, @from_mac, {0xe, 0x80}}, {0xd}}, {@type01={{0x0, 0x2, 0xe, 0x0, 0x1, 0x0, 0x1, 0x1}, {0x4}, @broadcast, @initial, @from_mac=@device_b, {0x5}}, {0x2, 0x0, 0x0, 0x1, 0x61}}}, @a_msdu=[{@device_b, @device_a, 0xc, "f7ae271cf44a38815283dc4a"}, {@device_b, @device_b, 0xdb, "723d7397993a677dfb912f881a39ea41ac14e0e6424d020e7436c5cc72752d2fb836082697a8afe9e2f512dbbae0924dbd5a1fa1c08f74ce620c2b2056b646f60397f5f3a8b7832a2fa43780e4dad109cc5a1ad23606eef74713485da8fbca0c77ba0dfd492d644049bf041d9e9c6794eec3db1157375d1af876b75b70d06f4570e2198b2ad0752a4f84a8c7eaea6bdba92ef97149f44ca3efa0fd89dc1205e0499a56431d4ef94629cd62fb8bbafab0a6c115b3394622fcd5fc3aa9243a21243afe2695d580b302666836c20573aa0b49a2563a1e1d2f42c61aba"}, {@device_b, @broadcast, 0xee, "2d7c0dc5475a27f79c02df7e189751fe69c0abbd3b3042e34e76d994e8536a50ff1f09aa09daf453c3188c4965a79e2e43643a77001c1b1d5bb90971d200c651605b482fa81e08b6de1e08543286ec766abbbade9e2cb3a0b9ef691bd6ad2c5d0d41cd6d30d0e6040ea37a8231a957d47f7e59f1540966add0541026a396e767755a10d832b96274ccc0119adf9881486b96c6d7f0d2cef3c93a620ce5a1a88d87c55efb8360baaaa0d16d61878480fa7ae5b0fc8424f7e511f5a2e6b8abea1a0f270ef88e273058c1899eca15d37ea6b537c67a72f2457d995490faf7be8e33cb802b41a6b7fd4964748e3912b5"}]}}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x890}, 0x1, 0x0, 0x0, 0x20008804}, 0x40000000) fgetxattr(0xffffffffffffffff, &(0x7f00000008c0)=@random={'trusted.', '\x00'}, &(0x7f0000000900)=""/231, 0xe7) r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/vlan/vlan1\x00') r5 = getpid() sched_getattr(r5, &(0x7f0000000000)={0x38}, 0x38, 0x0) r6 = fork() clone3(&(0x7f0000000840)={0x200100, &(0x7f00000005c0), &(0x7f0000000600), &(0x7f0000000640), {0x19}, &(0x7f0000000680)=""/254, 0xfe, &(0x7f0000000780)=""/128, &(0x7f0000000800)=[r5, 0xffffffffffffffff, r3, r6], 0x4, {r4}}, 0x58) ioctl$FS_IOC_FSSETXATTR(r4, 0x401c5820, &(0x7f0000000100)={0x8000, 0xb5, 0x0, 0xac1, 0x6}) recvmsg$unix(r0, &(0x7f0000000340)={&(0x7f0000000140), 0x6e, &(0x7f00000002c0)=[{&(0x7f00000001c0)=""/160, 0xa0}, {&(0x7f0000000280)=""/37, 0x25}], 0x2, &(0x7f0000000300)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x20}, 0x2040) setsockopt$SO_BINDTODEVICE_wg(r7, 0x1, 0x19, &(0x7f0000000380)='wg1\x00', 0x4) 20:36:03 executing program 6: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r0, 0xc0189372, &(0x7f0000000400)=ANY=[@ANYBLOB="010000000100000018000000dd3211eba7cecbd79519270070ad007351f4", @ANYRES32=r0, @ANYBLOB="0003200500000057722f89deecffff000000ffffff8d35bf4826d98f62bc3a7e2df1988990ecbd3332e13ed89cac416c701688f46755b537b2b002993b945f08c3fd939b3aed433000000002b1c29a4ce0cc17d5e7f021ace91a8931bbbaa6c286a30f5fef9d4495645fbf5bbd25b733165341a63fa84be04aed73db843b4011f2bb0264fdfa15067085dcedea3b77f67beb34c0881876b8cecc2c23e94a47d6e05579d4472b39d2c1c3f981e7ce57d4f86caceff53e4546fe2f7d6580bb681bf6a98f40c819c195a6662960283a3a962d0000"]) syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r1) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r2, 0x5437, 0x0) ioctl$TIOCVHANGUP(r2, 0x5437, 0x0) syz_open_dev$tty20(0xc, 0x4, 0x0) r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x200000, 0x0) openat$sr(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0) r4 = syz_io_uring_setup(0x40000001, &(0x7f0000000380)={0x0, 0x2fc9, 0x1}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000340), &(0x7f00000001c0)) io_uring_enter(r4, 0x1, 0x0, 0x0, 0x0, 0x0) r5 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r5, 0x5437, 0x0) ioctl$TIOCSIG(r5, 0x40045436, 0x1a) ioctl$FS_IOC_SETFSLABEL(r4, 0x41009432, &(0x7f00000000c0)="fb94a881f43066e9a6714978793d187f8d278f0d12546fcd59d1b5549fa4b76b90f1d853b38ee8f9a28b36db29785f0dce8197538a347fbf4b89761bd26e23412b8a7962a040d2755b0122154ce879cefcc29dde43204d316be7999f89fed59f8f9fd3bfc7c34d4002e7a5466098530bbdff14ebc398ff065fd1dcf7d62b2f94a8a4f525d14cac58f6be8fd4da26228955ce2086c04d9844f20dd868e9d2b8739563a3a1402f3a5a38f3c3576bd632355414a367e1f63383fc07132fc01f1112aa2f34b030de9c18054975131b3a0e87a7a2c0b1b8a9ee0f772263e86d1223d7e0840ff60d01bf45ab8a59d0699956780829b94097c7ff52b84b0c7d43bfaf16") ioctl$TIOCGPTPEER(r3, 0x5441, 0x6e24) ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) ioctl$TIOCGICOUNT(0xffffffffffffffff, 0x545d, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 20:36:03 executing program 4: r0 = getpid() sched_getattr(r0, &(0x7f0000000000)={0x38}, 0x38, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000040)={0x0}, &(0x7f00000000c0)=0xc) r2 = syz_open_procfs(r1, &(0x7f0000000140)='numa_maps\x00') r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r3, 0x5441, 0x0) close_range(r2, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r6 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r6, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) readv(r6, &(0x7f0000000240)=[{&(0x7f0000000180)=""/151, 0x97}, {&(0x7f0000000100)=""/24, 0x18}], 0x2) 20:36:03 executing program 2: getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000040)={0x0, @remote, @initdev}, &(0x7f00000000c0)=0xc) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 20:36:18 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040), 0x400, 0x0) recvmsg(r5, &(0x7f0000001780)={&(0x7f00000010c0)=@in6={0xa, 0x0, 0x0, @remote}, 0x80, &(0x7f0000001680)=[{&(0x7f0000001140)=""/202, 0xca}, {&(0x7f0000001240)=""/67, 0x43}, {&(0x7f00000012c0)=""/192, 0xc0}, {&(0x7f0000001380)=""/121, 0x79}, {&(0x7f0000001400)=""/37, 0x25}, {&(0x7f0000001440)=""/234, 0xea}, {&(0x7f0000001540)=""/193, 0xc1}, {&(0x7f0000001640)=""/39, 0x27}], 0x8, &(0x7f0000001700)=""/76, 0x4c}, 0x140) sendto$inet6(r4, &(0x7f00000000c0)="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", 0x1000, 0x4040044, 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 20:36:18 executing program 1: syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) kcmp(0xffffffffffffffff, 0x0, 0x5, r0, 0xffffffffffffffff) r1 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r1, 0x1, 0x0, 0x0, 0x0, 0x0) inotify_init() r2 = syz_open_dev$mouse(&(0x7f0000000040), 0x7, 0x30080) close_range(r2, r2, 0x0) 20:36:18 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x8) r2 = mq_open(&(0x7f0000000040)='/dev/ptmx\x00', 0x1, 0x24, &(0x7f00000000c0)={0x8c, 0x7, 0x2b, 0xda}) read(r2, &(0x7f0000000100)=""/57, 0x39) close_range(r0, 0xffffffffffffffff, 0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) sendfile(r0, r3, &(0x7f0000000140)=0x10001, 0xa7) 20:36:18 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') setsockopt$bt_hci_HCI_FILTER(r0, 0x0, 0x2, &(0x7f0000000540)={0x1f, [0x10001, 0x9], 0x401}, 0x10) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r2, 0x5437, 0x0) ioctl$TCSETSF(r2, 0x5404, &(0x7f00000000c0)={0x8, 0xbd1, 0x200, 0x3, 0xc, "562bbf1cdc356a5f0b0d8c80181f6d5f03fbb0"}) r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000007c0), 0x800, 0x0) ioctl$TIOCGPTPEER(r3, 0x5441, 0x5) syz_open_pts(r1, 0x8c0600) r4 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000600), 0x40140, 0x0) fcntl$lock(r3, 0x5, &(0x7f0000000800)={0x0, 0xb8d1953e2b5fc7a7, 0x1, 0x6, 0xffffffffffffffff}) preadv(r4, &(0x7f0000000780)=[{&(0x7f0000000640)=""/75, 0x4b}, {&(0x7f00000006c0)=""/183, 0xb7}], 0x2, 0xffff, 0x1) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r7 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) copy_file_range(r7, &(0x7f0000000580)=0x1, r2, &(0x7f00000005c0)=0x2, 0x119, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) ioctl$KDFONTOP_COPY(r0, 0x4b72, &(0x7f0000000500)={0x3, 0x1, 0x7, 0x5, 0x44, &(0x7f0000000100)}) close_range(r0, 0xffffffffffffffff, 0x0) 20:36:18 executing program 6: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x1, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000680)=@rc={0x1f, @fixed}}, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r4, 0x40286608, &(0x7f0000000440)={0xe4, 0x400, 0x200, 0x6, 0xec4, 0xbae2}) preadv(r1, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}, {&(0x7f00000001c0)=""/201, 0xc9}, {&(0x7f00000002c0)=""/134, 0x86}, {&(0x7f0000000380)=""/89, 0x59}], 0x4, 0x81, 0xcb54) r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r5, 0x5441, 0x0) r6 = accept4$packet(r0, &(0x7f0000000480)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000004c0)=0x14, 0x80800) ppoll(&(0x7f0000000500)=[{r6, 0x2010}, {r0, 0x223c}, {r1, 0x402}], 0x3, &(0x7f0000000540), &(0x7f0000000580)={[0x101]}, 0x8) 20:36:18 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000200)={&(0x7f00000000c0)={0x140, 0x12, 0x4, 0x70bd2d, 0x25dfdbff, {0xa}, [@generic="611e27259687c013c006e6696fdb3b9a442ca3bc885aeb3cab276d725d877334667cf6d70091edb05ba123961dc80ab9e8f71edcde66cf4ff1307e62d1532fdadb8a59baddb3a19f1a358549491350da981833665473ac1686437cdf2afe06ebb7e2aca487efc379b954c551f9adf7695a1e89da70efe17240d0a146c7b72c97d53d540bd7fdb718a22ad2459fb870c502faec702139e0054dce949466dc457ca2", @nested={0x7b, 0x96, 0x0, 0x1, [@generic="2eb4eacfe02b1d1cc637a6aabfcd1c41d47f20ba87c1cbb54804d66458e1aea5d8d6a3540520a55942c373982e2367a101519e65d42226c904c8bcffdf311881ea5625798d2051cb8ead3d3257557d5dc5eff9375a4fe9fe9cc3355e32d07d7fa007eb408bb830b50c51ab", @typed={0xc, 0x6, 0x0, 0x0, @u64=0x5}]}, @typed={0xc, 0x56, 0x0, 0x0, @u64}]}, 0x140}}, 0x20000010) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000280), r2) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = socket$inet_icmp(0x2, 0x2, 0x1) signalfd(r5, &(0x7f0000000380)={[0x7]}, 0x8) sendmsg$IEEE802154_ADD_IFACE(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)=ANY=[@ANYBLOB="14000000", @ANYRES16=r3, @ANYBLOB="0b00000000000000e0002100000009001f0070687930000000000a00010096ad9a6ab047"], 0x2c}}, 0x0) sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="00012dbd7000fbdbdf252d000000060006000300000005002b000200000008000200", @ANYRES32=0x0, @ANYBLOB="08002f00018000000600060001000000"], 0x3c}, 0x1, 0x0, 0x0, 0x8044}, 0x24000040) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) r6 = inotify_init() syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r9 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000400)={'wpan1\x00', 0x0}) sendmsg$IEEE802154_LIST_IFACE(r2, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x40, 0x0, 0x2, 0x70bd26, 0x25dfdbfd, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r10}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x40}, 0x1, 0x0, 0x0, 0x20008010}, 0x800) syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r9, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) close_range(r9, r6, 0x0) 20:36:18 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r1, &(0x7f0000000640)=ANY=[@ANYBLOB="0c00000001000000000400000550349af1ce6201007ec7fcff"], 0x0) clone3(&(0x7f0000000540)={0x40102400, &(0x7f0000000200), &(0x7f0000000240), &(0x7f0000000280), {0x26}, &(0x7f00000002c0)=""/52, 0x34, &(0x7f0000000480)=""/71, &(0x7f0000000500)=[0xffffffffffffffff], 0x1, {r1}}, 0x58) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r2, 0x5441, 0x0) r3 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000005c0), 0x1, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r3, 0x40286608, &(0x7f0000000600)={0x3, 0x4, 0x0, 0x6, 0x3, 0x81}) close_range(r0, 0xffffffffffffffff, 0x0) r4 = syz_open_dev$mouse(&(0x7f00000001c0), 0x0, 0x8c0) syz_io_uring_setup(0x2b4f, &(0x7f0000000080)={0x0, 0x0, 0x8}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r7 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_setup(0x4866, &(0x7f00000006c0)={0x0, 0x7176, 0x0, 0x0, 0x3, 0x0, r1}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000680)=0x0) r10 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r8, r9, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r10, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r8, r6, &(0x7f0000000040)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r11}}, 0x3) syz_io_uring_submit(r5, 0x0, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x5, 0x0, r7, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}, 0x0, 0x0, 0x1}, 0x0) getsockopt$IP_VS_SO_GET_DESTS(r4, 0x0, 0x484, &(0x7f0000000380)=""/200, &(0x7f0000000180)=0xc8) socket$netlink(0x10, 0x3, 0x1) 20:36:18 executing program 2: getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000040)={0x0}, &(0x7f00000000c0)=0xc) r1 = syz_open_procfs(r0, &(0x7f0000000000)='mountinfo\x00') r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r2, 0x5441, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:36:18 executing program 6: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') sendfile(r0, r0, &(0x7f0000000040)=0x4, 0x9ed) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) kcmp(0xffffffffffffffff, 0x0, 0x5, r1, 0xffffffffffffffff) close_range(r0, 0xffffffffffffffff, 0x0) 20:36:18 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x10100, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r2, 0x5437, 0x0) ioctl$TIOCGDEV(r2, 0x80045432, &(0x7f00000000c0)) 20:36:18 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x3e00) 20:36:18 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) kcmp(0xffffffffffffffff, 0x0, 0x5, r1, 0xffffffffffffffff) ioctl$BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0xc0389424, &(0x7f0000000040)={0x100000000, 0x48, '\x00', 0x1, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) close_range(r0, 0xffffffffffffffff, 0x0) ioctl$RTC_UIE_OFF(r0, 0x7004) 20:36:18 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) readv(0xffffffffffffffff, &(0x7f0000000040)=[{&(0x7f00000000c0)=""/220, 0xdc}, {&(0x7f00000001c0)=""/95, 0x5f}, {&(0x7f0000000240)=""/206, 0xce}, {&(0x7f0000000340)=""/85, 0x55}], 0x4) close_range(r0, 0xffffffffffffffff, 0x0) 20:36:18 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = memfd_secret(0x80000) ioctl$VT_RELDISP(r1, 0x5605) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x325941, 0x0) ioctl$TIOCGPTPEER(r2, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 20:36:31 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) (fail_nth: 1) 20:36:31 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) (fail_nth: 1) 20:36:31 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000040)={{0x1, 0x1, 0x18, r1}, '.\x00'}) r3 = openat$cgroup_ro(r2, &(0x7f0000000140)='freezer.parent_freezing\x00', 0x0, 0x0) r4 = signalfd4(r3, &(0x7f0000000180)={[0x800000]}, 0x8, 0x0) r5 = syz_io_uring_setup(0x4adf, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r5, 0x1, 0x0, 0x0, 0x0, 0x0) fsync(r5) ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f00000000c0)=0x1) r6 = openat$incfs(r2, &(0x7f0000000100)='.pending_reads\x00', 0x10082, 0x8) write$binfmt_elf64(r4, &(0x7f00000001c0)={{0x7f, 0x45, 0x4c, 0x46, 0x3f, 0x9, 0x21, 0xf5, 0x0, 0x3, 0x6, 0x0, 0x24c, 0x40, 0x2b5, 0xd6e, 0x7, 0x38, 0x2, 0x3, 0x8}, [{0x0, 0x3f, 0x8, 0x100000000, 0x7fffffff, 0x0, 0xa591, 0x7fffffff}], "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", ['\x00', '\x00', '\x00', '\x00']}, 0x1478) ioctl$TIOCVHANGUP(r6, 0x5437, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r4, 0xc0502100, &(0x7f0000001640)={0x0, 0x0}) r8 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r8, &(0x7f0000000140)=@ocfs2={0xc, 0x1, {0x400, 0x5}}, 0x0) kcmp$KCMP_EPOLL_TFD(0xffffffffffffffff, r7, 0x7, r1, &(0x7f00000016c0)={r8, r0, 0x200}) close_range(r0, 0xffffffffffffffff, 0x0) 20:36:31 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) sendfile(r3, r0, &(0x7f00000000c0)=0x6, 0x0) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r5 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r5, 0x1, 0x0, 0x0, 0x0, 0x0) r6 = socket(0x29, 0x1, 0xeb) syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r9 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r9, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0xfffffffd, 0x0, 0xfffffffe, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000140)=0x0) r13 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r11, r12, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r13, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) poll(&(0x7f0000000200)=[{r0, 0x4}, {r4, 0x1080}, {0xffffffffffffffff, 0x4004}, {r5, 0x400}, {r6, 0xc20c}, {r3, 0x10}, {r9, 0x420}, {r10}, {r13, 0x2}], 0x9, 0x7) ioctl$TIOCGPTPEER(r4, 0x5441, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x0) 20:36:31 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() 20:36:31 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) kcmp(0xffffffffffffffff, 0x0, 0x5, r4, 0xffffffffffffffff) close_range(r0, 0xffffffffffffffff, 0x0) 20:36:31 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = open_tree(r0, &(0x7f0000000040)='./file0\x00', 0x88000) r3 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000140), 0x202c0, 0x0) ioctl$TIOCVHANGUP(r3, 0x5437, 0x0) ioctl$TIOCVHANGUP(r2, 0x5437, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) io_uring_setup(0x4eff, &(0x7f00000000c0)={0x0, 0xe0a8, 0x4, 0x3, 0x387}) close_range(r0, 0xffffffffffffffff, 0x0) 20:36:31 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x20082, 0x0) ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x0) recvmsg$unix(r0, &(0x7f0000001680)={&(0x7f0000000180), 0x6e, &(0x7f0000001500)=[{&(0x7f0000000200)=""/218, 0xda}, {&(0x7f0000000300)=""/81, 0x51}, {&(0x7f0000000380)=""/4096, 0x1000}, {&(0x7f0000001380)=""/169, 0xa9}, {&(0x7f0000001440)=""/133, 0x85}], 0x5, &(0x7f0000001580)=[@cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xc8}, 0x40000020) ioctl$TCSETS(r2, 0x5402, &(0x7f00000016c0)={0x4, 0x1, 0x7fffffff, 0x7, 0xe, "39be7f465fdf4b50f11521090fc918fa269967"}) close_range(r0, 0xffffffffffffffff, 0x0) r3 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r3, 0x1, 0x0, 0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r3, 0x80089419, &(0x7f00000000c0)) ioctl$TIOCSSOFTCAR(r1, 0x541a, &(0x7f0000001700)=0x5) openat$hpet(0xffffffffffffff9c, &(0x7f0000000040), 0x260040, 0x0) [ 1063.030709] FAULT_INJECTION: forcing a failure. [ 1063.030709] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 1063.033190] CPU: 1 PID: 14420 Comm: syz-executor.0 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1063.033518] FAULT_INJECTION: forcing a failure. [ 1063.033518] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 1063.034893] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1063.034912] Call Trace: [ 1063.034919] [ 1063.034930] dump_stack_lvl+0x8b/0xb3 [ 1063.040136] should_fail.cold+0x5/0xa [ 1063.040917] _copy_from_user+0x2a/0x170 [ 1063.041743] iovec_from_user+0x236/0x3c0 [ 1063.042588] __import_iovec+0x64/0x5c0 [ 1063.043357] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1063.044428] ? lock_is_held_type+0xd7/0x130 [ 1063.045294] import_iovec+0x83/0xb0 [ 1063.046046] vfs_readv+0xbb/0x150 [ 1063.046789] ? vfs_iter_read+0xa0/0xa0 [ 1063.047582] ? lock_release+0x3b2/0x6f0 [ 1063.048375] ? __fget_files+0x26b/0x470 [ 1063.049183] ? lock_downgrade+0x6d0/0x6d0 [ 1063.050045] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1063.051071] ? __fget_files+0x28d/0x470 [ 1063.051894] __x64_sys_preadv+0x231/0x310 [ 1063.052732] ? vfs_iocb_iter_write+0x490/0x490 [ 1063.053670] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1063.054727] do_syscall_64+0x3b/0x90 [ 1063.055495] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1063.056559] RIP: 0033:0x7f44ddd72b19 [ 1063.057299] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1063.061053] RSP: 002b:00007f44db2e8188 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 1063.062606] RAX: ffffffffffffffda RBX: 00007f44dde85f60 RCX: 00007f44ddd72b19 [ 1063.064024] RDX: 0000000000000001 RSI: 0000000020000400 RDI: 0000000000000003 [ 1063.065451] RBP: 00007f44db2e81d0 R08: 0000000000000000 R09: 0000000000000000 [ 1063.066934] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000001 [ 1063.068362] R13: 00007ffd5814a54f R14: 00007f44db2e8300 R15: 0000000000022000 [ 1063.069814] [ 1063.070275] CPU: 0 PID: 14431 Comm: syz-executor.5 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1063.071146] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1063.072292] Call Trace: [ 1063.072560] [ 1063.072789] dump_stack_lvl+0x8b/0xb3 [ 1063.073188] should_fail.cold+0x5/0xa [ 1063.073588] _copy_from_user+0x2a/0x170 [ 1063.074011] iovec_from_user+0x236/0x3c0 [ 1063.074440] __import_iovec+0x64/0x5c0 [ 1063.074847] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1063.075386] ? lock_is_held_type+0xd7/0x130 [ 1063.075836] import_iovec+0x83/0xb0 [ 1063.076215] vfs_readv+0xbb/0x150 [ 1063.076579] ? vfs_iter_read+0xa0/0xa0 [ 1063.076979] ? lock_release+0x3b2/0x6f0 [ 1063.077392] ? __fget_files+0x26b/0x470 [ 1063.077803] ? lock_downgrade+0x6d0/0x6d0 [ 1063.078232] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1063.078757] ? __fget_files+0x28d/0x470 [ 1063.079174] __x64_sys_preadv+0x231/0x310 [ 1063.079599] ? vfs_iocb_iter_write+0x490/0x490 [ 1063.080071] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1063.080606] do_syscall_64+0x3b/0x90 [ 1063.080998] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1063.081536] RIP: 0033:0x7fddd7f4fb19 [ 1063.081916] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1063.083778] RSP: 002b:00007fddd54c5188 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 1063.084562] RAX: ffffffffffffffda RBX: 00007fddd8062f60 RCX: 00007fddd7f4fb19 [ 1063.085292] RDX: 0000000000000001 RSI: 0000000020000400 RDI: 0000000000000003 [ 1063.086012] RBP: 00007fddd54c51d0 R08: 0000000000000000 R09: 0000000000000000 [ 1063.086753] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000001 [ 1063.087472] R13: 00007fff9a2c870f R14: 00007fddd54c5300 R15: 0000000000022000 [ 1063.088203] 20:36:31 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x3f) r3 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) write$binfmt_misc(r2, &(0x7f0000000380)={'syz0', "875dee5b5452cf0b91d3175e9ccb518e623eca72dfc01b6fd269a7aca74aa3247a7979f24d0d05442149e6399068a195b28a821e9aedfd8c90e45dd4df051dd03e152bad9f0c9ba359fe001d0de28fd7a30cdff4edc7d54d81b4dbd65627a881c9c5b19f1b687cafaedf313beb9776f54ee462bd30ba3dfeacbb6a7e985c581b505aa2e570388a02477bde7ca4fc84dccf44ebc1ebabb3fa35a11432fa8e82d3177efe6c77e7186bfd7dbfb352ef81fac013a6f28a6cea666f0e11f35146b39c"}, 0xc4) io_uring_enter(r3, 0x1, 0x0, 0x0, 0x0, 0x0) syz_io_uring_setup(0x47ab, &(0x7f0000000080)={0x0, 0x0, 0x4}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) r6 = dup(r3) sendfile(r2, r6, 0x0, 0x7f) pipe2(&(0x7f0000000200)={0xffffffffffffffff}, 0x4000) io_uring_enter(r7, 0x74ca, 0xd1db, 0x1, &(0x7f00000001c0)={[0x5]}, 0x8) ioctl$TCXONC(r2, 0x540a, 0x1) ioctl$TIOCGPTPEER(r0, 0x5441, 0xfffffffffffffffc) close_range(r0, 0xffffffffffffffff, 0x0) 20:36:31 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() 20:36:31 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) (fail_nth: 2) 20:36:31 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) r2 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r2, 0x5437, 0x0) ioctl$TIOCGPTPEER(r2, 0x5441, 0x3) close_range(r0, 0xffffffffffffffff, 0x0) 20:36:31 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) (fail_nth: 2) [ 1063.240199] FAULT_INJECTION: forcing a failure. [ 1063.240199] name failslab, interval 1, probability 0, space 0, times 1 [ 1063.241691] CPU: 0 PID: 14542 Comm: syz-executor.0 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1063.242560] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1063.243730] Call Trace: [ 1063.244004] [ 1063.244237] dump_stack_lvl+0x8b/0xb3 [ 1063.244625] should_fail.cold+0x5/0xa [ 1063.245006] ? kvmalloc_node+0x3e/0x130 [ 1063.245401] should_failslab+0x5/0x10 [ 1063.245776] __kmalloc_node+0x76/0x470 [ 1063.246169] kvmalloc_node+0x3e/0x130 [ 1063.246562] seq_read_iter+0x9d2/0x12b0 [ 1063.246975] seq_read+0x3e8/0x5c0 [ 1063.247321] ? seq_read_iter+0x12b0/0x12b0 [ 1063.247773] ? lock_is_held_type+0xd7/0x130 [ 1063.248212] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1063.248754] ? fsnotify_perm.part.0+0x22d/0x620 [ 1063.249218] ? seq_read_iter+0x12b0/0x12b0 [ 1063.249643] proc_reg_read+0x226/0x300 [ 1063.250037] do_iter_read+0x4f6/0x750 [ 1063.250449] ? import_iovec+0x83/0xb0 [ 1063.250856] vfs_readv+0xe5/0x150 [ 1063.251228] ? vfs_iter_read+0xa0/0xa0 [ 1063.251633] ? lock_release+0x3b2/0x6f0 [ 1063.252059] ? __fget_files+0x26b/0x470 [ 1063.252473] ? 0xffffffff81000000 [ 1063.252835] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1063.253356] ? __fget_files+0x28d/0x470 [ 1063.253791] __x64_sys_preadv+0x231/0x310 [ 1063.254226] ? vfs_iocb_iter_write+0x490/0x490 [ 1063.254720] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1063.255253] do_syscall_64+0x3b/0x90 [ 1063.255648] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1063.256192] RIP: 0033:0x7f44ddd72b19 [ 1063.256580] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1063.258507] RSP: 002b:00007f44db2e8188 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 1063.259296] RAX: ffffffffffffffda RBX: 00007f44dde85f60 RCX: 00007f44ddd72b19 [ 1063.260034] RDX: 0000000000000001 RSI: 0000000020000400 RDI: 0000000000000003 [ 1063.260785] RBP: 00007f44db2e81d0 R08: 0000000000000000 R09: 0000000000000000 [ 1063.261482] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000001 [ 1063.262227] R13: 00007ffd5814a54f R14: 00007f44db2e8300 R15: 0000000000022000 [ 1063.262986] 20:36:31 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x280000, 0x0) io_uring_enter(r2, 0x1, 0x0, 0x0, 0x0, 0x0) ftruncate(r2, 0x1) r3 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$TIOCGPTPEER(r3, 0x5441, 0x2) close_range(r0, 0xffffffffffffffff, 0x0) [ 1063.285365] FAULT_INJECTION: forcing a failure. [ 1063.285365] name failslab, interval 1, probability 0, space 0, times 0 [ 1063.287788] CPU: 1 PID: 14548 Comm: syz-executor.5 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1063.289440] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1063.291699] Call Trace: [ 1063.292206] [ 1063.292651] dump_stack_lvl+0x8b/0xb3 [ 1063.293420] should_fail.cold+0x5/0xa [ 1063.294188] ? kvmalloc_node+0x3e/0x130 [ 1063.294999] should_failslab+0x5/0x10 [ 1063.295758] __kmalloc_node+0x76/0x470 [ 1063.296541] kvmalloc_node+0x3e/0x130 [ 1063.297296] seq_read_iter+0x9d2/0x12b0 [ 1063.298119] seq_read+0x3e8/0x5c0 [ 1063.298833] ? seq_read_iter+0x12b0/0x12b0 [ 1063.299690] ? lock_is_held_type+0xd7/0x130 [ 1063.300570] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1063.301668] ? fsnotify_perm.part.0+0x22d/0x620 [ 1063.302613] ? seq_read_iter+0x12b0/0x12b0 [ 1063.303467] proc_reg_read+0x226/0x300 [ 1063.304270] do_iter_read+0x4f6/0x750 [ 1063.305041] ? import_iovec+0x83/0xb0 [ 1063.305802] vfs_readv+0xe5/0x150 [ 1063.306514] ? vfs_iter_read+0xa0/0xa0 [ 1063.307294] ? lock_release+0x3b2/0x6f0 [ 1063.308090] ? __fget_files+0x26b/0x470 [ 1063.308887] ? 0xffffffff81000000 [ 1063.309581] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1063.310584] ? __fget_files+0x28d/0x470 [ 1063.311404] __x64_sys_preadv+0x231/0x310 [ 1063.312231] ? vfs_iocb_iter_write+0x490/0x490 [ 1063.313147] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1063.314184] do_syscall_64+0x3b/0x90 [ 1063.314952] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1063.315986] RIP: 0033:0x7fddd7f4fb19 [ 1063.316719] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1063.320370] RSP: 002b:00007fddd54c5188 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 1063.321877] RAX: ffffffffffffffda RBX: 00007fddd8062f60 RCX: 00007fddd7f4fb19 [ 1063.323298] RDX: 0000000000000001 RSI: 0000000020000400 RDI: 0000000000000003 [ 1063.324707] RBP: 00007fddd54c51d0 R08: 0000000000000000 R09: 0000000000000000 [ 1063.326119] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000001 [ 1063.327543] R13: 00007fff9a2c870f R14: 00007fddd54c5300 R15: 0000000000022000 [ 1063.328976] 20:36:31 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x2e0201, 0x0) kcmp(0xffffffffffffffff, 0x0, 0x5, r1, 0xffffffffffffffff) close_range(r0, 0xffffffffffffffff, 0x0) 20:36:31 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r2, 0x5437, 0x0) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000040)=0xff) close_range(r0, 0xffffffffffffffff, 0x0) openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x6020c0, 0x0) 20:36:31 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x0) ioctl$TCSETS(r2, 0x5402, &(0x7f0000000140)={0xe3, 0x0, 0x7, 0xd9e, 0x9a, "855690936c7c744c9e663748da5e401d5e85b4"}) r3 = openat$urandom(0xffffffffffffff9c, &(0x7f00000000c0), 0x400000, 0x0) signalfd(r3, &(0x7f0000000100)={[0xfffffffffffff000]}, 0x8) 20:36:31 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() 20:36:31 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x414802, 0x0) r2 = syz_io_uring_setup(0x198e, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)=0x0) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r7 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r11 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r9, r10, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r11, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) syz_io_uring_submit(r9, r3, &(0x7f0000000000)=@IORING_OP_SPLICE={0x1e, 0x3, 0x0, @fd=r7, 0x7ffffffd, {0x0, r2}, 0xfffffffb, 0x0, 0x0, {0x0, r8, r4}}, 0x0) pwritev(r4, &(0x7f00000020c0)=[{&(0x7f00000000c0)="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", 0x1000}, {&(0x7f00000010c0)="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", 0x1000}, {&(0x7f0000000040)="42da351876d1ede09e7b75ddbc19", 0xe}], 0x3, 0xfff, 0x8) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 20:36:31 executing program 4: getpid() sched_getattr(0x0, &(0x7f0000000000)={0x38}, 0x38, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000000c0), &(0x7f0000000100)=0xc) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000001c0)=0x0) syz_open_procfs(r0, &(0x7f0000000200)='net/ip6_mr_vif\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) r2 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r5 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) syz_open_dev$hidraw(&(0x7f0000000180), 0x30c, 0x20000) close_range(r2, 0xffffffffffffffff, 0x0) 20:36:31 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) (fail_nth: 3) 20:36:32 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x200200, 0x0) kcmp(0xffffffffffffffff, 0x0, 0x5, r1, 0xffffffffffffffff) close_range(r0, 0xffffffffffffffff, 0x0) [ 1063.516790] FAULT_INJECTION: forcing a failure. [ 1063.516790] name failslab, interval 1, probability 0, space 0, times 0 [ 1063.517990] CPU: 0 PID: 14644 Comm: syz-executor.0 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1063.518830] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1063.519921] Call Trace: [ 1063.520194] [ 1063.520430] dump_stack_lvl+0x8b/0xb3 [ 1063.520854] should_fail.cold+0x5/0xa [ 1063.521273] ? create_object.isra.0+0x3a/0xa20 [ 1063.521775] should_failslab+0x5/0x10 [ 1063.522200] kmem_cache_alloc+0x5b/0x480 [ 1063.522658] create_object.isra.0+0x3a/0xa20 [ 1063.523140] ? kasan_unpoison+0x23/0x50 [ 1063.523580] __kmalloc_node+0x26f/0x470 [ 1063.524018] kvmalloc_node+0x3e/0x130 [ 1063.524433] seq_read_iter+0x9d2/0x12b0 [ 1063.524886] seq_read+0x3e8/0x5c0 [ 1063.525268] ? seq_read_iter+0x12b0/0x12b0 [ 1063.525733] ? lock_is_held_type+0xd7/0x130 [ 1063.526213] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1063.526819] ? fsnotify_perm.part.0+0x22d/0x620 [ 1063.527337] ? seq_read_iter+0x12b0/0x12b0 [ 1063.527801] proc_reg_read+0x226/0x300 [ 1063.528239] do_iter_read+0x4f6/0x750 [ 1063.528662] ? import_iovec+0x83/0xb0 [ 1063.529079] vfs_readv+0xe5/0x150 [ 1063.529454] ? vfs_iter_read+0xa0/0xa0 [ 1063.529875] ? lock_release+0x3b2/0x6f0 [ 1063.530306] ? __fget_files+0x26b/0x470 [ 1063.530752] ? 0xffffffff81000000 [ 1063.531100] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1063.531646] ? __fget_files+0x28d/0x470 [ 1063.532090] __x64_sys_preadv+0x231/0x310 [ 1063.532542] ? vfs_iocb_iter_write+0x490/0x490 [ 1063.533044] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1063.533602] do_syscall_64+0x3b/0x90 [ 1063.534014] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1063.534538] RIP: 0033:0x7f44ddd72b19 [ 1063.534932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1063.536905] RSP: 002b:00007f44db2e8188 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 1063.537721] RAX: ffffffffffffffda RBX: 00007f44dde85f60 RCX: 00007f44ddd72b19 [ 1063.538495] RDX: 0000000000000001 RSI: 0000000020000400 RDI: 0000000000000003 [ 1063.539258] RBP: 00007f44db2e81d0 R08: 0000000000000000 R09: 0000000000000000 [ 1063.540023] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000001 [ 1063.540806] R13: 00007ffd5814a54f R14: 00007f44db2e8300 R15: 0000000000022000 [ 1063.541587] 20:36:46 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) (fail_nth: 3) 20:36:46 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) (fail_nth: 4) 20:36:46 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$TIOCMBIC(r1, 0x5417, &(0x7f0000000040)=0x56) close_range(r0, 0xffffffffffffffff, 0x0) 20:36:46 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) r2 = epoll_create1(0x80000) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r3, 0x5437, 0x0) ioctl$TIOCSPTLCK(r3, 0x40045431, &(0x7f00000000c0)=0x1) ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r2, 0x40089413, &(0x7f0000000040)=0xfffffffffffffffb) 20:36:46 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000000140)={'ip6gre0\x00', &(0x7f00000000c0)={'ip6tnl0\x00', 0x0, 0x29, 0x2d, 0x0, 0x7, 0xa04575a9c8b84d0f, @loopback, @local, 0x8000, 0x8000, 0x2, 0xa4}}) r2 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$F2FS_IOC_MOVE_RANGE(r3, 0xc020f509, &(0x7f0000000040)={r2, 0x9, 0x7, 0x2}) 20:36:46 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x5b5180, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x0) 20:36:46 executing program 6: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) kcmp(0xffffffffffffffff, 0x0, 0x5, r4, 0xffffffffffffffff) close_range(r0, 0xffffffffffffffff, 0x0) 20:36:46 executing program 1: socketpair(0x37, 0x2, 0x9, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) fgetxattr(r0, &(0x7f0000000200)=@random={'security.', 'mountinfo\x00'}, &(0x7f0000000240), 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x4, 0x1, 0x0, 0x180, 0x0, r1}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000040)=0x0) io_uring_enter(r2, 0x1, 0x0, 0x0, 0x0, 0x0) r4 = syz_io_uring_setup(0x1, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140)) syz_io_uring_setup(0x69bd, &(0x7f0000000380)={0x0, 0x514c, 0x20, 0x2, 0x2c2, 0x0, r4}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000400)) r6 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r6, 0x1, 0x0, 0x0, 0x0, 0x0) syz_io_uring_submit(r5, r3, &(0x7f0000000440)=@IORING_OP_FALLOCATE={0x11, 0x1, 0x0, @fd=r6, 0x3, 0x0, 0x8}, 0x5) io_uring_enter(r4, 0x1, 0x0, 0x0, 0x0, 0x0) kcmp(0xffffffffffffffff, 0x0, 0x3, r2, r4) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) io_uring_register$IORING_UNREGISTER_PERSONALITY(r4, 0xa, 0x0, r7) close_range(r1, 0xffffffffffffffff, 0x0) r8 = syz_open_pts(r1, 0x200) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f00000002c0)=ANY=[@ANYBLOB="1f6900000100000018000000777e3dfe946d076c6dc1358289ba260cd4b956e81ee4a52ddd6b5bb476466cb2ce2431304acf46d96ba7d0fc9dca488d54f3d8ed268e5da700000000000000084d2ca01501d621996d05ccfb0f2e367f6e02f0dc712db2a7316d006f1fb08fbe8aee20e2d2c9c481a5a4dbffcccb13a06a4a8c67bc4f51583801930e353c2718a5182d0410997460841cea840fa3040544dc0701edbd62be4235e40000", @ANYRES32=r8, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) [ 1077.955627] FAULT_INJECTION: forcing a failure. [ 1077.955627] name failslab, interval 1, probability 0, space 0, times 0 [ 1077.956917] CPU: 0 PID: 14691 Comm: syz-executor.5 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1077.957790] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1077.958988] Call Trace: [ 1077.959260] [ 1077.959495] dump_stack_lvl+0x8b/0xb3 [ 1077.959909] should_fail.cold+0x5/0xa [ 1077.960324] ? create_object.isra.0+0x3a/0xa20 [ 1077.960815] should_failslab+0x5/0x10 [ 1077.961223] kmem_cache_alloc+0x5b/0x480 [ 1077.961658] create_object.isra.0+0x3a/0xa20 [ 1077.962121] ? kasan_unpoison+0x23/0x50 [ 1077.962557] __kmalloc_node+0x26f/0x470 [ 1077.962974] kvmalloc_node+0x3e/0x130 [ 1077.963375] seq_read_iter+0x9d2/0x12b0 [ 1077.963817] seq_read+0x3e8/0x5c0 [ 1077.964186] ? seq_read_iter+0x12b0/0x12b0 [ 1077.964634] ? lock_is_held_type+0xd7/0x130 [ 1077.965112] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1077.965729] ? fsnotify_perm.part.0+0x22d/0x620 [ 1077.966242] ? seq_read_iter+0x12b0/0x12b0 [ 1077.966735] proc_reg_read+0x226/0x300 [ 1077.967166] do_iter_read+0x4f6/0x750 [ 1077.967584] ? import_iovec+0x83/0xb0 [ 1077.967997] vfs_readv+0xe5/0x150 [ 1077.968375] ? vfs_iter_read+0xa0/0xa0 [ 1077.968797] ? lock_release+0x3b2/0x6f0 [ 1077.969231] ? __fget_files+0x26b/0x470 [ 1077.969668] ? 0xffffffff81000000 [ 1077.970009] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1077.970550] ? __fget_files+0x28d/0x470 [ 1077.970996] __x64_sys_preadv+0x231/0x310 [ 1077.971452] ? vfs_iocb_iter_write+0x490/0x490 [ 1077.971950] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1077.972523] do_syscall_64+0x3b/0x90 [ 1077.972924] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1077.973482] RIP: 0033:0x7fddd7f4fb19 [ 1077.973880] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1077.975886] RSP: 002b:00007fddd54c5188 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 1077.976711] RAX: ffffffffffffffda RBX: 00007fddd8062f60 RCX: 00007fddd7f4fb19 [ 1077.977483] RDX: 0000000000000001 RSI: 0000000020000400 RDI: 0000000000000003 [ 1077.978253] RBP: 00007fddd54c51d0 R08: 0000000000000000 R09: 0000000000000000 [ 1077.979040] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000001 [ 1077.979817] R13: 00007fff9a2c870f R14: 00007fddd54c5300 R15: 0000000000022000 [ 1077.980532] 20:36:46 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000004c0)={0x5, &(0x7f0000000040)=[{0x400, 0x9, 0xbe, 0x7f}, {0x3f, 0x18, 0x18, 0xff}, {0x7, 0x55, 0x5, 0x20}, {0x6, 0x2, 0xff, 0x7}, {0x400, 0x2, 0x6, 0x9}]}) openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000500)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r4, 0x84009422, &(0x7f0000000940)={0x0, 0x0, {0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) [ 1078.008928] FAULT_INJECTION: forcing a failure. [ 1078.008928] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1078.011420] CPU: 1 PID: 14699 Comm: syz-executor.0 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1078.013117] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1078.015380] Call Trace: [ 1078.015909] [ 1078.016362] dump_stack_lvl+0x8b/0xb3 [ 1078.017163] should_fail.cold+0x5/0xa [ 1078.017957] _copy_to_iter+0x393/0x1820 [ 1078.018811] ? copy_page_from_iter+0x9f0/0x9f0 [ 1078.019759] ? __local_bh_enable_ip+0xa0/0x120 [ 1078.020704] ? lockdep_hardirqs_on+0x79/0x100 [ 1078.021611] ? ipv6_route_seq_stop+0x199/0x2c0 [ 1078.022545] ? __local_bh_enable_ip+0xa0/0x120 [ 1078.023511] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1078.024630] ? __virt_addr_valid+0xe9/0x310 [ 1078.025523] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1078.026645] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1078.027676] ? __check_object_size+0x1b5/0x4e0 [ 1078.028637] seq_read_iter+0x716/0x12b0 [ 1078.029495] seq_read+0x3e8/0x5c0 [ 1078.030254] ? seq_read_iter+0x12b0/0x12b0 [ 1078.031146] ? lock_is_held_type+0xd7/0x130 [ 1078.032039] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1078.033159] ? fsnotify_perm.part.0+0x22d/0x620 [ 1078.034135] ? seq_read_iter+0x12b0/0x12b0 [ 1078.035031] proc_reg_read+0x226/0x300 [ 1078.035840] do_iter_read+0x4f6/0x750 [ 1078.036618] ? import_iovec+0x83/0xb0 [ 1078.037400] vfs_readv+0xe5/0x150 [ 1078.038126] ? vfs_iter_read+0xa0/0xa0 [ 1078.038949] ? lock_release+0x3b2/0x6f0 [ 1078.039753] ? __fget_files+0x26b/0x470 [ 1078.040560] ? 0xffffffff81000000 [ 1078.041268] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1078.042277] ? __fget_files+0x28d/0x470 [ 1078.043119] __x64_sys_preadv+0x231/0x310 [ 1078.043969] ? vfs_iocb_iter_write+0x490/0x490 [ 1078.044907] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1078.045968] do_syscall_64+0x3b/0x90 [ 1078.046754] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1078.047837] RIP: 0033:0x7f44ddd72b19 [ 1078.048593] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1078.052319] RSP: 002b:00007f44db2e8188 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 1078.053879] RAX: ffffffffffffffda RBX: 00007f44dde85f60 RCX: 00007f44ddd72b19 [ 1078.055331] RDX: 0000000000000001 RSI: 0000000020000400 RDI: 0000000000000003 [ 1078.056769] RBP: 00007f44db2e81d0 R08: 0000000000000000 R09: 0000000000000000 [ 1078.058237] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000001 [ 1078.059692] R13: 00007ffd5814a54f R14: 00007f44db2e8300 R15: 0000000000022000 [ 1078.061178] 20:36:46 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) kcmp(0xffffffffffffffff, 0x0, 0x5, r1, 0xffffffffffffffff) ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x0) 20:36:46 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) (fail_nth: 4) 20:36:46 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/zoneinfo\x00', 0x0, 0x0) ioctl$TIOCGPTLCK(r2, 0x80045439, &(0x7f0000000200)) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r3, &(0x7f0000000280)=ANY=[@ANYBLOB="0c000000010000000000000005020000000000006a2499043c4ae73d31d246b266cc464c61ed959174624e27b08b4f79b3930dbf721b8c02603da2d236de7c36e846755612d77f3258aff90bf687cbd77a250159b8496273ac0069c22bcaa8aa4f75a28b3a83a3d0e3a214c5a312a8f4fd05e6cf9ee4747d88bee3c2a5ce6cad2a5d5768add4b08523f6ebf20bc183d17f446808e39aed5f3d16b81007253389362c485fa100a2a44c5c0f9d3ed7"], 0x0) sendmsg$NL80211_CMD_NEW_STATION(r3, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1100000a}, 0xc, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="9a2defe5fbda1d1914c4ae2bfe80b3e2041e640ed2c5667f23943910b32c28f320bd37caaf87cff3386403f6d3946d9bd87b45ad52e9698ea3b32782c644b6e561314b79fda1c1fa12ea010d66cfd89bdf63481779c3f7e4908d1e8abf", @ANYRES16=0x0, @ANYBLOB="200027bd7000fddbdf2513000000050029000c000000180011800400040004000100040001000400040004000300"], 0x34}, 0x1, 0x0, 0x0, 0x840}, 0x402c0c4) r4 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x40, 0x0) dup2(r3, r4) 20:36:46 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x309842, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r2, 0x5437, 0x0) ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f0000000040)={r1, 0x9, 0xe8bc, 0x695}) ioctl$TIOCGPTPEER(r3, 0x5441, 0x5) close_range(r0, 0xffffffffffffffff, 0x0) [ 1078.108065] FAULT_INJECTION: forcing a failure. [ 1078.108065] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1078.109454] CPU: 0 PID: 14727 Comm: syz-executor.5 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1078.110350] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1078.111476] Call Trace: [ 1078.111730] [ 1078.111967] dump_stack_lvl+0x8b/0xb3 [ 1078.112400] should_fail.cold+0x5/0xa [ 1078.112822] _copy_to_iter+0x393/0x1820 [ 1078.113264] ? copy_page_from_iter+0x9f0/0x9f0 [ 1078.113762] ? __local_bh_enable_ip+0xa0/0x120 [ 1078.114265] ? lockdep_hardirqs_on+0x79/0x100 [ 1078.114754] ? ipv6_route_seq_stop+0x199/0x2c0 [ 1078.115250] ? __local_bh_enable_ip+0xa0/0x120 [ 1078.115762] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1078.116365] ? __virt_addr_valid+0xe9/0x310 [ 1078.116850] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1078.117435] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1078.117973] ? __check_object_size+0x1b5/0x4e0 [ 1078.118477] seq_read_iter+0x716/0x12b0 [ 1078.118941] seq_read+0x3e8/0x5c0 [ 1078.119320] ? seq_read_iter+0x12b0/0x12b0 [ 1078.119788] ? lock_is_held_type+0xd7/0x130 [ 1078.120258] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1078.120852] ? fsnotify_perm.part.0+0x22d/0x620 [ 1078.121350] ? seq_read_iter+0x12b0/0x12b0 [ 1078.121807] proc_reg_read+0x226/0x300 [ 1078.122232] do_iter_read+0x4f6/0x750 [ 1078.122659] ? import_iovec+0x83/0xb0 [ 1078.123091] vfs_readv+0xe5/0x150 [ 1078.123463] ? vfs_iter_read+0xa0/0xa0 [ 1078.123885] ? lock_release+0x3b2/0x6f0 [ 1078.124282] ? __fget_files+0x26b/0x470 [ 1078.124713] ? 0xffffffff81000000 [ 1078.125094] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1078.125635] ? __fget_files+0x28d/0x470 [ 1078.126071] __x64_sys_preadv+0x231/0x310 [ 1078.126516] ? vfs_iocb_iter_write+0x490/0x490 [ 1078.127015] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1078.127578] do_syscall_64+0x3b/0x90 [ 1078.127982] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1078.128543] RIP: 0033:0x7fddd7f4fb19 [ 1078.128952] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1078.130938] RSP: 002b:00007fddd54c5188 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 1078.131773] RAX: ffffffffffffffda RBX: 00007fddd8062f60 RCX: 00007fddd7f4fb19 [ 1078.132539] RDX: 0000000000000001 RSI: 0000000020000400 RDI: 0000000000000003 [ 1078.133306] RBP: 00007fddd54c51d0 R08: 0000000000000000 R09: 0000000000000000 [ 1078.134072] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000001 [ 1078.134851] R13: 00007fff9a2c870f R14: 00007fddd54c5300 R15: 0000000000022000 [ 1078.135632] 20:36:46 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x800, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 20:37:02 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 1) 20:37:02 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, r2, 0x0) 20:37:02 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0xfffffffffffffffe) close_range(r0, 0xffffffffffffffff, 0x0) 20:37:02 executing program 3: ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f00000000c0)={0xffffffffffffffff, 0x94e, 0x7, 0x3}) ioctl$TIOCSLCKTRMIOS(r0, 0x5457, &(0x7f0000000100)) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r2, 0x5441, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) close_range(r1, 0xffffffffffffffff, 0x0) 20:37:02 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) (fail_nth: 5) 20:37:02 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) ioctl$DVD_READ_STRUCT(r0, 0x5390, &(0x7f00000000c0)=@manufact={0x4, 0x2, 0x800, "5884b7c084cedd63186ecff3b3cde6843ad2f5faffa91e5254b4d47e2280b2ca8bcc3fb70ff1e75ed236a3b85d9583b4b050e8e914c54f0ac1de9abe0032acdf82a2d1035c91fa389485038e462026df462a77ab0b17ffc018cb2c4d18c85e8b7174247a017f3f88176717c0da539d92d621ade3c12d3bde304a68a1566494976d0e4430f589cd3ae2c304a32f98e22dd156d9fa89a1ae72bc7a7a8ecc758902e9d7c28cf0d35f86ca1f54b99c324fae1d49e6a033eb9bc0baebc48b20e3cfc20b699636578db7bc8d5363e2a344a7a88aa3fd97657ea1088bdde72679680415e6871ba3050b3707ede25f1824e086e3d3301613991a92d6c78757a37dfbb98fee7a665b542ff66875bdf8d9cdaff008d0a6de901236e76236bdac7d22b4944b7722c8b10bfa001040868e045c6e3c5e3b173ce54aa3ba48147eca2a9d64a157da1389a4c24070684a419e2e385ebbf721f058f61529125009a8ae89be33af4e1802f4322be623c5716d282d7d863e570829fe49755975c9df19497281dde703a0d31c662d5a2b20da820db173b1e3902d99ab30814b0ddae781858e1d117dff24c049dab3264e12b51af77823101284f78fbcfa94ef9ef8eca6081090fdbd6c12ba0a901458c6a921101fc648460f02b51fc861e66c1de26b6ac1cfb8ffb257bdda91b1fc1113fcf9780ba8ce656357e914db2666c15c90beab6eb969759b08fa31261df76e4b503a552176f4adf3f7bae1d8cc471093f8ff5936f8b5c03a8e48c9540294c9385795bd2816fd3cb40a479ae864efd227f099d77dca3534d702faf500dabd5832b5c4336a26f07b3ede5b3db68c65128919449a5d7078482d137bd9b0dcc5f28c2abfd99b6156a4b7ea210dfcf3db4939787a46eb4bad3051ca2347e00d3b5cb7480083d2a6070592985489bd302b7c65ecff74400ee31f906633fe9d07c27b84a15feb0fcbaf43f1c42a9c6b55f2b2e666dee1680f40829b84f81b0abd7ad478b5600467e2632d90938dbf9dccbe4f37f6f389b1762addde7c10fa50beebb3a6ffa6700ef0689a2d84ad97d51a53aa83cf777407d71d57674d2eaca1ccfac54726af13650aebb924b951e1d25a09932f063bffe14159c370ff6051172f5afecc204b623cd93d5c68c4324561ba8036d1c4347ce3a27f01529b91623dee7026da15d3f9efa1abbb17aa32110899f5502ff93c1cd6e822aa0a2c58c1990abc5b7bfed73d732a206951feba596ac212ad54c3e76c56bd15eaef2f0ce9bf08eedb5979fe084a48baea8e8ce1602c2ab1f5a5ccc6caae6f0ba95d6dabdd2e80719ce5af2e9ea2786d9f16b2568bf5b330d4cc8e490d74ceff5e9209c71fce973b157758d3060fe6967fd9a3adf7657f16f09e57cfa976e8c04b303167a925cb27e9701179013a25270e6d0b16bc2ad10af88d8e812bff2b02e5995244f7728840a1bd38ea6eec2be730dc5eddeaa636bb98bd33cdb823f507a82536735c71e6b2d03c50175bc52a8869c5261f29b3fd9b77e1388b0d32f4d9efb4269fc3f75dcb9432cb3c3f24b207e3593caf6c89a3afccb699c041b2591646c412dc592f000841a0694f5d93ca9516a2c50e318ee01a4f547b580d3628eb5bf899c70e5cfe8b4b04e980108354f9caf437c9f54eaedb15ccf3507bd37f7c91ed8982e23bea83e4aa69ff31f19fea4a87b8ab616a9392fab529498b0e1bc19bb3928c0667baa6bcff8c67e56fca72b649b317c313aae1748ef19ebf52bd16e84afdeb8e04a0dcce389edba1507dee53e384ba24da50478cd66f86b90f1e44b874a10ab4c3ec4d8e9aed7991f7ae6ff3a9c3eeb04d653a27089b1a527e2dad83b4d57ae7a8210b334e1e37349a8722983bb3f611292f35e9c730d9c9d1ef0766e6d6206fe79eb1427787a99afd9a8e077462be74de4a084e64aa40441742096e3088e851388368f7f366ac264b9e123b0016f3aeb339943747dc69319fec8e061503162561e8dee7709fde94e7738554202bdf28c8dc345d0f386663b202564c65869906e3bed5b52a9fec401d7e3b943c1f9a8b7c303ab2dee786d6191449f577e07a446b26ef0ef98d67bdb52f8512996decf6c87a67fb7fe6f8bea284b462e6569dd6cc01863bee8cf9e9070ca8a4742b5d17b8b695819afe6989115c264cc08e62e8a44bec2d3c040d29327dbe5b6acb2dff68f4c1191de4fbed5ff60d02fd70e3bc48887ab180dca2293815ac862762ccdf67be11a98b1ec8ae1d5bd353c9a25d1bdd5119a6fb403114eef8fd7571fd924b40f1963fd0f8b2a8c6007f2859b85a31fc1fecc6874e192c6fff72e6cd0d738f88f41c262ac01ed01b53463871747365956609d0875f372f5b2756542c342cc923fd5fc020fcac1088c1633a7abfefd686947167284c788a15b9e5af8815f323aa938b8b4eebe19f9934c5ffa71879ca8b8472db1c2d4419a1af2aecba851208248676438a519a9de5a08a7dac607c48f453c56ce500f77b129c4fa999af4beb85a716522e3e08cd68849d952ef70e99013c9a40eb992f5a28fba7ae046cf0cd7c3745a257858f1c45f41871edf6d195ba0eb1c0a684c96ab7d1ac56b51434f66729fd09a31e9cf4e74efdf68412f0d17f448c494866bf192b0cafb6d884c7376c24def01582fa413333b072167bb256388d80312c4a89a95635f329ec4769a7963746f561a1a0975a1c8227bb47f41bb093276b4462f4b9583eeb82eb67869c95ca50d0016128081e628d3c2a4da41367d43fd747c996aaab16c8d79d3934cd218fe3d51168908fcc1f28153771672ca6138a7ef2fa112c3dab6fc5169ac72c0320bcbab7865fe4062fb540efd1ab73f0036ee6e368e582116bf4aaa98b89452529b0d5a54b63a97e68e8b42f33"}) ioctl$CDROM_LAST_WRITTEN(r0, 0x5395, &(0x7f0000000040)) 20:37:02 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) (fail_nth: 5) 20:37:02 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) kcmp(0xffffffffffffffff, 0x0, 0x5, r1, 0xffffffffffffffff) close_range(r0, 0xffffffffffffffff, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x8001, 0x81) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r5 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r5, 0x1, 0x0, 0x0, 0x0, 0x0) ioctl$BTRFS_IOC_SPACE_INFO(r5, 0xc0109414, &(0x7f0000000380)={0xc31, 0x1, ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}) r6 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r6, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) connect$inet6(r6, &(0x7f0000000100)={0xa, 0x4e21, 0x6, @local, 0x4}, 0x1c) ioctl$TIOCGPTLCK(r2, 0x80045439, &(0x7f00000000c0)) [ 1094.485802] FAULT_INJECTION: forcing a failure. [ 1094.485802] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1094.488229] CPU: 0 PID: 14838 Comm: syz-executor.0 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1094.489873] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1094.490269] FAULT_INJECTION: forcing a failure. [ 1094.490269] name failslab, interval 1, probability 0, space 0, times 0 [ 1094.492117] Call Trace: [ 1094.492159] [ 1094.495309] dump_stack_lvl+0x8b/0xb3 [ 1094.496082] should_fail.cold+0x5/0xa [ 1094.496854] _copy_to_iter+0x393/0x1820 [ 1094.497650] ? find_held_lock+0x2c/0x110 [ 1094.498461] ? copy_page_from_iter+0x9f0/0x9f0 [ 1094.499366] ? lock_release+0x3b2/0x6f0 [ 1094.500163] ? ipv6_route_seq_stop+0x199/0x2c0 [ 1094.501079] ? lock_downgrade+0x6d0/0x6d0 [ 1094.501899] ? mark_held_locks+0x9e/0xe0 [ 1094.502714] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1094.503834] ? __virt_addr_valid+0xe9/0x310 [ 1094.504714] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1094.505808] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1094.506795] ? __check_object_size+0x1b5/0x4e0 [ 1094.507732] seq_read_iter+0xdc7/0x12b0 [ 1094.508569] seq_read+0x3e8/0x5c0 [ 1094.509278] ? seq_read_iter+0x12b0/0x12b0 [ 1094.510131] ? lock_is_held_type+0xd7/0x130 [ 1094.511026] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1094.512121] ? fsnotify_perm.part.0+0x22d/0x620 [ 1094.513056] ? seq_read_iter+0x12b0/0x12b0 [ 1094.513911] proc_reg_read+0x226/0x300 [ 1094.514702] do_iter_read+0x4f6/0x750 [ 1094.515485] ? import_iovec+0x83/0xb0 [ 1094.516249] vfs_readv+0xe5/0x150 [ 1094.516944] ? vfs_iter_read+0xa0/0xa0 [ 1094.517725] ? lock_release+0x3b2/0x6f0 [ 1094.518521] ? __fget_files+0x26b/0x470 [ 1094.519320] ? 0xffffffff81000000 [ 1094.520008] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1094.521002] ? __fget_files+0x28d/0x470 [ 1094.521813] __x64_sys_preadv+0x231/0x310 [ 1094.522645] ? vfs_iocb_iter_write+0x490/0x490 [ 1094.523579] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1094.524613] do_syscall_64+0x3b/0x90 [ 1094.525362] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1094.526397] RIP: 0033:0x7f44ddd72b19 [ 1094.527143] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1094.530792] RSP: 002b:00007f44db2e8188 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 1094.532312] RAX: ffffffffffffffda RBX: 00007f44dde85f60 RCX: 00007f44ddd72b19 [ 1094.533732] RDX: 0000000000000001 RSI: 0000000020000400 RDI: 0000000000000003 [ 1094.535171] RBP: 00007f44db2e81d0 R08: 0000000000000000 R09: 0000000000000000 [ 1094.536589] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000001 [ 1094.538015] R13: 00007ffd5814a54f R14: 00007f44db2e8300 R15: 0000000000022000 [ 1094.539466] [ 1094.539932] CPU: 1 PID: 14834 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1094.541615] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1094.543878] Call Trace: [ 1094.544388] [ 1094.544835] dump_stack_lvl+0x8b/0xb3 [ 1094.545619] should_fail.cold+0x5/0xa [ 1094.546384] ? copy_process+0x5c8/0x6d10 [ 1094.547214] should_failslab+0x5/0x10 [ 1094.547972] kmem_cache_alloc_node+0x55/0x490 [ 1094.548875] copy_process+0x5c8/0x6d10 [ 1094.549673] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1094.550721] ? lock_is_held_type+0xf8/0x130 [ 1094.551603] ? __cleanup_sighand+0xb0/0xb0 [ 1094.552453] ? lock_is_held_type+0xd7/0x130 [ 1094.553129] FAULT_INJECTION: forcing a failure. [ 1094.553129] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1094.553313] ? lock_release+0x3b2/0x6f0 [ 1094.556348] ? finish_task_switch.isra.0+0x221/0x870 [ 1094.557377] ? kernel_clone+0x2f8/0xa60 [ 1094.558188] kernel_clone+0xe7/0xa60 [ 1094.558969] ? create_io_thread+0xf0/0xf0 [ 1094.559808] ? finish_task_switch.isra.0+0x226/0x870 [ 1094.560846] ? lockdep_hardirqs_on+0x79/0x100 [ 1094.561898] ? finish_task_switch.isra.0+0x226/0x870 [ 1094.562959] __do_sys_fork+0x8a/0xc0 [ 1094.563716] ? kernel_clone+0xa60/0xa60 [ 1094.564535] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1094.565559] ? lockdep_hardirqs_on+0x79/0x100 [ 1094.566448] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1094.567487] do_syscall_64+0x3b/0x90 [ 1094.568240] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1094.569277] RIP: 0033:0x7f9fc1cadb19 [ 1094.570017] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1094.573665] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1094.575176] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1094.576586] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1094.577992] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1094.579414] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1094.580824] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1094.582267] [ 1094.582732] CPU: 0 PID: 14841 Comm: syz-executor.5 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1094.584411] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1094.586663] Call Trace: [ 1094.587195] [ 1094.587641] dump_stack_lvl+0x8b/0xb3 [ 1094.588418] should_fail.cold+0x5/0xa [ 1094.589201] _copy_to_iter+0x393/0x1820 [ 1094.590012] ? find_held_lock+0x2c/0x110 [ 1094.590832] ? copy_page_from_iter+0x9f0/0x9f0 [ 1094.591758] ? lock_release+0x3b2/0x6f0 [ 1094.592562] ? ipv6_route_seq_stop+0x199/0x2c0 [ 1094.593481] ? lock_downgrade+0x6d0/0x6d0 [ 1094.594318] ? mark_held_locks+0x9e/0xe0 [ 1094.595147] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1094.596248] ? __virt_addr_valid+0xe9/0x310 [ 1094.597118] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1094.598215] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1094.599221] ? __check_object_size+0x1b5/0x4e0 [ 1094.600152] seq_read_iter+0xdc7/0x12b0 [ 1094.600980] seq_read+0x3e8/0x5c0 [ 1094.601703] ? seq_read_iter+0x12b0/0x12b0 [ 1094.602571] ? lock_is_held_type+0xd7/0x130 [ 1094.603464] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1094.604572] ? fsnotify_perm.part.0+0x22d/0x620 [ 1094.605515] ? seq_read_iter+0x12b0/0x12b0 [ 1094.606388] proc_reg_read+0x226/0x300 [ 1094.607201] do_iter_read+0x4f6/0x750 [ 1094.607979] ? import_iovec+0x83/0xb0 [ 1094.608754] vfs_readv+0xe5/0x150 [ 1094.609462] ? vfs_iter_read+0xa0/0xa0 [ 1094.610250] ? lock_release+0x3b2/0x6f0 [ 1094.611054] ? __fget_files+0x26b/0x470 [ 1094.611851] ? 0xffffffff81000000 [ 1094.612540] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1094.613532] ? __fget_files+0x28d/0x470 [ 1094.614344] __x64_sys_preadv+0x231/0x310 [ 1094.615190] ? vfs_iocb_iter_write+0x490/0x490 [ 1094.616111] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1094.617148] do_syscall_64+0x3b/0x90 [ 1094.617901] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1094.618948] RIP: 0033:0x7fddd7f4fb19 [ 1094.619684] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1094.623345] RSP: 002b:00007fddd54c5188 EFLAGS: 00000246 ORIG_RAX: 0000000000000127 [ 1094.624850] RAX: ffffffffffffffda RBX: 00007fddd8062f60 RCX: 00007fddd7f4fb19 [ 1094.626258] RDX: 0000000000000001 RSI: 0000000020000400 RDI: 0000000000000003 [ 1094.627715] RBP: 00007fddd54c51d0 R08: 0000000000000000 R09: 0000000000000000 [ 1094.629134] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000001 [ 1094.630554] R13: 00007fff9a2c870f R14: 00007fddd54c5300 R15: 0000000000022000 [ 1094.632006] 20:37:03 executing program 3: r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r0, 0x1, 0x0, 0x0, 0x0, 0x0) syncfs(r0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r1, 0xc018937d, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r2, {0x6}}, './file0\x00'}) ioctl$TIOCGPTPEER(r3, 0x5441, 0x2002) ioctl$TIOCL_GETKMSGREDIRECT(0xffffffffffffffff, 0x541c, &(0x7f0000000140)) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f0000000100)={{0x1, 0x1, 0x18, r3}, './file0\x00'}) close_range(r1, 0xffffffffffffffff, 0x0) lseek(0xffffffffffffffff, 0x5eac, 0x0) 20:37:03 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, &(0x7f00000000c0)={0xffffffff, 0x0, &(0x7f0000000040)=[r0]}, 0x1) r1 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r1, 0x1, 0x0, 0x0, 0x0, 0x0) ftruncate(r1, 0x20) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r2, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 20:37:03 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f00000000c0)={0x5, 0x5, 0x1, 'queue0\x00', 0x8}) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) pipe(&(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x0) open_tree(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x80001) 20:37:03 executing program 2: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r0, &(0x7f0000000140)=@ocfs2={0xc, 0x1, {0x400, 0x5}}, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="00000400"]) r2 = openat$cgroup_procs(r1, &(0x7f00000000c0)='cgroup.threads\x00', 0x2, 0x0) fcntl$setsig(r2, 0xa, 0x22) r3 = syz_io_uring_setup(0x1, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x191}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000440)) io_uring_enter(r3, 0x1, 0x0, 0x0, 0x0, 0x0) statx(r0, &(0x7f0000000200)='./file0\x00', 0x6000, 0x80, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0}) mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0xa0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@access_client}, {@version_L}, {@access_uid={'access', 0x3d, r4}}, {@dfltuid={'dfltuid', 0x3d, 0xffffffffffffffff}}, {@mmap}, {@msize={'msize', 0x3d, 0x3}}, {@dfltgid={'dfltgid', 0x3d, 0xffffffffffffffff}}, {@aname={'aname', 0x3d, 'mountinfo\x00'}}], [{@fsname={'fsname', 0x3d, 'fd/3\x00'}}, {@appraise_type}]}}) r5 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r6 = socket$nl_audit(0x10, 0x3, 0x9) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000340)={'sit0\x00', 0x0}) sendmsg$inet(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f0000000000)={0x2, 0x0, @local}, 0x10, &(0x7f00000003c0)=[{&(0x7f0000000300)="6fb9", 0xffeb}], 0x1, &(0x7f0000000700)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r7, @remote, @broadcast}}}], 0x20}, 0x0) sendmmsg$inet(r5, &(0x7f00000021c0)=[{{0x0, 0x0, &(0x7f0000000c00)=[{&(0x7f0000000500)="07788f5db21e01820289cee23cf13f4a5c10589dc084cd3d74102a62220cdb417e3f460a55d4670f5dabd9d1c5ece61a63cf938c5be409e59d426026623716ecedb11f1159d270801c212e85cd9dc61f1fcc5bc584ab0a4c513bebf5b1338bacec3c74b90382caa6ddea8de16aa42f5e6f552d0b7f115a157cb41b6f80f636f8f1e29ed25d31d5271e9d232d02", 0x8d}, {&(0x7f00000005c0)="685085a582e1de2cc24c8e5f0a37bbcb3b8ed2cd5cbfe8f318bbe8c597b67660134627dcfd738d724589eedc355e04d0206aed6246846402c817ebd618e736443123b8edbae9d6b0ac17964daa2e70b213ef0c14dbdb6495eff0197b30fe03b0d86e35e9ea40e8acc183eed517d057554642a2abb979e18c7c85cba53b62b79ab0315f8502798bb9c0462632dc643911981eff478a1eb3d52396ef35c5726ec07dca227bcd7c75ce0c23e4356c6298c3262ade2ebd9217c45ddf578ec3ea", 0xbe}, {&(0x7f0000000680)="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", 0xfe}, {&(0x7f0000000780)="016143cfd2ed296944d647287840818e12ab60ca02f61434d2a54c4cb8a58a28f9bd155a6164c2c848a1f19c684a41608583ca65aa559988eb3ef67821fe157be88ccede3b720fab249c3db741b649b464", 0x51}, {&(0x7f0000000800)="d76e8be2ac1d5e8667cb2b5561fdb668245c161adc80fd82184135e4e9fbc1d753b7eefc8d9fe210f54ec174ebcb9e306368c57c2bbb9b070855ec40a6868c8935f33e167914081d5dfc7971653e6bfd0f89ac57ca8513623f77fef12c94b76240aef2a8fa529f552a5039d1f8d47fab6d10af2c8b40b11c01a5a102d278010a8ff18330cb8577bccc7a27c9ce2156573e65615ccc00c677d0bd76a39a047e71ec0f977ae4622167045d9dccabb15b", 0xaf}, {&(0x7f00000008c0)="00ff4f8a0d01df524629fdbbda245c4e73f40e8039fec32871e0131525ec83c33d3b66ae0a865d51c4897084dbc83084fbb1fe0d14605ce51463db52003f33b6797ebe57a18e3b4829f4aaa61fe5a399516639e88776c03f6b43f62db8723b3c5ef43db88ba7ff382728e6ef21a519c24295ff9da6c98332bb62dae796bac502d167061fa77d56ddaaf35dc02273fc", 0x8f}, {&(0x7f0000000980)="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", 0xff}, {&(0x7f0000000a80)="97c97c6c5992802c9e5ee50b5a8c9bc1845119e8520d036a95b44d7ecbc6ab36bfc47fa8acfbef312c3cd1ef574dfb1f430aa9909490f2f311944954ace8c7c9ebdecd83e51b51fcfd86d4824cf8a46b63586b13e42050ea0fbccae999b7a9c8f081085d29a022beea12a764609a634bd5b578e6e04842527692c39a553fa5031757ae957f714957741a3720b7c84a0485bd37daf795f2a7add7f613d10f65fa50d5fd2a9fd8f9a4ece24498a50f9399e49c71839871f0abeec70a070cd190f6c965f62cc0528cdb883f5cbc458077c769c101d9ec97e63012d14046c01016767fd5282822e19314447b7ea58bd7dfa50f62941113d2a4c0c47a07058d", 0xfd}, {&(0x7f0000000b80)="5296f428296d93e6e480f78add4914488cd311a66104389f1142f73772947423384491852c493bbbdcd0f1ab73087f36debffca7d093ea10d746fe138457eba1e9c73d65f36f7888aed7", 0x4a}], 0x9, &(0x7f0000000d80)=[@ip_ttl={{0x14, 0x0, 0x2, 0x80}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x5}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @empty, @loopback}}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x401}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @loopback, @empty}}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0xff}}], 0xa0}}, {{0x0, 0x0, &(0x7f0000000f00)=[{&(0x7f0000000e40)="5424136fa1981c3901f9ca9ac798e83259a2b5c452923a2e35a372842644a41ef982aa3201707637f37ac4c1385f44ab591c576bfe404f80bc340cf43362eaf9e3e18a9c03a8ab85b4a0c6287798b2f6f61f95abd1b6f2ae90e50ef9cdaf158622ee855f031ba13377452062dc0e92847a2c495dc7b68f3492e222889ebb4825b0fd8ccfa6d913c5c9be3621d761b09e38c4ae150af76f7ad1540590c81e914906e9eb4821e23c9be2168172ab22a8afcafc16849c3fd6907505b2a766", 0xbd}], 0x1, &(0x7f0000000f40)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r7, @multicast1, @broadcast}}}, @ip_retopts={{0x4c, 0x0, 0x7, {[@timestamp_prespec={0x44, 0x34, 0xb5, 0x3, 0x3, [{@dev={0xac, 0x14, 0x14, 0x2c}, 0x4}, {@private=0xa010101, 0x2bd}, {@broadcast, 0x3}, {@empty}, {@broadcast, 0xfffffffb}, {@local, 0x1000}]}, @noop, @end, @ra={0x94, 0x4, 0x1}]}}}], 0x70}}, {{0x0, 0x0, &(0x7f0000002100)=[{&(0x7f0000000fc0)="11e102797ef07fb0b81b48a611424789d3f46cb10bcad21cf1c3dbc753cb5a76e0a63bcd7a4d87ad210882b5122a4a7f9df1accd9a7f67066154c5fbc53f1dc2a59219", 0x43}, {&(0x7f0000001040)="95c913aa6ff20bcb2d89a5b7bf37fed8e9e58593426ce40461977a1fc8fee2078abc919200ae038bcde7ce31d40a18b734ae2bdef9be4de7c70a47617d940e16c664c2550fda047997bd9879b96ed5a4239b6a745383aa07f526fc377c3dfd1f6d6779acf410a4d28c02898499fd592f101840accd63515dc9f29799e2cd6559f1ed20c72fb75675256211425e2fcacae7f624efaf572de68c59da5f48a851aa66b631824e1bb21e17978ed9289913b9", 0xb0}, {&(0x7f0000001100)="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", 0x1000}], 0x3, &(0x7f0000002140)=[@ip_tos_u8={{0x11, 0x0, 0x1, 0x6}}, @ip_tos_u8={{0x11}}, @ip_tos_u8={{0x11, 0x0, 0x1, 0x9a}}], 0x48}}], 0x3, 0x8080) r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r8, 0x5441, 0x0) r9 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r9, 0x5437, 0x0) ioctl$TIOCSPTLCK(r9, 0x40045431, &(0x7f0000000040)=0x1) close_range(r5, 0xffffffffffffffff, 0x0) 20:37:03 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) (fail_nth: 6) 20:37:03 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) (fail_nth: 6) [ 1094.877853] FAULT_INJECTION: forcing a failure. [ 1094.877853] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1094.880335] FAULT_INJECTION: forcing a failure. [ 1094.880335] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1094.880572] CPU: 1 PID: 15060 Comm: syz-executor.5 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1094.884436] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1094.886680] Call Trace: [ 1094.887196] [ 1094.887645] dump_stack_lvl+0x8b/0xb3 [ 1094.888415] should_fail.cold+0x5/0xa [ 1094.889183] _copy_to_user+0x2a/0x140 [ 1094.889957] simple_read_from_buffer+0xcc/0x160 [ 1094.890901] proc_fail_nth_read+0x194/0x220 [ 1094.891798] ? proc_exe_link+0x1d0/0x1d0 [ 1094.892620] ? security_file_permission+0xb1/0xd0 [ 1094.893593] ? proc_exe_link+0x1d0/0x1d0 [ 1094.894419] vfs_read+0x1f0/0x5e0 [ 1094.895134] ksys_read+0x12d/0x250 [ 1094.895844] ? __ia32_sys_pwrite64+0x230/0x230 [ 1094.896754] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1094.897771] do_syscall_64+0x3b/0x90 [ 1094.898501] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1094.899531] RIP: 0033:0x7fddd7f0269c [ 1094.900244] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1094.903801] RSP: 002b:00007fddd54c5170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1094.905261] RAX: ffffffffffffffda RBX: 00000000000000c1 RCX: 00007fddd7f0269c [ 1094.906641] RDX: 000000000000000f RSI: 00007fddd54c51e0 RDI: 0000000000000004 [ 1094.908038] RBP: 00007fddd54c51d0 R08: 0000000000000000 R09: 0000000000000000 [ 1094.909405] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000001 [ 1094.910766] R13: 00007fff9a2c870f R14: 00007fddd54c5300 R15: 0000000000022000 [ 1094.912161] [ 1094.912606] CPU: 0 PID: 15051 Comm: syz-executor.0 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1094.914225] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1094.916414] Call Trace: [ 1094.916911] [ 1094.917348] dump_stack_lvl+0x8b/0xb3 [ 1094.918105] should_fail.cold+0x5/0xa [ 1094.918858] _copy_to_user+0x2a/0x140 [ 1094.919618] simple_read_from_buffer+0xcc/0x160 [ 1094.920526] proc_fail_nth_read+0x194/0x220 [ 1094.921375] ? proc_exe_link+0x1d0/0x1d0 [ 1094.922170] ? security_file_permission+0xb1/0xd0 [ 1094.923145] ? proc_exe_link+0x1d0/0x1d0 [ 1094.923949] vfs_read+0x1f0/0x5e0 [ 1094.924633] ksys_read+0x12d/0x250 [ 1094.925342] ? __ia32_sys_pwrite64+0x230/0x230 [ 1094.926240] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1094.927287] do_syscall_64+0x3b/0x90 [ 1094.928038] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1094.929073] RIP: 0033:0x7f44ddd2569c [ 1094.929789] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1094.933422] RSP: 002b:00007f44db2e8170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1094.934920] RAX: ffffffffffffffda RBX: 00000000000000c1 RCX: 00007f44ddd2569c [ 1094.936331] RDX: 000000000000000f RSI: 00007f44db2e81e0 RDI: 0000000000000004 [ 1094.937730] RBP: 00007f44db2e81d0 R08: 0000000000000000 R09: 0000000000000000 [ 1094.939139] R10: 0000000000000081 R11: 0000000000000246 R12: 0000000000000001 [ 1094.940529] R13: 00007ffd5814a54f R14: 00007f44db2e8300 R15: 0000000000022000 [ 1094.941954] 20:37:17 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) 20:37:17 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) 20:37:17 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r1, 0x5437, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x0) 20:37:17 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r1, &(0x7f0000000140)=@ocfs2={0xc, 0x1, {0x400, 0x5}}, 0x0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r2, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 20:37:17 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000040)=0x1) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r2, 0x5437, 0x0) ioctl$TIOCSTI(r2, 0x5412, &(0x7f00000000c0)=0x5) 20:37:17 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 2) 20:37:17 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x1309) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r2, 0x5437, 0x0) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000040)=0xe1) close_range(r0, 0xffffffffffffffff, 0x0) 20:37:17 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) kcmp(0xffffffffffffffff, 0x0, 0x5, r1, 0xffffffffffffffff) sched_getattr(0x0, &(0x7f0000000000)={0x38}, 0x38, 0x0) fstat(r0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0}) recvmmsg$unix(r0, &(0x7f0000000600)=[{{&(0x7f00000002c0), 0x6e, &(0x7f0000000500)=[{&(0x7f0000000340)=""/71, 0x47}, {&(0x7f00000003c0)=""/36, 0x24}, {&(0x7f0000000400)=""/215, 0xd7}], 0x3, &(0x7f0000000540)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0x0}}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}], 0x90}}], 0x1, 0x40000002, &(0x7f0000000640)={0x0, 0x989680}) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r7 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r10 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r8, r9, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r10, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000680)={0x0}, &(0x7f00000006c0)=0xc) stat(&(0x7f0000000700)='./file0\x00', &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0}) lchown(&(0x7f0000000100)='./file0\x00', r14, r13) r15 = gettid() sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000880)={&(0x7f0000000040)=@proc={0x10, 0x0, 0x25dfdbfc, 0x20000000}, 0xc, &(0x7f00000001c0)=[{&(0x7f00000000c0)={0xc8, 0x1f, 0x300, 0x70bd2a, 0x25dfdbfb, "", [@nested={0x14, 0x5d7, 0x0, 0x1, [@typed={0x8, 0x8c, 0x0, 0x0, @ipv4=@empty}, @typed={0x8, 0x59, 0x0, 0x0, @u32=0x8}]}, @nested={0xa3, 0x8, 0x0, 0x1, [@generic="657356a06faf621cf23be2e87aaf878ea1639771b840cc00a65f34c5e14e99154ca4e00810bca02b38d4402ccf7049558bdbe69e26a30cd24bc12373c3d4ba8c9ad41ccc5e97afc9c28c2eea65480ba6ee24a5f4893120af77ced5839c93b4b5465b6eed20fee61d999cd289d70f18e6b9248d1e33bbac91b3033e132a7363bae2aeed6465efd6", @typed={0xe, 0x3d, 0x0, 0x0, @str='/dev/ptmx\x00'}, @typed={0x8, 0x59, 0x0, 0x0, @uid=0xee00}]}]}, 0xc8}], 0x1, &(0x7f00000007c0)=[@rights={{0x18, 0x1, 0x1, [r4, r1]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, r2, r3}}}, @rights={{0x24, 0x1, 0x1, [r1, r0, r7, r10, r0]}}, @cred={{0x1c, 0x1, 0x2, {r11, r12, r13}}}, @cred={{0x1c, 0x1, 0x2, {r15, 0x0, 0xee01}}}], 0xb8, 0x4000000}, 0x40080) close_range(r0, 0xffffffffffffffff, 0x0) [ 1108.638185] FAULT_INJECTION: forcing a failure. [ 1108.638185] name failslab, interval 1, probability 0, space 0, times 0 [ 1108.641135] CPU: 0 PID: 15071 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1108.641168] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1108.641187] Call Trace: [ 1108.641199] [ 1108.645668] dump_stack_lvl+0x8b/0xb3 20:37:17 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0x15}], 0x1, 0x81, 0x0) [ 1108.645715] should_fail.cold+0x5/0xa [ 1108.645751] ? create_object.isra.0+0x3a/0xa20 [ 1108.645795] should_failslab+0x5/0x10 [ 1108.645820] kmem_cache_alloc+0x5b/0x480 [ 1108.645860] create_object.isra.0+0x3a/0xa20 [ 1108.645898] ? kasan_unpoison+0x23/0x50 [ 1108.645943] kmem_cache_alloc_node+0x248/0x490 [ 1108.645983] copy_process+0x5c8/0x6d10 [ 1108.646032] ? lock_release+0x3b2/0x6f0 [ 1108.646064] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1108.646096] ? lock_downgrade+0x6d0/0x6d0 [ 1108.646140] ? __cleanup_sighand+0xb0/0xb0 [ 1108.646179] ? lock_is_held_type+0xd7/0x130 [ 1108.646215] ? lock_release+0x3b2/0x6f0 [ 1108.646245] ? ksys_write+0x212/0x250 [ 1108.646278] ? kernel_clone+0x2f8/0xa60 [ 1108.646322] kernel_clone+0xe7/0xa60 [ 1108.646360] ? find_held_lock+0x2c/0x110 [ 1108.646387] ? create_io_thread+0xf0/0xf0 [ 1108.646430] ? __mutex_unlock_slowpath+0x15c/0x5e0 20:37:17 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) io_setup(0x9, &(0x7f0000000140)=0x0) io_submit(r2, 0x1, &(0x7f0000001340)=[&(0x7f00000011c0)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0}]) io_pgetevents(r2, 0x0, 0xa9, 0x0, 0x0, &(0x7f00000000c0)={0x0, 0x2e98059e16f4fc9b}) r3 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0) io_submit(r2, 0x1, &(0x7f00000010c0)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x7, 0x401, r3, &(0x7f00000000c0)="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", 0x1000, 0x9, 0x0, 0x1, r0}]) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r4, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) [ 1108.646473] ? bit_wait_io_timeout+0x160/0x160 [ 1108.646510] ? lock_is_held_type+0xd7/0x130 [ 1108.646542] __do_sys_fork+0x8a/0xc0 [ 1108.646580] ? kernel_clone+0xa60/0xa60 [ 1108.646617] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1108.646668] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1108.646699] ? lockdep_hardirqs_on+0x79/0x100 [ 1108.646725] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1108.646754] do_syscall_64+0x3b/0x90 [ 1108.646791] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1108.646834] RIP: 0033:0x7f9fc1cadb19 [ 1108.646854] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1108.646879] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1108.646907] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 20:37:17 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0x7ffff000}], 0x1, 0x81, 0x0) [ 1108.646925] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1108.646941] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 20:37:17 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0x15}], 0x1, 0x81, 0x0) [ 1108.646957] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1108.646973] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1108.647017] 20:37:17 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) writev(r1, &(0x7f0000000040)=[{&(0x7f00000000c0)="9ec414e7a3c3e7d379b524c64d55ff5f212bd7a4618ece46e3fd6c58d8c7b461069fb7948d2a096b5dc232fbd8eea3f0979e8ccf0e203e2b0b4158fbce087f69700b7534dcae8cfc786716f85954729c1c506310709f5635d09655f991672935dffba716e55ac7e2dee2d09ec360fabfdb455d17a66550a976719739e70d66c9ab0219be2b963b1227ab8bc3aeae1c8839b8580de685f2655635d917b1fc9ab921050f509b9c4b7706c8c756479add32c4a3b8c08a02d288dcb3bf91ef91", 0xbe}], 0x1) kcmp(0xffffffffffffffff, 0x0, 0x5, r1, 0xffffffffffffffff) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0xc0000, 0x0) r2 = syz_open_dev$mouse(&(0x7f00000001c0), 0x1, 0x204280) close_range(r0, r2, 0x0) 20:37:29 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0x7ffffffff000}], 0x1, 0x81, 0x0) 20:37:29 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 3) 20:37:29 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) r3 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r6 = socket$nl_sock_diag(0x10, 0x3, 0x4) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r9 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r9, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) r10 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)) io_uring_enter(r10, 0x1, 0x0, 0x0, 0x0, 0x0) poll(&(0x7f0000000180)=[{r3, 0x4010}, {r3, 0x8001}, {r2, 0x4094}, {0xffffffffffffffff, 0x381}, {r6, 0x181}, {r1, 0x8000}, {r2, 0x1010}, {r9, 0x2000}, {r10, 0x500}], 0x9, 0xffffff01) ioctl$TIOCSPTLCK(r1, 0x40045431, &(0x7f0000000040)) r12 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r12, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) r13 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r16 = io_uring_register$IORING_REGISTER_PERSONALITY(r13, 0x9, 0x0, 0x0) r17 = socket$inet_tcp(0x2, 0x1, 0x0) syz_io_uring_submit(r14, r15, &(0x7f0000000300)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r17, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r16}}, 0x0) syz_io_uring_submit(r11, 0x0, &(0x7f0000000200)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd_index=0x9, 0x5, 0x0, 0x5, 0x7, 0x0, {0x0, r16}}, 0xd5f6) close_range(r0, r12, 0x2) 20:37:29 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0x7ffff000}], 0x1, 0x81, 0x0) 20:37:29 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r1, &(0x7f0000000200)=ANY=[@ANYBLOB="0c00000003000000004aa209860400987bbd72bdc5099fda"], 0x0) execveat(r1, &(0x7f00000000c0)='./file0\x00', &(0x7f00000003c0)=[&(0x7f0000000100)='[\x00', &(0x7f0000000140)='\b\x00\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000180)='\x8d\x000', &(0x7f00000001c0)='/dev/ptmx\x00', &(0x7f0000000300)='\x00', &(0x7f0000000240)='[{-]\\(%\x00', &(0x7f0000000440)='\x00\x00\xb4x\x05\xe8\x99\xe2c\x1f\xc5\x1c\x8f\xb5\x98n\x04\nerC\xf9\xb2\xa57\xd8\x05\x00\x00\x00V\x8f\x80\x81\xfe\xb8P$O\x98\t\x00G=k\xc6Ev\xbfY\xf4>\x17\x8e\x80\xdb\xdfD\x81\xe7\"5\v\x01Wr\x063\xfd:\xa8\x02\xc0\xc4^%\xb0\x89\xa2\x85\x1f', &(0x7f00000002c0)='u\x00\x00\x00\x00\x00\x00\x00x\x00'], &(0x7f0000000280)=[&(0x7f0000000340)='`-{/\xd8[/+%#]\x00'], 0x0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r2, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r3, 0x5437, 0x0) ioctl$TIOCMBIS(r3, 0x5416, &(0x7f0000000040)=0x2) 20:37:29 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') ppoll(&(0x7f00000000c0)=[{r0, 0x40}], 0x1, &(0x7f0000000100)={0x0, 0x3938700}, &(0x7f0000000140)={[0xcc8]}, 0x8) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) r3 = syz_io_uring_setup(0x407a, &(0x7f00000001c0)={0x0, 0xf67, 0x2, 0x1, 0x1b, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000240)=0x0, &(0x7f0000000280)) syz_io_uring_submit(r4, 0x0, &(0x7f00000002c0)=@IORING_OP_READ_FIXED={0x4, 0x1, 0x0, @fd=r2, 0x3558, 0x4, 0x6, 0x11, 0x1}, 0x6) close_range(r0, 0xffffffffffffffff, 0x0) r5 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r5, 0x5437, 0x0) r6 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000300), 0x840, 0x0) ioctl$TCSETS(r6, 0x5402, &(0x7f0000000340)={0xb47, 0xffffffff, 0x1f, 0x1, 0xe, "b8d46dce49a24647578cec40d75a1c71790bf4"}) r7 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r7, 0x5437, 0x0) ioctl$TCSETS(r7, 0x5402, &(0x7f0000000180)={0x464, 0x1, 0x100, 0xaf, 0xc, "71ce55f8b90a753fac14c8b22f71780ee4c15d"}) ioctl$TCSETS2(r5, 0x402c542b, &(0x7f0000000040)={0x3, 0x0, 0x3676, 0x9, 0xe7, "80fc4d5666078f386fdc93eb789e106a059ae5", 0xfffffe00, 0x1}) sendmsg$NL80211_CMD_GET_PROTOCOL_FEATURES(r3, &(0x7f0000000440)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x14, 0x0, 0x800, 0x70bd28, 0x25dfdbfd, {}, ["", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x10) 20:37:29 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) ioctl$TIOCVHANGUP(r2, 0x5437, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 20:37:29 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r2, 0x5437, 0x0) ioctl$TCSETS(r2, 0x5402, &(0x7f0000000040)={0x10001, 0x4, 0xffff, 0x6, 0x7, "1a2fadda15c587066951ef1479a172f77faae4"}) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) close(r3) r4 = dup(r0) ioctl$SG_GET_PACK_ID(r4, 0x227c, &(0x7f0000000140)) r5 = open_tree(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x8900) readv(r5, &(0x7f0000001480)=[{&(0x7f0000000140)}, {&(0x7f0000000180)=""/4096, 0x1000}, {&(0x7f0000001180)=""/155, 0x9b}, {&(0x7f0000001240)=""/194, 0xc2}, {&(0x7f0000001340)=""/53, 0x35}, {&(0x7f0000001380)=""/213, 0xd5}], 0x6) kcmp(0xffffffffffffffff, 0x0, 0x5, r1, 0xffffffffffffffff) r6 = memfd_secret(0x80000) ioctl$TCGETS(r6, 0x5401, &(0x7f00000000c0)) close_range(r0, 0xffffffffffffffff, 0x0) 20:37:29 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x2, 0x81, 0x0) 20:37:29 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0x7ffffffff000}], 0x1, 0x81, 0x0) [ 1121.419188] FAULT_INJECTION: forcing a failure. [ 1121.419188] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1121.421731] CPU: 1 PID: 15326 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1121.423412] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1121.426222] Call Trace: [ 1121.426882] [ 1121.427404] dump_stack_lvl+0x8b/0xb3 [ 1121.428279] should_fail.cold+0x5/0xa [ 1121.429145] prepare_alloc_pages+0x17b/0x500 [ 1121.430131] ? find_held_lock+0x2c/0x110 [ 1121.431042] __alloc_pages+0x131/0x4e0 [ 1121.432010] ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10 [ 1121.433346] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1121.434414] copy_process+0x65c/0x6d10 [ 1121.435284] ? lock_release+0x3b2/0x6f0 [ 1121.436170] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1121.437316] ? lock_downgrade+0x6d0/0x6d0 [ 1121.438237] ? __cleanup_sighand+0xb0/0xb0 [ 1121.439175] ? lock_is_held_type+0xd7/0x130 [ 1121.440121] ? lock_release+0x3b2/0x6f0 [ 1121.440916] ? ksys_write+0x212/0x250 [ 1121.441684] ? kernel_clone+0x2f8/0xa60 [ 1121.442491] kernel_clone+0xe7/0xa60 [ 1121.443245] ? find_held_lock+0x2c/0x110 [ 1121.444066] ? create_io_thread+0xf0/0xf0 [ 1121.444909] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1121.445950] ? bit_wait_io_timeout+0x160/0x160 [ 1121.446892] ? lock_is_held_type+0xd7/0x130 [ 1121.447808] __do_sys_fork+0x8a/0xc0 [ 1121.448585] ? kernel_clone+0xa60/0xa60 [ 1121.449439] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1121.450637] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1121.451747] ? lockdep_hardirqs_on+0x79/0x100 [ 1121.452726] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1121.453828] do_syscall_64+0x3b/0x90 [ 1121.454639] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1121.455760] RIP: 0033:0x7f9fc1cadb19 [ 1121.456547] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1121.460408] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1121.462026] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 20:37:30 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x3, 0x81, 0x0) [ 1121.463531] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1121.465243] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1121.466664] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1121.468120] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1121.469582] 20:37:30 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) kcmp(0xffffffffffffffff, 0x0, 0x5, r1, 0xffffffffffffffff) close_range(r0, 0xffffffffffffffff, 0x0) 20:37:30 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TCSETS(r1, 0x5402, &(0x7f0000000040)={0xb3b, 0x2, 0x1, 0x236, 0x6, "3bdf6470dbc9fa677355759c3d31dfccf7b3ef"}) recvmsg$unix(r0, &(0x7f0000000280)={&(0x7f00000000c0), 0x6e, &(0x7f00000002c0), 0x0, &(0x7f0000000240)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x18}, 0x4) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r2, 0xc018937c, &(0x7f0000000300)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32, @ANYBLOB="000000a412670000000000ce00d6815a0b401893aaed0000000000"]) ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0xff) close_range(r0, 0xffffffffffffffff, 0x0) 20:37:30 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x2, 0x81, 0x0) 20:37:30 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) fcntl$setlease(r3, 0x400, 0x0) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r4, 0x5441, 0x0) r5 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r5, 0x1, 0x0, 0x0, 0x0, 0x0) ioctl$AUTOFS_IOC_EXPIRE(r5, 0x810c9365, &(0x7f00000000c0)={{0x1, 0x9a9}, 0x100, './file0\x00'}) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x0) 20:37:30 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x8, 0x81, 0x0) 20:37:30 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x80500, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) r2 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r2, 0x1, 0x0, 0x0, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) fgetxattr(r0, &(0x7f00000001c0)=@known='security.selinux\x00', &(0x7f0000000200)=""/71, 0x47) 20:37:46 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x3, 0x81, 0x0) 20:37:46 executing program 1: r0 = getpid() sched_getattr(r0, &(0x7f0000000000)={0x38}, 0x38, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) kcmp(0xffffffffffffffff, r0, 0x4, r3, 0xffffffffffffffff) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) kcmp(0xffffffffffffffff, 0x0, 0x5, r5, 0xffffffffffffffff) close_range(r4, 0xffffffffffffffff, 0x0) 20:37:46 executing program 4: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x349001, 0x0) ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000040)) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r1, 0x1, 0x0, 0x0, 0x0, 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f00000000c0)="a08e153d199b3447ed20da3c9e03bcadf8e29796df6134c5db7cec2988bcfa8c97197f121cd05d6994d77cb2c88a2a027fc76245e5e9a78003ec82fbe0017508e0b13c2f09f4ec8c4497aac774170ad28de0dd68003b23b409041bae584340c5992974f6154f0c263268c671ad4707eecb44cead5f128e80824d842cac99edffa32c9d989651e460341dfad414db140ca3967a278b58ef6fc5d126f134", 0x9d}, {&(0x7f0000000180)="f2acc653fc009487511ff42bbf0bb6", 0xf}, {&(0x7f00000001c0)="84a2f14e530b0a6f7061ce1830b67c4f7f5fad0e3b024ca0206e2f80daa91842b545619ae28e6ae449dc4e45d5336ff79fceb8fa097eb1d8a94e01c8b4fb10dc5f493c0e043729f373db956fc4cb11f6004ce977d8dbad4e0c8b60f45c9e58542636a7bab1a7d581ca88ff3f8e184645afb3577a49deafbe9c7c469022aaa5028ae231964ae0bc7a9ce89be5c2f35047d7c165354a234d8ddde250b8c6eb39af281ad272b21b1433d20f38fee30fc23f9919b2f2f8358dc28556c057517cf5034e31424ce8ffdb698fd02386b7e79ef22acf24662dc3a7701b29637725b0cc97e0ca5ff0", 0xe4}, {&(0x7f00000002c0)="1315a44bf1e1ee85f2ceb6134b0ed00b8987c87ad3719b3231f55c7196ef075090e7f3eccd47b64eea76f63d4696d3e888843caf74f23f31072dfdce0f94e3e727cc5b83f3268bfffe5595049ee1ca0a41cb423e577e90149a4a6a50acaf1d54004bf7f4af0f9f", 0x67}], 0x4, 0x4, 0x7) ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, &(0x7f0000000000)) fchmod(r0, 0x10) 20:37:46 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 4) 20:37:46 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCSPTLCK(r1, 0x40045431, &(0x7f0000000140)) ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f0000000040)={0x7f, 0x2, 0x6, 0x3f, 0xd, "28d75b53ab52e81cc21cdf30c1669a44a6cab4"}) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$hidraw(&(0x7f00000001c0), 0x94da, 0x1) ioctl$F2FS_IOC_WRITE_CHECKPOINT(r2, 0xf507, 0x0) pipe2(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4800) r4 = syz_open_dev$hidraw(&(0x7f00000000c0), 0x3, 0x800) ioctl$FICLONERANGE(r3, 0x4020940d, &(0x7f0000000100)={{r4}, 0x3ff, 0x10000, 0x8003}) 20:37:46 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r2, 0x5437, 0x0) ioctl$VT_RELDISP(r2, 0x5605) 20:37:46 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x300, 0x81, 0x0) 20:37:46 executing program 2: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) [ 1138.064555] FAULT_INJECTION: forcing a failure. [ 1138.064555] name failslab, interval 1, probability 0, space 0, times 0 [ 1138.066893] CPU: 1 PID: 15472 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1138.068574] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1138.070815] Call Trace: [ 1138.071327] [ 1138.071785] dump_stack_lvl+0x8b/0xb3 [ 1138.072562] should_fail.cold+0x5/0xa [ 1138.073323] ? prepare_creds+0x2b/0x6f0 [ 1138.074212] should_failslab+0x5/0x10 [ 1138.074969] kmem_cache_alloc+0x5b/0x480 [ 1138.075803] prepare_creds+0x2b/0x6f0 [ 1138.076573] copy_creds+0x76/0xb20 [ 1138.077295] copy_process+0xe3f/0x6d10 [ 1138.078082] ? lock_release+0x3b2/0x6f0 [ 1138.078876] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1138.079952] ? __cleanup_sighand+0xb0/0xb0 [ 1138.080799] ? lock_is_held_type+0xd7/0x130 [ 1138.081658] ? lock_release+0x3b2/0x6f0 [ 1138.082447] ? ksys_write+0x212/0x250 [ 1138.083206] ? kernel_clone+0x2f8/0xa60 [ 1138.084011] kernel_clone+0xe7/0xa60 [ 1138.084759] ? find_held_lock+0x2c/0x110 [ 1138.085564] ? create_io_thread+0xf0/0xf0 [ 1138.086393] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1138.087377] ? bit_wait_io_timeout+0x160/0x160 [ 1138.088302] ? lock_is_held_type+0xd7/0x130 [ 1138.089155] __do_sys_fork+0x8a/0xc0 [ 1138.089901] ? kernel_clone+0xa60/0xa60 [ 1138.090698] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1138.091828] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1138.092849] ? lockdep_hardirqs_on+0x79/0x100 [ 1138.093739] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1138.094757] do_syscall_64+0x3b/0x90 [ 1138.095499] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1138.096542] RIP: 0033:0x7f9fc1cadb19 [ 1138.097273] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1138.100898] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1138.102396] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1138.103818] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1138.105217] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1138.106620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1138.108028] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1138.109453] 20:37:46 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x121400, 0x0) kcmp(0xffffffffffffffff, 0x0, 0x5, r1, 0xffffffffffffffff) close_range(r0, 0xffffffffffffffff, 0x0) readv(0xffffffffffffffff, &(0x7f0000000640)=[{&(0x7f0000000140)=""/117, 0x75}, {&(0x7f00000001c0)=""/85, 0x55}, {&(0x7f0000000240)=""/226, 0xe2}, {&(0x7f0000000340)=""/31, 0x1f}, {&(0x7f0000000380)=""/75, 0x4b}, {&(0x7f0000000400)=""/178, 0xb2}, {&(0x7f00000004c0)=""/175, 0xaf}, {&(0x7f0000000580)=""/115, 0x73}, {&(0x7f0000000600)=""/15, 0xf}], 0x9) pwrite64(r1, &(0x7f0000000080)="3b06c5fa95dde44828ca76dadfbb94000cec3a41d2f6b0665bf22c309a0022ea124e66b2cb58d7aa37e5bc6df9ac0d0b6385538a8fe876f1acb677421120dc327950eb2a795530a62b1ebd1765f14178b797e2039c78976d33d530ef4a377f403e962568de2af01f99e654b7a21475c056918aa14a0ab1f69e0382d3a42615281b8cf05b42100ad64abf38f7855cbe8bc4057c", 0x93, 0x9) 20:37:46 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xed5, 0x81, 0x0) 20:37:46 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = openat$null(0xffffffffffffff9c, &(0x7f00000002c0), 0x10200, 0x0) ioctl$TIOCNOTTY(r2, 0x5422) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r3, &(0x7f0000000140)=@ocfs2={0xc, 0x1, {0x400, 0x5}}, 0x0) sendmsg$IPCTNL_MSG_CT_DELETE(r3, &(0x7f0000000280)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000240)={&(0x7f00000000c0)={0x178, 0x2, 0x1, 0x101, 0x0, 0x0, {0x1, 0x0, 0x1}, [@CTA_TUPLE_REPLY={0x78, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast1}, {0x14, 0x4, @local}}}, @CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private2={0xfc, 0x2, '\x00', 0x1}}, {0x14, 0x4, @local}}}]}, @CTA_TUPLE_MASTER={0xb0, 0xe, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @loopback}, {0x14, 0x4, @loopback}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, {0x14, 0x4, @remote}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x21}}]}, @CTA_SEQ_ADJ_ORIG={0x3c, 0xf, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x5}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x5}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x5}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0xfffffffe}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x81a}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x4214}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x101}]}]}, 0x178}}, 0x4011) 20:37:46 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x8, 0x81, 0x0) 20:37:46 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') ioctl$BTRFS_IOC_SCRUB(r0, 0xc400941b, &(0x7f00000000c0)={0x0, 0x2, 0x5, 0x1}) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x40069b97cb947c04, 0x0) close_range(r0, r2, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) r3 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r3, 0x5437, 0x0) ioctl$TCXONC(r3, 0x540a, 0x0) ioctl$KDDELIO(r0, 0x4b35, 0xb60) r4 = syz_open_dev$tty20(0xc, 0x4, 0x1) write$rfkill(0xffffffffffffffff, &(0x7f00000004c0)={0x5, 0x7, 0x3, 0x1, 0x2}, 0x8) ioctl$TIOCVHANGUP(r4, 0x5437, 0x0) ioctl$TIOCGPTPEER(r4, 0x5441, 0x7) close_range(r0, 0xffffffffffffffff, 0x0) 20:37:46 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) r2 = fcntl$dupfd(r1, 0x406, r0) ioctl$EXT4_IOC_CLEAR_ES_CACHE(r2, 0x6628) close_range(r0, 0xffffffffffffffff, 0x0) 20:37:46 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 5) 20:37:46 executing program 7: syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r0, 0x5441, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) r4 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r4, 0x1, 0x0, 0x0, 0x0, 0x0) r5 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r5, 0x1, 0x0, 0x0, 0x0, 0x0) close_range(r5, 0xffffffffffffffff, 0x0) 20:37:46 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xede, 0x81, 0x0) 20:37:46 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x300, 0x81, 0x0) 20:37:46 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) io_uring_enter(r1, 0x1, 0x0, 0x0, 0x0, 0x0) preadv(r1, &(0x7f00000025c0)=[{&(0x7f0000000180)=""/83, 0x53}, {&(0x7f0000000380)=""/4096, 0x1000}, {&(0x7f0000000200)=""/135, 0x87}, {&(0x7f0000001380)=""/235, 0xeb}, {&(0x7f0000001480)=""/88, 0x58}, {&(0x7f0000001500)=""/165, 0xa5}, {&(0x7f00000015c0)=""/4096, 0x1000}], 0x7, 0x0, 0x3) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r4, 0x5441, 0x0) r5 = openat$null(0xffffffffffffff9c, &(0x7f00000002c0), 0x10800, 0x0) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f00000026c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, r5, &(0x7f0000002640)={0x200, 0x122, 0x14}, &(0x7f0000002680)='./file0\x00', 0x18, 0x0, 0x12345, {0x0, r6}}, 0x2ca1) r7 = socket$inet6(0xa, 0x1, 0x0) getsockopt$IP6T_SO_GET_INFO(r7, 0x29, 0x13, 0x0, &(0x7f00000000c0)) syz_open_dev$hidraw(&(0x7f0000000040), 0xf6, 0x4e0000) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r10 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r8, r9, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r10, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) close_range(r10, r0, 0x0) [ 1138.401794] FAULT_INJECTION: forcing a failure. [ 1138.401794] name failslab, interval 1, probability 0, space 0, times 0 [ 1138.404083] CPU: 0 PID: 15594 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1138.405696] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1138.407909] Call Trace: [ 1138.408407] [ 1138.408842] dump_stack_lvl+0x8b/0xb3 [ 1138.409604] should_fail.cold+0x5/0xa [ 1138.410362] ? create_object.isra.0+0x3a/0xa20 [ 1138.411288] should_failslab+0x5/0x10 [ 1138.412054] kmem_cache_alloc+0x5b/0x480 [ 1138.412859] ? obj_cgroup_charge+0x247/0x740 [ 1138.413758] create_object.isra.0+0x3a/0xa20 [ 1138.414632] ? kasan_unpoison+0x23/0x50 [ 1138.415432] kmem_cache_alloc+0x239/0x480 [ 1138.416273] prepare_creds+0x2b/0x6f0 [ 1138.417064] copy_creds+0x76/0xb20 [ 1138.417777] copy_process+0xe3f/0x6d10 [ 1138.418573] ? lock_release+0x3b2/0x6f0 [ 1138.419359] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1138.420407] ? __cleanup_sighand+0xb0/0xb0 [ 1138.421237] ? lock_is_held_type+0xd7/0x130 [ 1138.422084] ? lock_release+0x3b2/0x6f0 [ 1138.422862] ? ksys_write+0x212/0x250 [ 1138.423617] ? kernel_clone+0x2f8/0xa60 [ 1138.424402] kernel_clone+0xe7/0xa60 [ 1138.425140] ? find_held_lock+0x2c/0x110 [ 1138.425936] ? create_io_thread+0xf0/0xf0 [ 1138.426755] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1138.427745] ? bit_wait_io_timeout+0x160/0x160 [ 1138.428646] ? lock_is_held_type+0xd7/0x130 [ 1138.429519] __do_sys_fork+0x8a/0xc0 [ 1138.430262] ? kernel_clone+0xa60/0xa60 [ 1138.431052] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1138.432160] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1138.433169] ? lockdep_hardirqs_on+0x79/0x100 [ 1138.434042] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1138.435049] do_syscall_64+0x3b/0x90 [ 1138.435810] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1138.436841] RIP: 0033:0x7f9fc1cadb19 [ 1138.437565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1138.441365] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1138.442846] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1138.444257] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1138.445665] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1138.447058] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1138.448475] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1138.449883] 20:38:00 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 6) 20:38:00 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r2, 0x5437, 0x0) ioctl$TIOCGPTPEER(r2, 0x5441, 0x391) 20:38:00 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x52000, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 20:38:00 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xee7, 0x81, 0x0) 20:38:00 executing program 1: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r0, 0x5437, 0x0) ioctl$TIOCGDEV(r0, 0x80045432, &(0x7f0000000200)) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) ioctl$F2FS_IOC_SET_PIN_FILE(r3, 0x4004f50d, &(0x7f0000000040)) r4 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0) ioctl$TIOCSTI(r6, 0x5412, &(0x7f00000001c0)=0x6) kcmp(0xffffffffffffffff, 0x0, 0x5, r5, 0xffffffffffffffff) close_range(r4, 0xffffffffffffffff, 0x0) 20:38:00 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = getpid() getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000100)={0x0}, &(0x7f0000000140)=0xc) sched_getattr(r2, &(0x7f0000000000)={0x38}, 0x38, 0x0) kcmp$KCMP_EPOLL_TFD(0xffffffffffffffff, r1, 0x7, 0xffffffffffffffff, &(0x7f00000000c0)={r0, r0, 0x1}) sched_getattr(r2, &(0x7f0000000180)={0x38}, 0x38, 0x0) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r3, 0x5441, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x0) 20:38:00 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xed5, 0x81, 0x0) 20:38:00 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) r2 = syz_open_dev$tty1(0xc, 0x4, 0x4) ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f0000000040)=0x1) close_range(r0, 0xffffffffffffffff, 0x0) syz_io_uring_complete(0x0) [ 1152.403945] FAULT_INJECTION: forcing a failure. [ 1152.403945] name failslab, interval 1, probability 0, space 0, times 0 [ 1152.406303] CPU: 1 PID: 15720 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1152.408008] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1152.408024] Call Trace: [ 1152.408032] [ 1152.408040] dump_stack_lvl+0x8b/0xb3 [ 1152.408081] should_fail.cold+0x5/0xa [ 1152.408113] ? security_prepare_creds+0x10a/0x180 [ 1152.408150] should_failslab+0x5/0x10 [ 1152.408174] __kmalloc+0x72/0x440 [ 1152.408208] security_prepare_creds+0x10a/0x180 [ 1152.408246] prepare_creds+0x505/0x6f0 [ 1152.408286] copy_creds+0x76/0xb20 [ 1152.408329] copy_process+0xe3f/0x6d10 [ 1152.408372] ? lock_release+0x3b2/0x6f0 [ 1152.408401] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1152.408444] ? __cleanup_sighand+0xb0/0xb0 [ 1152.408479] ? lock_is_held_type+0xd7/0x130 [ 1152.408511] ? lock_release+0x3b2/0x6f0 [ 1152.408538] ? ksys_write+0x212/0x250 [ 1152.408569] ? kernel_clone+0x2f8/0xa60 [ 1152.408605] kernel_clone+0xe7/0xa60 [ 1152.408639] ? find_held_lock+0x2c/0x110 [ 1152.408664] ? create_io_thread+0xf0/0xf0 [ 1152.408701] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1152.408739] ? bit_wait_io_timeout+0x160/0x160 20:38:01 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f00000000c0)) 20:38:01 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xede, 0x81, 0x0) [ 1152.408772] ? lock_is_held_type+0xd7/0x130 [ 1152.408801] __do_sys_fork+0x8a/0xc0 [ 1152.408835] ? kernel_clone+0xa60/0xa60 20:38:01 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xef0, 0x81, 0x0) [ 1152.408868] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1152.408913] ? syscall_enter_from_user_mode+0x1d/0x50 20:38:01 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 7) [ 1152.408941] ? lockdep_hardirqs_on+0x79/0x100 [ 1152.408964] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1152.408990] do_syscall_64+0x3b/0x90 [ 1152.409024] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1152.409062] RIP: 0033:0x7f9fc1cadb19 [ 1152.409080] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1152.409102] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1152.409126] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1152.409142] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1152.409156] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1152.409171] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1152.409185] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1152.409224] 20:38:01 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r2, &(0x7f0000000140)=@ocfs2={0xc, 0x1, {0x400, 0x5}}, 0x0) sendmsg$NL80211_CMD_ADD_TX_TS(r2, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000100)={&(0x7f0000000180)={0x1c, 0x0, 0x400, 0x70bf27, 0x25dfdbfd, {{}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x4000004}, 0x10) [ 1152.607599] FAULT_INJECTION: forcing a failure. [ 1152.607599] name failslab, interval 1, probability 0, space 0, times 0 [ 1152.610026] CPU: 1 PID: 15884 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1152.611695] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1152.613939] Call Trace: [ 1152.614448] [ 1152.614896] dump_stack_lvl+0x8b/0xb3 [ 1152.615672] should_fail.cold+0x5/0xa [ 1152.616453] ? prepare_creds+0x2b/0x6f0 [ 1152.617254] should_failslab+0x5/0x10 [ 1152.618008] kmem_cache_alloc+0x5b/0x480 [ 1152.618823] prepare_creds+0x2b/0x6f0 [ 1152.619596] copy_creds+0x76/0xb20 [ 1152.620328] copy_process+0xe3f/0x6d10 [ 1152.621117] ? lock_release+0x3b2/0x6f0 [ 1152.621920] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1152.622977] ? __cleanup_sighand+0xb0/0xb0 [ 1152.623837] ? lock_is_held_type+0xd7/0x130 [ 1152.624700] ? lock_release+0x3b2/0x6f0 [ 1152.625505] ? ksys_write+0x212/0x250 [ 1152.626267] ? kernel_clone+0x2f8/0xa60 [ 1152.627075] kernel_clone+0xe7/0xa60 [ 1152.627838] ? find_held_lock+0x2c/0x110 [ 1152.628644] ? create_io_thread+0xf0/0xf0 [ 1152.629478] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1152.630459] ? bit_wait_io_timeout+0x160/0x160 [ 1152.631369] ? lock_is_held_type+0xd7/0x130 [ 1152.632235] __do_sys_fork+0x8a/0xc0 [ 1152.632984] ? kernel_clone+0xa60/0xa60 [ 1152.633779] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1152.634886] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1152.635930] ? lockdep_hardirqs_on+0x79/0x100 [ 1152.636816] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1152.637843] do_syscall_64+0x3b/0x90 [ 1152.638590] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1152.639622] RIP: 0033:0x7f9fc1cadb19 [ 1152.640361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1152.644017] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1152.645523] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1152.646948] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1152.648394] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1152.649815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1152.651227] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1152.652664] 20:38:17 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xee7, 0x81, 0x0) 20:38:17 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 8) 20:38:17 executing program 3: recvmmsg$unix(0xffffffffffffffff, &(0x7f0000002cc0)=[{{&(0x7f0000000140), 0x6e, &(0x7f0000002640)=[{&(0x7f00000001c0)=""/4096, 0x1000}, {&(0x7f00000011c0)=""/163, 0xa3}, {&(0x7f0000001280)=""/253, 0xfd}, {&(0x7f0000001380)=""/4096, 0x1000}, {&(0x7f0000002380)=""/37, 0x25}, {&(0x7f00000023c0)=""/186, 0xba}, {&(0x7f0000002480)=""/98, 0x62}, {&(0x7f0000002500)=""/193, 0xc1}, {&(0x7f0000002600)=""/36, 0x24}], 0x9, &(0x7f0000002d80)=ANY=[@ANYBLOB="28000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000024000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000000c0000000000000000000000000000b31fe8f153e67f2d6ecda53f48e556e240dc3073a48e765e3d3147eff6f60caba4a86547a271612cd9177783c90dad109469870cf45ae9602f308365eae367d10663c937857160a15d380edf3ed8317e02dad93313c94fc69affe3fb52cf06465ab2106216993cf7c7e943a535a08ebf8ee27982f72181557e8a319234872f76e7d778641f86799f5e8ee2f806f68bb041f27dd4cae02d5cbc0546aa6073da7fab1b2cecf98cc531", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0xb0}}, {{&(0x7f00000027c0)=@abs, 0x6e, &(0x7f0000002b80)=[{&(0x7f0000002840)=""/90, 0x5a}, {&(0x7f00000028c0)=""/82, 0x52}, {&(0x7f0000002940)=""/67, 0x43}, {&(0x7f00000029c0)=""/66, 0x42}, {&(0x7f0000002a40)=""/227, 0xe3}, {&(0x7f0000002b40)=""/29, 0x1d}], 0x6, &(0x7f0000002c00)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x98}}], 0x2, 0x2140, &(0x7f0000002d40)={0x77359400}) r0 = getpid() sched_getattr(r0, &(0x7f0000000000)={0x38}, 0x38, 0x0) r1 = syz_open_procfs(r0, &(0x7f0000000000)='task\x00') r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r2, 0x5441, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) close_range(r1, 0xffffffffffffffff, 0x0) openat$full(0xffffffffffffff9c, &(0x7f00000000c0), 0x80002, 0x0) ioctl$TCSETS(r2, 0x5402, &(0x7f0000000100)={0x1, 0xdbdb, 0x4198, 0x10000, 0x1, "45e826d853d3b185d74f37b0e113e40ff02f57"}) 20:38:17 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xef9, 0x81, 0x0) 20:38:17 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') flistxattr(r0, &(0x7f00000000c0)=""/4096, 0x1000) ioctl$LOOP_SET_FD(r0, 0x4c00, r0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000011c0), 0x606000, 0x0) ioctl$NS_GET_PARENT(r0, 0xb702, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) r2 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r2, 0x1, 0x0, 0x0, 0x0, 0x0) eventfd(0x45be) syz_open_dev$evdev(&(0x7f00000010c0), 0x7, 0x8000) r3 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) ioctl$TCSBRK(r1, 0x5409, 0xfffffffffffffffc) socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r0, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r8 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$EVIOCSMASK(0xffffffffffffffff, 0x40104593, &(0x7f0000001180)={0x15, 0x61, &(0x7f0000001100)="eeb09323e57ff41e356af5b0bda6da7c09bfa835cd90b59729ac0463d6aee7e757f780c8ba0883d9f89440f41cb365a9bbf2a29f6a2244ddab1ca0840d958bc62912131c3c742c6480b7c66ef939bda03f5d3916d32630b3ad8002d8ec906503b9"}) syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r8, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) close_range(r8, r3, 0x2) 20:38:17 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$GIO_UNISCRNMAP(r0, 0x4b69, &(0x7f0000000340)=""/200) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) pwritev(0xffffffffffffffff, &(0x7f0000000500)=[{&(0x7f00000000c0)="f041397130f8f0b4732e2fdf6e1fe53bba8e988d3fbafe2e2ddf8148a7df67deec9750c4a9cd9ece6e8b0bb0f8e2840b9f3fbde5f77ca702fd9e05f030e908b72305bd58f6114b52e731f191cb1b6a809243fb33f399984bb8fd5cab0a36061dae15b2dd7068534d24cb342eb6ab3d38eb3ff490ef757cdc70839ba36da86395991c6aaa1419533642cd76d518bb1c3a38c437b6134146093b341a9bf567146f6c5ddc1aca9eb589b9f975833e2d7408b48c44b0", 0xb4}, {&(0x7f0000000180)="954c4e05333a816a5eaa5007caa45adad15dc50645d692a81ca66826ed927db116611428744c08d304b7bb774799a52c570ccf7b5f5fb3f4d81545e5fbfd5a670a234defe467f699edd27549e78db62b87c919f95470d3075575e7ce2b2e29fc17d0bd67cd8739aceb4c41a7b103be4768aacf7fb6f2572e25d218", 0x7b}, {&(0x7f0000000580)="9cbf404ac524507c509cbd36d04025b1890c7885e1061b80c74795379b39531c964a47a830460e5d111300fc75ea781a6fac5b805bb8b02686102bdedff032399d9811b69ebca555405ec1520643d874", 0x50}, {&(0x7f0000000b40)="2a9a50a08d87cba6b9f86dd1cbce92f47ed7bbd6d7586082f653b2af91881c1df0cda1e7b1424b8ba0fa69befc53489edf3229dd038fa3006c2c318868418bcf90a4cc2b2ddca8da5bb27a3937cbeb9d5a64b5ad02c20a7c4681a19bcc3bbb2aa17b1ac0648cb8630d8b6d552828c123eea94e13377874c7957eb5075ef0e35a5ef8ddd0662c2404a3", 0x89}, {&(0x7f0000000200)="2bf32a77bdb5656625803c716fa306533e2a428a8334fb5990d9effb0f7fe31c791e230cbc7d98", 0x27}, {&(0x7f0000000a40)="91742022bb9349c3cdc112cc06259782cede042b26c4e272744bb53f0028e4476525040d22c833af187c38d7710c6a4b0d4bbe76d70fb42d434ccd8f95022932199eda3b01a3608f8d65fdc32ea49a00d76c079dc14fb588da4bfe0110ec3a551b1f6c28308a818a963feeab775063e216207926706887f142d9f2c6f187a54829d3d51a4d79ac1eb860faa152d8da2650a06c6a1361df8841c78f4060bc20fde41efc522b473ad4917242f7c65c8ea528bbbef5e4370c681efd43417e37b4dc1345f65ebc160f2779fc25c1e9a537f3ddb17a1c642c8c41ac802954da2ea713d9862fa8642c1751d18bce54abe1688205c588", 0xffffffffffffffcb}, {&(0x7f00000004c0)="07763906b76df11fa59d3b9348251c7bdda497eed92e980f364705e87a", 0x1d}], 0x7, 0x1, 0x8000000a) pwritev(0xffffffffffffffff, &(0x7f0000000900)=[{&(0x7f0000000440)="30d2fd9f332ee43eda92851177bf62560b26b8b61fe7031a958339313d6c6e4996a3ccd5c29f372b3a6497285ce57f800527a71126c9a1f397f42dc83df93035c400a4c85173059c202aa8a28b3c7c90ac4541", 0x53}, {&(0x7f0000000680)="aded55856297e89fa916d3759059f4f9abe780cee419336ea320edf272fcff033be2647a315dd48b1ae120b96c0dd41ac8eb3224dcefa583c864da2a4b157081d857256f0d7ca9d10b2cfb2feb7158fc110534efb112a9c5eaaaa4836d8cb94228dd9526f8db65d6d2a85077363570ded53d18f352c0230c863ec64314d5814932d459d1ff24b915c444dd91a4844052dad783f6257c03e965a1c71561fb23c40a02e9964f167945ecd3a0b921ab09e5d2d16b6adb9cbbb3d0c055d4338d2d982ba76d7f2c85e9e4c7ff175adb41906be5042a81be8e4d5cd896792124566b028de3a38a", 0xe4}, {&(0x7f0000000980)="0100a68000ae9853664268e41e9976f210ffc0ff46d4ce4a833eadc2807eb52912126b2d780947792665b26da6eef805cef22ba8e7a30d25c971e473ed4d12a5607b06", 0x43}, {&(0x7f00000007c0)="9c0ef028bfdb1bfc467d619c2f0e701982789e36c89486d03f89d5d85cd0cd56fde4c807b78cc1f1ab2d32541620562f00b4912747", 0x35}, {&(0x7f0000000800)="ca65b0165833186f4e286f9fc0664b5525027326c0c8cba57a7155f8bf97994f858cc4df701565993d6276a33c20e643f0ecda788aedd586181660e8bd7c91a27005616aacbff0f0d883a83d4f68b291b62aa786d1e35f9e6167b144500f85377de107b26fc4163dfb7b7b0d6beb4be1d0411347746345029b94c12a26e16628eeb445601f81f0e10126c4c52d6c29967917c96ef6c2a89c4608136f33479d96d524194ec0af6b7764fe1d80dee0f165f04738730a7d8e5582b30d5cc444b174fe09708644e2cce94f329e0ef07303229176074505b91e23b6a2369839e6a4bdf0dd71", 0xe3}], 0x5, 0x2, 0x6) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000780)='/sys/module/yenta_socket', 0x40000, 0x48) r3 = perf_event_open$cgroup(&(0x7f0000000240)={0x0, 0x80, 0x4, 0x9, 0x7f, 0x40, 0x0, 0xffffffffffffa22f, 0x1000, 0x3, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200, 0x4, @perf_bp={&(0x7f0000000040), 0x4}, 0x1400, 0x8001, 0x9, 0x0, 0x1aa1, 0x7, 0x1, 0x0, 0x400, 0x0, 0x8}, 0xffffffffffffffff, 0x9, r0, 0x1) ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r3, 0x80089419, &(0x7f00000002c0)) ioctl$TIOCSWINSZ(r2, 0x5414, &(0x7f0000000a00)={0x8f, 0xfb06, 0x3, 0xec58}) 20:38:17 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0), 0x6e, &(0x7f0000000140)=[{&(0x7f0000000040)=""/39, 0x27}], 0x1, &(0x7f00000002c0)=ANY=[@ANYBLOB="28000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="6537e214ac098bee22152044b0557be13e6c18ecc07c34b5b0f764c5dbc0304a1e83df06fb04d72ccdf12607569431c190458da4c19a1d49b5ef1236e6f87c209df9", @ANYBLOB="20000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="34000000000000000100000001000000", @ANYRES32=0xffffffffffffffff, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="0000806a"], 0x80}, 0x40000000) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r3, &(0x7f0000000140)=@ocfs2={0xc, 0x1, {0x400, 0x5}}, 0x0) r4 = openat$urandom(0xffffffffffffff9c, &(0x7f00000001c0), 0x200000, 0x0) ioctl$AUTOFS_DEV_IOCTL_READY(r3, 0xc0189376, &(0x7f0000000380)={{0x1, 0x1, 0x18, r4, {0x8}}, './file0\x00'}) ioctl$TIOCL_PASTESEL(r2, 0x541c, &(0x7f0000000240)) r5 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r5, 0x5437, 0x0) r6 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r6, 0x5437, 0x0) ioctl$TCSETSF(r6, 0x5404, &(0x7f0000000180)={0x1ff, 0x5, 0x6, 0x3ff, 0x16, "9b7c11ff9ca89873e37a3f49df8f9386c1d38c"}) ioctl$TIOCOUTQ(r5, 0x5411, &(0x7f0000000280)) kcmp(0xffffffffffffffff, 0x0, 0x5, r1, 0xffffffffffffffff) close_range(r0, 0xffffffffffffffff, 0x0) 20:38:17 executing program 2: setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f00000001c0)=0x1, 0x4) r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000140)={@ipv4={'\x00', '\xff\xff', @private=0xa010100}, 0x5, 0x1, 0x3, 0x0, 0xfff, 0xff}, 0x20) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) getsockopt$inet6_int(r0, 0x29, 0x1, 0x0, &(0x7f0000000540)) ioctl$BTRFS_IOC_ADD_DEV(r0, 0x5000940a, &(0x7f0000000240)={{}, "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"}) connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x4}, 0x1c) getresuid(&(0x7f0000000000), &(0x7f0000000080)=0x0, &(0x7f00000000c0)) pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000100)={0xffffffffffffffff, r1, 0xee01}, 0xc) r2 = getpid() sched_getattr(r2, &(0x7f0000000000)={0x38}, 0x38, 0x0) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000005000)=[{{&(0x7f0000003a40)=@abs, 0x6e, &(0x7f0000004c80)=[{&(0x7f0000003ac0)=""/54, 0x36}, {&(0x7f0000003b00)=""/4096, 0x1000}, {&(0x7f0000004b00)=""/39, 0x27}, {&(0x7f0000004b40)=""/68, 0x44}, {&(0x7f0000004bc0)=""/1, 0x1}, {&(0x7f0000004c00)=""/71, 0x47}], 0x6, &(0x7f0000001240)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0}}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x118}}, {{&(0x7f0000004e00)=@abs, 0x6e, &(0x7f0000004f00)=[{&(0x7f0000004e80)=""/125, 0x7d}], 0x1, &(0x7f0000004f40)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x10}}], 0xa0}}], 0x2, 0x40012263, &(0x7f0000005080)={0x0, 0x989680}) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000050c0)='/sys/class/power_supply', 0x100, 0x190) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000005280)=[{{&(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000380)=[{&(0x7f0000000140)="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", 0xfd}, {&(0x7f0000000240)="041bdccb48bb46e4618b489b3ff34b503b4f00f94f7a3862b6f500b81133d7b255ecf4a63d05188ece4a203ec7fd85a017702cfad6d9eee942ea6c14fc8f8ba651a422bbe511a4fada062c6193fce9897c9c6fce524837d8b79ca42d9a0dbd56de18dd250ffceb7b09178d694225f0e536f7e9713b631b1f4c6e21977331b7a79e418844c4478ba80c4cfa12d3eca821c8b876e25d859b5aa72934c93275ff256733affbad0d28e637e8768ffd026c5724ef6ebe67be095f078606694991fd4bc712d0869d0bce46d1987bf24bad672676905382442445a22a1c5c", 0xdb}, {&(0x7f0000000340)="34eea1a374b939bb289e37b70dc40090c2f6308ca230ab", 0x17}], 0x3, &(0x7f0000000b80)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee00, 0xee01}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff}}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60, 0x200c8040}}, {{0x0, 0x0, &(0x7f0000001040)=[{&(0x7f0000000c00)="6b24186c7977a97d62b5d7d18aa682965dfd03ad4332f6e9888c17f23b8317df40606ca823112631c0b70d8860dd76b36afd559a2dba6532bfa1938ebcc10ea9440366ef6040ead6a2fa573629621b18d828bb04c52dfe777cfd14bc91765e2fbb746c52156a6837fdd1fd3f58f901a214db8453fff80337524ecc184544f1c9b039526f86a424cf35e2db57ada292c6ac1ba3bc44f2aa07f924feda8b1f74436df943198a685eae2f75033bc5c8cf99c3f30eedc054bbe70c0b6f38af58c7ac3e7445ae5801e294917770dfd6443c2fe3e43d295a5ed48cccd965b93396f8374c37335df4a76efa191da9fcfc6c6817c18c9e0c246dcb", 0xf7}, {&(0x7f0000000d00)="b1549933d87b5466bd302385457cb0633f9d571bfd862bdaf84e7344263c47f08ea8f144548148cef0a34937de6df48c42a6e2b617f07425f71ba9035fe6f84f85d73659cb00545c5b78cff41d456d83e86a36d7e34dfa6818ef0f731c", 0x5d}, {&(0x7f0000000d80)="15e2b75916384b70164d53e9836c7a7009b1610349b940e6fd55fd22c66dd72594046059134249337b9601952c1500fcf1feaa95966c4ab031322c4cae0e0fcec050361f4056fa3a43ba03d1497df37d958b1cf82d8c38a626d4d86fd94b0266c48582cab175f2ae79137b0b878b968b2e73756870565fae68b690376bbc775588d24adf62dbec034bee4abe58c5bf8bb24670dd06e37b96e8d2516b6001b3d42f632017ab55c41ab57fc185931dc4c68bd6e1450e44455cb7907382c508", 0xbe}, {&(0x7f0000000e40)="539f3f4e5e7ce5867422af00c30078850c7441f3f7fa0cde5c87cee93cd67b036aab114343d08a384a9670ebe10bec7fed6e4b6cc10be46977a594bde5601e499b5317cf4e7113d59166b8f17e02ba8fa08939f074354e1e5a804ad30cf99162443578e28919ac", 0x67}, {&(0x7f0000000ec0)="24538725e5aef4e1d60c7d3f9fcea85067c8ecb7938aadc0b83fdb70b19f9173172251096604e9b35237197eb63f08e80149c57b073a27027b28e900a5f93c3f41a6d71c00a61d7f836dc5517602780c7e42d9d963a373b86632208fb21dee5ab407a19e53ad35", 0x67}, {&(0x7f0000000f40)="0ef68fc090e0f5c651e9bd663e66e52174ddbfb0733baf198f76b610f42bf0b06e48d20776d37d6da02934fe3a2ea8f24cb98a0b10915617567f752c3e97db6f3242b90ee1d3f63bcc9d6532b8a26d793f2e2e6ad204f5c8025a7f7700d6132805cf6f975db7629b373ebc41182146c7c127c9158cfcea116e48a0bba1b6519efa296a6148d68cf4386f906281e4ddbb394326f267915eb7c7993c3844fb4d6957af11c838", 0xa5}, {&(0x7f0000001000)="4cd6abbce44dadd760d9", 0xa}], 0x7, &(0x7f0000001840)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0x0, 0xee00}}}], 0x78, 0x4094}}, {{0x0, 0x0, &(0x7f0000001440)=[{&(0x7f00000018c0)="0708d2da58adb90d0d2674a4ba3d906509eb0816dbd47072fbccf801096aa6a36965866945bf57bd10ec9e6112ece97ce254570e25ddc6781d74b3f4519e9e9c8e99b4f791b5cc3538fd06cfb8be7e56bfbd7ac375f49e0e6219175991e72491718a3743ab7f43e180dbca6fa1038d858f2712c54a6b15e0f185f9b8a8c345044d37277a0c5d5f7692c7559a5a3897581a7dd76ef6837e1dc7aa936c70965fce86030bcc1b78d1e82d26", 0xaa}, {&(0x7f0000001980)="cee4a2d1582240dd4da90070e694d5647948a58ef04ebc54375accd0e51e47bc156393edde21c3062b3b9ffca7ad8bdd6c444864f11f6e9b84581eb9eee86bf2167641ac5ab3d855028e7161e3f1bdd2a3a80c5f5dc0b83f438adf85e81d3bace03b2702fb5116ef9db9d59949c53b523460f5fa1bd8e1ca0cf8166b6dffbc3a106382e4e0841c5c8e324d5dc6d2ed671169587f2b5214070bc18c142219c00bdd5fc5cf85bcb50518f1be890685aab1181169ce85c278cd95bb16581082110215476852ed06aae25f4c8464660cc21860607b9d3b", 0xd5}, {&(0x7f0000001a80)="14807e5de6a75d997461f86f773f6c08cb1f23bc53520ca346928aaf4d46d7c1830d47b1f57be40778a8b58c918ec504738251f033a1d17d534cb7b76fcc904cf56422d79cb01b68f24248c1560ae8bcaa7022464dddc881f5fdb65011e2074b6f2d13fc9c1933ad34f54300539beceb84d166be57d7c91f8019b870a94f470e25cd384ec8bb493330f34a6aa8caba1ff912d4e7af86294b03be1ec6", 0x9c}, {&(0x7f0000001b40)="d6b0ab287e39dddcff1ea2ec30cf375f94fc4e7d694709583d6645bf4170f305b28a1dedd9442b0b55a4b5bf201190d3df9889569f64dc2b6a8e8766cda1601463be25ffe5feab3fe8427d1a55d69c9e4c3d07b6e250118c7ba9b8b1ced9574b693a1d5c7103c81faf01dc42d0f549fa7d628d9ef311daf8fc3710f091236fd122d5015820c3220bcb219c52482a11bccc60916f61c94e0ccc2c091940c3d53a444755032cbaa243d50ad9dcdfc93517fc62d555a8d05458dfaef6", 0xbb}, {&(0x7f0000001c00)="d116451b2103ea9ce83700184e18332880d88bca8df5be8f0889ca0c037b470c1fb764bc6dff8c377eac980422ea1093ea2d94b8263e1fe29d1fc37cd6813bb8641ff179c6e2ba05f6423fae96abfde81641e61150a7cf2bc5bb49446707de4f3ed2e4ed1b076c52b2fb6eb4a8f11af448480740fc7fd1ca02feaefeb1141de1c9d01769770e3fbda0880ca6b589621fb84fb21c93be48aa39fd74493777362eb866aa45547324e10c4b9cdf2b9c9152f5b3da9b877b2244f02f3018595c6e230951063feea1c00cd1e5d65cfcdf764dd974e913938b5ea56dd423dc8b6bd80aa2de518776e97fe4da", 0xe9}, {&(0x7f0000001d00)="945c07466eb79a90ccb969397dbaa335867617", 0x13}, {&(0x7f0000001d40)="2b7ce0333c4f2dedcd41a76507c055d9e2653fdd563da88b7e93a3fe667aff415c98123eeb3974100173c28f0dd6d1242be60d5d322e08fc00e4bcd95add243623f9dbfddad0fe061205c597d745a021c9629c0c3097ce77383c65e7bddff062b114254c44e85f72f03e87675b793b2a57b553d95f431cd27c876c189b6a3c576ed5794a478c14352ea2481bbce79ce8c9293e5ebdc6e7eb8ccac47cdd9dda8e005d4411f82687391c173567476d8d4d63f8c2beba2d394ab2e19e6c0d8558a73ef88961bf4e4f45d4e5d77a6dfff6e9e9", 0xd1}, {&(0x7f0000001380)="4e8b28f92098c7a1027cf9c129ef4ff42db007b4c91546f275ca0aacbf297e805b1422989606654206a09cba6526a0c8ecd70202bc5aaf1daa6c55c1fadd34f84fc71b5b2a24ad030677d8826caef241f0bdf8fa96523c146d0f441813ad940583b6025b0a70fa9d596abccc855772ada637f61b2e879f6d2c215e565b99afff03705c20cfda4aa6ffb24a1eaa1af176f7c781107d883f05d4e7168efd6ff753f124135222835502b8a98f0b417cf8ce1c57", 0xb2}], 0x8, &(0x7f0000001f00)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x58, 0x8004}}, {{&(0x7f0000001f80)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000002340)=[{&(0x7f0000002000)}, {&(0x7f0000002040)="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", 0xfa}, {&(0x7f0000002140)="dc04f53a6de3f2073d594a552a46f8eeedf52e17abe6d5e7b694ba13bb3f7085c491086fc905a9cd8e67ce2327cdb0f3c5623bd4c1ce7c087b94f6d6dfbe12940cbaa879719a339cf1ff7351d4fce7dcaf6f523fd3735777b28899aad97111e30293bfc9873c6cbc22b3929e9a43e8b81613743c8c93c86ea9335755018a3603d73d1ce4dc8666c9211a9754a9b7337490105c4bf9326bb9afd334252a8153cd79055d9bb1af0c1c248a5d91aec073f66a0abe106e0fcc24cc343a51aa4979b5d59f6b19e14cbe673f279d4e6710009271a02c0dd5b7ae8e7e4efa46970aae4988a507e2bf6aac2ba2b75c2eb4", 0xed}, {&(0x7f0000002240)="6ffe643676bb92cb693ae40f4c3c56cffc36dcf00b79bf35613a8d0ff9f14a900275191346103e89089e9e51793c8d23a554f0e7a66b2bf00d08e82d", 0x3c}, {&(0x7f0000002280)="9cb2ec39396bfeb9ab5730a8de6a9c98d6a8811783aed9ce056b29b52d1c9a8db3938cccec6dd9", 0x27}, {&(0x7f00000022c0)="a981ea68ac61e395aa4aea324328e4bd071013a32d56af460e656c7e7b4ad43c4cf2ade0919c5af6e3ddb65dd396b1b64632e3d06aa989f93e875d8480f3a840a535fbd6d65569a9f26ace07ed0da86558e316f3bb3a269efa9188c807508a", 0x5f}], 0x6, 0x0, 0x0, 0x48000080}}, {{&(0x7f00000023c0)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f0000003540)=[{&(0x7f0000002440)="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", 0x1000}, {&(0x7f0000003440)="1a279d1791ee0c755419ca75abdeeb1ad6ec50c67982c6f5eb5caee6e1392747596cab5fb7832126e02acfd5ace6f71f3cdda2d16f8d4b4952c7428ac2b1a275c5b80aab206bf5b503402a957283e8cfa4ce8c7766f461936a6751595c304113f68eafff20ff0a1f91a49bb92541", 0x6e}, {&(0x7f00000034c0)="78eb9abe10f1975ef59d40e7ff3d3ce726db2222cc26a78b17de7dd0da95fa5b3a09f6052252beb55f1ffbf8ac6fffeb49c94514855205c415313064ba6ff8d7b170344bd47f671a73298fc96aae0cd8d3d1659ced02a2b886a4fe235bd1aab7b328b850b2ac106415056358f2aec37d6a8806a2f96ffd7d669a9ced34dee004", 0x80}], 0x3, &(0x7f0000005100)=[@cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xee00}}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, r1, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {r2, r3}}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r4, 0xffffffffffffffff]}}], 0x150, 0x4040040}}], 0x5, 0x4008000) r5 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r6, 0x5441, 0x0) close_range(r5, 0xffffffffffffffff, 0x0) [ 1168.912337] FAULT_INJECTION: forcing a failure. [ 1168.912337] name failslab, interval 1, probability 0, space 0, times 0 [ 1168.914560] CPU: 1 PID: 15951 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1168.916170] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1168.918320] Call Trace: [ 1168.918806] [ 1168.919230] dump_stack_lvl+0x8b/0xb3 [ 1168.919978] should_fail.cold+0x5/0xa [ 1168.920742] ? dup_fd+0x89/0xca0 [ 1168.921396] should_failslab+0x5/0x10 [ 1168.922126] kmem_cache_alloc+0x5b/0x480 [ 1168.922919] dup_fd+0x89/0xca0 [ 1168.923534] ? audit_filter_inodes+0x40/0x40 [ 1168.924394] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1168.925446] ? security_task_alloc+0xe6/0x260 [ 1168.926333] copy_process+0x1fd8/0x6d10 [ 1168.927159] ? __cleanup_sighand+0xb0/0xb0 [ 1168.927997] ? lock_release+0x3b2/0x6f0 [ 1168.928803] ? ksys_write+0x212/0x250 [ 1168.929567] ? kernel_clone+0x2f8/0xa60 [ 1168.930366] kernel_clone+0xe7/0xa60 [ 1168.931113] ? find_held_lock+0x2c/0x110 [ 1168.931922] ? create_io_thread+0xf0/0xf0 [ 1168.932782] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1168.933779] ? bit_wait_io_timeout+0x160/0x160 [ 1168.934698] ? lock_is_held_type+0xd7/0x130 [ 1168.935559] __do_sys_fork+0x8a/0xc0 [ 1168.936318] ? kernel_clone+0xa60/0xa60 [ 1168.937113] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1168.938219] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1168.939243] ? lockdep_hardirqs_on+0x79/0x100 [ 1168.940142] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1168.941168] do_syscall_64+0x3b/0x90 [ 1168.941916] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1168.942946] RIP: 0033:0x7f9fc1cadb19 [ 1168.943685] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1168.947323] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1168.948830] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1168.950233] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1168.951634] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1168.953045] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1168.954449] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1168.955875] 20:38:17 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xf02, 0x81, 0x0) 20:38:17 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xef0, 0x81, 0x0) 20:38:17 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x387901, 0x0) ftruncate(r1, 0x1) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) ioctl$KDGETLED(r0, 0x4b31, &(0x7f0000000080)) 20:38:17 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = dup(r1) ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f00000000c0)=0x1) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x0) 20:38:17 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x39b}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'rose0\x00'}) ioctl$TUNSETOWNER(r1, 0x400454cc, 0xffffffffffffffff) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) kcmp(0xffffffffffffffff, 0x0, 0x5, r2, 0xffffffffffffffff) ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000040)=0x9) close_range(r0, 0xffffffffffffffff, 0x0) 20:38:17 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) write(r1, &(0x7f00000000c0)="cee1d509536306f5e5bdbc6bcf6336dbc295693ee77d94841cb6eecdb2573bc251568d9997df4d898e32e899bd2d4becf777e001189dc06175ab8e76288b19bb95fe1fd768d00d5e19d2519f8e0bf47ee653403dcf5518c0e97c4e9e625571c949a994be66bbc8bf8bc58f3ceeead9e8", 0x70) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 20:38:17 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r1, 0x5437, 0x0) ioctl$KDGKBLED(r1, 0x4b64, &(0x7f0000000040)) 20:38:17 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xf47, 0x81, 0x0) 20:38:17 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 9) 20:38:17 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xef9, 0x81, 0x0) 20:38:17 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r6 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r6, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) syz_memcpy_off$IO_URING_METADATA_FLAGS(r4, 0x0, &(0x7f00000011c0), 0x0, 0x4) r7 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(0xffffffffffffffff, &(0x7f00000012c0)={&(0x7f0000001200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001280)={&(0x7f0000001240)={0x1c, 0x0, 0x8e48d6c21214aff5, 0x70bd2c, 0x25dfdbfd, {}, [@BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000015}, 0x48051) vmsplice(r7, &(0x7f0000000040)=[{&(0x7f00000000c0)="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", 0x1000}, {&(0x7f00000010c0)="289ac4a122c8d33a27f8aa741e92df0b3236ab0d9f2610c5d45bd9b4d2ceb662bb04c83e6b5856705fe91cec10a16949d0844ae92f05302418fc346d3692a8c783c225a0a98e3fadac5ba4ab0440922c7054eeb319477b327d1a5011da6e7d33e937ab648204e478ebb5045121f818d12912b6db237daf8e68099dd8a7f84503761e11c6fc433b221facdc7d958a1c87319c71737d0f105321ccded7ca3f38f0125ff2f6bf4e81a37e74a173c31216d7239351cc7c795d1242f027e6cb535326503c0b50ad03", 0xc6}], 0x2, 0x9) close_range(r0, 0xffffffffffffffff, 0x0) [ 1169.356736] FAULT_INJECTION: forcing a failure. [ 1169.356736] name failslab, interval 1, probability 0, space 0, times 0 [ 1169.359446] CPU: 1 PID: 16184 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1169.361393] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1169.364017] Call Trace: [ 1169.364616] [ 1169.365137] dump_stack_lvl+0x8b/0xb3 [ 1169.366049] should_fail.cold+0x5/0xa [ 1169.366936] ? create_object.isra.0+0x3a/0xa20 [ 1169.368015] should_failslab+0x5/0x10 [ 1169.368923] kmem_cache_alloc+0x5b/0x480 [ 1169.369861] ? obj_cgroup_charge+0x247/0x740 [ 1169.370896] create_object.isra.0+0x3a/0xa20 [ 1169.371921] ? kasan_unpoison+0x23/0x50 [ 1169.372879] kmem_cache_alloc+0x239/0x480 [ 1169.373888] dup_fd+0x89/0xca0 [ 1169.374702] ? audit_filter_inodes+0x40/0x40 [ 1169.375706] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1169.376990] ? security_task_alloc+0xe6/0x260 [ 1169.378055] copy_process+0x1fd8/0x6d10 [ 1169.379007] ? __cleanup_sighand+0xb0/0xb0 [ 1169.380010] ? lock_release+0x3b2/0x6f0 [ 1169.380988] ? ksys_write+0x212/0x250 [ 1169.381907] ? kernel_clone+0x2f8/0xa60 [ 1169.383017] kernel_clone+0xe7/0xa60 [ 1169.383883] ? find_held_lock+0x2c/0x110 [ 1169.384834] ? create_io_thread+0xf0/0xf0 [ 1169.385807] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1169.386944] ? bit_wait_io_timeout+0x160/0x160 [ 1169.388009] ? lock_is_held_type+0xd7/0x130 [ 1169.389014] __do_sys_fork+0x8a/0xc0 [ 1169.389884] ? kernel_clone+0xa60/0xa60 [ 1169.390805] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1169.392094] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1169.393270] ? lockdep_hardirqs_on+0x79/0x100 [ 1169.394282] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1169.395455] do_syscall_64+0x3b/0x90 [ 1169.396328] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1169.397522] RIP: 0033:0x7f9fc1cadb19 [ 1169.398363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1169.402503] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1169.404237] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1169.405844] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1169.407429] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1169.409039] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1169.410654] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1169.412309] 20:38:33 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 10) 20:38:33 executing program 2: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TIOCGPTPEER(r0, 0x5441, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) 20:38:33 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xf02, 0x81, 0x0) 20:38:33 executing program 1: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f00000002c0)=0x0) r1 = syz_open_procfs(r0, &(0x7f0000000000)='net/hci\x00') ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r1, 0xc0189374, &(0x7f00000019c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB="03000000000000002e2f66696c6530006b910d781e1caa332a03fe7ab3fd26a87e1fe1d44c4b4f76fa78b3861cb79ac19da2a5ae116f26f9f7cc49f1ca5a76a5c60718ac378d3cd1ada0786636fbfd69e675687edcb66a3f46f27d3565ce3207586dc13cb6ab3188228c12b4f650c3dca4f81aecf34f37b239b8beab"]) syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='attr\x00') read$hiddev(0xffffffffffffffff, &(0x7f0000000300)=""/130, 0x82) sendmsg$unix(r2, &(0x7f0000001980)={&(0x7f0000000400)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000018c0)=[{&(0x7f0000000480)="5535055188bf865b9fa264b5d9916d1ba42e684c4906360c18bf423b95ce5ca51bd9c53f8f0a299cb4b87e42349b2cfcbef5b1e9e2f603c99bbdf196e33ac7f71186eb318695e826a86b16e70549a03f9feb0f4400fccc408ae8316ae23f0ff2a163dad95d3b7990dc4eee87f708f792ecf3af5b3ee54d4525344e4fcb627bd5b410700e3c606f856f8125d563", 0x8d}, {&(0x7f0000000540)="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", 0x1000}, {&(0x7f0000001540)="0bdc294b8e9a10faea6c1cccf9ac8a1e453a8cb0eb73045867d3c667c19e142c56f4ecde8a1b88c3c1560a3198cfcc42bcfb984b6de6e50a9557480853fa672d96d28ff4983222c64cbd26decae0924e2da19a7c22a55d03a55f5fc2511e47052706dbae6d9c2ccb11af24d521b35dd85fae7c35cae7697b81eedfa724c2932860e13d5f9d6862bea2b9ca90ff77a4ed9c34d2e45e43921d88daa913d5f9682766733491f896357777e4d6b871d577ddaa2eed", 0xb3}, {&(0x7f0000001600)="a72e", 0x2}, {&(0x7f0000001640)="88896a7f325d90d7aaa485dc268aacc22ba41c05471d72fb8845e167c99aad9acebf921f5c3f013205c87aa1baa5fd6a714dcac6a9793d14ffc3783aa97a05de9990da9ea80dc3a654a5e6891e0f24630771d58b4a87fba4285ee8b75f119d49d88f395c09601226f1915d2ccdd079f06c63a3748be85b49596e88550c879c30bb44467a0c86b8b4fadc82ab3315a82d85a75c9971bd6c951891ddacbba3eeafa3763de54c82560a57ac4cd4a69394643735603ecfb4b8c5c3680a1221de6e24d013bcfd9f8bb8b609bf6c1fb18db7b9e299ad91cda2108d7091deb89404fe8238d2043c", 0xe4}, {&(0x7f0000001740)="c3cfc084b071967a65f2d3f1a677b169937b4c34051bca4ffdbfbabdf0374f82c96bc8e220ef9e1313dc7097fe3bdfb1791401e87b451e6f1a9a608ef676db7ccf013bafb6824ce631c2f31d29fb5b531d3470e715302c1637ec41b37a71fbe3872418531fe0a566e37bb0e153af6eb50b732474770caba1c79e09ac147d054b4b6e1dba7ee01147a92842617042b7fa708310ddc240464dc670df9c4d17", 0x9e}, {&(0x7f0000001800)="d7ed", 0x2}, {&(0x7f0000001840)="324216ea48334e127ff9f766a0b32db21c1f74a6ee720fa44de7b823b2a2d89728bfbba84f015b2b860f06f6cab0a43c7a", 0x31}, {&(0x7f0000001880)="d6498d95c3a19750def0cdd378e89fbca0e0ffb99b240324efa477b409d6bf0cdd00db279f", 0x25}], 0x9, 0x0, 0x0, 0x4000000}, 0x20000000) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r3, &(0x7f0000000140)=@ocfs2={0xc, 0x1, {0x400, 0x5}}, 0x0) getdents64(r3, &(0x7f0000000100)=""/66, 0x42) recvmsg$unix(r1, &(0x7f0000000280)={&(0x7f0000000180), 0x6e, &(0x7f0000000040)=[{&(0x7f0000000200)=""/85, 0x55}], 0x1}, 0x100) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) kcmp(0xffffffffffffffff, 0x0, 0x5, r4, 0xffffffffffffffff) close_range(r1, 0xffffffffffffffff, 0x0) 20:38:33 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) io_setup(0x9, &(0x7f0000000140)=0x0) io_submit(r2, 0x1, &(0x7f0000001340)=[&(0x7f00000011c0)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0}]) io_pgetevents(r2, 0x0, 0xa9, 0x0, 0x0, &(0x7f00000000c0)={0x0, 0x2e98059e16f4fc9b}) r3 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x20000, 0x81) r4 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r4, 0x1, 0x0, 0x0, 0x0, 0x0) io_submit(r2, 0x5, &(0x7f00000013c0)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x1, r0, &(0x7f0000000100)="b3426d3332c4034b5502d4164b741d65d5c112aff1195ac26533116c6a5262107dd9d09fd65fae0d7831be429019c1837d1f361e4c84807087fc9f9b9b72c9c69c9036e86d6cb9217033d4c03ae68cbac2bcdeab17e945f1d5d7ddd9a9f2f3ccc93de21881465f3d96c25784127c042b", 0x70, 0x7fffffff}, &(0x7f0000001200)={0x0, 0x0, 0x0, 0x5, 0x4, r3, &(0x7f0000000200)="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", 0x1000, 0x5}, &(0x7f0000001280)={0x0, 0x0, 0x0, 0x5, 0x280, r0, &(0x7f0000001240)="357f508719aebf0aa68a7042c1258eb9871b0ad0f0668500212870a3616947d8a3cc6085e3c3", 0x26, 0x4, 0x0, 0x1}, &(0x7f0000001300)={0x0, 0x0, 0x0, 0x2, 0x1, r4, &(0x7f00000012c0)="310d8f8d5509a4478ebd5d65f4fad4b6f24b3e407078f28738", 0x19, 0x1, 0x0, 0x2, r0}, &(0x7f0000001380)={0x0, 0x0, 0x0, 0x8, 0x100, 0xffffffffffffffff, &(0x7f0000001340), 0x0, 0x2, 0x0, 0x3, r0}]) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_READY(r0, 0xc0189376, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, {0x5}}, './file0\x00'}) ioctl$TIOCGPTPEER(r5, 0x5441, 0x5) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x0) 20:38:33 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x8000002) close_range(r0, 0xffffffffffffffff, 0x0) 20:38:33 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) pwritev(r0, &(0x7f0000000340)=[{&(0x7f00000000c0)="04fbfb73ea8b4feed9bf69a144e65de313d262be18f052d9b5133496bc13bc7a4c79fbdd4a76f8b78d934da4300fb4ed46acd152e0d51314d60f243c0dc3090b3717d8ab91b8", 0x46}, {&(0x7f0000000140)="3081be0832385f468dd0165f274f3a65e1a2cd8b761c08a43a3c046ab92a197ecdfd31e1ff5ec97919d41ab2b019ee38a0f4c587b49e77a465fb39225afe6bea88ebdddcae08c4a32400e918e00805c1ef03278c18494f94e3dc62b1c3743d33ce807ed1f173e19688d4cc2d9c1df0719ede31787e17f4fd920d484b0f12f2c3ac8a6b6c504db0063fcbb7969eb30a96a240cea2e33391fc097fbcca29bdcc68916610e84eb95253ebcdbdf0bc47c04daa3ae931394af2c65adeb0533a5ded24a37029d5d61b1235620b0e", 0xcb}, {&(0x7f0000000240)="d9493a97a9e1091adfdf4aae50f53ed8b33dc4649d186ef42d162cd1f286403250f0cd35ecd9844f179adcb5da79af39778ec19b155cc50fc903b1e703fb99ca21011cc697de72c5066de88fa22ae9d61ed99606459c4939bdd2a8e086762949fb0e723ea3d71107fc4b7f0e0d94e16e83e5ab0f6f93dd3ea96bfd32443f99f9a018ed4bf59aa79ad449c848c1bab0848fc1a093503722435eef46eb4db30503ba91e2b8fd89137085401982c3bfe84371cb0e7c698cc6418b9dd8e25816b2137e7b8335b684", 0xc6}, {&(0x7f0000000040)="a7bd089c3f", 0x5}], 0x4, 0x4, 0x9) close_range(r0, 0xffffffffffffffff, 0x0) 20:38:33 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xf4a, 0x81, 0x0) [ 1184.808199] FAULT_INJECTION: forcing a failure. [ 1184.808199] name failslab, interval 1, probability 0, space 0, times 0 [ 1184.810581] CPU: 1 PID: 16214 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1184.812226] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1184.814461] Call Trace: [ 1184.814984] [ 1184.815427] dump_stack_lvl+0x8b/0xb3 [ 1184.816219] should_fail.cold+0x5/0xa [ 1184.817011] ? alloc_fdtable+0x7e/0x270 [ 1184.817809] should_failslab+0x5/0x10 [ 1184.818568] kmem_cache_alloc_trace+0x55/0x3c0 [ 1184.819491] alloc_fdtable+0x7e/0x270 [ 1184.820250] dup_fd+0x718/0xca0 [ 1184.820944] copy_process+0x1fd8/0x6d10 [ 1184.821769] ? __cleanup_sighand+0xb0/0xb0 [ 1184.822629] ? lock_release+0x3b2/0x6f0 [ 1184.823417] ? ksys_write+0x212/0x250 [ 1184.824189] ? kernel_clone+0x2f8/0xa60 [ 1184.825001] kernel_clone+0xe7/0xa60 [ 1184.825754] ? find_held_lock+0x2c/0x110 [ 1184.826556] ? create_io_thread+0xf0/0xf0 [ 1184.827395] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1184.828383] ? bit_wait_io_timeout+0x160/0x160 [ 1184.829302] ? lock_is_held_type+0xd7/0x130 [ 1184.830156] __do_sys_fork+0x8a/0xc0 [ 1184.830911] ? kernel_clone+0xa60/0xa60 [ 1184.831706] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1184.832838] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1184.833857] ? lockdep_hardirqs_on+0x79/0x100 [ 1184.834751] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1184.835769] do_syscall_64+0x3b/0x90 [ 1184.836529] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1184.837566] RIP: 0033:0x7f9fc1cadb19 [ 1184.838301] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1184.841900] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1184.843409] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1184.844835] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1184.846243] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1184.847655] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1184.849073] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1184.850508] 20:38:33 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xf6b, 0x81, 0x0) 20:38:33 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xf47, 0x81, 0x0) 20:38:49 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 11) 20:38:49 executing program 4: r0 = getpid() sched_getattr(r0, &(0x7f0000000000)={0x38}, 0x38, 0x0) r1 = syz_open_procfs(r0, &(0x7f0000000000)='mountinfo\x00') r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r2, 0x5441, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:38:49 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xf4a, 0x81, 0x0) 20:38:49 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xf74, 0x81, 0x0) 20:38:49 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 20:38:49 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') getsockopt$WPAN_WANTACK(r0, 0x0, 0x0, &(0x7f00000001c0), &(0x7f0000000200)=0x4) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r1, &(0x7f0000000140)=@ocfs2={0xc, 0x1, {0x400, 0x5}}, 0x0) setsockopt$WPAN_WANTLQI(r1, 0x0, 0x3, &(0x7f0000000d80)=0x1, 0x4) sendmsg$NL80211_CMD_GET_COALESCE(r0, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, 0x0, 0x100, 0x70bd27, 0x25dfdbfe, {{}, {@void, @val={0x8}, @void}}, ["", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x8001}, 0x884) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f0000000240)={{0x1, 0x1, 0x18, r2}, './file0\x00'}) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r0) sendmsg$NL80211_CMD_START_AP(r3, &(0x7f0000000d40)={&(0x7f0000000280), 0xc, &(0x7f0000000d00)={&(0x7f0000000300)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="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"], 0x9f0}, 0x1, 0x0, 0x0, 0x40}, 0x8c092) ioctl$TIOCGPTPEER(r2, 0x5441, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x0) 20:38:49 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) kcmp$KCMP_EPOLL_TFD(0x0, 0xffffffffffffffff, 0x7, 0xffffffffffffffff, &(0x7f0000000040)={r0, r4, 0x200}) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 20:38:49 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) kcmp(0xffffffffffffffff, 0x0, 0x5, r1, 0xffffffffffffffff) r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_GET_ADDR(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f00000002c0)={&(0x7f00000007c0)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="248a81cfb40555b2d8f97eb781bc0309bf8f31598608bef0bc484fba853b7559583b1ed945dacb4e48d80214980c203f8e653bc41fb2ef016897c940468ead313c317cecdd424561b0ab4314fae2a9a8542b4caa2133189c0db552fe65c9a3521ea886abbc1925f8"], 0x68}, 0x1, 0x0, 0x0, 0x20}, 0x14) sendmsg$MPTCP_PM_CMD_SET_LIMITS(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r2, 0x400, 0x70bd2a, 0x25dfdbfc, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x1) close_range(r0, 0xffffffffffffffff, 0x0) [ 1200.879775] FAULT_INJECTION: forcing a failure. [ 1200.879775] name failslab, interval 1, probability 0, space 0, times 0 [ 1200.882568] CPU: 1 PID: 16337 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1200.884432] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1200.886927] Call Trace: [ 1200.887499] [ 1200.887989] dump_stack_lvl+0x8b/0xb3 [ 1200.888886] should_fail.cold+0x5/0xa [ 1200.889735] ? create_object.isra.0+0x3a/0xa20 [ 1200.890759] should_failslab+0x5/0x10 [ 1200.891616] kmem_cache_alloc+0x5b/0x480 [ 1200.892540] ? obj_cgroup_charge+0x247/0x740 [ 1200.893556] create_object.isra.0+0x3a/0xa20 [ 1200.894526] ? kasan_unpoison+0x23/0x50 [ 1200.895436] kmem_cache_alloc_trace+0x22e/0x3c0 [ 1200.896475] alloc_fdtable+0x7e/0x270 [ 1200.897342] dup_fd+0x718/0xca0 [ 1200.898097] copy_process+0x1fd8/0x6d10 [ 1200.899035] ? __cleanup_sighand+0xb0/0xb0 [ 1200.900116] ? lock_release+0x3b2/0x6f0 [ 1200.901078] ? ksys_write+0x212/0x250 [ 1200.901928] ? kernel_clone+0x2f8/0xa60 [ 1200.902827] kernel_clone+0xe7/0xa60 [ 1200.903659] ? find_held_lock+0x2c/0x110 [ 1200.904598] ? create_io_thread+0xf0/0xf0 [ 1200.905517] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1200.906616] ? bit_wait_io_timeout+0x160/0x160 [ 1200.907609] ? lock_is_held_type+0xd7/0x130 [ 1200.908563] __do_sys_fork+0x8a/0xc0 [ 1200.909380] ? kernel_clone+0xa60/0xa60 [ 1200.910249] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1200.911468] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1200.912603] ? lockdep_hardirqs_on+0x79/0x100 [ 1200.913571] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1200.914724] do_syscall_64+0x3b/0x90 [ 1200.915542] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1200.916701] RIP: 0033:0x7f9fc1cadb19 [ 1200.917506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1200.921485] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1200.923136] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1200.924690] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1200.926244] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1200.927792] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1200.929327] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1200.930885] 20:38:49 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xf7d, 0x81, 0x0) 20:38:49 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xf6b, 0x81, 0x0) 20:38:49 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r1, &(0x7f0000000140)=@ocfs2={0xc, 0x1, {0x400, 0x5}}, 0x0) r2 = openat$cgroup_devices(r0, &(0x7f00000018c0)='devices.deny\x00', 0x2, 0x0) sendmsg$unix(r1, &(0x7f0000001940)={&(0x7f00000000c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f0000001800)=[{&(0x7f0000000240)="a868b147bbb00647b77879f0249d8af1b4cdaee88625e9d45335f670247ca0508138ea6d0849454d4ec924068977a022659772118a6b9d2e3fb30c598f8ed15badfd5155d57bc7fb85e297666fbcef201c94ed5770300ba37b4486777597c99f8386cbccf538b9c6a2dec18b97982d8bc5b992f6080954fd5054ccdba89b26cd2ebbddc745338b4d06df0bdd0c54d6db07552c412a8320893cbfe95dc41b3c0562f3b4961d70", 0xa6}, {&(0x7f0000000300)="c2478ff7f88ec029deb38bab1b5ffacc2b2960c52fdf831b6f5e7cba7115bca8882410a8314d2223d144b32c2d27f526a6766c29775e120d10b7d2ee9e7be9baaf8230d1f06807c2cd3ff16b8d80bf9575301dd12de9b403319fb935bc9f51a057c0b2e05cdb79099154bdeb67d35f079f3b3e6fe0c96ebdcc87b100e2c6699071b1a908ca2313b1b71c31d0518386c7b16533b6f0750a07f17300f85f5f8a5b9530141a0c2a5c882b39a74e7d155de7a4b7ce172321c04b69d2d924efb7f4a373fc66779c7245d037a5c321e915dd77e15ea33c69c560cc881999411f48750e4ec6", 0xe2}, {&(0x7f0000000140)="c3173e52f1c445c46bfb4fbe244dc5254d41d6bcd8f5bede0bb0e194c071a6d40e2493da08a62398b1ca7133e0710f8b87ebe6", 0x33}, {&(0x7f0000000400)="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", 0x1000}, {&(0x7f0000001400)="8e5b1f27a273f5f9f20761d9cef522cb74f40daa0a2103867dba9e917425a5fe0d872ff28e4951e705b17cd80d0dd51be865525ba121e1f10a1edd40b11f0e291710ca14e0841e16067ea4653c6747c0b7c1dfea6adcf847ba787ecdf8a57a9dfc850e8c51a04dd119495e2167153727ac4be979ad9fde8ce02c52666712fea7731138e9a46ec1", 0x87}, {&(0x7f00000014c0)="40fe9472e7defaae9f2feb399d4a161c53c1a8a67c77a852abf706cba9b1de2345f1ab099e57ae418b19a26c12e8bd58c05a330474e24dd89ff04eae70ed79afaf3d4c1ea5acae458145e93ba48c6aa115b8ee1e50e26884b05db2bc434b0e7ed3d257b3356c77eef2e0d59d2ce32d4ffbdf2fbeb7804987a3f65e39a6d3afcb849bc4ccad42f392a7283b502b4eb00c7189196a784e8549ab2610e6a2dd3e8d97ee2c5f1b47d72bc71b519b36d3856675ee8102fb92051d4fce8f1d16357622bf4bf82e2c123cc9a8aad48e73815cd50aff4194fa32b06bb44f3b9ea1cea16e3613e0", 0xe3}, {&(0x7f00000015c0)="800bbd06b6af6e567b6f6315f34f65605153f07ee24f9a1ea947f165523b48977537", 0x22}, {&(0x7f0000001600)="d6b120b3522a3989af18b048ade9d1d10782017f1cb43620d8f3a1dc899308dfc531f8cc2bab72655b56acd0d0d7f4ef755c0ce3ee5c543f560586e76728e10139dab914437edcb57e27aff4e505aeb9ac16cf387fcbca94211eea029c9016bce8d4c51959e1a2d667aec915459032761397fc5743da5cdeb65ea17880ee2129fc44e1fb50bdfd8836bd33356705c6c46fc7b19ac4aaec43d0c6614e1b8c7bf4bc20f20bad7fbbce1ebfe5d941fc6c42144585754a17ab37104ae75d01546adc336f7e3d3f62aba61bb5bb6d5cf04b1eca876588be", 0xd5}, {&(0x7f0000001700)="64606f26be15bf713e241f8940ffab38858124aab0fd4b5008967408f8477023c96a4dc5a4af92a0c440a43d8787a38460645fa8404c9bbef3ecb89f58b766a0d070d072289854adc94e3c7afdeaacdb9a75f026ea15e4a92c964a412b4d13879d8303f7ba4a8494cd013c393655c4673dfd78971f51cd4fc30aea9c5442124f9c5d215d9315f1e857f72dec8c4074701098c63dae9496e26599b2e95e4b8dac75be5d0aa15e329f89fb5554189d0e605299ac7918703cd09aeabe90aa8e0a1b2ee36b79b7acef0268fc3252af7d980a94b22ee5ff793e3837072f70df80d76f048b36d3cb21d1096ff872d47129476aee91936e01", 0xf5}], 0x9, &(0x7f00000019c0)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB="0000000014000000000000000100000001000000c7fdd380d1b172a12950ea20293275498daa57f9fa9b02203b2778d3f34f98f0aab111ca2ff2bcf6fbe3f1cc942eecab832a9ba7ffafd573af525926a301e4be3cc68ecbc26800"/106, @ANYRES32=r2, @ANYBLOB='\x00\x00\x00\x00'], 0x30, 0x48081}, 0x4004800) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r3, 0x5441, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000180)={0xa, {{0x2, 0x4e25, @broadcast}}}, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r4 = ioctl$TIOCGPTPEER(r3, 0x5441, 0xa5) ioctl$TIOCPKT(r4, 0x5420, &(0x7f0000001900)=0x3) 20:38:49 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$TIOCPKT(r2, 0x5420, &(0x7f00000000c0)=0x6) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x0) 20:38:49 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x630001, 0x0) r1 = syz_open_dev$mouse(&(0x7f0000000040), 0x7, 0x80) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 20:38:49 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xf86, 0x81, 0x0) 20:38:49 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xf74, 0x81, 0x0) 20:38:49 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') getsockopt$sock_int(r0, 0x1, 0x4, &(0x7f00000000c0), &(0x7f0000000100)=0x4) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) openat$bsg(0xffffffffffffff9c, &(0x7f0000000040), 0x480002, 0x0) 20:38:49 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 12) 20:38:49 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = socket$inet_udp(0x2, 0x2, 0x0) close(r1) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) r4 = syz_open_dev$tty20(0xc, 0x4, 0x0) setsockopt$inet_tcp_TCP_QUEUE_SEQ(r0, 0x6, 0x15, &(0x7f0000000100)=0x20, 0x4) ioctl$TIOCVHANGUP(r4, 0x5437, 0x0) ioctl$TIOCGPTPEER(r4, 0x5441, 0x1) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f00000000c0)={0x2, {0x2, 0x997d, 0x7, 0x1, 0x7, 0x10}}) 20:38:49 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, 0x0, 0x400, 0x70bd27, 0x25dfdbff, {{}, {@val={0x8, 0x3, r2}, @void}}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x800) r3 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r0, {0x4, 0x401}}, './file0\x00'}) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$NL80211_CMD_FRAME(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000500)={0x1c, r6, 0x1, 0x0, 0x0, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000240)={'wlan0\x00', 0x0}) r8 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r8, 0x5437, 0x0) ioctl$TIOCSPTLCK(r8, 0x40045431, &(0x7f0000000340)=0x1) sendmsg$NL80211_CMD_SET_MAC_ACL(r4, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x38, r6, 0x1, 0x70bd25, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_MAC_ADDRS={0x1c, 0xa6, 0x0, 0x1, [{0xa, 0x6, @device_b}, {0xa}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x40881}, 0x4000000) ioctl$TIOCGPTPEER(r3, 0x5441, 0x1000) close_range(r0, 0xffffffffffffffff, 0x0) 20:38:49 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) r2 = syz_io_uring_setup(0x3, &(0x7f0000000080)={0x0, 0x4, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f00000001c0)) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan0\x00'}) io_uring_enter(r2, 0x1, 0x0, 0x0, 0x0, 0x0) close_range(r2, 0xffffffffffffffff, 0x0) 20:38:49 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xf7d, 0x81, 0x0) 20:38:49 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xf8f, 0x81, 0x0) [ 1201.467150] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 1201.483135] FAULT_INJECTION: forcing a failure. [ 1201.483135] name failslab, interval 1, probability 0, space 0, times 0 [ 1201.485540] CPU: 1 PID: 16593 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1201.487148] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1201.489412] Call Trace: [ 1201.489911] [ 1201.490354] dump_stack_lvl+0x8b/0xb3 [ 1201.491111] should_fail.cold+0x5/0xa [ 1201.491866] ? kvmalloc_node+0x3e/0x130 [ 1201.492702] should_failslab+0x5/0x10 [ 1201.492726] __kmalloc_node+0x76/0x470 [ 1201.492762] kvmalloc_node+0x3e/0x130 [ 1201.492788] alloc_fdtable+0xcd/0x270 [ 1201.492816] dup_fd+0x718/0xca0 [ 1201.492854] copy_process+0x1fd8/0x6d10 [ 1201.492917] ? __cleanup_sighand+0xb0/0xb0 [ 1201.492962] ? lock_release+0x3b2/0x6f0 [ 1201.492989] ? ksys_write+0x212/0x250 [ 1201.493019] ? kernel_clone+0x2f8/0xa60 [ 1201.493054] kernel_clone+0xe7/0xa60 [ 1201.493087] ? find_held_lock+0x2c/0x110 [ 1201.493111] ? create_io_thread+0xf0/0xf0 [ 1201.493148] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1201.493186] ? bit_wait_io_timeout+0x160/0x160 [ 1201.493217] ? lock_is_held_type+0xd7/0x130 [ 1201.493246] __do_sys_fork+0x8a/0xc0 [ 1201.493279] ? kernel_clone+0xa60/0xa60 [ 1201.493311] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1201.493355] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1201.493381] ? lockdep_hardirqs_on+0x79/0x100 [ 1201.493404] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1201.493429] do_syscall_64+0x3b/0x90 [ 1201.493461] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1201.493498] RIP: 0033:0x7f9fc1cadb19 [ 1201.493515] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1201.493537] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1201.493560] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1201.493576] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1201.493590] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1201.493604] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1201.493617] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1201.493655] [ 1204.008953] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 1204.011225] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 1204.014808] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 1204.018901] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 1204.021785] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 1204.023374] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 1206.041459] Bluetooth: hci0: command 0x0409 tx timeout [ 1208.089502] Bluetooth: hci0: command 0x041b tx timeout [ 1210.137446] Bluetooth: hci0: command 0x040f tx timeout [ 1212.185479] Bluetooth: hci0: command 0x0419 tx timeout [ 1212.276868] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1212.279066] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1212.283672] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 1212.335586] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1212.337187] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1212.339272] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 20:39:15 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xf86, 0x81, 0x0) 20:39:15 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xf98, 0x81, 0x0) 20:39:15 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r2, 0x5437, 0x0) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x4000, 0x0) r3 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x10000) ioctl$TIOCMBIC(r2, 0x5417, &(0x7f00000000c0)) read(r3, &(0x7f0000000100)=""/7, 0x7) r4 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r4, 0x5437, 0x0) ioctl$TIOCCONS(r4, 0x541d) close_range(r0, 0xffffffffffffffff, 0x0) [ 1227.149960] FAULT_INJECTION: forcing a failure. [ 1227.149960] name failslab, interval 1, probability 0, space 0, times 0 [ 1227.151365] CPU: 1 PID: 17070 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1227.152428] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1227.153897] Call Trace: [ 1227.154227] [ 1227.154490] dump_stack_lvl+0x8b/0xb3 [ 1227.154995] should_fail.cold+0x5/0xa [ 1227.155488] ? create_object.isra.0+0x3a/0xa20 [ 1227.156084] should_failslab+0x5/0x10 [ 1227.156575] kmem_cache_alloc+0x5b/0x480 [ 1227.157116] create_object.isra.0+0x3a/0xa20 [ 1227.157682] ? kasan_unpoison+0x23/0x50 [ 1227.158197] __kmalloc_node+0x26f/0x470 [ 1227.158710] kvmalloc_node+0x3e/0x130 [ 1227.159203] alloc_fdtable+0xcd/0x270 [ 1227.159604] dup_fd+0x718/0xca0 [ 1227.159963] copy_process+0x1fd8/0x6d10 [ 1227.160396] ? __cleanup_sighand+0xb0/0xb0 [ 1227.160855] ? lock_release+0x3b2/0x6f0 [ 1227.161279] ? ksys_write+0x212/0x250 [ 1227.161673] ? kernel_clone+0x2f8/0xa60 [ 1227.162086] kernel_clone+0xe7/0xa60 [ 1227.162473] ? find_held_lock+0x2c/0x110 [ 1227.162872] ? create_io_thread+0xf0/0xf0 [ 1227.163307] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1227.163838] ? bit_wait_io_timeout+0x160/0x160 [ 1227.164332] ? lock_is_held_type+0xd7/0x130 [ 1227.164781] __do_sys_fork+0x8a/0xc0 [ 1227.165183] ? kernel_clone+0xa60/0xa60 [ 1227.165595] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1227.166178] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1227.166730] ? lockdep_hardirqs_on+0x79/0x100 [ 1227.167189] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1227.167691] do_syscall_64+0x3b/0x90 [ 1227.168083] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1227.168619] RIP: 0033:0x7f9fc1cadb19 [ 1227.169010] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1227.170900] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1227.171657] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1227.172401] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1227.173107] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1227.173839] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1227.174576] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1227.175287] 20:39:15 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 13) 20:39:15 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f00000000c0)) r3 = dup2(r2, r0) ioctl$TCSETS(r1, 0x5402, &(0x7f0000000040)={0x7ff, 0x1ff, 0x0, 0x58, 0x15, "63cca190649489a10508fa7af957c82ff5a3fe"}) close_range(r0, r3, 0x0) ioctl$TCXONC(r3, 0x540a, 0x0) ioctl$FS_IOC_SETFSLABEL(0xffffffffffffffff, 0x41009432, &(0x7f0000000100)="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") 20:39:15 executing program 2: sendmsg$IPSET_CMD_GET_BYNAME(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="4c000000a59e9a8f00000000000000000500000405000100070000000900020073797a32000000000500010100070000000900020073797a300000000005000100070000003b4f36bae406e9a3aebf7d01c1f01480b60c8cf5bb1a71698e4e358577c6653dbc71a98aafcef4264e7eae37120b18c8be953737ad8bff0f0000dc4fc621e49063e5be45a594183a048b0841e19df759848f51172d1dc4a5a83e3d503067689d7aa0ece84b3c7347a35b7c443b8e13462e42fe04d8dd64a37d0dba52c49ebbbe79ba9bec9b201dd701241a0f931ef6004f6499"], 0x4c}, 0x1, 0x0, 0x0, 0x40880}, 0x40000) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) ioctl$TIOCGSID(r0, 0x5429, &(0x7f00000000c0)) 20:39:15 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = accept$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1}, &(0x7f00000000c0)=0x1c) r2 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r2, 0x5437, 0x0) ioctl$TIOCGPTPEER(r2, 0x5441, 0x3) kcmp(0xffffffffffffffff, 0x0, 0x5, r1, r1) close_range(r0, 0xffffffffffffffff, 0x0) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), 0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCADDPRL(r0, 0x89f5, &(0x7f0000000200)={'ip6tnl0\x00', &(0x7f0000000180)={'ip6gre0\x00', 0x0, 0x4, 0x2, 0x6, 0x0, 0x30, @rand_addr=' \x01\x00', @dev={0xfe, 0x80, '\x00', 0x14}, 0x8000, 0x788f, 0xffff, 0x4}}) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) sendmsg$ETHTOOL_MSG_LINKMODES_GET(r0, &(0x7f0000000380)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000340)={&(0x7f0000000240)=ANY=[@ANYBLOB="d4000000", @ANYRES16=r3, @ANYBLOB="00022dbd7000fcdbdf25040000004400018008000100", @ANYRESOCT=r6, @ANYBLOB="140002006272696467655f736c6176655f3000001400020076657468315f746f5f7465616d000000080003000100000008000300000000002800018008000300010000000800030002000000140002006970365f767469300000000000000000280001801400020076657468315f6d616376746170000000080003000300000008000300020000002c000180080003000100000008000100", @ANYRES32=r4, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="080003000200000008000100", @ANYRES32=0x0, @ANYBLOB="bd9b571af9"], 0xd4}, 0x1, 0x0, 0x0, 0x4}, 0x8804) 20:39:15 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x410082, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0xffff) ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x0) 20:39:15 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) r2 = openat$cgroup_type(r0, &(0x7f00000000c0), 0x2, 0x0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r0, 0xc018937d, &(0x7f0000000100)={{0x1, 0x1, 0xfffffdb0, r2, {0x8002}}, './file0\x00'}) ioctl$VT_RELDISP(r3, 0x5605) close_range(r0, 0xffffffffffffffff, 0x0) 20:39:15 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 20:39:15 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 14) 20:39:15 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xf8f, 0x81, 0x0) 20:39:15 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) r2 = getpid() sched_getattr(r2, &(0x7f0000000000)={0x38}, 0x38, 0x0) r3 = openat$incfs(r0, &(0x7f00000011c0)='.pending_reads\x00', 0x341080, 0x110) clone3(&(0x7f0000001200)={0x2b8184300, &(0x7f0000000040), &(0x7f00000000c0), &(0x7f0000000100), {0x37}, &(0x7f0000000140)=""/4096, 0x1000, &(0x7f0000001140)=""/52, &(0x7f0000001180)=[0xffffffffffffffff, r2, 0xffffffffffffffff], 0x3, {r3}}, 0x58) [ 1227.353134] FAULT_INJECTION: forcing a failure. [ 1227.353134] name failslab, interval 1, probability 0, space 0, times 0 [ 1227.354401] CPU: 1 PID: 17156 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1227.355194] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1227.356401] Call Trace: [ 1227.356672] [ 1227.356912] dump_stack_lvl+0x8b/0xb3 [ 1227.357307] should_fail.cold+0x5/0xa [ 1227.357721] ? kvmalloc_node+0x3e/0x130 [ 1227.358115] should_failslab+0x5/0x10 [ 1227.358523] __kmalloc_node+0x76/0x470 [ 1227.358912] kvmalloc_node+0x3e/0x130 [ 1227.359284] alloc_fdtable+0x139/0x270 [ 1227.359699] dup_fd+0x718/0xca0 [ 1227.360033] copy_process+0x1fd8/0x6d10 [ 1227.360447] ? __cleanup_sighand+0xb0/0xb0 [ 1227.360868] ? lock_release+0x3b2/0x6f0 [ 1227.361270] ? ksys_write+0x212/0x250 [ 1227.361671] ? kernel_clone+0x2f8/0xa60 [ 1227.362066] kernel_clone+0xe7/0xa60 [ 1227.362473] ? find_held_lock+0x2c/0x110 [ 1227.362875] ? create_io_thread+0xf0/0xf0 [ 1227.363292] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1227.363803] ? bit_wait_io_timeout+0x160/0x160 [ 1227.364288] ? lock_is_held_type+0xd7/0x130 [ 1227.364745] __do_sys_fork+0x8a/0xc0 [ 1227.365156] ? kernel_clone+0xa60/0xa60 [ 1227.365577] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1227.366163] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1227.366705] ? lockdep_hardirqs_on+0x79/0x100 [ 1227.367174] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1227.367716] do_syscall_64+0x3b/0x90 [ 1227.368115] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1227.368666] RIP: 0033:0x7f9fc1cadb19 [ 1227.369069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1227.371002] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1227.371800] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1227.372549] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1227.373303] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1227.374042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1227.374793] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1227.375558] 20:39:29 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r1, 0xc0096616, &(0x7f0000000040)={0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}) 20:39:29 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f00000000c0)) r3 = dup2(r2, r0) ioctl$TCSETS(r1, 0x5402, &(0x7f0000000040)={0x7ff, 0x1ff, 0x0, 0x58, 0x15, "63cca190649489a10508fa7af957c82ff5a3fe"}) close_range(r0, r3, 0x0) ioctl$TCXONC(r3, 0x540a, 0x0) ioctl$FS_IOC_SETFSLABEL(0xffffffffffffffff, 0x41009432, &(0x7f0000000100)="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") 20:39:29 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = fcntl$dupfd(r0, 0x0, r0) ioctl$TIOCGPTPEER(r2, 0x5441, 0x7fffffff) kcmp(0xffffffffffffffff, 0x0, 0x5, r1, 0xffffffffffffffff) r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x1000) sendto(r3, &(0x7f0000000140)="1758d36853d0a5e48597fd440486403d3e75297c98c7a56e9afefdd6bf75b7edeafad74145c922b62723be767dc3df6623e26d7e162de8c0611094fa2e5d093eab61ea9918", 0x45, 0x4, &(0x7f00000002c0)=@caif=@util={0x25, "f5cf4871eda5de797396e7ec70133ebe"}, 0x80) io_submit(0x0, 0x2, &(0x7f0000000280)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x9, r1, &(0x7f00000000c0)="9fb19384312e7df603350579505c4574537688d89b8e3e3c6e9db1c5c5ed22b0c2b457c7d2695f452f3f94eda3db815967949b14c4fbba9abd6c5125eaa82bc3deebbd84b80f097e", 0x48, 0x1, 0x0, 0x1, r0}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x5, 0x6, 0xffffffffffffffff, &(0x7f00000001c0)="4968f196c660e5450333520535977b324967e3861434ff798c16198f09b7d08546da3be06e1fcb0b27d2744c0350cdf5574465", 0x33, 0x2, 0x0, 0x2, r3}]) close_range(r0, 0xffffffffffffffff, 0x0) setxattr$incfs_size(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380), &(0x7f00000003c0)=0x1, 0x8, 0x2) 20:39:29 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xfdd, 0x81, 0x0) 20:39:29 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f00000000c0)={0xffffffffffffffff, 0x4, 0x7fff, 0xf34e}) r2 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f0000000100)) close_range(r0, 0xffffffffffffffff, 0x0) 20:39:29 executing program 7: r0 = getpgrp(0x0) r1 = syz_open_procfs(r0, &(0x7f0000000040)='smaps\x00') r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x7fff) r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r4, &(0x7f0000000140)=@ocfs2={0xc, 0x1, {0x400, 0x5}}, 0x0) io_submit(0x0, 0x1, &(0x7f0000002440)=[&(0x7f0000002400)={0x0, 0x0, 0x0, 0x1, 0x1ff, r3, &(0x7f0000001400)="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", 0x1000, 0x80000000, 0x0, 0x3, r4}]) r5 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x0) fgetxattr(r1, &(0x7f0000000000)=@known='trusted.overlay.upper\x00', &(0x7f00000000c0)=""/4096, 0x1000) setsockopt$inet6_mtu(r1, 0x29, 0x17, &(0x7f00000013c0)=0x2, 0x4) ioctl$TIOCCONS(r5, 0x541d) pread64(0xffffffffffffffff, &(0x7f00000010c0)=""/241, 0xf1, 0x3) ioctl$EXT4_IOC_GET_ES_CACHE(r1, 0xc020662a, &(0x7f00000011c0)={0x2, 0x401, 0x2, 0x2, 0x8, [{0x6, 0x80, 0x1000, '\x00', 0x2100}, {0x9, 0x2, 0x6, '\x00', 0x2000}, {0x1, 0x0, 0x800, '\x00', 0x8}, {0x3800000000000000, 0x0, 0xf2d, '\x00', 0x900}, {0x2, 0x8, 0x10000}, {0x0, 0x0, 0x7, '\x00', 0x100}, {0x4, 0x1, 0x0, '\x00', 0x802}, {0x2, 0x1, 0x2}]}) close_range(r1, 0xffffffffffffffff, 0x0) 20:39:29 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 15) 20:39:29 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xf98, 0x81, 0x0) [ 1241.114719] FAULT_INJECTION: forcing a failure. [ 1241.114719] name failslab, interval 1, probability 0, space 0, times 0 [ 1241.115969] CPU: 0 PID: 17220 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1241.116836] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1241.118018] Call Trace: [ 1241.118289] [ 1241.118534] dump_stack_lvl+0x8b/0xb3 [ 1241.118945] should_fail.cold+0x5/0xa [ 1241.119350] ? create_object.isra.0+0x3a/0xa20 [ 1241.119834] should_failslab+0x5/0x10 [ 1241.120236] kmem_cache_alloc+0x5b/0x480 [ 1241.120662] ? obj_cgroup_charge+0x247/0x740 [ 1241.121144] create_object.isra.0+0x3a/0xa20 [ 1241.121612] ? kasan_unpoison+0x23/0x50 [ 1241.122035] __kmalloc_node+0x26f/0x470 [ 1241.122457] kvmalloc_node+0x3e/0x130 [ 1241.122855] alloc_fdtable+0x139/0x270 [ 1241.123267] dup_fd+0x718/0xca0 [ 1241.123628] copy_process+0x1fd8/0x6d10 [ 1241.124070] ? __cleanup_sighand+0xb0/0xb0 [ 1241.124523] ? lock_release+0x3b2/0x6f0 [ 1241.124956] ? ksys_write+0x212/0x250 [ 1241.125368] ? kernel_clone+0x2f8/0xa60 [ 1241.125791] kernel_clone+0xe7/0xa60 [ 1241.126185] ? find_held_lock+0x2c/0x110 [ 1241.126627] ? create_io_thread+0xf0/0xf0 [ 1241.127067] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1241.127593] ? bit_wait_io_timeout+0x160/0x160 [ 1241.128082] ? lock_is_held_type+0xd7/0x130 [ 1241.128538] __do_sys_fork+0x8a/0xc0 [ 1241.128940] ? kernel_clone+0xa60/0xa60 [ 1241.129385] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1241.129984] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1241.130516] ? lockdep_hardirqs_on+0x79/0x100 [ 1241.130997] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1241.131528] do_syscall_64+0x3b/0x90 [ 1241.131932] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1241.132478] RIP: 0033:0x7f9fc1cadb19 [ 1241.132881] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1241.134798] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1241.135595] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1241.136336] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1241.137098] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1241.137870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1241.138619] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1241.139398] 20:39:29 executing program 1: r0 = getpid() fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f00000000c0)={0x0, 0x0}) gettid() sched_getattr(r1, &(0x7f0000000000)={0x38}, 0xffffff56, 0x0) r2 = syz_open_procfs(r0, &(0x7f0000000000)='mountinfo\x00') r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r4 = getpid() sched_getattr(r4, &(0x7f0000000040)={0x38}, 0x38, 0x0) recvmmsg$unix(r2, &(0x7f0000002d80)=[{{&(0x7f0000000100)=@abs, 0x6e, &(0x7f0000000400)=[{&(0x7f0000000180)=""/126, 0x7e}, {&(0x7f0000000200)=""/99, 0x63}, {&(0x7f0000000280)=""/204, 0xcc}, {&(0x7f0000000380)=""/67, 0x43}], 0x4}}, {{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000440)=""/7, 0x7}], 0x1, &(0x7f00000031c0)=ANY=[@ANYBLOB="1c44a354f33b59bedb47000000e4ffffff01001f7902000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000018000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYBLOB="34000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000002c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000002c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000002c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x160}}, {{&(0x7f0000000640), 0x6e, &(0x7f0000000a80)=[{&(0x7f00000006c0)=""/119, 0x77}, {&(0x7f0000000740)=""/110, 0x6e}, {&(0x7f00000007c0)=""/114, 0x72}, {&(0x7f0000000840)=""/247, 0xf7}, {&(0x7f0000000940)=""/185, 0xb9}, {&(0x7f0000000a00)=""/108, 0x6c}], 0x6, &(0x7f0000000b00)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x110}}, {{&(0x7f0000000c40)=@abs, 0x6e, &(0x7f0000001140)=[{&(0x7f0000000cc0)=""/183, 0xb7}, {&(0x7f0000000d80)=""/19, 0x13}, {&(0x7f0000000dc0)=""/144, 0x90}, {&(0x7f0000000e80)=""/122, 0x7a}, {&(0x7f0000000f00)=""/232, 0xe8}, {&(0x7f0000001000)=""/173, 0xad}, {&(0x7f00000010c0)=""/72, 0x48}], 0x7, &(0x7f00000011c0)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x60}}, {{&(0x7f0000001240)=@abs, 0x6e, &(0x7f0000001600)=[{&(0x7f00000012c0)=""/167, 0xa7}, {&(0x7f0000001380)=""/145, 0x91}, {&(0x7f0000001440)}, {&(0x7f0000001480)=""/178, 0xb2}, {&(0x7f0000001540)=""/37, 0x25}, {&(0x7f0000001580)=""/82, 0x52}], 0x6, &(0x7f0000001680)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x128}}, {{&(0x7f00000017c0), 0x6e, &(0x7f0000002b00)=[{&(0x7f0000001840)=""/148, 0x94}, {&(0x7f0000001900)=""/18, 0x12}, {&(0x7f0000001940)=""/171, 0xab}, {&(0x7f0000001a00)=""/22, 0x16}, {&(0x7f0000001a40)=""/82, 0x52}, {&(0x7f0000001ac0)=""/4096, 0x1000}, {&(0x7f0000002ac0)=""/38, 0x26}], 0x7, &(0x7f00000030c0)=ANY=[@ANYBLOB="20000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="240000000000000001000000010000006c4bcc31b1dd81d298e198dd67158b5c30d9844b1a6ceef084b7c5d32ea60e7ebcbe612f1366c6dbbea66abb3d9fa8ff56150be7347425422d1c273a05899bbcadf48eb90338774986667e7ec501dc4ddfb0e94b6169eb701aa5771f97c767b536338b457b9cf0b11d54516daa0e0e56e946e36adc40c71d14b789027984049163e875cf4ae9ada41127570d", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRESHEX, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00'], 0x48}}, {{&(0x7f0000002c00)=@abs, 0x6e, &(0x7f0000002cc0)=[{&(0x7f0000002c80)=""/52, 0x34}], 0x1, &(0x7f0000002d00)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x48}}], 0x7, 0x0, &(0x7f0000002f40)) ioctl$TIOCSSOFTCAR(r5, 0x541a, &(0x7f0000002f80)=0x5) sched_getattr(0x0, &(0x7f00000004c0)={0x38}, 0x38, 0x0) kcmp(0xffffffffffffffff, 0x0, 0x5, r3, 0xffffffffffffffff) close_range(r2, 0xffffffffffffffff, 0x0) 20:39:29 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80, 0x0) r2 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) r3 = getpid() sched_getattr(r3, &(0x7f0000000000)={0x38}, 0x38, 0x0) syz_open_procfs(r3, &(0x7f00000000c0)='net/ipv6_route\x00') ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f0000000040)=0x1) 20:39:29 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = socket$inet_udp(0x2, 0x2, 0x0) close(r1) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) r4 = syz_open_dev$tty20(0xc, 0x4, 0x0) setsockopt$inet_tcp_TCP_QUEUE_SEQ(r0, 0x6, 0x15, &(0x7f0000000100)=0x20, 0x4) ioctl$TIOCVHANGUP(r4, 0x5437, 0x0) ioctl$TIOCGPTPEER(r4, 0x5441, 0x1) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f00000000c0)={0x2, {0x2, 0x997d, 0x7, 0x1, 0x7, 0x10}}) 20:39:29 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = signalfd(r1, &(0x7f0000000040)={[0xfff]}, 0x8) ioctl$PIO_UNISCRNMAP(r2, 0x4b6a, &(0x7f00000000c0)="567d1c12a54a8987f27c3e2c672209613258f34c8e94cd0c11e839c72138e4d3665ce5606946037f1a401bb7826ad26d232418a93ae78def92c385ca29ac8c2339f1d482eb3d28d903dd58b1495aa61b70e2948eab7e9985342f66508719b8764449841eaf4af36c06be20e2cf0614dccb883a00a278aa567e7bf25fb96f9bc9c0b7ef56b237b627fb4df5610ea2fcf99f0d4e3f69cc8b60416364fffc83eb74b82bbe1f095e946f6688a1ad3d3871bd4e9ac2a7a27196994b1479c7bcc94168a7cdb576538c57118b049c6a") ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(r1, 0xf504, 0x0) accept$unix(r0, &(0x7f00000001c0)=@abs, &(0x7f0000000240)=0x6e) kcmp(0xffffffffffffffff, 0x0, 0x5, r0, r2) close_range(r0, 0xffffffffffffffff, 0x0) ioctl$TIOCMSET(r2, 0x5418, &(0x7f0000000280)=0x9) 20:39:29 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xfdd, 0x81, 0x0) 20:39:29 executing program 3: syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$TIOCGPTPEER(r0, 0x5441, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r2, 0x5437, 0x0) ioctl$TIOCPKT(r2, 0x5420, &(0x7f0000000180)=0xfff) r3 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f00000001c0)=0x1, 0x4) setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r3, 0x6, 0x1d, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x5}, 0x14) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) close_range(r1, 0xffffffffffffffff, 0x2) fstatfs(0xffffffffffffffff, &(0x7f00000000c0)=""/176) r4 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r4, 0x1, 0x0, 0x0, 0x0, 0x0) write$binfmt_elf32(r4, &(0x7f0000001c80)=ANY=[@ANYBLOB="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"], 0x1a78) 20:39:29 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xfe0, 0x81, 0x0) 20:39:29 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='setgroups\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r0) ioctl$F2FS_IOC_FLUSH_DEVICE(r1, 0x4008f50a, &(0x7f0000000000)={0xfb4, 0x61c3}) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) ioctl$RNDADDTOENTCNT(r0, 0x40045201, &(0x7f0000000040)=0x8) 20:39:29 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x418500, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$sg(&(0x7f0000000040), 0x10001, 0x8000) ioctl$TUNGETDEVNETNS(r0, 0x54e3, 0x0) syz_open_dev$hiddev(&(0x7f00000000c0), 0x5, 0x121) r3 = creat(&(0x7f0000000100)='./file0\x00', 0x1) close_range(r2, r3, 0x2) 20:39:29 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x96, 0x0) 20:39:29 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) kcmp(0xffffffffffffffff, 0x0, 0x5, r1, 0xffffffffffffffff) close_range(r0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) pread64(r4, &(0x7f0000000040)=""/7, 0x7, 0x6) ioctl$BLKPBSZGET(r0, 0x127b, &(0x7f0000000180)) 20:39:29 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$TIOCPKT(r2, 0x5420, &(0x7f00000000c0)=0x6) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x0) 20:39:29 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$TCSETS(r1, 0x5402, &(0x7f00000000c0)={0x4, 0x3cd, 0x1, 0x7ff, 0x1a, "8834038d2639070f3a1345bcd91120bcf51bda"}) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x0) 20:39:43 executing program 4: getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={0x0}, &(0x7f0000000140)=0xc) r1 = syz_open_procfs(r0, &(0x7f0000000100)='mountinfo\x00') r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r2, 0x5441, 0x0) r3 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) ioctl$TIOCSTI(r3, 0x5412, &(0x7f00000000c0)) close_range(r1, 0xffffffffffffffff, 0x0) 20:39:43 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xfe0, 0x81, 0x0) 20:39:43 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') sendfile(r0, r0, &(0x7f0000000040)=0x4, 0x8) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x408980, 0x0) r2 = perf_event_open$cgroup(&(0x7f00000063c0)={0x3, 0x80, 0x8e, 0x4, 0x1, 0x17, 0x0, 0x200, 0xc00a, 0x8, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x2, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x81, 0x2, @perf_config_ext={0x100000000, 0x1f}, 0x10828, 0xfffffffffffffffa, 0x35, 0x6, 0x4, 0x7fffffff, 0x81, 0x0, 0xfff, 0x0, 0x4}, r0, 0xe, r0, 0x2) copy_file_range(r1, &(0x7f00000000c0)=0x3, r2, &(0x7f0000006440)=0x6, 0x3f, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) 20:39:43 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r1, &(0x7f0000000140)=@ocfs2={0xc, 0x1, {0x400, 0x5}}, 0x0) r2 = openat$cgroup_devices(r0, &(0x7f00000018c0)='devices.deny\x00', 0x2, 0x0) sendmsg$unix(r1, &(0x7f0000001940)={&(0x7f00000000c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f0000001800)=[{&(0x7f0000000240)="a868b147bbb00647b77879f0249d8af1b4cdaee88625e9d45335f670247ca0508138ea6d0849454d4ec924068977a022659772118a6b9d2e3fb30c598f8ed15badfd5155d57bc7fb85e297666fbcef201c94ed5770300ba37b4486777597c99f8386cbccf538b9c6a2dec18b97982d8bc5b992f6080954fd5054ccdba89b26cd2ebbddc745338b4d06df0bdd0c54d6db07552c412a8320893cbfe95dc41b3c0562f3b4961d70", 0xa6}, {&(0x7f0000000300)="c2478ff7f88ec029deb38bab1b5ffacc2b2960c52fdf831b6f5e7cba7115bca8882410a8314d2223d144b32c2d27f526a6766c29775e120d10b7d2ee9e7be9baaf8230d1f06807c2cd3ff16b8d80bf9575301dd12de9b403319fb935bc9f51a057c0b2e05cdb79099154bdeb67d35f079f3b3e6fe0c96ebdcc87b100e2c6699071b1a908ca2313b1b71c31d0518386c7b16533b6f0750a07f17300f85f5f8a5b9530141a0c2a5c882b39a74e7d155de7a4b7ce172321c04b69d2d924efb7f4a373fc66779c7245d037a5c321e915dd77e15ea33c69c560cc881999411f48750e4ec6", 0xe2}, {&(0x7f0000000140)="c3173e52f1c445c46bfb4fbe244dc5254d41d6bcd8f5bede0bb0e194c071a6d40e2493da08a62398b1ca7133e0710f8b87ebe6", 0x33}, {&(0x7f0000000400)="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", 0x1000}, {&(0x7f0000001400)="8e5b1f27a273f5f9f20761d9cef522cb74f40daa0a2103867dba9e917425a5fe0d872ff28e4951e705b17cd80d0dd51be865525ba121e1f10a1edd40b11f0e291710ca14e0841e16067ea4653c6747c0b7c1dfea6adcf847ba787ecdf8a57a9dfc850e8c51a04dd119495e2167153727ac4be979ad9fde8ce02c52666712fea7731138e9a46ec1", 0x87}, {&(0x7f00000014c0)="40fe9472e7defaae9f2feb399d4a161c53c1a8a67c77a852abf706cba9b1de2345f1ab099e57ae418b19a26c12e8bd58c05a330474e24dd89ff04eae70ed79afaf3d4c1ea5acae458145e93ba48c6aa115b8ee1e50e26884b05db2bc434b0e7ed3d257b3356c77eef2e0d59d2ce32d4ffbdf2fbeb7804987a3f65e39a6d3afcb849bc4ccad42f392a7283b502b4eb00c7189196a784e8549ab2610e6a2dd3e8d97ee2c5f1b47d72bc71b519b36d3856675ee8102fb92051d4fce8f1d16357622bf4bf82e2c123cc9a8aad48e73815cd50aff4194fa32b06bb44f3b9ea1cea16e3613e0", 0xe3}, {&(0x7f00000015c0)="800bbd06b6af6e567b6f6315f34f65605153f07ee24f9a1ea947f165523b48977537", 0x22}, {&(0x7f0000001600)="d6b120b3522a3989af18b048ade9d1d10782017f1cb43620d8f3a1dc899308dfc531f8cc2bab72655b56acd0d0d7f4ef755c0ce3ee5c543f560586e76728e10139dab914437edcb57e27aff4e505aeb9ac16cf387fcbca94211eea029c9016bce8d4c51959e1a2d667aec915459032761397fc5743da5cdeb65ea17880ee2129fc44e1fb50bdfd8836bd33356705c6c46fc7b19ac4aaec43d0c6614e1b8c7bf4bc20f20bad7fbbce1ebfe5d941fc6c42144585754a17ab37104ae75d01546adc336f7e3d3f62aba61bb5bb6d5cf04b1eca876588be", 0xd5}, {&(0x7f0000001700)="64606f26be15bf713e241f8940ffab38858124aab0fd4b5008967408f8477023c96a4dc5a4af92a0c440a43d8787a38460645fa8404c9bbef3ecb89f58b766a0d070d072289854adc94e3c7afdeaacdb9a75f026ea15e4a92c964a412b4d13879d8303f7ba4a8494cd013c393655c4673dfd78971f51cd4fc30aea9c5442124f9c5d215d9315f1e857f72dec8c4074701098c63dae9496e26599b2e95e4b8dac75be5d0aa15e329f89fb5554189d0e605299ac7918703cd09aeabe90aa8e0a1b2ee36b79b7acef0268fc3252af7d980a94b22ee5ff793e3837072f70df80d76f048b36d3cb21d1096ff872d47129476aee91936e01", 0xf5}], 0x9, &(0x7f00000019c0)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB="0000000014000000000000000100000001000000c7fdd380d1b172a12950ea20293275498daa57f9fa9b02203b2778d3f34f98f0aab111ca2ff2bcf6fbe3f1cc942eecab832a9ba7ffafd573af525926a301e4be3cc68ecbc26800"/106, @ANYRES32=r2, @ANYBLOB='\x00\x00\x00\x00'], 0x30, 0x48081}, 0x4004800) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r3, 0x5441, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000180)={0xa, {{0x2, 0x4e25, @broadcast}}}, 0x88) close_range(r0, 0xffffffffffffffff, 0x0) r4 = ioctl$TIOCGPTPEER(r3, 0x5441, 0xa5) ioctl$TIOCPKT(r4, 0x5420, &(0x7f0000001900)=0x3) 20:39:43 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f00000000c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) syz_io_uring_setup(0xfffffffe, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) kcmp(0xffffffffffffffff, 0x0, 0x5b01dfddd2f7618b, r1, r4) close_range(r0, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000040)) 20:39:43 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x0) ioctl$TIOCSIG(r2, 0x40045436, 0x38) 20:39:43 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) 20:39:43 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 16) [ 1255.385080] FAULT_INJECTION: forcing a failure. [ 1255.385080] name failslab, interval 1, probability 0, space 0, times 0 [ 1255.387609] CPU: 0 PID: 17487 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1255.389344] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1255.391602] Call Trace: [ 1255.392113] [ 1255.392550] dump_stack_lvl+0x8b/0xb3 [ 1255.393353] should_fail.cold+0x5/0xa [ 1255.394143] ? copy_fs_struct+0x45/0x340 [ 1255.395018] should_failslab+0x5/0x10 [ 1255.395971] kmem_cache_alloc+0x5b/0x480 [ 1255.396850] copy_fs_struct+0x45/0x340 [ 1255.397735] ? copy_process+0x206b/0x6d10 [ 1255.398938] copy_process+0x32f5/0x6d10 [ 1255.399877] ? __cleanup_sighand+0xb0/0xb0 [ 1255.400856] ? lock_release+0x3b2/0x6f0 [ 1255.401758] ? ksys_write+0x212/0x250 [ 1255.402610] ? kernel_clone+0x2f8/0xa60 [ 1255.403510] kernel_clone+0xe7/0xa60 [ 1255.404353] ? find_held_lock+0x2c/0x110 [ 1255.405282] ? create_io_thread+0xf0/0xf0 [ 1255.406306] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1255.407352] ? bit_wait_io_timeout+0x160/0x160 [ 1255.408483] ? lock_is_held_type+0xd7/0x130 [ 1255.409501] __do_sys_fork+0x8a/0xc0 [ 1255.410368] ? kernel_clone+0xa60/0xa60 [ 1255.411294] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1255.412574] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1255.413772] ? lockdep_hardirqs_on+0x79/0x100 [ 1255.414801] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1255.415987] do_syscall_64+0x3b/0x90 [ 1255.416859] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1255.418079] RIP: 0033:0x7f9fc1cadb19 [ 1255.418892] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1255.422709] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1255.424285] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1255.425782] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1255.427340] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1255.428961] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1255.430601] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1255.432255] 20:39:43 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x2) 20:39:44 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) io_setup(0x9, &(0x7f0000000140)=0x0) io_submit(r2, 0x1, &(0x7f0000001340)=[&(0x7f00000011c0)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0}]) io_pgetevents(r2, 0x0, 0xa9, 0x0, 0x0, &(0x7f00000000c0)={0x0, 0x2e98059e16f4fc9b}) r3 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x20000, 0x81) r4 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r4, 0x1, 0x0, 0x0, 0x0, 0x0) io_submit(r2, 0x5, &(0x7f00000013c0)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x1, r0, &(0x7f0000000100)="b3426d3332c4034b5502d4164b741d65d5c112aff1195ac26533116c6a5262107dd9d09fd65fae0d7831be429019c1837d1f361e4c84807087fc9f9b9b72c9c69c9036e86d6cb9217033d4c03ae68cbac2bcdeab17e945f1d5d7ddd9a9f2f3ccc93de21881465f3d96c25784127c042b", 0x70, 0x7fffffff}, &(0x7f0000001200)={0x0, 0x0, 0x0, 0x5, 0x4, r3, &(0x7f0000000200)="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", 0x1000, 0x5}, &(0x7f0000001280)={0x0, 0x0, 0x0, 0x5, 0x280, r0, &(0x7f0000001240)="357f508719aebf0aa68a7042c1258eb9871b0ad0f0668500212870a3616947d8a3cc6085e3c3", 0x26, 0x4, 0x0, 0x1}, &(0x7f0000001300)={0x0, 0x0, 0x0, 0x2, 0x1, r4, &(0x7f00000012c0)="310d8f8d5509a4478ebd5d65f4fad4b6f24b3e407078f28738", 0x19, 0x1, 0x0, 0x2, r0}, &(0x7f0000001380)={0x0, 0x0, 0x0, 0x8, 0x100, 0xffffffffffffffff, &(0x7f0000001340), 0x0, 0x2, 0x0, 0x3, r0}]) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_READY(r0, 0xc0189376, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, {0x5}}, './file0\x00'}) ioctl$TIOCGPTPEER(r5, 0x5441, 0x5) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x0) 20:39:44 executing program 2: ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f00000002c0)=0x0) r1 = syz_open_procfs(r0, &(0x7f0000000000)='net/hci\x00') ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r1, 0xc0189374, &(0x7f00000019c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYBLOB="03000000000000002e2f66696c6530006b910d781e1caa332a03fe7ab3fd26a87e1fe1d44c4b4f76fa78b3861cb79ac19da2a5ae116f26f9f7cc49f1ca5a76a5c60718ac378d3cd1ada0786636fbfd69e675687edcb66a3f46f27d3565ce3207586dc13cb6ab3188228c12b4f650c3dca4f81aecf34f37b239b8beab"]) syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='attr\x00') read$hiddev(0xffffffffffffffff, &(0x7f0000000300)=""/130, 0x82) sendmsg$unix(r2, &(0x7f0000001980)={&(0x7f0000000400)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000018c0)=[{&(0x7f0000000480)="5535055188bf865b9fa264b5d9916d1ba42e684c4906360c18bf423b95ce5ca51bd9c53f8f0a299cb4b87e42349b2cfcbef5b1e9e2f603c99bbdf196e33ac7f71186eb318695e826a86b16e70549a03f9feb0f4400fccc408ae8316ae23f0ff2a163dad95d3b7990dc4eee87f708f792ecf3af5b3ee54d4525344e4fcb627bd5b410700e3c606f856f8125d563", 0x8d}, {&(0x7f0000000540)="a84b834dbad5527eed447199643a3560dd7916280d934bbe2a6e11641bd92fa17b9c647c6ac40de9c171114fdd0cf73e8e33d5c50a09b3fb0fe2de4819491613388f98e47a0e54b0350dc604be7e1f614cf6f2721b4aac3d7cff96c4abbaf493c06afc284eb42546d171e48b4ea724cb840d848909b3db1ffbf4272983a1fcb33fe1b192dcae1d8c68fc994544af5da6b70de2277a97802575e6ad03c9efb46c54f13ba34097d08e02307e19e94b778b9a52dc75ad688876c03e6099bb73a7decf77f00c7088ac73c40d41a548a23d1b04ca4cd86ed3163ed7f183dc2edfc2a059260085ed565e23a9710744ae20b8148ea6e602c8c931e1ab07cb32e239031e1c40445267c7d2cbd1db65f775723203d7ee5b6b03e049009fd43844397f96a1813d971daa90a0f3e4993348bb68d1eb21f66b1b8874ab3a9e2d2944f9ac75b2cb1323146b596802ab38fb99a3c9ef8ca74b98f3fea0796e2efd5a78f4a185332fe12b0e5aa2ec8fcbf58f25ace20348ba5299e3d0b1d41ef9511958405817901587aca26bee49f02ccb112436d45fa65a605b00b2e32a5253166d2a79669a52ea5e734ade7bf3ec2392d60c1b65f4906c2e704323aec942ba027f69cf62bdcaaa397decc423fe5db50322b5d41100fc14d4c879cbf7e34b1629c31b36b5bde1496c1795dea5e02efd192d19aa8a84de791e66908f17f312dc27b33ce0db1d770a3f8fc9f8cb93cc9f9c9eae6caa3114a40771cbe750ed7b37e8c36a4015b1d2eee7335b67d020d4e8d13e1a83497237055b16f45924217d41d3202b50b3fbbedfd152aa00d5bad06eed7df5a675812ac23c225f74dadfd883d00d5e10579597d82a9853c9511f66b2a096bfb22a0162ad460a38a2a56017fedd5aabfedc837ee51ecf04a8dd9a96900aa0f6643897a5c4eb4cb7ab1ee958d30b132a6e4de79735f344d50e0793605f1a1a2ca899c7e648ddd08e958ab96febba5781c710f9b4fa6956bff848f49ab49e8dcd11f42d41d82fc286a0a043fa52dc2da556d1c43fddc566a427e9834c48b06e08ca945b75ef2c94912d5fcb5515ab1df6085ef6d9cfb4c2a7275fa6f5435a419d875766b7c9e6b53c328141540b00365a211389018b9513e25394c4b289798d0b0c7d30b59c3bbfa22f7d0ef7c56cae6cf945e9cc5d05e1044bb848caee4817cf4b09c88964c6d41a7332b765d8391f5f2fa9939d6a078e892747a5b0b3e8c882d1435b6d8633959c341351be3aebe4d03f48cc839f4563b4c8439845b032251614d0c7a57451395778531739c3b94e9aa2daea62b9e800b71114209591cfa4b6f45dda8fe2cee743768775c25dba920fcd2eccf7c873eb2a30811a85657bdf0364ca58b307944c2670cc67edeccdf7cd26288543c885d22e74e9916fc56401637ab6771f9f39c61988523bd762b6dae86e64e646d36277720d204beee8ebb8395bfdef62073ff8e555f1a260f7c2c411ff442211f047d3796030dff6572db50b6b22109dd5540eded937e0dadc4c94c4c1ca5f7a22b3d19e4710ac0c11f28559f67d2462eac495711b3fcb24f2a284f8ab6881d2c9f48fcde607fe560276e88c0a60be38a4dbd276da15c3dd997753089882154a54b98ffd6d54e73a907905671ab17fd1deb63abdd8eac0da18d15d75c90f8ea776c6fb3a2d3324862641aff50f2305ad9fdb487592f0eda4669e2eb50e89f4b2ba7b22b09495ee2862f479453acf917a3dd2ac8dd091981862bf27dddfe8483ed2d798f5040b62f7f88dc45b06bdce492e153c7e4c5e42647bd88e6fb0624dad12e40fd4211bb29bf17de28381364b2e24a4f10cfdc79037a83f6d7f4954b2eacc5dfff12e498c56ff858fd5062d86fa41b3cd7319a32a31d384d30cdc3062ee633cf935c85d83288a4b545f581c404ea7b645fffd1265c1b72ee98eb8ed56f317ad6bbdd1c2340e7f34400b4f111f4ab87e31c14e275b095638d10a9f93614acdb8bd260a9ec84c5626826085c938b285145cbf7a7b4caca73ee6ffad037dddd7c0bb857520b4af222fa0a97f9199f36d4ae16f6ce599fcc046a0de9fa3c16fb42e656fbd37a1a08d2e21fff869f77be6501856c4e654281447c5b88d065230c0a08775d068d6484a87d63cada78dbc8f0c2e11491c4426b147276636f02088312fcd4d926df4d3341f8f83cc8af1307cf927855b96de1056848db0b24e2d13a20fce228d174cf6b38742d149a208ba7e19846fbd95377824f653b5fe8b704e7f13e1425dab12ef96d4e84dc2544f0227295681880434e6de6533c2c43f6314b11e29522049014eac6f67448ca7505d331093c0ae73222cd043454050722310918bf891f22d1eb2370c433c2cb030379fdb97975deb78a499eaea432be5435b6557b2a4cf26885d9f2c98dd7cd16668a16d31d7c54045a752a7274b11006362e7fc17c7766b3b9b72a8d2aa3e5ddc654b87a43f8580153a17e036b9810eb34b34764d85abab20e5a219aedf6a0dd831e7fa5d5f5f9142ee1aa8fd9f4b3c4e04838a475c446da26b67603c378a3b9dbf6379a45f3e7f115a7262d49e0cc13dabac9eaabc1b49bf4004d0c9c77f43c86ae64e9d9eb32530aeb6da6522b991e0db91160e887a1f8d2f05e8525972cdd49f64bc912da19f0f8dc8244499af100162e637fd779d3a9f2664c1e8b4f80f6d87b8a22a261ab180a98d19eeb1993f911cbb3201c10a3bca21b260194b6dd66d65c35fff12341c5ff2370a18206d8f9e937498115ff4e11303efed4943606b33ea11ab56afb635e83f8c88bb50cad3c57e150d2a0299f94ec4db93b3775d314b1ce119be65efd17492d444b2723da0a8a91d09adafdd4dcd6b619a40bc83bac0395f9135c701f758c72488195ce3e7ebaff1a280d3801441651ebb517c31e42fbb4e65f9b341dd6962b2073edbdb4bab52edc8e96297e0209e899361cd08033c24fbc4f56ea27072d387ca8957ced174880a6dc46e078a6e7b368c1613ca474e70e7c02757a5bf453f762d4f884a935506ce310a249b957343ad58a71124a1407d5c0ebc590e7b4bf6abf2719a022523109787c4b83e66a73331d0eb3853a1f910353fa2bf5741b3ee18051618d6de25ed79a4a15cbd470cf5c72057da74bc91c6bcca199a6329c8f26822b00d82c37fe5093bfe77f8b88394aff4cd47f71a31f88fa8cdd976bb261f0721d304ea8141dda7d9aab0930d84ab9e1881df226ed74785b4a10b9b56f166554cde6ba1c7152690123504ee8954f7f4bc65952e494f8d1c23794513c5bb940d4607627c954717b8662c701e7d78dc0b84b27d39b7b1f6d992086ee3ac1a387fc04de2dbbc4f719a484aa019c35514ed36a9f365a6035b8368cd230049798823332c624f184bd2fa2e1d6cc4472aac9fb265d9c3e752b980739048a4adefe5a682f6b4d2614ded1c06cbd8a3cebb4fc775b9f1ddcb900a5f342678de6f145d0e97f2a5ca337c8b2643c81cdee570b9d66a5f89e5ab7e89a90bd242fbcdd5d51a0bb907ea751f78fdba42b6d503502db451d6a91df04b388734621828796210ae9da566868936ec2a916ad81440ddd880216c41da57e7053ca7ebdfcdf300bcb5b638ee6ec1014cdf971496edaf59e0549f8f3ed7d5b127d1e7c1ec3ad6c9e080af0c3069f3c8659a4726133f61899627c1be6494c7b1283077cc1b41930f4d20bdf7f01ee160cf008742e5bbb0177cd3bf7cd09c9bf5af03d0104b97728b799d06938cdb5056f4fe033b4d3741af984374af5d467fd49a37f4e25e492eaadcb4de8e40256e3a408269d52828c54b78780750feb80f8648b212756e4815a2431950cd87c351549b7723a22d024dea4aea25aabdec19a4644c4e9b6edc2424e6e625f3a91c3bb14dbbb42f6dd86e11832dc21cdda82bf37b87ba13503220f9fb1f26ecd9cf4000e2c04ceca17ecfad93e199d6f80880996b2ccc50c219c82ef5de9639431fff4560a9de03a827dae8c7dc0d91acab0087be17f93177bfb6a1c20304ac120257babb62cf5ebaa4bd6b78d44df7044a9bec570d67219cce658191b8fbc5a9e6d6a55901db285f29c63eae65a19d1a5ef529e684a193dd3bac176dc8b12b1e97b1c286c138d5ffd5ec697f35039cc1d62bdd721877484f13f3d6bcde4ad72cf28e968d00646400dcc20ab561675cc7f7d66514d28ad7b9d443fecb38c6e92bbb08812091fcb28f319e2a8f7ac344322ec6add7034547a2777cd60e7e1687f9d538ec9e9369bb60b506d1c4994cffb7916ff531c04cfcd41ac854b7052477ef3ff51810825292b61eee70c071d817caa55f4a6017e6c4cb10932dbb2ad43ea02c850bc0aff5e92fa78a8105603e201fee9d89ee6b7b21ff76fcaf03d296147c22ca78857959b0067a10e35613daadca034e8f42efc4e7863306ce1a167ab37e8e818717e8784036ddac3e01b3243c9f00cddbe100edbaf5532983f4649d8f0cdb6042097d9837808c958d6b0c58ef02f449d8936e83240fd59ecdea2f413306b59e9078ba3f8a87b19d8afd7e9daf6bf4a4b6c604cc80a693eb0f2a7358577aa958a6669c15709269ebbfd18bb59686c7b0b784f1a2484a01bd17c8960d4f1f8384bbabda3f937ee427141a822d74ce79aad2249375c8048e60e386a3278c2526ccaf779b967425996641ccbe55232fffc53eca22f7c0dbccc13189113e60db1cf9fac283b914c718fbde17e1d5912bbad0e9570f4b63c553cb71682b54e83d5ba0ea44a29be9f96e8780ddc6ef73bda71646ff3f8caae226740c027cffb37d0b0430508fdc666656e09aafb3ec72bcff27edb4e4383a59fe0ca21d98ed685b9f462d85c00396e1d03cf05f02f64a3a0c631f5902ae0ff7362e57906fb96bf25aaf043b62cd3dc9cc4116a23727467da1a1f59ee0dbdc59ec322e42f84346964199fdb8a22c2caa6cd29974cb1073b670d33e2a072ff2ac3f80588882b6d42e38893778bcc6a11d376b3c4dcb33ce264b61f7d323238ea672bae4f364595a675d0f37d288f875a4c7981544edffef84fc8be08202724f486897317993a881de3780e6d0c6d587f279f750ac4d55718ea1c9d1fe08cb5c8c44ee095c2e69cf6663a66f7cc1caab19cc25900ab42b0b79ac50d2ab919f6f03c1c23e85013ddfb3b3c026c851d143c9d096357ddb94c959dc5664473753a776f9839cc483f28d9f410be89caacd67e1e38011025bb80d57f929359901e1030cde7f3fc3f617726c0584e898b3b3b58a071a846b6a1d836e40e9f2f4004a5370cf9a5b2c1ceba6d4fe29b8de162011b9052b34e26635e347641d7bfea55c227fd3efc7fe125a1d4e16b2dcbbc23fb07f41cdec64e072b9c978111da5fbe1d577bb04556c8ffe3a84c4dbd9b112aeaa3f43fcb8629014c54e0b13d63c9f099e098fd6c2899d447a99dda2f17c977205b9342869bc2f292f498fef04d8720f1f88af91bfe7b99c75f5135d75ac3d9b4a41b358088c8aa238481135ca02f189cf3979afab3332415031465cc86d4205c40969028ffddb256dde79f28a49c012ad0f8a022046bb3c6fe652d718e8014b1bbf72d89b7d9a141e486f2a63f8e70e93bbad54e83d5644f668f7e46ed734eada71935e5d06b369d51a824b8327255d96dcff131c016b1e9b8e72713a81d066b0aa51694a0f198fa7a5fcebde9c17507910c5a748cccfcf91838d92a23b023b3ef2bbc44fcaf55c9529b2360cdf6ad237e6ad995d5c1e4c6413787c4d7f7339aaa2b8d2a78d94d57bdb25ba79b98def079772723eb1a6d6ab07e809cb78", 0x1000}, {&(0x7f0000001540)="0bdc294b8e9a10faea6c1cccf9ac8a1e453a8cb0eb73045867d3c667c19e142c56f4ecde8a1b88c3c1560a3198cfcc42bcfb984b6de6e50a9557480853fa672d96d28ff4983222c64cbd26decae0924e2da19a7c22a55d03a55f5fc2511e47052706dbae6d9c2ccb11af24d521b35dd85fae7c35cae7697b81eedfa724c2932860e13d5f9d6862bea2b9ca90ff77a4ed9c34d2e45e43921d88daa913d5f9682766733491f896357777e4d6b871d577ddaa2eed", 0xb3}, {&(0x7f0000001600)="a72e", 0x2}, {&(0x7f0000001640)="88896a7f325d90d7aaa485dc268aacc22ba41c05471d72fb8845e167c99aad9acebf921f5c3f013205c87aa1baa5fd6a714dcac6a9793d14ffc3783aa97a05de9990da9ea80dc3a654a5e6891e0f24630771d58b4a87fba4285ee8b75f119d49d88f395c09601226f1915d2ccdd079f06c63a3748be85b49596e88550c879c30bb44467a0c86b8b4fadc82ab3315a82d85a75c9971bd6c951891ddacbba3eeafa3763de54c82560a57ac4cd4a69394643735603ecfb4b8c5c3680a1221de6e24d013bcfd9f8bb8b609bf6c1fb18db7b9e299ad91cda2108d7091deb89404fe8238d2043c", 0xe4}, {&(0x7f0000001740)="c3cfc084b071967a65f2d3f1a677b169937b4c34051bca4ffdbfbabdf0374f82c96bc8e220ef9e1313dc7097fe3bdfb1791401e87b451e6f1a9a608ef676db7ccf013bafb6824ce631c2f31d29fb5b531d3470e715302c1637ec41b37a71fbe3872418531fe0a566e37bb0e153af6eb50b732474770caba1c79e09ac147d054b4b6e1dba7ee01147a92842617042b7fa708310ddc240464dc670df9c4d17", 0x9e}, {&(0x7f0000001800)="d7ed", 0x2}, {&(0x7f0000001840)="324216ea48334e127ff9f766a0b32db21c1f74a6ee720fa44de7b823b2a2d89728bfbba84f015b2b860f06f6cab0a43c7a", 0x31}, {&(0x7f0000001880)="d6498d95c3a19750def0cdd378e89fbca0e0ffb99b240324efa477b409d6bf0cdd00db279f", 0x25}], 0x9, 0x0, 0x0, 0x4000000}, 0x20000000) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r3, &(0x7f0000000140)=@ocfs2={0xc, 0x1, {0x400, 0x5}}, 0x0) getdents64(r3, &(0x7f0000000100)=""/66, 0x42) recvmsg$unix(r1, &(0x7f0000000280)={&(0x7f0000000180), 0x6e, &(0x7f0000000040)=[{&(0x7f0000000200)=""/85, 0x55}], 0x1}, 0x100) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) kcmp(0xffffffffffffffff, 0x0, 0x5, r4, 0xffffffffffffffff) close_range(r1, 0xffffffffffffffff, 0x0) 20:39:44 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x96, 0x0) 20:39:44 executing program 3: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r0, 0x5441, 0x0) r1 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCVHANGUP(r1, 0x5437, 0x0) ioctl$TIOCSPTLCK(r1, 0x40045431, &(0x7f0000000000)) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) ioctl$TIOCNOTTY(0xffffffffffffffff, 0x5422) setitimer(0x0, 0x0, 0xfffffffffffffffd) openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/e1000e', 0x101400, 0x8) syz_open_dev$tty20(0xc, 0x4, 0x0) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000100), 0x38a42, 0x0) ioctl$TIOCGPTPEER(r2, 0x5441, 0x4) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) 20:39:44 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = openat$null(0xffffffffffffff9c, &(0x7f00000036c0), 0x40, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0xffffffffffffffcf) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) recvmmsg$unix(r0, &(0x7f0000002540)=[{{&(0x7f0000000180), 0x6e, &(0x7f0000000200)=[{&(0x7f0000000380)=""/4096, 0x1000}, {&(0x7f0000000040)=""/58, 0x3a}], 0x2, &(0x7f0000000240)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x98}}, {{&(0x7f0000001380), 0x6e, &(0x7f0000002500)=[{&(0x7f0000001400)=""/4096, 0x1000}, {&(0x7f0000002400)=""/43, 0x2b}, {&(0x7f0000002440)=""/158, 0x9e}], 0x3}}], 0x2, 0x10120, 0x0) kcmp(0xffffffffffffffff, r5, 0x0, r4, 0xffffffffffffffff) r7 = syz_open_dev$char_usb(0xc, 0xb4, 0xb2d) r8 = openat$cgroup_freezer_state(r6, &(0x7f00000025c0), 0x2, 0x0) ioctl$BTRFS_IOC_RM_DEV(r7, 0x5000940b, &(0x7f0000002600)={{r8}, "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"}) close_range(r0, 0xffffffffffffffff, 0x0) r9 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r9, 0x1, 0x0, 0x0, 0x0, 0x0) vmsplice(r9, &(0x7f0000003940)=[{&(0x7f0000003600)="f4557566e780aa2d8deb7a3bc02047b24aaded15189054e7b15799db714552abb61d7bb2e20ed7164b69014ae4defa55bc21c4dd1837e8132e5729f4f7295d738b42f267771c288792170913d1979defb4a630519fdbc84caaf70276874b4bc3e6c7387171b260958246ea7f5715253b52190fe16fffe1526353e6beef58c5747fb6c27811d9c95f24f311f1e0a3172822a1d0924c80ae91cd57c90b25c1", 0x9e}, {&(0x7f00000036c0)}, {&(0x7f0000003700)="636b1be207b1ea32c9c2d25820e78bd01c22634341e59045add5bf11d00aca5a6cf8c01af1848d0607c70fbf2f46331c7351d1d40e42d721c2215c1108038e9380df4a3a55f024711eecd7ede7755934ae721566803572d767c59b20a626f33134db63c9502a0f55a1f4a42efec87779c1aee2b9dbd541175ba31324ff886d2b5ce3176b2960833275de75ff427f930439f1ecbea70f36932c3f0238497dd8cb", 0xa0}, {&(0x7f00000037c0)="61db1b4f3d119ee8a3a73b30019b1d56cc01d5dc7081cc6b9bcafbf334960f650f9cd3f24a51d0a13cd121845208ab5b530e2923badedbfaff5acd29df8c6421075b4e7d49eed510b0d508a2688b464e1067f6179cc34e4c25244c7fb880a32c75a7401e851ee86485c2fb33fc5395433614e25c405eb457344faa00bcc743aac78abed56045dfd37452457cf149645f29398e39e4241d882d6e59176f6bf1f1a5864c0ec8a58fe94512ae9390bf851f8941af", 0xb3}, {&(0x7f0000003880)="48d72ebe650f9a25141bbe8821fa9bad4d5fbee6e554cb18ff30b203bdebeecc61e5c305ab8af932b588af2ffaec9326ff74fd3fe1e28428f09dd17cfeec5a3500e925a1daecff6343d10302a596a5aefe97041b443b27a2cbdfba795860d841f73dddf81ca11781454ae3b77c119d90c97fb648b8110bc4eaf6166735af6490a47c58594cd36761e0c1a6bc10740898d931b7201faa421675774f5e844275724b499bf2c8701984b4cde128700ae834603e01cc549e1e9448f0d66da9b6a6d1", 0xc0}], 0x5, 0x2) 20:39:44 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f0000000140)={{0x1, 0x1, 0x18, r0, {0x8000}}, './file0\x00'}) ioctl$SNAPSHOT_AVAIL_SWAP_SIZE(r1, 0x80083313, &(0x7f0000000180)) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r2, 0x5441, 0x0) r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x2) close_range(r3, r3, 0x2) r4 = accept$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @multicast1}, &(0x7f0000000100)=0x10) fcntl$notify(r4, 0x402, 0x8000000e) [ 1255.603860] syz-executor.3 calls setitimer() with new_value NULL pointer. Misfeature support will be removed 20:39:44 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x3) 20:39:44 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) 20:39:44 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0xef0, 0x81, 0x0) 20:39:44 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') flistxattr(r0, &(0x7f00000000c0)=""/4096, 0x1000) ioctl$LOOP_SET_FD(r0, 0x4c00, r0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000011c0), 0x606000, 0x0) ioctl$NS_GET_PARENT(r0, 0xb702, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) openat$urandom(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) r2 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r2, 0x1, 0x0, 0x0, 0x0, 0x0) eventfd(0x45be) syz_open_dev$evdev(&(0x7f00000010c0), 0x7, 0x8000) r3 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) ioctl$TCSBRK(r1, 0x5409, 0xfffffffffffffffc) socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r0, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r8 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$EVIOCSMASK(0xffffffffffffffff, 0x40104593, &(0x7f0000001180)={0x15, 0x61, &(0x7f0000001100)="eeb09323e57ff41e356af5b0bda6da7c09bfa835cd90b59729ac0463d6aee7e757f780c8ba0883d9f89440f41cb365a9bbf2a29f6a2244ddab1ca0840d958bc62912131c3c742c6480b7c66ef939bda03f5d3916d32630b3ad8002d8ec906503b9"}) syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r8, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) close_range(r8, r3, 0x2) 20:39:58 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 17) 20:39:58 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0), 0x6e, &(0x7f0000000140)=[{&(0x7f0000000040)=""/39, 0x27}], 0x1, &(0x7f00000002c0)=ANY=[@ANYBLOB="28000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="6537e214ac098bee22152044b0557be13e6c18ecc07c34b5b0f764c5dbc0304a1e83df06fb04d72ccdf12607569431c190458da4c19a1d49b5ef1236e6f87c209df9", @ANYBLOB="20000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="34000000000000000100000001000000", @ANYRES32=0xffffffffffffffff, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="0000806a"], 0x80}, 0x40000000) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r3, &(0x7f0000000140)=@ocfs2={0xc, 0x1, {0x400, 0x5}}, 0x0) r4 = openat$urandom(0xffffffffffffff9c, &(0x7f00000001c0), 0x200000, 0x0) ioctl$AUTOFS_DEV_IOCTL_READY(r3, 0xc0189376, &(0x7f0000000380)={{0x1, 0x1, 0x18, r4, {0x8}}, './file0\x00'}) ioctl$TIOCL_PASTESEL(r2, 0x541c, &(0x7f0000000240)) r5 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r5, 0x5437, 0x0) r6 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r6, 0x5437, 0x0) ioctl$TCSETSF(r6, 0x5404, &(0x7f0000000180)={0x1ff, 0x5, 0x6, 0x3ff, 0x16, "9b7c11ff9ca89873e37a3f49df8f9386c1d38c"}) ioctl$TIOCOUTQ(r5, 0x5411, &(0x7f0000000280)) kcmp(0xffffffffffffffff, 0x0, 0x5, r1, 0xffffffffffffffff) close_range(r0, 0xffffffffffffffff, 0x0) 20:39:58 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x2) 20:39:58 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0xc42, 0x0) kcmp(0xffffffffffffffff, 0x0, 0x5, r1, 0xffffffffffffffff) r2 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r2, 0x1, 0x0, 0x0, 0x0, 0x0) close_range(r0, r2, 0x2) 20:39:58 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) ioctl$sock_FIOGETOWN(r4, 0x8903, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x0) 20:39:58 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x4) 20:39:58 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x2) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x9) r3 = openat$cgroup_pressure(r0, &(0x7f00000000c0)='cpu.pressure\x00', 0x2, 0x0) close_range(r2, r3, 0x0) 20:39:58 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0), 0x6e, &(0x7f0000000140)=[{&(0x7f0000000040)=""/39, 0x27}], 0x1, &(0x7f00000002c0)=ANY=[@ANYBLOB="28000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="6537e214ac098bee22152044b0557be13e6c18ecc07c34b5b0f764c5dbc0304a1e83df06fb04d72ccdf12607569431c190458da4c19a1d49b5ef1236e6f87c209df9", @ANYBLOB="20000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="34000000000000000100000001000000", @ANYRES32=0xffffffffffffffff, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="0000806a"], 0x80}, 0x40000000) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r3, &(0x7f0000000140)=@ocfs2={0xc, 0x1, {0x400, 0x5}}, 0x0) r4 = openat$urandom(0xffffffffffffff9c, &(0x7f00000001c0), 0x200000, 0x0) ioctl$AUTOFS_DEV_IOCTL_READY(r3, 0xc0189376, &(0x7f0000000380)={{0x1, 0x1, 0x18, r4, {0x8}}, './file0\x00'}) ioctl$TIOCL_PASTESEL(r2, 0x541c, &(0x7f0000000240)) r5 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r5, 0x5437, 0x0) r6 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r6, 0x5437, 0x0) ioctl$TCSETSF(r6, 0x5404, &(0x7f0000000180)={0x1ff, 0x5, 0x6, 0x3ff, 0x16, "9b7c11ff9ca89873e37a3f49df8f9386c1d38c"}) ioctl$TIOCOUTQ(r5, 0x5411, &(0x7f0000000280)) kcmp(0xffffffffffffffff, 0x0, 0x5, r1, 0xffffffffffffffff) close_range(r0, 0xffffffffffffffff, 0x0) [ 1270.134903] FAULT_INJECTION: forcing a failure. [ 1270.134903] name failslab, interval 1, probability 0, space 0, times 0 [ 1270.137386] CPU: 0 PID: 17729 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1270.139172] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1270.141579] Call Trace: [ 1270.142117] [ 1270.142590] dump_stack_lvl+0x8b/0xb3 [ 1270.143425] should_fail.cold+0x5/0xa [ 1270.144238] ? create_object.isra.0+0x3a/0xa20 [ 1270.145225] should_failslab+0x5/0x10 [ 1270.146056] kmem_cache_alloc+0x5b/0x480 [ 1270.146924] ? obj_cgroup_charge+0x247/0x740 [ 1270.147876] create_object.isra.0+0x3a/0xa20 [ 1270.148823] ? kasan_unpoison+0x23/0x50 [ 1270.149694] kmem_cache_alloc+0x239/0x480 [ 1270.150594] copy_fs_struct+0x45/0x340 [ 1270.151431] ? copy_process+0x206b/0x6d10 [ 1270.152329] copy_process+0x32f5/0x6d10 [ 1270.153216] ? __cleanup_sighand+0xb0/0xb0 [ 1270.154162] ? lock_release+0x3b2/0x6f0 [ 1270.155012] ? ksys_write+0x212/0x250 [ 1270.155828] ? kernel_clone+0x2f8/0xa60 [ 1270.156685] kernel_clone+0xe7/0xa60 [ 1270.157485] ? find_held_lock+0x2c/0x110 [ 1270.158352] ? create_io_thread+0xf0/0xf0 [ 1270.159243] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1270.160297] ? bit_wait_io_timeout+0x160/0x160 [ 1270.161273] ? lock_is_held_type+0xd7/0x130 [ 1270.162231] __do_sys_fork+0x8a/0xc0 [ 1270.163038] ? kernel_clone+0xa60/0xa60 [ 1270.163897] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1270.165085] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1270.166198] ? lockdep_hardirqs_on+0x79/0x100 [ 1270.167144] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1270.168237] do_syscall_64+0x3b/0x90 [ 1270.169042] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1270.170168] RIP: 0033:0x7f9fc1cadb19 [ 1270.170951] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1270.174802] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1270.176406] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1270.177934] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1270.179442] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1270.180945] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1270.182461] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1270.183992] 20:40:11 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 18) 20:40:11 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 20:40:11 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = getpid() getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000100)={0x0}, &(0x7f0000000140)=0xc) sched_getattr(r2, &(0x7f0000000000)={0x38}, 0x38, 0x0) kcmp$KCMP_EPOLL_TFD(0xffffffffffffffff, r1, 0x7, 0xffffffffffffffff, &(0x7f00000000c0)={r0, r0, 0x1}) sched_getattr(r2, &(0x7f0000000180)={0x38}, 0x38, 0x0) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r3, 0x5441, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x0) 20:40:11 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x5) 20:40:11 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x0) ioctl$TIOCGSID(r1, 0x5429, &(0x7f00000000c0)) 20:40:11 executing program 7: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r0, 0x5441, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) 20:40:11 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r2, 0x5437, 0x0) ioctl$TIOCGPTPEER(r2, 0x5441, 0x391) 20:40:11 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x3) 20:40:11 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCSPTLCK(r1, 0x40045431, &(0x7f0000000140)) ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f0000000040)={0x7f, 0x2, 0x6, 0x3f, 0xd, "28d75b53ab52e81cc21cdf30c1669a44a6cab4"}) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$hidraw(&(0x7f00000001c0), 0x94da, 0x1) ioctl$F2FS_IOC_WRITE_CHECKPOINT(r2, 0xf507, 0x0) pipe2(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4800) r4 = syz_open_dev$hidraw(&(0x7f00000000c0), 0x3, 0x800) ioctl$FICLONERANGE(r3, 0x4020940d, &(0x7f0000000100)={{r4}, 0x3ff, 0x10000, 0x8003}) [ 1283.279722] FAULT_INJECTION: forcing a failure. [ 1283.279722] name failslab, interval 1, probability 0, space 0, times 0 [ 1283.282307] CPU: 1 PID: 17864 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1283.284122] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1283.286616] Call Trace: [ 1283.287178] [ 1283.287668] dump_stack_lvl+0x8b/0xb3 [ 1283.288523] should_fail.cold+0x5/0xa [ 1283.289370] ? copy_process+0x2142/0x6d10 [ 1283.290320] should_failslab+0x5/0x10 [ 1283.291187] kmem_cache_alloc+0x5b/0x480 [ 1283.292094] copy_process+0x2142/0x6d10 [ 1283.293008] ? __cleanup_sighand+0xb0/0xb0 [ 1283.293973] ? lock_release+0x3b2/0x6f0 [ 1283.294847] ? ksys_write+0x212/0x250 [ 1283.295685] ? kernel_clone+0x2f8/0xa60 [ 1283.296572] kernel_clone+0xe7/0xa60 [ 1283.297393] ? find_held_lock+0x2c/0x110 [ 1283.298301] ? create_io_thread+0xf0/0xf0 [ 1283.299220] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1283.300309] ? bit_wait_io_timeout+0x160/0x160 [ 1283.301312] ? lock_is_held_type+0xd7/0x130 [ 1283.302276] __do_sys_fork+0x8a/0xc0 [ 1283.303098] ? kernel_clone+0xa60/0xa60 [ 1283.303978] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1283.305189] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1283.306334] ? lockdep_hardirqs_on+0x79/0x100 [ 1283.307313] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1283.308435] do_syscall_64+0x3b/0x90 [ 1283.309245] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1283.310387] RIP: 0033:0x7f9fc1cadb19 [ 1283.311184] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1283.315148] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1283.316781] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1283.318332] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1283.319865] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1283.321398] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 20:40:11 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCSPTLCK(r1, 0x40045431, &(0x7f0000000140)) ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f0000000040)={0x7f, 0x2, 0x6, 0x3f, 0xd, "28d75b53ab52e81cc21cdf30c1669a44a6cab4"}) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$hidraw(&(0x7f00000001c0), 0x94da, 0x1) ioctl$F2FS_IOC_WRITE_CHECKPOINT(r2, 0xf507, 0x0) pipe2(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4800) r4 = syz_open_dev$hidraw(&(0x7f00000000c0), 0x3, 0x800) ioctl$FICLONERANGE(r3, 0x4020940d, &(0x7f0000000100)={{r4}, 0x3ff, 0x10000, 0x8003}) [ 1283.322953] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1283.324667] 20:40:11 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r2, 0x5437, 0x0) ioctl$VT_RELDISP(r2, 0x5605) 20:40:11 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x6) 20:40:11 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x4) 20:40:11 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x2, 0x81, 0x0) 20:40:11 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r1, 0x1, 0x0, 0x0, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f0000000100)={{0x1, 0x1, 0x18, r1, {0x200}}, './file0\x00'}) ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, &(0x7f0000000040)=0x1) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r3 = ioctl$TIOCGPTPEER(r0, 0x5441, 0x101) kcmp(0xffffffffffffffff, 0x0, 0x0, r3, r2) close_range(r0, 0xffffffffffffffff, 0x0) 20:40:11 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000200)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x75) ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f00000000c0)={r0, 0x6, 0x3, 0xffff}) r3 = socket$inet_icmp(0x2, 0x2, 0x1) ioctl$BTRFS_IOC_QGROUP_LIMIT(r3, 0x8030942b, &(0x7f0000000100)={0x7, {0x21, 0x1, 0x6, 0x6, 0x6}}) ioctl$PIO_SCRNMAP(0xffffffffffffffff, 0x4b41, &(0x7f0000000140)="1128bd971b553c073c216ae67b89ea69175a994d84878f20133465cc543684d03409035037edf3006254a6342f7b7d6b860905a017fbf643363681a5b457e4dcb07631da1ef2b49deb01ed50c8d5536acadd108a7cb97c3e851ec4f37470441cfe304829023f08cad5c13ecbfbbb3f53017490757fc8a10eed162250c5fbcc13a72f64") close_range(r0, 0xffffffffffffffff, 0x0) 20:40:25 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x5) 20:40:25 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 19) 20:40:25 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$TCXONC(r2, 0x540a, 0x3) close_range(r0, 0xffffffffffffffff, 0x0) 20:40:25 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r1, 0x5437, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x0) 20:40:25 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) kcmp(0xffffffffffffffff, 0x0, 0x5, r1, 0xffffffffffffffff) close_range(r0, 0xffffffffffffffff, 0x0) 20:40:25 executing program 3: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) fcntl$setlease(r3, 0x400, 0x0) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r4, 0x5441, 0x0) r5 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r5, 0x1, 0x0, 0x0, 0x0, 0x0) ioctl$AUTOFS_IOC_EXPIRE(r5, 0x810c9365, &(0x7f00000000c0)={{0x1, 0x9a9}, 0x100, './file0\x00'}) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) close_range(r0, 0xffffffffffffffff, 0x0) 20:40:25 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x7) 20:40:25 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000040)=0x1) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r2, 0x5437, 0x0) ioctl$TIOCSTI(r2, 0x5412, &(0x7f00000000c0)=0x5) [ 1297.402841] FAULT_INJECTION: forcing a failure. [ 1297.402841] name failslab, interval 1, probability 0, space 0, times 0 [ 1297.405177] CPU: 1 PID: 18108 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1297.406839] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1297.409070] Call Trace: [ 1297.409582] [ 1297.410034] dump_stack_lvl+0x8b/0xb3 [ 1297.410805] should_fail.cold+0x5/0xa [ 1297.411565] ? create_object.isra.0+0x3a/0xa20 [ 1297.412479] should_failslab+0x5/0x10 [ 1297.413231] kmem_cache_alloc+0x5b/0x480 [ 1297.414055] ? obj_cgroup_charge+0x247/0x740 [ 1297.414938] create_object.isra.0+0x3a/0xa20 [ 1297.415815] ? kasan_unpoison+0x23/0x50 [ 1297.416618] kmem_cache_alloc+0x239/0x480 [ 1297.417451] copy_process+0x2142/0x6d10 [ 1297.418291] ? __cleanup_sighand+0xb0/0xb0 [ 1297.419152] ? lock_release+0x3b2/0x6f0 [ 1297.419942] ? ksys_write+0x212/0x250 [ 1297.420703] ? kernel_clone+0x2f8/0xa60 [ 1297.421512] kernel_clone+0xe7/0xa60 [ 1297.422280] ? find_held_lock+0x2c/0x110 [ 1297.423084] ? create_io_thread+0xf0/0xf0 [ 1297.423917] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1297.424895] ? bit_wait_io_timeout+0x160/0x160 [ 1297.425804] ? lock_is_held_type+0xd7/0x130 [ 1297.426673] __do_sys_fork+0x8a/0xc0 [ 1297.427421] ? kernel_clone+0xa60/0xa60 [ 1297.428212] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1297.429329] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1297.430355] ? lockdep_hardirqs_on+0x79/0x100 [ 1297.431340] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1297.432534] do_syscall_64+0x3b/0x90 [ 1297.433414] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1297.434637] RIP: 0033:0x7f9fc1cadb19 [ 1297.435502] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1297.439741] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1297.441513] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1297.443178] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1297.444819] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1297.446463] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1297.448097] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1297.449769] 20:40:26 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000200)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x75) ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f00000000c0)={r0, 0x6, 0x3, 0xffff}) r3 = socket$inet_icmp(0x2, 0x2, 0x1) ioctl$BTRFS_IOC_QGROUP_LIMIT(r3, 0x8030942b, &(0x7f0000000100)={0x7, {0x21, 0x1, 0x6, 0x6, 0x6}}) ioctl$PIO_SCRNMAP(0xffffffffffffffff, 0x4b41, &(0x7f0000000140)="1128bd971b553c073c216ae67b89ea69175a994d84878f20133465cc543684d03409035037edf3006254a6342f7b7d6b860905a017fbf643363681a5b457e4dcb07631da1ef2b49deb01ed50c8d5536acadd108a7cb97c3e851ec4f37470441cfe304829023f08cad5c13ecbfbbb3f53017490757fc8a10eed162250c5fbcc13a72f64") close_range(r0, 0xffffffffffffffff, 0x0) 20:40:26 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x6) 20:40:26 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x10) 20:40:26 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) kcmp(0xffffffffffffffff, 0x0, 0x5, r1, 0xffffffffffffffff) sched_getattr(0x0, &(0x7f0000000000)={0x38}, 0x38, 0x0) fstat(r0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0}) recvmmsg$unix(r0, &(0x7f0000000600)=[{{&(0x7f00000002c0), 0x6e, &(0x7f0000000500)=[{&(0x7f0000000340)=""/71, 0x47}, {&(0x7f00000003c0)=""/36, 0x24}, {&(0x7f0000000400)=""/215, 0xd7}], 0x3, &(0x7f0000000540)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0x0}}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}], 0x90}}], 0x1, 0x40000002, &(0x7f0000000640)={0x0, 0x989680}) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r7 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r10 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r8, r9, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r10, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000680)={0x0}, &(0x7f00000006c0)=0xc) stat(&(0x7f0000000700)='./file0\x00', &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0}) lchown(&(0x7f0000000100)='./file0\x00', r14, r13) r15 = gettid() sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000880)={&(0x7f0000000040)=@proc={0x10, 0x0, 0x25dfdbfc, 0x20000000}, 0xc, &(0x7f00000001c0)=[{&(0x7f00000000c0)={0xc8, 0x1f, 0x300, 0x70bd2a, 0x25dfdbfb, "", [@nested={0x14, 0x5d7, 0x0, 0x1, [@typed={0x8, 0x8c, 0x0, 0x0, @ipv4=@empty}, @typed={0x8, 0x59, 0x0, 0x0, @u32=0x8}]}, @nested={0xa3, 0x8, 0x0, 0x1, [@generic="657356a06faf621cf23be2e87aaf878ea1639771b840cc00a65f34c5e14e99154ca4e00810bca02b38d4402ccf7049558bdbe69e26a30cd24bc12373c3d4ba8c9ad41ccc5e97afc9c28c2eea65480ba6ee24a5f4893120af77ced5839c93b4b5465b6eed20fee61d999cd289d70f18e6b9248d1e33bbac91b3033e132a7363bae2aeed6465efd6", @typed={0xe, 0x3d, 0x0, 0x0, @str='/dev/ptmx\x00'}, @typed={0x8, 0x59, 0x0, 0x0, @uid=0xee00}]}]}, 0xc8}], 0x1, &(0x7f00000007c0)=[@rights={{0x18, 0x1, 0x1, [r4, r1]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, r2, r3}}}, @rights={{0x24, 0x1, 0x1, [r1, r0, r7, r10, r0]}}, @cred={{0x1c, 0x1, 0x2, {r11, r12, r13}}}, @cred={{0x1c, 0x1, 0x2, {r15, 0x0, 0xee01}}}], 0xb8, 0x4000000}, 0x40080) close_range(r0, 0xffffffffffffffff, 0x0) 20:40:26 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000480)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="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", @ANYRES32, @ANYBLOB="000000000000e4a03dfddb117bb6d80bb13560f450ddf59f275cfa3a7491539114ddc56ae792da5f0500000000000000f2670c0e2b000000"], 0x364}, 0x1, 0x0, 0x0, 0x800}, 0x800) close_range(r0, 0xffffffffffffffff, 0x0) 20:40:26 executing program 1: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0xfffffffffffffffe) close_range(r0, 0xffffffffffffffff, 0x0) 20:40:26 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 1) 20:40:26 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x48) [ 1297.625147] FAULT_INJECTION: forcing a failure. [ 1297.625147] name failslab, interval 1, probability 0, space 0, times 0 [ 1297.626854] CPU: 0 PID: 18228 Comm: syz-executor.3 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1297.628008] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1297.629608] Call Trace: [ 1297.629967] [ 1297.630277] dump_stack_lvl+0x8b/0xb3 [ 1297.630814] should_fail.cold+0x5/0xa [ 1297.631346] ? copy_process+0x5c8/0x6d10 [ 1297.631914] should_failslab+0x5/0x10 [ 1297.632439] kmem_cache_alloc_node+0x55/0x490 [ 1297.633069] copy_process+0x5c8/0x6d10 20:40:26 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x7) [ 1297.633761] ? lock_release+0x3b2/0x6f0 [ 1297.634394] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1297.635115] ? lock_downgrade+0x6d0/0x6d0 [ 1297.635697] ? __cleanup_sighand+0xb0/0xb0 [ 1297.636290] ? lock_is_held_type+0xd7/0x130 [ 1297.636894] ? lock_release+0x3b2/0x6f0 [ 1297.637436] ? ksys_write+0x212/0x250 [ 1297.637976] ? kernel_clone+0x2f8/0xa60 [ 1297.638536] kernel_clone+0xe7/0xa60 [ 1297.639054] ? find_held_lock+0x2c/0x110 [ 1297.639631] ? create_io_thread+0xf0/0xf0 [ 1297.640140] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1297.640818] ? bit_wait_io_timeout+0x160/0x160 [ 1297.641454] ? lock_is_held_type+0xd7/0x130 [ 1297.642075] __do_sys_fork+0x8a/0xc0 [ 1297.642604] ? kernel_clone+0xa60/0xa60 [ 1297.643157] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1297.643930] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1297.644635] ? lockdep_hardirqs_on+0x79/0x100 [ 1297.645246] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1297.645968] do_syscall_64+0x3b/0x90 [ 1297.646504] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1297.647226] RIP: 0033:0x7f0ecb13db19 [ 1297.647738] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1297.650294] RSP: 002b:00007f0ec86b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1297.651199] RAX: ffffffffffffffda RBX: 00007f0ecb250f60 RCX: 00007f0ecb13db19 [ 1297.652178] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1297.653171] RBP: 00007f0ec86b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1297.654175] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1297.655159] R13: 00007ffe225f4d7f R14: 00007f0ec86b3300 R15: 0000000000022000 [ 1297.656171] [ 1310.582788] FAULT_INJECTION: forcing a failure. [ 1310.582788] name failslab, interval 1, probability 0, space 0, times 0 [ 1310.584085] CPU: 1 PID: 18333 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1310.584998] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1310.586272] Call Trace: [ 1310.586552] [ 1310.586796] dump_stack_lvl+0x8b/0xb3 [ 1310.587228] should_fail.cold+0x5/0xa [ 1310.587662] ? copy_process+0x22c1/0x6d10 [ 1310.588127] should_failslab+0x5/0x10 20:40:39 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 2) 20:40:39 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) r2 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r2, 0x1, 0x0, 0x0, 0x0, 0x0) close(r2) dup(r0) 20:40:39 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 1) 20:40:39 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x4c) 20:40:39 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x10) 20:40:39 executing program 1: syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 1) 20:40:39 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) kcmp(0xffffffffffffffff, 0x0, 0x5, r1, 0xffffffffffffffff) sched_getattr(0x0, &(0x7f0000000000)={0x38}, 0x38, 0x0) fstat(r0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0}) recvmmsg$unix(r0, &(0x7f0000000600)=[{{&(0x7f00000002c0), 0x6e, &(0x7f0000000500)=[{&(0x7f0000000340)=""/71, 0x47}, {&(0x7f00000003c0)=""/36, 0x24}, {&(0x7f0000000400)=""/215, 0xd7}], 0x3, &(0x7f0000000540)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0x0}}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}], 0x90}}], 0x1, 0x40000002, &(0x7f0000000640)={0x0, 0x989680}) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r7 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r10 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r8, r9, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r10, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000680)={0x0}, &(0x7f00000006c0)=0xc) stat(&(0x7f0000000700)='./file0\x00', &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0}) lchown(&(0x7f0000000100)='./file0\x00', r14, r13) r15 = gettid() sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000880)={&(0x7f0000000040)=@proc={0x10, 0x0, 0x25dfdbfc, 0x20000000}, 0xc, &(0x7f00000001c0)=[{&(0x7f00000000c0)={0xc8, 0x1f, 0x300, 0x70bd2a, 0x25dfdbfb, "", [@nested={0x14, 0x5d7, 0x0, 0x1, [@typed={0x8, 0x8c, 0x0, 0x0, @ipv4=@empty}, @typed={0x8, 0x59, 0x0, 0x0, @u32=0x8}]}, @nested={0xa3, 0x8, 0x0, 0x1, [@generic="657356a06faf621cf23be2e87aaf878ea1639771b840cc00a65f34c5e14e99154ca4e00810bca02b38d4402ccf7049558bdbe69e26a30cd24bc12373c3d4ba8c9ad41ccc5e97afc9c28c2eea65480ba6ee24a5f4893120af77ced5839c93b4b5465b6eed20fee61d999cd289d70f18e6b9248d1e33bbac91b3033e132a7363bae2aeed6465efd6", @typed={0xe, 0x3d, 0x0, 0x0, @str='/dev/ptmx\x00'}, @typed={0x8, 0x59, 0x0, 0x0, @uid=0xee00}]}]}, 0xc8}], 0x1, &(0x7f00000007c0)=[@rights={{0x18, 0x1, 0x1, [r4, r1]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, r2, r3}}}, @rights={{0x24, 0x1, 0x1, [r1, r0, r7, r10, r0]}}, @cred={{0x1c, 0x1, 0x2, {r11, r12, r13}}}, @cred={{0x1c, 0x1, 0x2, {r15, 0x0, 0xee01}}}], 0xb8, 0x4000000}, 0x40080) close_range(r0, 0xffffffffffffffff, 0x0) 20:40:39 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 20) [ 1310.588555] kmem_cache_alloc+0x5b/0x480 [ 1310.589234] copy_process+0x22c1/0x6d10 [ 1310.589691] ? __cleanup_sighand+0xb0/0xb0 [ 1310.590179] ? lock_release+0x3b2/0x6f0 [ 1310.590634] ? ksys_write+0x212/0x250 [ 1310.591068] ? kernel_clone+0x2f8/0xa60 [ 1310.591521] kernel_clone+0xe7/0xa60 [ 1310.591939] ? find_held_lock+0x2c/0x110 [ 1310.592391] ? create_io_thread+0xf0/0xf0 [ 1310.592858] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1310.593416] ? bit_wait_io_timeout+0x160/0x160 [ 1310.593930] ? lock_is_held_type+0xd7/0x130 [ 1310.594418] __do_sys_fork+0x8a/0xc0 [ 1310.594834] ? kernel_clone+0xa60/0xa60 [ 1310.595276] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1310.595903] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1310.596488] ? lockdep_hardirqs_on+0x79/0x100 [ 1310.596990] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1310.597561] do_syscall_64+0x3b/0x90 [ 1310.597983] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1310.598577] RIP: 0033:0x7f9fc1cadb19 [ 1310.598982] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1310.601020] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1310.601875] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1310.602682] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1310.603459] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1310.604229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1310.605003] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1310.605788] [ 1310.622975] FAULT_INJECTION: forcing a failure. [ 1310.622975] name failslab, interval 1, probability 0, space 0, times 0 [ 1310.625413] CPU: 0 PID: 18331 Comm: syz-executor.1 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1310.627168] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1310.629556] Call Trace: [ 1310.630107] [ 1310.630591] dump_stack_lvl+0x8b/0xb3 [ 1310.631408] should_fail.cold+0x5/0xa [ 1310.632214] ? copy_process+0x5c8/0x6d10 [ 1310.633083] should_failslab+0x5/0x10 [ 1310.633884] kmem_cache_alloc_node+0x55/0x490 [ 1310.634862] copy_process+0x5c8/0x6d10 [ 1310.635895] ? lock_release+0x3b2/0x6f0 [ 1310.636743] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1310.638099] ? lock_downgrade+0x6d0/0x6d0 [ 1310.639011] ? __cleanup_sighand+0xb0/0xb0 [ 1310.640111] ? lock_is_held_type+0xd7/0x130 [ 1310.641040] ? lock_release+0x3b2/0x6f0 [ 1310.642065] ? ksys_write+0x212/0x250 [ 1310.642902] ? kernel_clone+0x2f8/0xa60 [ 1310.643942] kernel_clone+0xe7/0xa60 [ 1310.644750] ? find_held_lock+0x2c/0x110 [ 1310.645796] ? create_io_thread+0xf0/0xf0 [ 1310.646716] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1310.647995] ? bit_wait_io_timeout+0x160/0x160 [ 1310.648978] ? lock_is_held_type+0xd7/0x130 [ 1310.650097] __do_sys_fork+0x8a/0xc0 [ 1310.650904] ? kernel_clone+0xa60/0xa60 [ 1310.651936] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1310.653131] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1310.654473] ? lockdep_hardirqs_on+0x79/0x100 [ 1310.655435] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1310.656755] do_syscall_64+0x3b/0x90 [ 1310.657565] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1310.658926] RIP: 0033:0x7faa79075b19 [ 1310.659714] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1310.664460] RSP: 002b:00007faa765eb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1310.666053] RAX: ffffffffffffffda RBX: 00007faa79188f60 RCX: 00007faa79075b19 [ 1310.667908] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1310.669745] RBP: 00007faa765eb1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1310.671237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1310.673072] R13: 00007ffc0df95b9f R14: 00007faa765eb300 R15: 0000000000022000 [ 1310.674723] [ 1310.678273] FAULT_INJECTION: forcing a failure. [ 1310.678273] name failslab, interval 1, probability 0, space 0, times 0 [ 1310.680845] CPU: 0 PID: 18329 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1310.682980] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1310.685352] Call Trace: [ 1310.686012] [ 1310.686517] dump_stack_lvl+0x8b/0xb3 [ 1310.687514] should_fail.cold+0x5/0xa [ 1310.688328] ? copy_process+0x5c8/0x6d10 [ 1310.689387] should_failslab+0x5/0x10 [ 1310.690205] kmem_cache_alloc_node+0x55/0x490 [ 1310.691370] copy_process+0x5c8/0x6d10 [ 1310.692211] ? lock_release+0x3b2/0x6f0 [ 1310.693237] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1310.694359] ? lock_downgrade+0x6d0/0x6d0 [ 1310.695438] ? __cleanup_sighand+0xb0/0xb0 [ 1310.696337] ? lock_is_held_type+0xd7/0x130 [ 1310.697458] ? lock_release+0x3b2/0x6f0 [ 1310.698322] ? ksys_write+0x212/0x250 [ 1310.699305] ? kernel_clone+0x2f8/0xa60 [ 1310.700158] kernel_clone+0xe7/0xa60 [ 1310.700950] ? find_held_lock+0x2c/0x110 [ 1310.701807] ? create_io_thread+0xf0/0xf0 [ 1310.702700] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1310.703736] ? bit_wait_io_timeout+0x160/0x160 [ 1310.704701] ? lock_is_held_type+0xd7/0x130 [ 1310.705605] __do_sys_fork+0x8a/0xc0 [ 1310.706409] ? kernel_clone+0xa60/0xa60 [ 1310.707249] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1310.708415] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1310.709490] ? lockdep_hardirqs_on+0x79/0x100 [ 1310.710453] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1310.711533] do_syscall_64+0x3b/0x90 [ 1310.712325] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1310.713421] RIP: 0033:0x7fe050cdfb19 [ 1310.714202] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1310.717991] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1310.719579] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1310.721060] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1310.722569] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1310.724043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1310.725517] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1310.726052] FAULT_INJECTION: forcing a failure. [ 1310.726052] name failslab, interval 1, probability 0, space 0, times 0 [ 1310.727033] [ 1310.728562] CPU: 1 PID: 18446 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1310.729473] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1310.730711] Call Trace: [ 1310.730994] [ 1310.731233] dump_stack_lvl+0x8b/0xb3 [ 1310.731663] should_fail.cold+0x5/0xa [ 1310.732092] ? create_object.isra.0+0x3a/0xa20 [ 1310.732599] should_failslab+0x5/0x10 [ 1310.733017] kmem_cache_alloc+0x5b/0x480 [ 1310.733459] ? obj_cgroup_charge+0x247/0x740 [ 1310.733953] create_object.isra.0+0x3a/0xa20 [ 1310.734447] ? kasan_unpoison+0x23/0x50 [ 1310.734886] kmem_cache_alloc+0x239/0x480 [ 1310.735335] copy_process+0x22c1/0x6d10 [ 1310.735791] ? __cleanup_sighand+0xb0/0xb0 [ 1310.736264] ? lock_release+0x3b2/0x6f0 [ 1310.736698] ? ksys_write+0x212/0x250 [ 1310.737126] ? kernel_clone+0x2f8/0xa60 [ 1310.737565] kernel_clone+0xe7/0xa60 [ 1310.737968] ? find_held_lock+0x2c/0x110 [ 1310.738423] ? create_io_thread+0xf0/0xf0 [ 1310.738879] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1310.739420] ? bit_wait_io_timeout+0x160/0x160 [ 1310.739918] ? lock_is_held_type+0xd7/0x130 [ 1310.740388] __do_sys_fork+0x8a/0xc0 [ 1310.740798] ? kernel_clone+0xa60/0xa60 [ 1310.741231] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1310.741841] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1310.742412] ? lockdep_hardirqs_on+0x79/0x100 [ 1310.742898] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1310.743461] do_syscall_64+0x3b/0x90 [ 1310.743873] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1310.744447] RIP: 0033:0x7f9fc1cadb19 [ 1310.744853] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1310.746868] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 20:40:39 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x48681, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x139b}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'rose0\x00'}) r1 = socket$inet6(0xa, 0x1, 0x0) r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) bind$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) sendmmsg(r1, &(0x7f0000004240)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000300)="e9", 0xfffffe8e}], 0x1}}], 0x1, 0x0) recvfrom(r1, &(0x7f0000000140)=""/101, 0x65, 0x62, &(0x7f00000001c0)=@qipcrtr={0x2a, 0x1, 0x4000}, 0x80) recvfrom(r1, &(0x7f00000003c0)=""/77, 0x6bc2bb1, 0x300, 0x0, 0x37) open_by_handle_at(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="200000006200000001000000ffffffff040000000000000003000000080000000400000000000080"], 0x400) ppoll(&(0x7f0000000d40)=[{r1, 0x22}, {r2, 0x400}, {}, {0xffffffffffffffff, 0x460}], 0x4, &(0x7f0000000d80)={0x0, 0x3938700}, &(0x7f0000000dc0)={[0x9]}, 0x8) pwrite64(r0, &(0x7f0000000080)='u', 0x1, 0x0) 20:40:39 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 21) [ 1310.747701] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1310.748693] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1310.749487] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1310.750283] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1310.751064] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1310.751861] [ 1310.765995] FAULT_INJECTION: forcing a failure. [ 1310.765995] name failslab, interval 1, probability 0, space 0, times 0 [ 1310.768493] CPU: 0 PID: 18343 Comm: syz-executor.3 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1310.770225] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1310.772557] Call Trace: [ 1310.773092] [ 1310.773562] dump_stack_lvl+0x8b/0xb3 [ 1310.774392] should_fail.cold+0x5/0xa [ 1310.775197] ? create_object.isra.0+0x3a/0xa20 [ 1310.776176] should_failslab+0x5/0x10 [ 1310.776974] kmem_cache_alloc+0x5b/0x480 [ 1310.777833] create_object.isra.0+0x3a/0xa20 [ 1310.778769] ? kasan_unpoison+0x23/0x50 [ 1310.779625] kmem_cache_alloc_node+0x248/0x490 [ 1310.780590] copy_process+0x5c8/0x6d10 [ 1310.781428] ? lock_release+0x3b2/0x6f0 [ 1310.782272] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1310.783375] ? lock_downgrade+0x6d0/0x6d0 [ 1310.784262] ? __cleanup_sighand+0xb0/0xb0 [ 1310.785157] ? lock_is_held_type+0xd7/0x130 [ 1310.786066] ? lock_release+0x3b2/0x6f0 [ 1310.786915] ? ksys_write+0x212/0x250 [ 1310.787722] ? kernel_clone+0x2f8/0xa60 20:40:39 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r0, 0xc018937a, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0x9}}, './file0\x00'}) ioctl$TIOCGPTPEER(r1, 0x5441, 0xfffffffffffffffd) close_range(r0, 0xffffffffffffffff, 0x0) 20:40:39 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x68) [ 1310.788566] kernel_clone+0xe7/0xa60 [ 1310.789497] ? find_held_lock+0x2c/0x110 [ 1310.790352] ? create_io_thread+0xf0/0xf0 [ 1310.791220] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1310.792248] ? bit_wait_io_timeout+0x160/0x160 [ 1310.793198] ? lock_is_held_type+0xd7/0x130 [ 1310.794101] __do_sys_fork+0x8a/0xc0 [ 1310.794908] ? kernel_clone+0xa60/0xa60 [ 1310.795737] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1310.796895] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1310.797957] ? lockdep_hardirqs_on+0x79/0x100 [ 1310.798884] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1310.799947] do_syscall_64+0x3b/0x90 [ 1310.800727] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1310.801803] RIP: 0033:0x7f0ecb13db19 [ 1310.802576] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1310.806365] RSP: 002b:00007f0ec86b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1310.807931] RAX: ffffffffffffffda RBX: 00007f0ecb250f60 RCX: 00007f0ecb13db19 [ 1310.809398] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1310.810876] RBP: 00007f0ec86b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1310.812341] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1310.813815] R13: 00007ffe225f4d7f R14: 00007f0ec86b3300 R15: 0000000000022000 [ 1310.815320] 20:40:39 executing program 1: syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 2) [ 1310.819566] FAULT_INJECTION: forcing a failure. [ 1310.819566] name failslab, interval 1, probability 0, space 0, times 0 [ 1310.820869] CPU: 1 PID: 18450 Comm: syz-executor.1 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1310.821760] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1310.822994] Call Trace: [ 1310.823266] [ 1310.823508] dump_stack_lvl+0x8b/0xb3 [ 1310.823933] should_fail.cold+0x5/0xa [ 1310.824346] ? create_object.isra.0+0x3a/0xa20 [ 1310.824851] should_failslab+0x5/0x10 [ 1310.825265] kmem_cache_alloc+0x5b/0x480 [ 1310.825717] create_object.isra.0+0x3a/0xa20 [ 1310.826215] ? kasan_unpoison+0x23/0x50 [ 1310.826661] kmem_cache_alloc_node+0x248/0x490 [ 1310.827160] copy_process+0x5c8/0x6d10 [ 1310.827595] ? lock_release+0x3b2/0x6f0 [ 1310.828035] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1310.828616] ? lock_downgrade+0x6d0/0x6d0 [ 1310.829075] ? __cleanup_sighand+0xb0/0xb0 [ 1310.829542] ? lock_is_held_type+0xd7/0x130 [ 1310.830012] ? lock_release+0x3b2/0x6f0 [ 1310.830451] ? ksys_write+0x212/0x250 [ 1310.830870] ? kernel_clone+0x2f8/0xa60 [ 1310.831313] kernel_clone+0xe7/0xa60 [ 1310.831725] ? find_held_lock+0x2c/0x110 [ 1310.832167] ? create_io_thread+0xf0/0xf0 [ 1310.832629] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1310.833169] ? bit_wait_io_timeout+0x160/0x160 [ 1310.833670] ? lock_is_held_type+0xd7/0x130 [ 1310.834156] __do_sys_fork+0x8a/0xc0 [ 1310.834569] ? kernel_clone+0xa60/0xa60 [ 1310.835008] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1310.835629] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1310.836186] ? lockdep_hardirqs_on+0x79/0x100 [ 1310.836691] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1310.837243] do_syscall_64+0x3b/0x90 [ 1310.837654] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1310.838229] RIP: 0033:0x7faa79075b19 [ 1310.838631] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1310.840618] RSP: 002b:00007faa765eb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1310.841431] RAX: ffffffffffffffda RBX: 00007faa79188f60 RCX: 00007faa79075b19 [ 1310.842204] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1310.842981] RBP: 00007faa765eb1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1310.843761] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1310.844554] R13: 00007ffc0df95b9f R14: 00007faa765eb300 R15: 0000000000022000 [ 1310.845346] 20:40:39 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x48) [ 1326.489393] Bluetooth: hci0: command 0x0406 tx timeout 20:41:00 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x6c) 20:41:00 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x48681, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x139b}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'rose0\x00'}) r1 = socket$inet6(0xa, 0x1, 0x0) r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) bind$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) sendmmsg(r1, &(0x7f0000004240)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000300)="e9", 0xfffffe8e}], 0x1}}], 0x1, 0x0) recvfrom(r1, &(0x7f0000000140)=""/101, 0x65, 0x62, &(0x7f00000001c0)=@qipcrtr={0x2a, 0x1, 0x4000}, 0x80) recvfrom(r1, &(0x7f00000003c0)=""/77, 0x6bc2bb1, 0x300, 0x0, 0x37) open_by_handle_at(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="200000006200000001000000ffffffff040000000000000003000000080000000400000000000080"], 0x400) ppoll(&(0x7f0000000d40)=[{r1, 0x22}, {r2, 0x400}, {}, {0xffffffffffffffff, 0x460}], 0x4, &(0x7f0000000d80)={0x0, 0x3938700}, &(0x7f0000000dc0)={[0x9]}, 0x8) pwrite64(r0, &(0x7f0000000080)='u', 0x1, 0x0) 20:41:00 executing program 1: syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 3) 20:41:00 executing program 7: r0 = getpid() sched_getattr(r0, &(0x7f0000000000)={0x38}, 0x38, 0x0) r1 = syz_open_procfs(r0, &(0x7f0000000180)='ns\x00') r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x18000, 0x0) r3 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x6) ioctl$TCSETS(r3, 0x5402, &(0x7f0000000040)={0x3, 0x7640, 0x0, 0x1e, 0xc, "15026aa8f7a589ee88ac0bf4c5ad32994d675b"}) ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000001c0)=0xd) close_range(r1, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r6 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r6, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) ioctl$AUTOFS_IOC_PROTOSUBVER(r6, 0x80049367, &(0x7f00000000c0)) 20:41:00 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 22) 20:41:00 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 2) 20:41:00 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x4c) 20:41:00 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 3) [ 1332.048148] FAULT_INJECTION: forcing a failure. [ 1332.048148] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1332.050567] CPU: 1 PID: 18579 Comm: syz-executor.1 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1332.051820] FAULT_INJECTION: forcing a failure. [ 1332.051820] name failslab, interval 1, probability 0, space 0, times 0 [ 1332.052260] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1332.056835] Call Trace: [ 1332.057389] [ 1332.057837] dump_stack_lvl+0x8b/0xb3 [ 1332.058667] should_fail.cold+0x5/0xa [ 1332.059486] prepare_alloc_pages+0x17b/0x500 [ 1332.060396] ? find_held_lock+0x2c/0x110 [ 1332.061224] __alloc_pages+0x131/0x4e0 [ 1332.062020] ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10 [ 1332.063298] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1332.064365] copy_process+0x65c/0x6d10 [ 1332.065168] ? lock_release+0x3b2/0x6f0 [ 1332.065980] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1332.067094] ? lock_downgrade+0x6d0/0x6d0 [ 1332.067954] ? __cleanup_sighand+0xb0/0xb0 [ 1332.068830] ? lock_is_held_type+0xd7/0x130 [ 1332.069710] ? lock_release+0x3b2/0x6f0 [ 1332.070541] ? ksys_write+0x212/0x250 [ 1332.071327] ? kernel_clone+0x2f8/0xa60 [ 1332.072140] kernel_clone+0xe7/0xa60 [ 1332.072906] ? find_held_lock+0x2c/0x110 [ 1332.073731] ? create_io_thread+0xf0/0xf0 [ 1332.074619] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1332.075625] ? bit_wait_io_timeout+0x160/0x160 [ 1332.076554] ? lock_is_held_type+0xd7/0x130 [ 1332.077433] __do_sys_fork+0x8a/0xc0 [ 1332.078185] ? kernel_clone+0xa60/0xa60 [ 1332.079038] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1332.080169] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1332.081219] ? lockdep_hardirqs_on+0x79/0x100 [ 1332.082121] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1332.083199] do_syscall_64+0x3b/0x90 [ 1332.083982] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1332.085045] RIP: 0033:0x7faa79075b19 [ 1332.085931] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1332.090557] RSP: 002b:00007faa765eb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1332.092466] RAX: ffffffffffffffda RBX: 00007faa79188f60 RCX: 00007faa79075b19 [ 1332.094016] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1332.095576] RBP: 00007faa765eb1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1332.097085] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1332.098539] R13: 00007ffc0df95b9f R14: 00007faa765eb300 R15: 0000000000022000 [ 1332.100005] [ 1332.100488] CPU: 0 PID: 18578 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1332.102319] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1332.104812] Call Trace: [ 1332.105379] [ 1332.105560] FAULT_INJECTION: forcing a failure. [ 1332.105560] name failslab, interval 1, probability 0, space 0, times 0 [ 1332.105871] dump_stack_lvl+0x8b/0xb3 [ 1332.108919] should_fail.cold+0x5/0xa [ 1332.109768] ? dup_mm+0x88/0x1250 [ 1332.110554] should_failslab+0x5/0x10 [ 1332.111393] kmem_cache_alloc+0x5b/0x480 [ 1332.112275] dup_mm+0x88/0x1250 [ 1332.113001] ? lock_release+0x3b2/0x6f0 [ 1332.113861] ? copy_process+0x278b/0x6d10 [ 1332.114795] ? replace_mm_exe_file+0x490/0x490 [ 1332.115787] ? __raw_spin_lock_init+0x36/0x110 [ 1332.116781] copy_process+0x3a28/0x6d10 [ 1332.117675] ? __cleanup_sighand+0xb0/0xb0 [ 1332.118617] ? lock_release+0x3b2/0x6f0 [ 1332.119483] ? ksys_write+0x212/0x250 [ 1332.120332] ? kernel_clone+0x2f8/0xa60 [ 1332.121215] kernel_clone+0xe7/0xa60 [ 1332.122041] ? find_held_lock+0x2c/0x110 [ 1332.122935] ? create_io_thread+0xf0/0xf0 [ 1332.123856] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1332.124876] ? bit_wait_io_timeout+0x160/0x160 [ 1332.125794] ? lock_is_held_type+0xd7/0x130 [ 1332.126744] __do_sys_fork+0x8a/0xc0 [ 1332.127574] ? kernel_clone+0xa60/0xa60 [ 1332.128454] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1332.129680] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1332.130816] ? lockdep_hardirqs_on+0x79/0x100 [ 1332.131806] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1332.132945] do_syscall_64+0x3b/0x90 [ 1332.133782] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1332.134952] RIP: 0033:0x7f9fc1cadb19 [ 1332.135770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1332.139864] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1332.141568] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1332.143177] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1332.144791] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1332.146395] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1332.148016] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1332.149658] [ 1332.150188] CPU: 1 PID: 18583 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1332.151919] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1332.154339] Call Trace: [ 1332.154864] [ 1332.155324] dump_stack_lvl+0x8b/0xb3 [ 1332.156103] should_fail.cold+0x5/0xa [ 1332.156883] ? create_object.isra.0+0x3a/0xa20 [ 1332.157830] should_failslab+0x5/0x10 [ 1332.158650] kmem_cache_alloc+0x5b/0x480 [ 1332.159500] create_object.isra.0+0x3a/0xa20 [ 1332.160407] ? kasan_unpoison+0x23/0x50 [ 1332.161235] kmem_cache_alloc_node+0x248/0x490 [ 1332.162163] copy_process+0x5c8/0x6d10 [ 1332.163003] ? lock_release+0x3b2/0x6f0 [ 1332.163825] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1332.164892] ? lock_downgrade+0x6d0/0x6d0 [ 1332.165733] ? __cleanup_sighand+0xb0/0xb0 [ 1332.166645] ? lock_is_held_type+0xd7/0x130 [ 1332.167521] ? lock_release+0x3b2/0x6f0 [ 1332.168326] ? ksys_write+0x212/0x250 [ 1332.169100] ? kernel_clone+0x2f8/0xa60 [ 1332.169914] kernel_clone+0xe7/0xa60 [ 1332.170689] ? find_held_lock+0x2c/0x110 [ 1332.171503] ? create_io_thread+0xf0/0xf0 [ 1332.172348] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1332.173342] ? bit_wait_io_timeout+0x160/0x160 [ 1332.174262] ? lock_is_held_type+0xd7/0x130 [ 1332.175145] __do_sys_fork+0x8a/0xc0 [ 1332.175904] ? kernel_clone+0xa60/0xa60 [ 1332.176711] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1332.177827] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1332.178875] ? lockdep_hardirqs_on+0x79/0x100 [ 1332.179781] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1332.180805] do_syscall_64+0x3b/0x90 [ 1332.181566] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1332.182639] RIP: 0033:0x7fe050cdfb19 [ 1332.183399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1332.187106] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1332.188869] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1332.190697] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1332.192500] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1332.194248] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1332.195748] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1332.197221] [ 1332.199632] FAULT_INJECTION: forcing a failure. [ 1332.199632] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1332.202045] CPU: 1 PID: 18580 Comm: syz-executor.3 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1332.203742] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1332.206003] Call Trace: [ 1332.206549] [ 1332.206997] dump_stack_lvl+0x8b/0xb3 [ 1332.207783] should_fail.cold+0x5/0xa [ 1332.208568] prepare_alloc_pages+0x17b/0x500 [ 1332.209466] ? find_held_lock+0x2c/0x110 [ 1332.210305] __alloc_pages+0x131/0x4e0 [ 1332.211124] ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10 [ 1332.212370] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1332.213388] copy_process+0x65c/0x6d10 [ 1332.214159] ? lock_release+0x3b2/0x6f0 [ 1332.215000] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1332.216079] ? lock_downgrade+0x6d0/0x6d0 [ 1332.217092] ? __cleanup_sighand+0xb0/0xb0 [ 1332.217974] ? lock_is_held_type+0xd7/0x130 [ 1332.218891] ? lock_release+0x3b2/0x6f0 [ 1332.219719] ? ksys_write+0x212/0x250 [ 1332.220505] ? kernel_clone+0x2f8/0xa60 [ 1332.221320] kernel_clone+0xe7/0xa60 [ 1332.222071] ? find_held_lock+0x2c/0x110 [ 1332.222911] ? create_io_thread+0xf0/0xf0 [ 1332.223778] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1332.224786] ? bit_wait_io_timeout+0x160/0x160 [ 1332.225706] ? lock_is_held_type+0xd7/0x130 [ 1332.226567] __do_sys_fork+0x8a/0xc0 [ 1332.227350] ? kernel_clone+0xa60/0xa60 [ 1332.228157] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1332.229299] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1332.230356] ? lockdep_hardirqs_on+0x79/0x100 [ 1332.231300] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1332.232353] do_syscall_64+0x3b/0x90 [ 1332.233120] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1332.234172] RIP: 0033:0x7f0ecb13db19 [ 1332.234944] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1332.238679] RSP: 002b:00007f0ec86b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1332.240258] RAX: ffffffffffffffda RBX: 00007f0ecb250f60 RCX: 00007f0ecb13db19 [ 1332.241713] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1332.243179] RBP: 00007f0ec86b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1332.244674] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1332.246146] R13: 00007ffe225f4d7f R14: 00007f0ec86b3300 R15: 0000000000022000 [ 1332.247669] 20:41:00 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x68) 20:41:00 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x48681, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x139b}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'rose0\x00'}) r1 = socket$inet6(0xa, 0x1, 0x0) r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) bind$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) sendmmsg(r1, &(0x7f0000004240)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000300)="e9", 0xfffffe8e}], 0x1}}], 0x1, 0x0) recvfrom(r1, &(0x7f0000000140)=""/101, 0x65, 0x62, &(0x7f00000001c0)=@qipcrtr={0x2a, 0x1, 0x4000}, 0x80) recvfrom(r1, &(0x7f00000003c0)=""/77, 0x6bc2bb1, 0x300, 0x0, 0x37) open_by_handle_at(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="200000006200000001000000ffffffff040000000000000003000000080000000400000000000080"], 0x400) ppoll(&(0x7f0000000d40)=[{r1, 0x22}, {r2, 0x400}, {}, {0xffffffffffffffff, 0x460}], 0x4, &(0x7f0000000d80)={0x0, 0x3938700}, &(0x7f0000000dc0)={[0x9]}, 0x8) pwrite64(r0, &(0x7f0000000080)='u', 0x1, 0x0) 20:41:00 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 20:41:00 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x6c) 20:41:00 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x74) 20:41:00 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 4) 20:41:00 executing program 1: syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 4) 20:41:00 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 23) [ 1332.489103] FAULT_INJECTION: forcing a failure. [ 1332.489103] name failslab, interval 1, probability 0, space 0, times 0 [ 1332.491402] CPU: 0 PID: 18809 Comm: syz-executor.3 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1332.493024] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1332.495245] Call Trace: [ 1332.495757] [ 1332.496206] dump_stack_lvl+0x8b/0xb3 [ 1332.496975] should_fail.cold+0x5/0xa [ 1332.497732] ? prepare_creds+0x2b/0x6f0 [ 1332.498555] should_failslab+0x5/0x10 [ 1332.499302] kmem_cache_alloc+0x5b/0x480 [ 1332.500110] prepare_creds+0x2b/0x6f0 [ 1332.500874] copy_creds+0x76/0xb20 [ 1332.501596] copy_process+0xe3f/0x6d10 [ 1332.502382] ? lock_release+0x3b2/0x6f0 [ 1332.503185] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1332.504230] ? __cleanup_sighand+0xb0/0xb0 [ 1332.505071] ? lock_is_held_type+0xd7/0x130 [ 1332.505926] ? lock_release+0x3b2/0x6f0 [ 1332.506729] ? ksys_write+0x212/0x250 [ 1332.507488] ? kernel_clone+0x2f8/0xa60 [ 1332.508280] kernel_clone+0xe7/0xa60 [ 1332.509024] ? find_held_lock+0x2c/0x110 [ 1332.509821] ? create_io_thread+0xf0/0xf0 [ 1332.510725] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1332.511901] ? bit_wait_io_timeout+0x160/0x160 [ 1332.512887] ? lock_is_held_type+0xd7/0x130 [ 1332.513814] __do_sys_fork+0x8a/0xc0 [ 1332.514645] ? kernel_clone+0xa60/0xa60 [ 1332.515500] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1332.515932] FAULT_INJECTION: forcing a failure. [ 1332.515932] name failslab, interval 1, probability 0, space 0, times 0 [ 1332.516686] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1332.520113] ? lockdep_hardirqs_on+0x79/0x100 [ 1332.520991] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1332.521991] do_syscall_64+0x3b/0x90 [ 1332.522739] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1332.523760] RIP: 0033:0x7f0ecb13db19 [ 1332.524481] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1332.528070] RSP: 002b:00007f0ec86b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1332.529542] RAX: ffffffffffffffda RBX: 00007f0ecb250f60 RCX: 00007f0ecb13db19 [ 1332.531049] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1332.532577] RBP: 00007f0ec86b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1332.534112] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1332.535634] R13: 00007ffe225f4d7f R14: 00007f0ec86b3300 R15: 0000000000022000 [ 1332.537042] [ 1332.537492] CPU: 1 PID: 18814 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1332.539184] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1332.541461] Call Trace: [ 1332.541973] [ 1332.542431] dump_stack_lvl+0x8b/0xb3 [ 1332.543220] should_fail.cold+0x5/0xa [ 1332.544008] ? copy_process+0x22c1/0x6d10 [ 1332.544855] should_failslab+0x5/0x10 [ 1332.545629] kmem_cache_alloc+0x5b/0x480 [ 1332.546458] copy_process+0x22c1/0x6d10 [ 1332.547336] ? __cleanup_sighand+0xb0/0xb0 [ 1332.548225] ? lock_release+0x3b2/0x6f0 [ 1332.549030] ? ksys_write+0x212/0x250 [ 1332.549801] ? kernel_clone+0x2f8/0xa60 [ 1332.550612] kernel_clone+0xe7/0xa60 [ 1332.551379] ? find_held_lock+0x2c/0x110 [ 1332.552171] ? create_io_thread+0xf0/0xf0 [ 1332.553002] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1332.553983] ? bit_wait_io_timeout+0x160/0x160 [ 1332.554910] ? lock_is_held_type+0xd7/0x130 [ 1332.555776] __do_sys_fork+0x8a/0xc0 [ 1332.556538] ? kernel_clone+0xa60/0xa60 [ 1332.557351] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1332.558458] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1332.559493] ? lockdep_hardirqs_on+0x79/0x100 [ 1332.560392] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1332.561413] do_syscall_64+0x3b/0x90 [ 1332.562155] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1332.563192] RIP: 0033:0x7f9fc1cadb19 [ 1332.563933] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1332.567547] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1332.569048] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1332.570445] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1332.571836] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1332.573245] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1332.574651] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1332.576068] 20:41:01 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x74) [ 1332.607473] FAULT_INJECTION: forcing a failure. [ 1332.607473] name failslab, interval 1, probability 0, space 0, times 0 [ 1332.609743] CPU: 1 PID: 18854 Comm: syz-executor.1 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1332.611421] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1332.613773] Call Trace: [ 1332.614294] [ 1332.614768] dump_stack_lvl+0x8b/0xb3 [ 1332.615565] should_fail.cold+0x5/0xa [ 1332.616353] ? prepare_creds+0x2b/0x6f0 [ 1332.617155] should_failslab+0x5/0x10 [ 1332.617917] kmem_cache_alloc+0x5b/0x480 [ 1332.618770] prepare_creds+0x2b/0x6f0 [ 1332.619550] copy_creds+0x76/0xb20 [ 1332.620305] copy_process+0xe3f/0x6d10 [ 1332.621113] ? lock_release+0x3b2/0x6f0 [ 1332.621918] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1332.622996] ? __cleanup_sighand+0xb0/0xb0 [ 1332.623860] ? lock_is_held_type+0xd7/0x130 [ 1332.624748] ? lock_release+0x3b2/0x6f0 [ 1332.625556] ? ksys_write+0x212/0x250 [ 1332.626335] ? kernel_clone+0x2f8/0xa60 [ 1332.627165] kernel_clone+0xe7/0xa60 [ 1332.627933] ? find_held_lock+0x2c/0x110 [ 1332.628755] ? create_io_thread+0xf0/0xf0 [ 1332.629601] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1332.630604] ? bit_wait_io_timeout+0x160/0x160 [ 1332.631522] ? lock_is_held_type+0xd7/0x130 [ 1332.632408] __do_sys_fork+0x8a/0xc0 [ 1332.633154] ? kernel_clone+0xa60/0xa60 [ 1332.633955] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1332.635071] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1332.636119] ? lockdep_hardirqs_on+0x79/0x100 [ 1332.637013] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1332.638030] do_syscall_64+0x3b/0x90 [ 1332.638801] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1332.639838] RIP: 0033:0x7faa79075b19 [ 1332.640597] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1332.644190] RSP: 002b:00007faa765eb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1332.645699] RAX: ffffffffffffffda RBX: 00007faa79188f60 RCX: 00007faa79075b19 [ 1332.647095] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1332.648505] RBP: 00007faa765eb1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1332.649892] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1332.651324] R13: 00007ffc0df95b9f R14: 00007faa765eb300 R15: 0000000000022000 [ 1332.652776] 20:41:01 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x7a) 20:41:01 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x48681, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x139b}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'rose0\x00'}) r1 = socket$inet6(0xa, 0x1, 0x0) r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) bind$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) sendmmsg(r1, &(0x7f0000004240)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000300)="e9", 0xfffffe8e}], 0x1}}], 0x1, 0x0) recvfrom(r1, &(0x7f0000000140)=""/101, 0x65, 0x62, &(0x7f00000001c0)=@qipcrtr={0x2a, 0x1, 0x4000}, 0x80) recvfrom(r1, &(0x7f00000003c0)=""/77, 0x6bc2bb1, 0x300, 0x0, 0x37) open_by_handle_at(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="200000006200000001000000ffffffff040000000000000003000000080000000400000000000080"], 0x400) ppoll(&(0x7f0000000d40)=[{r1, 0x22}, {r2, 0x400}, {}, {0xffffffffffffffff, 0x460}], 0x4, &(0x7f0000000d80)={0x0, 0x3938700}, &(0x7f0000000dc0)={[0x9]}, 0x8) pwrite64(r0, &(0x7f0000000080)='u', 0x1, 0x0) 20:41:01 executing program 7: getitimer(0x2, &(0x7f0000000040)) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') lseek(0xffffffffffffffff, 0x8000, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 20:41:01 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x7a) 20:41:01 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 3) 20:41:01 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x300) 20:41:01 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 24) [ 1332.878305] FAULT_INJECTION: forcing a failure. [ 1332.878305] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1332.880980] CPU: 1 PID: 18959 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1332.882633] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1332.884850] Call Trace: [ 1332.885366] [ 1332.885798] dump_stack_lvl+0x8b/0xb3 [ 1332.886586] should_fail.cold+0x5/0xa [ 1332.887352] prepare_alloc_pages+0x17b/0x500 [ 1332.888214] ? find_held_lock+0x2c/0x110 [ 1332.889042] __alloc_pages+0x131/0x4e0 [ 1332.889825] ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10 [ 1332.891029] ? rcu_read_lock_sched_held+0x3a/0x70 [ 1332.891995] copy_process+0x65c/0x6d10 [ 1332.892802] ? lock_release+0x3b2/0x6f0 [ 1332.893597] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1332.894633] ? lock_downgrade+0x6d0/0x6d0 [ 1332.895465] ? __cleanup_sighand+0xb0/0xb0 [ 1332.896320] ? lock_is_held_type+0xd7/0x130 [ 1332.897169] ? lock_release+0x3b2/0x6f0 [ 1332.897958] ? ksys_write+0x212/0x250 [ 1332.898743] ? kernel_clone+0x2f8/0xa60 [ 1332.899541] kernel_clone+0xe7/0xa60 [ 1332.900301] ? find_held_lock+0x2c/0x110 [ 1332.901092] ? create_io_thread+0xf0/0xf0 [ 1332.901930] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1332.902915] ? bit_wait_io_timeout+0x160/0x160 [ 1332.903819] ? lock_is_held_type+0xd7/0x130 [ 1332.904720] __do_sys_fork+0x8a/0xc0 [ 1332.905663] ? kernel_clone+0xa60/0xa60 [ 1332.906710] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1332.908120] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1332.909416] ? lockdep_hardirqs_on+0x79/0x100 [ 1332.910478] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1332.911476] do_syscall_64+0x3b/0x90 [ 1332.912200] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1332.913208] RIP: 0033:0x7fe050cdfb19 [ 1332.913918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1332.917457] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1332.918938] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1332.920303] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1332.921667] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1332.923036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1332.924401] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1332.925787] 20:41:01 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x300) 20:41:01 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x500) 20:41:01 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x6c) 20:41:01 executing program 1: syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 5) [ 1333.020063] FAULT_INJECTION: forcing a failure. [ 1333.020063] name failslab, interval 1, probability 0, space 0, times 0 [ 1333.022492] CPU: 0 PID: 19022 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1333.024113] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1333.026325] Call Trace: [ 1333.026852] [ 1333.027293] dump_stack_lvl+0x8b/0xb3 [ 1333.028086] should_fail.cold+0x5/0xa [ 1333.028869] ? create_object.isra.0+0x3a/0xa20 [ 1333.029785] should_failslab+0x5/0x10 [ 1333.030705] kmem_cache_alloc+0x5b/0x480 [ 1333.031575] ? obj_cgroup_charge+0x247/0x740 [ 1333.032638] create_object.isra.0+0x3a/0xa20 [ 1333.033581] ? kasan_unpoison+0x23/0x50 [ 1333.034557] kmem_cache_alloc+0x239/0x480 [ 1333.035440] copy_process+0x22c1/0x6d10 [ 1333.036422] ? __cleanup_sighand+0xb0/0xb0 [ 1333.037342] ? lock_release+0x3b2/0x6f0 [ 1333.038287] ? ksys_write+0x212/0x250 [ 1333.039218] ? kernel_clone+0x2f8/0xa60 [ 1333.040180] kernel_clone+0xe7/0xa60 [ 1333.041078] ? find_held_lock+0x2c/0x110 [ 1333.041998] ? create_io_thread+0xf0/0xf0 [ 1333.042897] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1333.043964] ? bit_wait_io_timeout+0x160/0x160 [ 1333.044960] ? lock_is_held_type+0xd7/0x130 [ 1333.045890] __do_sys_fork+0x8a/0xc0 [ 1333.046712] ? kernel_clone+0xa60/0xa60 [ 1333.047576] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1333.048786] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1333.049894] ? lockdep_hardirqs_on+0x79/0x100 [ 1333.050874] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1333.051958] do_syscall_64+0x3b/0x90 [ 1333.052762] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1333.053860] RIP: 0033:0x7f9fc1cadb19 20:41:01 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x500) [ 1333.054650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1333.058621] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1333.060232] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1333.061744] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1333.063263] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1333.064768] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1333.066273] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1333.067825] [ 1333.107255] FAULT_INJECTION: forcing a failure. [ 1333.107255] name failslab, interval 1, probability 0, space 0, times 0 [ 1333.109555] CPU: 0 PID: 19028 Comm: syz-executor.1 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1333.111187] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1333.113375] Call Trace: [ 1333.113873] [ 1333.114307] dump_stack_lvl+0x8b/0xb3 [ 1333.115079] should_fail.cold+0x5/0xa [ 1333.115831] ? create_object.isra.0+0x3a/0xa20 [ 1333.116741] should_failslab+0x5/0x10 [ 1333.117487] kmem_cache_alloc+0x5b/0x480 [ 1333.118288] ? obj_cgroup_charge+0x247/0x740 [ 1333.119166] create_object.isra.0+0x3a/0xa20 [ 1333.120034] ? kasan_unpoison+0x23/0x50 [ 1333.120826] kmem_cache_alloc+0x239/0x480 [ 1333.121645] prepare_creds+0x2b/0x6f0 [ 1333.122410] copy_creds+0x76/0xb20 [ 1333.123132] copy_process+0xe3f/0x6d10 [ 1333.123910] ? lock_release+0x3b2/0x6f0 [ 1333.124690] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1333.125729] ? __cleanup_sighand+0xb0/0xb0 [ 1333.126576] ? lock_is_held_type+0xd7/0x130 [ 1333.127428] ? lock_release+0x3b2/0x6f0 [ 1333.128202] ? ksys_write+0x212/0x250 [ 1333.128951] ? kernel_clone+0x2f8/0xa60 [ 1333.129736] kernel_clone+0xe7/0xa60 [ 1333.130490] ? find_held_lock+0x2c/0x110 [ 1333.131287] ? create_io_thread+0xf0/0xf0 [ 1333.132110] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1333.133077] ? bit_wait_io_timeout+0x160/0x160 [ 1333.133976] ? lock_is_held_type+0xd7/0x130 [ 1333.134835] __do_sys_fork+0x8a/0xc0 [ 1333.135571] ? kernel_clone+0xa60/0xa60 [ 1333.136353] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1333.137445] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1333.138445] ? lockdep_hardirqs_on+0x79/0x100 [ 1333.139338] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1333.140346] do_syscall_64+0x3b/0x90 [ 1333.141084] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1333.142099] RIP: 0033:0x7faa79075b19 [ 1333.142827] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1333.146384] RSP: 002b:00007faa765eb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1333.147863] RAX: ffffffffffffffda RBX: 00007faa79188f60 RCX: 00007faa79075b19 [ 1333.149250] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1333.150654] RBP: 00007faa765eb1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1333.152034] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1333.153416] R13: 00007ffc0df95b9f R14: 00007faa765eb300 R15: 0000000000022000 [ 1333.154833] 20:41:16 executing program 1: syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() 20:41:16 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 5) 20:41:16 executing program 7: clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) clock_gettime(0x0, &(0x7f0000000100)={0x0, 0x0}) semtimedop(0xffffffffffffffff, &(0x7f0000000440)=[{0x1, 0x30}, {0x3, 0x4}, {0x7, 0x7fff, 0x800}, {0x2, 0x3, 0x1000}, {0x3, 0xa46, 0x800}], 0x5, &(0x7f0000000480)={0x0, 0x3938700}) r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') fallocate(r4, 0x1, 0xffffffff00000000, 0x1) open_by_handle_at(r4, &(0x7f0000000140)=@ocfs2={0xc, 0x1, {0x400, 0x5}}, 0x0) mq_timedsend(r4, &(0x7f0000000340)="d6ae539eef3f63a7e93fbda69978978db1144bd481ccce377a2ac2475473f336469319e29e39f6c826c7d464e29e2149c5f20375ebcbe9516cdd755a7e14082d399392371c2972adb08548a5f601fbe530dd77bcc1b6a17bd9eed24108a11a5399cc8a23fb51ad7ce11ccea7b4375487475aaa0dc2c7f2dd943f02c21819ab28df3a0ebb964d4042ebe5ae39668693", 0x8f, 0xffffffffffff7fff, &(0x7f0000000400)={0x0, 0x3938700}) utimensat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)={{r0, r1/1000+10000}, {r2, r3/1000+10000}}, 0x100) r5 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(r5, 0xc0189377, &(0x7f00000004c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x9, 0x8}}, './file0\x00'}) ppoll(&(0x7f0000000500)=[{r7, 0x80}, {r6, 0x4040}, {r6, 0x50}], 0x3, &(0x7f0000000540), &(0x7f0000000580)={[0x100000000]}, 0x8) ioctl$TIOCGPTPEER(r6, 0x5441, 0x0) clock_gettime(0x0, &(0x7f0000000240)={0x0, 0x0}) pselect6(0x40, &(0x7f0000000180)={0x8001, 0x6, 0x4, 0xaaaa, 0x41, 0x80d, 0x9, 0x3}, &(0x7f00000001c0)={0xfffffffffffffff9, 0x4, 0x401, 0x9, 0x51, 0x0, 0x0, 0x2}, &(0x7f0000000200)={0x10eb6, 0x2, 0x8, 0xb306, 0x10000, 0x6, 0x67e}, &(0x7f0000000280)={r8, r9+10000000}, &(0x7f0000000300)={&(0x7f00000002c0)={[0x1800]}, 0x8}) close_range(r5, 0xffffffffffffffff, 0x0) 20:41:16 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x48681, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x139b}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'rose0\x00'}) r1 = socket$inet6(0xa, 0x1, 0x0) r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) bind$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) sendmmsg(r1, &(0x7f0000004240)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000300)="e9", 0xfffffe8e}], 0x1}}], 0x1, 0x0) recvfrom(r1, &(0x7f0000000140)=""/101, 0x65, 0x62, &(0x7f00000001c0)=@qipcrtr={0x2a, 0x1, 0x4000}, 0x80) recvfrom(r1, &(0x7f00000003c0)=""/77, 0x6bc2bb1, 0x300, 0x0, 0x37) open_by_handle_at(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="200000006200000001000000ffffffff040000000000000003000000080000000400000000000080"], 0x400) ppoll(&(0x7f0000000d40)=[{r1, 0x22}, {r2, 0x400}, {}, {0xffffffffffffffff, 0x460}], 0x4, &(0x7f0000000d80)={0x0, 0x3938700}, &(0x7f0000000dc0)={[0x9]}, 0x8) pwrite64(r0, &(0x7f0000000080)='u', 0x1, 0x0) 20:41:16 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 25) 20:41:16 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x600) 20:41:16 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x600) 20:41:16 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 4) [ 1347.522531] FAULT_INJECTION: forcing a failure. [ 1347.522531] name failslab, interval 1, probability 0, space 0, times 0 [ 1347.524923] CPU: 0 PID: 19040 Comm: syz-executor.3 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1347.526639] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1347.529014] Call Trace: [ 1347.529541] [ 1347.529998] dump_stack_lvl+0x8b/0xb3 [ 1347.530825] should_fail.cold+0x5/0xa [ 1347.531621] ? create_object.isra.0+0x3a/0xa20 [ 1347.532566] should_failslab+0x5/0x10 [ 1347.533354] kmem_cache_alloc+0x5b/0x480 [ 1347.534209] ? obj_cgroup_charge+0x247/0x740 [ 1347.535145] create_object.isra.0+0x3a/0xa20 [ 1347.536071] ? kasan_unpoison+0x23/0x50 [ 1347.536914] kmem_cache_alloc+0x239/0x480 [ 1347.537784] prepare_creds+0x2b/0x6f0 [ 1347.538595] copy_creds+0x76/0xb20 [ 1347.539363] copy_process+0xe3f/0x6d10 [ 1347.540192] ? lock_release+0x3b2/0x6f0 [ 1347.541028] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1347.542124] ? __cleanup_sighand+0xb0/0xb0 [ 1347.543036] ? lock_is_held_type+0xd7/0x130 [ 1347.543964] ? lock_release+0x3b2/0x6f0 [ 1347.544791] ? ksys_write+0x212/0x250 [ 1347.545588] ? kernel_clone+0x2f8/0xa60 [ 1347.546422] kernel_clone+0xe7/0xa60 [ 1347.547200] ? find_held_lock+0x2c/0x110 [ 1347.548033] ? create_io_thread+0xf0/0xf0 [ 1347.548895] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1347.549907] ? bit_wait_io_timeout+0x160/0x160 [ 1347.550862] ? lock_is_held_type+0xd7/0x130 20:41:16 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x700) [ 1347.551753] __do_sys_fork+0x8a/0xc0 [ 1347.552627] ? kernel_clone+0xa60/0xa60 [ 1347.553453] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1347.554598] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1347.555665] ? lockdep_hardirqs_on+0x79/0x100 [ 1347.556582] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1347.557638] do_syscall_64+0x3b/0x90 [ 1347.558414] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1347.559491] RIP: 0033:0x7f0ecb13db19 [ 1347.560247] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1347.564006] RSP: 002b:00007f0ec86b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1347.565542] RAX: ffffffffffffffda RBX: 00007f0ecb250f60 RCX: 00007f0ecb13db19 [ 1347.566980] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1347.568424] RBP: 00007f0ec86b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1347.569872] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1347.571320] R13: 00007ffe225f4d7f R14: 00007f0ec86b3300 R15: 0000000000022000 [ 1347.572785] [ 1347.576143] FAULT_INJECTION: forcing a failure. [ 1347.576143] name failslab, interval 1, probability 0, space 0, times 0 [ 1347.578732] CPU: 0 PID: 19045 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1347.580394] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1347.582652] Call Trace: [ 1347.583173] [ 1347.583626] dump_stack_lvl+0x8b/0xb3 [ 1347.584406] should_fail.cold+0x5/0xa [ 1347.585175] ? vm_area_dup+0x78/0x290 [ 1347.585949] should_failslab+0x5/0x10 [ 1347.586726] kmem_cache_alloc+0x5b/0x480 [ 1347.587554] vm_area_dup+0x78/0x290 [ 1347.588301] ? __lock_acquire+0xbac/0x6120 [ 1347.589178] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1347.590260] ? vm_area_alloc+0x110/0x110 [ 1347.591067] ? find_held_lock+0x2c/0x110 [ 1347.591886] ? lock_release+0x3b2/0x6f0 [ 1347.592666] ? get_mm_exe_file+0x137/0x2b0 [ 1347.593523] ? lock_downgrade+0x6d0/0x6d0 [ 1347.594380] ? get_mm_exe_file+0x159/0x2b0 [ 1347.595249] dup_mm+0x53f/0x1250 [ 1347.595960] ? replace_mm_exe_file+0x490/0x490 [ 1347.596999] ? __raw_spin_lock_init+0x36/0x110 [ 1347.598086] copy_process+0x3a28/0x6d10 [ 1347.599087] ? __cleanup_sighand+0xb0/0xb0 [ 1347.600104] ? lock_release+0x3b2/0x6f0 [ 1347.601034] ? ksys_write+0x212/0x250 [ 1347.601934] ? kernel_clone+0x2f8/0xa60 [ 1347.602885] kernel_clone+0xe7/0xa60 [ 1347.603767] ? find_held_lock+0x2c/0x110 [ 1347.604718] ? create_io_thread+0xf0/0xf0 [ 1347.605706] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1347.606892] ? bit_wait_io_timeout+0x160/0x160 [ 1347.607969] ? lock_is_held_type+0xd7/0x130 [ 1347.608983] __do_sys_fork+0x8a/0xc0 [ 1347.609867] ? kernel_clone+0xa60/0xa60 [ 1347.610822] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1347.612122] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1347.613326] ? lockdep_hardirqs_on+0x79/0x100 [ 1347.614361] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1347.615564] do_syscall_64+0x3b/0x90 [ 1347.616436] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1347.617645] RIP: 0033:0x7f9fc1cadb19 [ 1347.618500] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 20:41:16 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') dup(r0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$CDROM_SELECT_SPEED(0xffffffffffffffff, 0x5322, 0x5) close_range(r0, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0xfffffffe}, &(0x7f0000ff6000/0xa000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) ioctl$FS_IOC_MEASURE_VERITY(r4, 0xc0046686, &(0x7f00000000c0)={0x0, 0xbe, "222b662795c41566509ff379f2a4a633f278395d086c825e03914c69d03f7e556934d32a177322dad82791dd486d80c3a1f7da410368c809bc8e0ebf9683f6386fe9bc5ba8145a472fa7369e816387b4e16407014bfefd9be84e2988cc3fcdc61e2d40db796e5dadf13a82f0ea2e278dc30ed047bf180ffbc8ce934e5fad7eab7786f1c21b80fa1f8f12f68fac4774fc2f5c24078e1f61193826101c57683c052f3c6378db7b99a5b4e628ed416d6d64ebe15e4fe7032793ea6b74267c34"}) [ 1347.622762] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1347.624673] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1347.626320] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1347.627971] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1347.629597] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1347.631224] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1347.632883] 20:41:16 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x4800) [ 1347.654843] FAULT_INJECTION: forcing a failure. [ 1347.654843] name failslab, interval 1, probability 0, space 0, times 0 [ 1347.657493] CPU: 0 PID: 19235 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1347.659356] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1347.661892] Call Trace: [ 1347.662465] [ 1347.662972] dump_stack_lvl+0x8b/0xb3 [ 1347.663850] should_fail.cold+0x5/0xa [ 1347.664712] ? create_object.isra.0+0x3a/0xa20 20:41:16 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x48681, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x139b}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'rose0\x00'}) r1 = socket$inet6(0xa, 0x1, 0x0) r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) bind$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) sendmmsg(r1, &(0x7f0000004240)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000300)="e9", 0xfffffe8e}], 0x1}}], 0x1, 0x0) recvfrom(r1, &(0x7f0000000140)=""/101, 0x65, 0x62, &(0x7f00000001c0)=@qipcrtr={0x2a, 0x1, 0x4000}, 0x80) recvfrom(r1, &(0x7f00000003c0)=""/77, 0x6bc2bb1, 0x300, 0x0, 0x37) open_by_handle_at(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="200000006200000001000000ffffffff040000000000000003000000080000000400000000000080"], 0x400) ppoll(&(0x7f0000000d40)=[{r1, 0x22}, {r2, 0x400}, {}, {0xffffffffffffffff, 0x460}], 0x4, &(0x7f0000000d80)={0x0, 0x3938700}, &(0x7f0000000dc0)={[0x9]}, 0x8) pwrite64(r0, &(0x7f0000000080)='u', 0x1, 0x0) [ 1347.665749] should_failslab+0x5/0x10 [ 1347.666691] kmem_cache_alloc+0x5b/0x480 [ 1347.667616] create_object.isra.0+0x3a/0xa20 [ 1347.668612] ? kasan_unpoison+0x23/0x50 [ 1347.669522] __kmalloc_node+0x26f/0x470 [ 1347.670443] memcg_alloc_slab_cgroups+0x7a/0x120 [ 1347.671525] allocate_slab+0xd6/0x300 [ 1347.672376] ___slab_alloc+0x913/0xee0 [ 1347.673245] ? copy_process+0x5c8/0x6d10 [ 1347.674155] ? refill_obj_stock+0x318/0x780 [ 1347.675150] ? copy_process+0x5c8/0x6d10 [ 1347.676060] __slab_alloc.constprop.0+0x45/0x80 [ 1347.677095] ? copy_process+0x5c8/0x6d10 [ 1347.678005] kmem_cache_alloc_node+0x370/0x490 [ 1347.679034] copy_process+0x5c8/0x6d10 [ 1347.679920] ? lock_release+0x3b2/0x6f0 [ 1347.680807] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1347.681971] ? lock_downgrade+0x6d0/0x6d0 [ 1347.682911] ? __cleanup_sighand+0xb0/0xb0 [ 1347.683864] ? lock_is_held_type+0xd7/0x130 [ 1347.684831] ? lock_release+0x3b2/0x6f0 [ 1347.685716] ? ksys_write+0x212/0x250 [ 1347.686566] ? kernel_clone+0x2f8/0xa60 [ 1347.687473] kernel_clone+0xe7/0xa60 [ 1347.688307] ? find_held_lock+0x2c/0x110 [ 1347.689208] ? create_io_thread+0xf0/0xf0 [ 1347.690132] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1347.691234] ? bit_wait_io_timeout+0x160/0x160 [ 1347.692248] ? lock_is_held_type+0xd7/0x130 [ 1347.693206] __do_sys_fork+0x8a/0xc0 [ 1347.694037] ? kernel_clone+0xa60/0xa60 [ 1347.694938] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1347.696171] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1347.697312] ? lockdep_hardirqs_on+0x79/0x100 [ 1347.698296] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1347.699438] do_syscall_64+0x3b/0x90 [ 1347.700263] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1347.701401] RIP: 0033:0x7fe050cdfb19 [ 1347.702208] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1347.706195] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1347.707858] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1347.709396] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1347.710941] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1347.712484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1347.714023] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1347.715602] 20:41:16 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x4c00) 20:41:16 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x700) 20:41:16 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x48681, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x139b}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'rose0\x00'}) r1 = socket$inet6(0xa, 0x1, 0x0) r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) bind$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) sendmmsg(r1, &(0x7f0000004240)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000300)="e9", 0xfffffe8e}], 0x1}}], 0x1, 0x0) recvfrom(r1, &(0x7f0000000140)=""/101, 0x65, 0x62, &(0x7f00000001c0)=@qipcrtr={0x2a, 0x1, 0x4000}, 0x80) recvfrom(r1, &(0x7f00000003c0)=""/77, 0x6bc2bb1, 0x300, 0x0, 0x37) open_by_handle_at(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="200000006200000001000000ffffffff040000000000000003000000080000000400000000000080"], 0x400) ppoll(&(0x7f0000000d40)=[{r1, 0x22}, {r2, 0x400}, {}, {0xffffffffffffffff, 0x460}], 0x4, &(0x7f0000000d80)={0x0, 0x3938700}, &(0x7f0000000dc0)={[0x9]}, 0x8) pwrite64(r0, &(0x7f0000000080)='u', 0x1, 0x0) 20:41:16 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x262480, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) [ 1360.563913] FAULT_INJECTION: forcing a failure. [ 1360.563913] name failslab, interval 1, probability 0, space 0, times 0 [ 1360.565245] CPU: 1 PID: 19484 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1360.566128] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1360.567341] Call Trace: [ 1360.567615] [ 1360.567867] dump_stack_lvl+0x8b/0xb3 [ 1360.568274] should_fail.cold+0x5/0xa [ 1360.568683] ? create_object.isra.0+0x3a/0xa20 [ 1360.569174] should_failslab+0x5/0x10 [ 1360.569574] kmem_cache_alloc+0x5b/0x480 [ 1360.569995] ? obj_cgroup_charge+0x247/0x740 [ 1360.570463] create_object.isra.0+0x3a/0xa20 [ 1360.570938] ? kasan_unpoison+0x23/0x50 [ 1360.571363] kmem_cache_alloc+0x239/0x480 [ 1360.571812] vm_area_dup+0x78/0x290 [ 1360.572203] ? __lock_acquire+0xbac/0x6120 [ 1360.572663] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1360.573236] ? vm_area_alloc+0x110/0x110 [ 1360.573658] ? find_held_lock+0x2c/0x110 [ 1360.574085] ? lock_release+0x3b2/0x6f0 [ 1360.574499] ? get_mm_exe_file+0x137/0x2b0 [ 1360.574973] ? lock_downgrade+0x6d0/0x6d0 [ 1360.575422] ? get_mm_exe_file+0x159/0x2b0 [ 1360.575865] dup_mm+0x53f/0x1250 [ 1360.576229] ? replace_mm_exe_file+0x490/0x490 [ 1360.576708] ? __raw_spin_lock_init+0x36/0x110 [ 1360.577187] copy_process+0x3a28/0x6d10 [ 1360.577632] ? __cleanup_sighand+0xb0/0xb0 [ 1360.578091] ? lock_release+0x3b2/0x6f0 [ 1360.578504] ? ksys_write+0x212/0x250 [ 1360.578918] ? kernel_clone+0x2f8/0xa60 [ 1360.579365] kernel_clone+0xe7/0xa60 [ 1360.579758] ? find_held_lock+0x2c/0x110 [ 1360.580182] ? create_io_thread+0xf0/0xf0 [ 1360.580624] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1360.581148] ? bit_wait_io_timeout+0x160/0x160 [ 1360.581626] ? lock_is_held_type+0xd7/0x130 [ 1360.582078] __do_sys_fork+0x8a/0xc0 [ 1360.582468] ? kernel_clone+0xa60/0xa60 [ 1360.582892] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1360.583487] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1360.584022] ? lockdep_hardirqs_on+0x79/0x100 [ 1360.584489] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1360.585024] do_syscall_64+0x3b/0x90 [ 1360.585421] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1360.585966] RIP: 0033:0x7f9fc1cadb19 [ 1360.586353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1360.588287] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1360.589076] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1360.589822] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1360.590565] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1360.591315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1360.592057] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1360.592811] [ 1360.597051] FAULT_INJECTION: forcing a failure. [ 1360.597051] name failslab, interval 1, probability 0, space 0, times 0 [ 1360.598758] CPU: 1 PID: 19493 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1360.599633] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1360.600821] Call Trace: [ 1360.601083] [ 1360.601313] dump_stack_lvl+0x8b/0xb3 [ 1360.601717] should_fail.cold+0x5/0xa [ 1360.602117] ? create_object.isra.0+0x3a/0xa20 [ 1360.602598] should_failslab+0x5/0x10 [ 1360.603008] kmem_cache_alloc+0x5b/0x480 [ 1360.603430] ? obj_cgroup_charge+0x247/0x740 [ 1360.603901] create_object.isra.0+0x3a/0xa20 [ 1360.604371] ? kasan_unpoison+0x23/0x50 [ 1360.604797] kmem_cache_alloc+0x239/0x480 [ 1360.605232] prepare_creds+0x2b/0x6f0 [ 1360.605670] copy_creds+0x76/0xb20 [ 1360.606052] copy_process+0xe3f/0x6d10 [ 1360.606469] ? lock_release+0x3b2/0x6f0 [ 1360.606897] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1360.607066] FAULT_INJECTION: forcing a failure. [ 1360.607066] name failslab, interval 1, probability 0, space 0, times 0 [ 1360.607452] ? __cleanup_sighand+0xb0/0xb0 [ 1360.607472] ? lock_is_held_type+0xd7/0x130 [ 1360.607489] ? lock_release+0x3b2/0x6f0 [ 1360.610994] ? ksys_write+0x212/0x250 [ 1360.611398] ? kernel_clone+0x2f8/0xa60 [ 1360.611847] kernel_clone+0xe7/0xa60 [ 1360.612240] ? find_held_lock+0x2c/0x110 [ 1360.612693] ? create_io_thread+0xf0/0xf0 [ 1360.613134] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1360.613651] ? bit_wait_io_timeout+0x160/0x160 [ 1360.614127] ? lock_is_held_type+0xd7/0x130 [ 1360.614576] __do_sys_fork+0x8a/0xc0 [ 1360.615010] ? kernel_clone+0xa60/0xa60 [ 1360.615425] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1360.616042] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1360.616608] ? lockdep_hardirqs_on+0x79/0x100 [ 1360.617073] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1360.617609] do_syscall_64+0x3b/0x90 [ 1360.618029] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1360.618600] RIP: 0033:0x7fe050cdfb19 [ 1360.619021] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1360.621049] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1360.621888] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1360.622677] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1360.623463] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1360.624233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1360.625027] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1360.625831] [ 1360.626085] CPU: 0 PID: 19491 Comm: syz-executor.3 Not tainted 5.17.0-rc8-next-20220318 #1 20:41:29 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 6) 20:41:29 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x400, 0x0) preadv(r2, &(0x7f00000006c0)=[{&(0x7f00000000c0)=""/49, 0x31}, {&(0x7f0000000100)=""/83, 0x53}, {&(0x7f0000000180)=""/74, 0x4a}, {&(0x7f0000000200)=""/246, 0xf6}, {&(0x7f0000000300)=""/43, 0x2b}, {&(0x7f0000000340)=""/177, 0xb1}, {&(0x7f0000000400)=""/218, 0xda}, {&(0x7f0000000500)=""/34, 0x22}, {&(0x7f0000000540)=""/84, 0x54}, {&(0x7f00000005c0)=""/232, 0xe8}], 0xa, 0x306, 0x80000000) close_range(r0, 0xffffffffffffffff, 0x0) 20:41:29 executing program 1: syz_io_uring_setup(0xeaf, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x18c}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) r0 = fork() tkill(r0, 0x14) 20:41:29 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x6800) 20:41:29 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 26) 20:41:29 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x4800) 20:41:29 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 5) 20:41:29 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x4c00) [ 1360.627761] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1360.630303] Call Trace: [ 1360.630850] [ 1360.631329] dump_stack_lvl+0x8b/0xb3 [ 1360.632154] should_fail.cold+0x5/0xa [ 1360.632963] ? security_prepare_creds+0x10a/0x180 [ 1360.633983] should_failslab+0x5/0x10 [ 1360.634783] __kmalloc+0x72/0x440 [ 1360.635538] security_prepare_creds+0x10a/0x180 [ 1360.636531] prepare_creds+0x505/0x6f0 [ 1360.637374] copy_creds+0x76/0xb20 [ 1360.638142] copy_process+0xe3f/0x6d10 [ 1360.639002] ? lock_release+0x3b2/0x6f0 [ 1360.639844] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1360.640958] ? __cleanup_sighand+0xb0/0xb0 [ 1360.641853] ? lock_is_held_type+0xd7/0x130 [ 1360.642760] ? lock_release+0x3b2/0x6f0 [ 1360.643607] ? ksys_write+0x212/0x250 [ 1360.644413] ? kernel_clone+0x2f8/0xa60 [ 1360.645254] kernel_clone+0xe7/0xa60 [ 1360.646053] ? find_held_lock+0x2c/0x110 [ 1360.646919] ? create_io_thread+0xf0/0xf0 [ 1360.647802] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1360.648840] ? bit_wait_io_timeout+0x160/0x160 [ 1360.649807] ? lock_is_held_type+0xd7/0x130 [ 1360.650713] __do_sys_fork+0x8a/0xc0 [ 1360.651531] ? kernel_clone+0xa60/0xa60 [ 1360.652372] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1360.653537] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1360.654618] ? lockdep_hardirqs_on+0x79/0x100 [ 1360.655574] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1360.656640] do_syscall_64+0x3b/0x90 [ 1360.657440] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1360.658522] RIP: 0033:0x7f0ecb13db19 [ 1360.659328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1360.663127] RSP: 002b:00007f0ec86b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1360.664683] RAX: ffffffffffffffda RBX: 00007f0ecb250f60 RCX: 00007f0ecb13db19 [ 1360.666152] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1360.667634] RBP: 00007f0ec86b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1360.669100] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1360.670562] R13: 00007ffe225f4d7f R14: 00007f0ec86b3300 R15: 0000000000022000 [ 1360.672056] 20:41:29 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x48681, 0x0) syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x139b}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'rose0\x00'}) r1 = socket$inet6(0xa, 0x1, 0x0) r2 = syz_io_uring_setup(0x0, 0x0, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) bind$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) sendmmsg(r1, &(0x7f0000004240)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000300)="e9", 0xfffffe8e}], 0x1}}], 0x1, 0x0) recvfrom(r1, &(0x7f0000000140)=""/101, 0x65, 0x62, &(0x7f00000001c0)=@qipcrtr={0x2a, 0x1, 0x4000}, 0x80) recvfrom(r1, &(0x7f00000003c0)=""/77, 0x6bc2bb1, 0x300, 0x0, 0x37) open_by_handle_at(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="200000006200000001000000ffffffff040000000000000003000000080000000400000000000080"], 0x400) ppoll(&(0x7f0000000d40)=[{r1, 0x22}, {r2, 0x400}, {}, {0xffffffffffffffff, 0x460}], 0x4, &(0x7f0000000d80)={0x0, 0x3938700}, &(0x7f0000000dc0)={[0x9]}, 0x8) pwrite64(r0, &(0x7f0000000080)='u', 0x1, 0x0) 20:41:29 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 27) 20:41:29 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 6) [ 1360.751780] FAULT_INJECTION: forcing a failure. [ 1360.751780] name failslab, interval 1, probability 0, space 0, times 0 [ 1360.753057] CPU: 1 PID: 19567 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1360.753915] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1360.755116] Call Trace: [ 1360.755390] [ 1360.755625] dump_stack_lvl+0x8b/0xb3 [ 1360.756041] should_fail.cold+0x5/0xa [ 1360.756462] ? vm_area_dup+0x78/0x290 [ 1360.756876] should_failslab+0x5/0x10 [ 1360.757277] kmem_cache_alloc+0x5b/0x480 [ 1360.757716] vm_area_dup+0x78/0x290 [ 1360.758105] ? lock_release+0x3b2/0x6f0 [ 1360.758533] ? avc_has_perm_noaudit+0x1c8/0x390 [ 1360.759034] ? lock_downgrade+0x6d0/0x6d0 [ 1360.759469] ? copy_page_range+0x27c7/0x3ea0 [ 1360.759938] ? __sanitizer_cov_trace_cmp2+0x22/0x80 [ 1360.760473] ? avc_has_perm_noaudit+0x1ef/0x390 [ 1360.760967] ? avc_has_extended_perms+0xeb0/0xeb0 [ 1360.761482] ? vm_area_alloc+0x110/0x110 [ 1360.761906] ? find_held_lock+0x2c/0x110 [ 1360.762340] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1360.762930] ? selinux_vm_enough_memory+0x10f/0x170 [ 1360.763457] ? selinux_sctp_sk_clone+0x370/0x370 [ 1360.763959] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1360.764534] ? percpu_counter_add_batch+0xb4/0x170 [ 1360.765067] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1360.765589] ? __vm_enough_memory+0x184/0x360 [ 1360.766060] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 1360.766611] dup_mm+0x53f/0x1250 [ 1360.766990] ? replace_mm_exe_file+0x490/0x490 [ 1360.767479] ? __raw_spin_lock_init+0x36/0x110 [ 1360.767970] copy_process+0x3a28/0x6d10 [ 1360.768410] ? __cleanup_sighand+0xb0/0xb0 [ 1360.768876] ? lock_release+0x3b2/0x6f0 [ 1360.769298] ? ksys_write+0x212/0x250 [ 1360.769703] ? kernel_clone+0x2f8/0xa60 [ 1360.770129] kernel_clone+0xe7/0xa60 [ 1360.770532] ? find_held_lock+0x2c/0x110 [ 1360.770972] ? create_io_thread+0xf0/0xf0 [ 1360.771416] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1360.771941] ? bit_wait_io_timeout+0x160/0x160 [ 1360.772430] ? lock_is_held_type+0xd7/0x130 [ 1360.772893] __do_sys_fork+0x8a/0xc0 [ 1360.773293] ? kernel_clone+0xa60/0xa60 [ 1360.773716] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1360.774300] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1360.774839] ? lockdep_hardirqs_on+0x79/0x100 [ 1360.775335] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1360.775879] do_syscall_64+0x3b/0x90 [ 1360.776273] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1360.776827] RIP: 0033:0x7f9fc1cadb19 [ 1360.777234] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1360.779183] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1360.779981] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1360.780725] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1360.781470] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1360.782209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1360.782965] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1360.783727] 20:41:29 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x6c00) 20:41:29 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x4c00) 20:41:29 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r2 = signalfd(0xffffffffffffffff, &(0x7f0000000100), 0x8) setsockopt$bt_BT_POWER(r2, 0x112, 0x9, &(0x7f0000000140)=0x7, 0x1) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000040)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f00000000c0)) r4 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r4, 0x5437, 0x0) ioctl$KDSKBLED(r4, 0x4b65, 0x2) close_range(r0, 0xffffffffffffffff, 0x0) 20:41:29 executing program 2: r0 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r3, 0x0, 0x0, 0x0, {}, 0x1}, 0x8000) sendmsg$ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="88bd9db3", @ANYRES16=0x0, @ANYBLOB="d0ae29bd7000fbdb0180140002007369743000000000000000000000000001002577ea9d00f604000200020300001111f23e8df55cc4fcbfc6c2a276bd5d1a8a08040c64d9655ea67432670cc3b0170e5a5dcb24d2f6e5455ce9d09a272bc453652524953ec9067d82a97fa67be02171f68466c1fb518b49a9488546d30494fca5ba41ba2c5e042f35c3c69245504c08034ffef33ffa577ab84cc0fd68ffe06802adf929b38f384042c9a18eca753d43c9ee9e5d24a9bed87cd326facf42f50dc1c94be512e6cd36b32880be75d8e3e8fce1a950363d70f642dbda2a3122ab2f7a4f51b892ee"], 0x3c}, 0x1, 0x0, 0x0, 0x40000010}, 0x20000000) syz_io_uring_setup(0x3c72, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0) io_uring_enter(r0, 0x1, 0x0, 0x0, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 20:41:29 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x6800) [ 1360.870771] FAULT_INJECTION: forcing a failure. [ 1360.870771] name failslab, interval 1, probability 0, space 0, times 0 [ 1360.872026] CPU: 1 PID: 19610 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1360.872910] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1360.874086] Call Trace: [ 1360.874353] [ 1360.874584] dump_stack_lvl+0x8b/0xb3 [ 1360.875015] should_fail.cold+0x5/0xa [ 1360.875424] ? security_prepare_creds+0x10a/0x180 [ 1360.875933] should_failslab+0x5/0x10 [ 1360.876332] __kmalloc+0x72/0x440 [ 1360.876709] security_prepare_creds+0x10a/0x180 [ 1360.877211] prepare_creds+0x505/0x6f0 [ 1360.877644] copy_creds+0x76/0xb20 [ 1360.878024] copy_process+0xe3f/0x6d10 [ 1360.878456] ? lock_release+0x3b2/0x6f0 [ 1360.878876] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1360.879474] ? __cleanup_sighand+0xb0/0xb0 [ 1360.879918] ? lock_is_held_type+0xd7/0x130 [ 1360.880375] ? lock_release+0x3b2/0x6f0 [ 1360.880786] ? ksys_write+0x212/0x250 [ 1360.881183] ? kernel_clone+0x2f8/0xa60 [ 1360.881617] kernel_clone+0xe7/0xa60 [ 1360.882009] ? find_held_lock+0x2c/0x110 [ 1360.882439] ? create_io_thread+0xf0/0xf0 [ 1360.882875] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1360.883411] ? bit_wait_io_timeout+0x160/0x160 [ 1360.883890] ? lock_is_held_type+0xd7/0x130 [ 1360.884340] __do_sys_fork+0x8a/0xc0 [ 1360.884730] ? kernel_clone+0xa60/0xa60 [ 1360.885144] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1360.885723] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1360.886257] ? lockdep_hardirqs_on+0x79/0x100 [ 1360.886728] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1360.887269] do_syscall_64+0x3b/0x90 [ 1360.887674] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1360.888224] RIP: 0033:0x7fe050cdfb19 [ 1360.888624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1360.890536] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1360.891339] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1360.892088] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1360.892836] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1360.893582] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1360.894325] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1360.895100] [ 1376.112187] FAULT_INJECTION: forcing a failure. [ 1376.112187] name failslab, interval 1, probability 0, space 0, times 0 [ 1376.114478] CPU: 0 PID: 19726 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1376.116082] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1376.118316] Call Trace: [ 1376.118808] [ 1376.119275] dump_stack_lvl+0x8b/0xb3 [ 1376.120024] should_fail.cold+0x5/0xa [ 1376.120788] ? create_object.isra.0+0x3a/0xa20 [ 1376.121689] should_failslab+0x5/0x10 [ 1376.122446] kmem_cache_alloc+0x5b/0x480 [ 1376.123265] ? obj_cgroup_charge+0x247/0x740 [ 1376.124131] create_object.isra.0+0x3a/0xa20 [ 1376.125000] ? kasan_unpoison+0x23/0x50 [ 1376.125802] kmem_cache_alloc+0x239/0x480 [ 1376.126641] vm_area_dup+0x78/0x290 [ 1376.127390] ? lock_release+0x3b2/0x6f0 [ 1376.128186] ? avc_has_perm_noaudit+0x1c8/0x390 [ 1376.129108] ? lock_downgrade+0x6d0/0x6d0 [ 1376.129927] ? copy_page_range+0x27c7/0x3ea0 [ 1376.130812] ? __sanitizer_cov_trace_cmp2+0x22/0x80 [ 1376.131831] ? avc_has_perm_noaudit+0x1ef/0x390 [ 1376.132762] ? avc_has_extended_perms+0xeb0/0xeb0 [ 1376.133748] ? vm_area_alloc+0x110/0x110 [ 1376.134568] ? find_held_lock+0x2c/0x110 [ 1376.135390] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1376.136485] ? selinux_vm_enough_memory+0x10f/0x170 [ 1376.137481] ? selinux_sctp_sk_clone+0x370/0x370 [ 1376.138432] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1376.139538] ? percpu_counter_add_batch+0xb4/0x170 [ 1376.140524] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1376.141515] ? __vm_enough_memory+0x184/0x360 [ 1376.142403] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 1376.143443] dup_mm+0x53f/0x1250 [ 1376.144143] ? replace_mm_exe_file+0x490/0x490 [ 1376.145060] ? __raw_spin_lock_init+0x36/0x110 [ 1376.145980] copy_process+0x3a28/0x6d10 [ 1376.146815] ? __cleanup_sighand+0xb0/0xb0 [ 1376.147701] ? lock_release+0x3b2/0x6f0 [ 1376.148491] ? ksys_write+0x212/0x250 [ 1376.149250] ? kernel_clone+0x2f8/0xa60 [ 1376.149391] FAULT_INJECTION: forcing a failure. [ 1376.149391] name failslab, interval 1, probability 0, space 0, times 0 [ 1376.150039] kernel_clone+0xe7/0xa60 [ 1376.152628] ? find_held_lock+0x2c/0x110 [ 1376.153440] ? create_io_thread+0xf0/0xf0 [ 1376.154277] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1376.155280] ? bit_wait_io_timeout+0x160/0x160 [ 1376.156201] ? lock_is_held_type+0xd7/0x130 [ 1376.157063] __do_sys_fork+0x8a/0xc0 [ 1376.157813] ? kernel_clone+0xa60/0xa60 [ 1376.158618] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1376.159753] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1376.160716] ? lockdep_hardirqs_on+0x79/0x100 [ 1376.161614] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1376.162563] do_syscall_64+0x3b/0x90 [ 1376.163268] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1376.164241] RIP: 0033:0x7f9fc1cadb19 [ 1376.164947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1376.168524] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1376.170049] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1376.171462] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1376.172863] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1376.174263] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1376.175672] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1376.177104] [ 1376.177563] CPU: 1 PID: 19734 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1376.178841] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1376.180591] Call Trace: [ 1376.180982] [ 1376.181329] dump_stack_lvl+0x8b/0xb3 [ 1376.181925] should_fail.cold+0x5/0xa [ 1376.182515] ? create_object.isra.0+0x3a/0xa20 [ 1376.183204] should_failslab+0x5/0x10 [ 1376.183755] kmem_cache_alloc+0x5b/0x480 [ 1376.184375] ? obj_cgroup_charge+0x247/0x740 [ 1376.185049] create_object.isra.0+0x3a/0xa20 [ 1376.185719] ? kasan_unpoison+0x23/0x50 [ 1376.186337] __kmalloc+0x25b/0x440 [ 1376.186883] security_prepare_creds+0x10a/0x180 [ 1376.187625] prepare_creds+0x505/0x6f0 [ 1376.188233] copy_creds+0x76/0xb20 [ 1376.188779] copy_process+0xe3f/0x6d10 [ 1376.189380] ? lock_release+0x3b2/0x6f0 [ 1376.189982] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1376.190777] ? __cleanup_sighand+0xb0/0xb0 [ 1376.191428] ? lock_is_held_type+0xd7/0x130 [ 1376.192065] ? lock_release+0x3b2/0x6f0 [ 1376.192644] ? ksys_write+0x212/0x250 [ 1376.193220] ? kernel_clone+0x2f8/0xa60 [ 1376.193828] kernel_clone+0xe7/0xa60 [ 1376.194398] ? find_held_lock+0x2c/0x110 [ 1376.195004] ? create_io_thread+0xf0/0xf0 [ 1376.195649] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1376.196367] ? bit_wait_io_timeout+0x160/0x160 [ 1376.197067] ? lock_is_held_type+0xd7/0x130 20:41:44 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 7) 20:41:44 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 28) 20:41:44 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x6c00) 20:41:44 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x7400) 20:41:44 executing program 7: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r0, &(0x7f0000000140)=@ocfs2={0xc, 0x1, {0x400, 0x5}}, 0x0) sendmsg$NL80211_CMD_EXTERNAL_AUTH(r0, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000001c0)={&(0x7f00000000c0)={0xdc, 0x0, 0x200, 0x70bd27, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x8c60, 0x6}}}}, [@NL80211_ATTR_SSID={0x20, 0x34, @random="9d97dde9422bb6f0a4d173086fabac8cb1c5e3865b9c2f7361b580a0"}, @NL80211_ATTR_PMKID={0x14, 0x55, "8f62abbff5eab6bba9aa1e6c8f7cb539"}, @NL80211_ATTR_STATUS_CODE={0x6, 0x48, 0x1}, @NL80211_ATTR_SSID={0x22, 0x34, @random="bdae0de47ce09ee7fc5e18280da7624cbd69a39f0b299b2b3d9b0e0409d9"}, @NL80211_ATTR_PMKID={0x14, 0x55, "5ddbf5d23cbc773e70d7a04b0e275313"}, @NL80211_ATTR_PMKID={0x14, 0x55, "b310f05eb0184b5503053188446e103f"}, @NL80211_ATTR_PMKID={0x14, 0x55, "be2d6c5122d0c65347e596b3811f0ac5"}, @NL80211_ATTR_BSSID={0xa, 0xf5, @random="c8937d0ecfba"}, @NL80211_ATTR_BSSID={0xa, 0xf5, @from_mac=@device_b}]}, 0xdc}}, 0x4) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) openat(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x105383, 0x178) ioctl$TIOCGPTPEER(r2, 0x5441, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 20:41:44 executing program 2: r0 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r3, 0x0, 0x0, 0x0, {}, 0x1}, 0x8000) sendmsg$ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="88bd9db3", @ANYRES16=0x0, @ANYBLOB="d0ae29bd7000fbdb0180140002007369743000000000000000000000000001002577ea9d00f604000200020300001111f23e8df55cc4fcbfc6c2a276bd5d1a8a08040c64d9655ea67432670cc3b0170e5a5dcb24d2f6e5455ce9d09a272bc453652524953ec9067d82a97fa67be02171f68466c1fb518b49a9488546d30494fca5ba41ba2c5e042f35c3c69245504c08034ffef33ffa577ab84cc0fd68ffe06802adf929b38f384042c9a18eca753d43c9ee9e5d24a9bed87cd326facf42f50dc1c94be512e6cd36b32880be75d8e3e8fce1a950363d70f642dbda2a3122ab2f7a4f51b892ee"], 0x3c}, 0x1, 0x0, 0x0, 0x40000010}, 0x20000000) syz_io_uring_setup(0x3c72, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0) io_uring_enter(r0, 0x1, 0x0, 0x0, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 20:41:44 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 7) 20:41:44 executing program 1: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) madvise(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x65) fork() r1 = openat$random(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) r2 = syz_io_uring_setup(0x2202, &(0x7f0000000280)={0x0, 0x22d8, 0x0, 0x3, 0x256}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000380)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1000008, 0x10, r2, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000040)=[r0, r0, 0xffffffffffffffff, r1, r0], 0x5) r3 = inotify_init() syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r6 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x3}}, 0x0) r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r7, &(0x7f0000000300)=ANY=[@ANYBLOB="0c00000001000000000400000500000000010000a0d618b3dc9cf24f030636fb9da24d4a24d6d94c2b0e0d1e4adce693ffb75b160f11c341b97fcb93d2d368867f6c02d95121314b923ed89439e61140338f7197cd5aa41d0c76cb56b47260f853ac68a0611fea130603"], 0x0) ioctl$RNDGETENTCNT(r7, 0x80045200, &(0x7f0000000180)) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) r8 = socket$inet6_udplite(0xa, 0x2, 0x88) r9 = syz_open_dev$hiddev(&(0x7f00000000c0), 0xff, 0x0) io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, &(0x7f0000000140)={0xd2, 0x0, &(0x7f0000000100)=[r0, r0, r3, r6, r1, 0xffffffffffffffff, r8, r1, r9]}, 0x9) madvise(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0xf) madvise(&(0x7f0000ff8000/0x1000)=nil, 0x1000, 0x12) [ 1376.197727] __do_sys_fork+0x8a/0xc0 [ 1376.198528] ? kernel_clone+0xa60/0xa60 [ 1376.199163] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1376.199969] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1376.200716] ? lockdep_hardirqs_on+0x79/0x100 [ 1376.201355] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1376.202094] do_syscall_64+0x3b/0x90 [ 1376.202644] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1376.203433] RIP: 0033:0x7fe050cdfb19 [ 1376.203988] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1376.206723] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1376.207906] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1376.208964] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1376.210047] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1376.211141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1376.211876] FAULT_INJECTION: forcing a failure. [ 1376.211876] name failslab, interval 1, probability 0, space 0, times 0 [ 1376.212227] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1376.215546] [ 1376.215897] CPU: 0 PID: 19739 Comm: syz-executor.3 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1376.217541] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1376.219794] Call Trace: [ 1376.220299] [ 1376.220739] dump_stack_lvl+0x8b/0xb3 [ 1376.221509] should_fail.cold+0x5/0xa [ 1376.222268] ? create_object.isra.0+0x3a/0xa20 [ 1376.223192] should_failslab+0x5/0x10 [ 1376.223944] kmem_cache_alloc+0x5b/0x480 [ 1376.224745] ? obj_cgroup_charge+0x247/0x740 [ 1376.225628] create_object.isra.0+0x3a/0xa20 [ 1376.226512] ? kasan_unpoison+0x23/0x50 [ 1376.227332] __kmalloc+0x25b/0x440 [ 1376.228045] security_prepare_creds+0x10a/0x180 [ 1376.228981] prepare_creds+0x505/0x6f0 [ 1376.229800] copy_creds+0x76/0xb20 [ 1376.230549] copy_process+0xe3f/0x6d10 [ 1376.231353] ? lock_release+0x3b2/0x6f0 [ 1376.232169] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1376.233226] ? __cleanup_sighand+0xb0/0xb0 [ 1376.234097] ? lock_is_held_type+0xd7/0x130 [ 1376.234994] ? lock_release+0x3b2/0x6f0 [ 1376.235822] ? ksys_write+0x212/0x250 [ 1376.236609] ? kernel_clone+0x2f8/0xa60 [ 1376.237428] kernel_clone+0xe7/0xa60 [ 1376.238198] ? find_held_lock+0x2c/0x110 [ 1376.239034] ? create_io_thread+0xf0/0xf0 [ 1376.239879] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1376.240853] ? bit_wait_io_timeout+0x160/0x160 [ 1376.241763] ? lock_is_held_type+0xd7/0x130 [ 1376.242628] __do_sys_fork+0x8a/0xc0 [ 1376.243403] ? kernel_clone+0xa60/0xa60 [ 1376.244201] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1376.245312] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1376.246335] ? lockdep_hardirqs_on+0x79/0x100 [ 1376.247244] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1376.248259] do_syscall_64+0x3b/0x90 [ 1376.249013] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1376.250050] RIP: 0033:0x7f0ecb13db19 [ 1376.250776] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1376.254414] RSP: 002b:00007f0ec86b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1376.255911] RAX: ffffffffffffffda RBX: 00007f0ecb250f60 RCX: 00007f0ecb13db19 [ 1376.257333] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1376.258773] RBP: 00007f0ec86b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1376.260204] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1376.261613] R13: 00007ffe225f4d7f R14: 00007f0ec86b3300 R15: 0000000000022000 [ 1376.263071] 20:41:44 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x7400) 20:41:44 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x7a00) 20:41:44 executing program 1: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f0000000280)={0x0, 0x0, {0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) fork() 20:41:44 executing program 2: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) madvise(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x65) fork() r1 = openat$random(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) r2 = syz_io_uring_setup(0x2202, &(0x7f0000000280)={0x0, 0x22d8, 0x0, 0x3, 0x256}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000001c0), &(0x7f0000000380)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x1000008, 0x10, r2, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000040)=[r0, r0, 0xffffffffffffffff, r1, r0], 0x5) r3 = inotify_init() syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r6 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, {0x3}}, 0x0) r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r7, &(0x7f0000000300)=ANY=[@ANYBLOB="0c00000001000000000400000500000000010000a0d618b3dc9cf24f030636fb9da24d4a24d6d94c2b0e0d1e4adce693ffb75b160f11c341b97fcb93d2d368867f6c02d95121314b923ed89439e61140338f7197cd5aa41d0c76cb56b47260f853ac68a0611fea130603"], 0x0) ioctl$RNDGETENTCNT(r7, 0x80045200, &(0x7f0000000180)) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) r8 = socket$inet6_udplite(0xa, 0x2, 0x88) r9 = syz_open_dev$hiddev(&(0x7f00000000c0), 0xff, 0x0) io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, &(0x7f0000000140)={0xd2, 0x0, &(0x7f0000000100)=[r0, r0, r3, r6, r1, 0xffffffffffffffff, r8, r1, r9]}, 0x9) madvise(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0xf) madvise(&(0x7f0000ff8000/0x1000)=nil, 0x1000, 0x12) 20:41:44 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='mountinfo\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TCSETS(r1, 0x5402, &(0x7f0000000040)={0x187c, 0x8, 0x4dc3, 0x10000, 0x10, "2764bc595ded745b1cc2b53d3a22ddf7399994"}) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 20:41:44 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x7a00) 20:41:45 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x8100) 20:41:45 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x8100) 20:41:58 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 8) 20:41:58 executing program 2: sendmsg$AUDIT_ADD_RULE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000380)=ANY=[@ANYRES32=0x0], 0x42c}, 0x1, 0x0, 0x0, 0xee169de4fae5d94c}, 0x400c) r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./cgroup.cpu/cpuset.cpus\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189373, &(0x7f0000000200)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="20000000000000002e0fd3e89a"]) sendmsg$NFNL_MSG_COMPAT_GET(r1, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x0, 0xb, 0x201, 0x0, 0x0, {0x7, 0x0, 0x5}}, 0x14}, 0x1, 0x0, 0x0, 0x4004000}, 0x40000c2) openat(0xffffffffffffffff, &(0x7f0000000080)='./cgroup.cpu/cpuset.cpus\x00', 0x10007, 0x1) mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x44031, 0xffffffffffffffff, 0x0) 20:41:58 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 8) 20:41:58 executing program 1: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) io_uring_enter(r0, 0xbd0, 0x1f90, 0x3, &(0x7f0000000000)={[0x10001]}, 0x8) fork() [ 1390.139092] FAULT_INJECTION: forcing a failure. [ 1390.139092] name failslab, interval 1, probability 0, space 0, times 0 [ 1390.140453] CPU: 0 PID: 19975 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1390.141342] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1390.142531] Call Trace: [ 1390.142805] [ 1390.143038] dump_stack_lvl+0x8b/0xb3 [ 1390.143468] should_fail.cold+0x5/0xa [ 1390.143872] ? dup_fd+0x89/0xca0 [ 1390.144236] should_failslab+0x5/0x10 [ 1390.144669] kmem_cache_alloc+0x5b/0x480 [ 1390.145110] dup_fd+0x89/0xca0 [ 1390.145447] ? audit_filter_inodes+0x40/0x40 [ 1390.145923] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1390.146523] ? security_task_alloc+0xe6/0x260 [ 1390.147001] copy_process+0x1fd8/0x6d10 [ 1390.147467] ? __cleanup_sighand+0xb0/0xb0 [ 1390.147924] ? lock_release+0x3b2/0x6f0 [ 1390.148354] ? ksys_write+0x212/0x250 [ 1390.148778] ? kernel_clone+0x2f8/0xa60 [ 1390.149216] kernel_clone+0xe7/0xa60 [ 1390.149632] ? find_held_lock+0x2c/0x110 [ 1390.150079] ? create_io_thread+0xf0/0xf0 [ 1390.150543] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1390.151090] ? bit_wait_io_timeout+0x160/0x160 [ 1390.151611] ? lock_is_held_type+0xd7/0x130 [ 1390.152073] __do_sys_fork+0x8a/0xc0 [ 1390.152487] ? kernel_clone+0xa60/0xa60 [ 1390.152923] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1390.153528] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1390.154087] ? lockdep_hardirqs_on+0x79/0x100 [ 1390.154578] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1390.155138] do_syscall_64+0x3b/0x90 [ 1390.155560] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1390.156129] RIP: 0033:0x7fe050cdfb19 [ 1390.156527] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1390.158513] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1390.159301] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1390.160064] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1390.160825] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1390.161568] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1390.162310] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1390.163082] [ 1390.171570] FAULT_INJECTION: forcing a failure. [ 1390.171570] name failslab, interval 1, probability 0, space 0, times 0 [ 1390.172810] CPU: 0 PID: 19981 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1390.173695] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1390.174883] Call Trace: [ 1390.175157] [ 1390.175408] dump_stack_lvl+0x8b/0xb3 [ 1390.175823] should_fail.cold+0x5/0xa [ 1390.176228] ? anon_vma_clone+0xdc/0x580 [ 1390.176682] should_failslab+0x5/0x10 [ 1390.177083] kmem_cache_alloc+0x5b/0x480 [ 1390.177528] anon_vma_clone+0xdc/0x580 [ 1390.177949] anon_vma_fork+0x82/0x6a0 [ 1390.178369] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1390.178891] ? __vm_enough_memory+0x184/0x360 [ 1390.179187] FAULT_INJECTION: forcing a failure. [ 1390.179187] name failslab, interval 1, probability 0, space 0, times 0 [ 1390.179384] dup_mm+0x91b/0x1250 [ 1390.179413] ? replace_mm_exe_file+0x490/0x490 [ 1390.182588] ? __raw_spin_lock_init+0x36/0x110 [ 1390.183091] copy_process+0x3a28/0x6d10 [ 1390.183538] ? __cleanup_sighand+0xb0/0xb0 [ 1390.184015] ? lock_release+0x3b2/0x6f0 [ 1390.184449] ? ksys_write+0x212/0x250 [ 1390.184867] ? kernel_clone+0x2f8/0xa60 [ 1390.185307] kernel_clone+0xe7/0xa60 [ 1390.185724] ? find_held_lock+0x2c/0x110 [ 1390.186162] ? create_io_thread+0xf0/0xf0 [ 1390.186623] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1390.187158] ? bit_wait_io_timeout+0x160/0x160 [ 1390.187670] ? lock_is_held_type+0xd7/0x130 [ 1390.188142] __do_sys_fork+0x8a/0xc0 [ 1390.188553] ? kernel_clone+0xa60/0xa60 [ 1390.188996] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1390.189607] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1390.190155] ? lockdep_hardirqs_on+0x79/0x100 [ 1390.190639] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1390.191198] do_syscall_64+0x3b/0x90 [ 1390.191615] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1390.192164] RIP: 0033:0x7f9fc1cadb19 [ 1390.192557] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1390.194511] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1390.195347] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1390.196111] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1390.196878] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1390.197644] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1390.198419] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1390.199204] [ 1390.199474] CPU: 1 PID: 19978 Comm: syz-executor.3 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1390.201248] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1390.203383] Zero length message leads to an empty skb [ 1390.203634] Call Trace: [ 1390.203643] [ 1390.203653] dump_stack_lvl+0x8b/0xb3 [ 1390.205987] should_fail.cold+0x5/0xa [ 1390.206819] ? dup_fd+0x89/0xca0 [ 1390.207565] should_failslab+0x5/0x10 20:41:58 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 29) 20:41:58 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x100000) 20:41:58 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x100000) 20:41:58 executing program 7: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_SET_SEC_PARAMS(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, 0xffffffffffffffff) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000000), r2) sendmsg$NLBL_CALIPSO_C_REMOVE(r2, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x14, 0x0, 0x524}, 0x14}}, 0x0) ioctl$F2FS_IOC_START_VOLATILE_WRITE(r1, 0xf503, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000500)) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl802154(&(0x7f0000000700), r0) syz_genetlink_get_family_id$nl802154(&(0x7f0000000a40), 0xffffffffffffffff) [ 1390.208371] kmem_cache_alloc+0x5b/0x480 [ 1390.209419] dup_fd+0x89/0xca0 [ 1390.210102] ? audit_filter_inodes+0x40/0x40 [ 1390.211039] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1390.212217] ? security_task_alloc+0xe6/0x260 [ 1390.213194] copy_process+0x1fd8/0x6d10 [ 1390.214082] ? __cleanup_sighand+0xb0/0xb0 [ 1390.215013] ? lock_release+0x3b2/0x6f0 [ 1390.215885] ? ksys_write+0x212/0x250 [ 1390.216713] ? kernel_clone+0x2f8/0xa60 [ 1390.217571] kernel_clone+0xe7/0xa60 [ 1390.218383] ? find_held_lock+0x2c/0x110 [ 1390.219247] ? create_io_thread+0xf0/0xf0 [ 1390.220161] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1390.221216] ? bit_wait_io_timeout+0x160/0x160 [ 1390.222210] ? lock_is_held_type+0xd7/0x130 [ 1390.223132] __do_sys_fork+0x8a/0xc0 [ 1390.223950] ? kernel_clone+0xa60/0xa60 [ 1390.224804] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1390.225998] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1390.227091] ? lockdep_hardirqs_on+0x79/0x100 [ 1390.228064] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1390.229160] do_syscall_64+0x3b/0x90 [ 1390.229969] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1390.231079] RIP: 0033:0x7f0ecb13db19 [ 1390.231878] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1390.235806] RSP: 002b:00007f0ec86b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1390.237429] RAX: ffffffffffffffda RBX: 00007f0ecb250f60 RCX: 00007f0ecb13db19 [ 1390.238947] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1390.240472] RBP: 00007f0ec86b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1390.241986] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1390.243511] R13: 00007ffe225f4d7f R14: 00007f0ec86b3300 R15: 0000000000022000 [ 1390.245055] 20:41:58 executing program 1: ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000000)={0xffffffffffffffff, 0x5, 0x845, 0x4}) ioctl$TCSBRKP(r0, 0x5425, 0x1) syz_io_uring_setup(0xeaf, &(0x7f0000000200)={0x0, 0x3, 0x2}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, 0x0) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() 20:41:58 executing program 7: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000040)={0x2, {0x2, 0x0, 0x0, 0x0, 0x300}}) socket$packet(0x11, 0x2, 0x300) 20:41:58 executing program 2: sendmsg$AUDIT_ADD_RULE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={&(0x7f0000000380)=ANY=[@ANYRES32=0x0], 0x42c}, 0x1, 0x0, 0x0, 0xee169de4fae5d94c}, 0x400c) r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./cgroup.cpu/cpuset.cpus\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189373, &(0x7f0000000200)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="20000000000000002e0fd3e89a"]) sendmsg$NFNL_MSG_COMPAT_GET(r1, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x0, 0xb, 0x201, 0x0, 0x0, {0x7, 0x0, 0x5}}, 0x14}, 0x1, 0x0, 0x0, 0x4004000}, 0x40000c2) openat(0xffffffffffffffff, &(0x7f0000000080)='./cgroup.cpu/cpuset.cpus\x00', 0x10007, 0x1) mmap$IORING_OFF_SQ_RING(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x44031, 0xffffffffffffffff, 0x0) 20:41:58 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 9) 20:41:58 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x1000000) 20:41:58 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x1000000) [ 1390.504638] FAULT_INJECTION: forcing a failure. [ 1390.504638] name failslab, interval 1, probability 0, space 0, times 0 [ 1390.507079] CPU: 1 PID: 20110 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1390.508852] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1390.511248] Call Trace: [ 1390.511805] [ 1390.512281] dump_stack_lvl+0x8b/0xb3 [ 1390.513107] should_fail.cold+0x5/0xa [ 1390.513927] ? create_object.isra.0+0x3a/0xa20 [ 1390.514915] should_failslab+0x5/0x10 [ 1390.515742] kmem_cache_alloc+0x5b/0x480 [ 1390.516612] ? obj_cgroup_charge+0x247/0x740 [ 1390.517583] create_object.isra.0+0x3a/0xa20 [ 1390.518525] ? kasan_unpoison+0x23/0x50 [ 1390.519409] kmem_cache_alloc+0x239/0x480 [ 1390.520309] dup_fd+0x89/0xca0 [ 1390.521003] ? audit_filter_inodes+0x40/0x40 [ 1390.521946] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1390.523110] ? security_task_alloc+0xe6/0x260 [ 1390.524094] copy_process+0x1fd8/0x6d10 [ 1390.524986] ? __cleanup_sighand+0xb0/0xb0 [ 1390.525910] ? lock_release+0x3b2/0x6f0 [ 1390.526768] ? ksys_write+0x212/0x250 [ 1390.527612] ? kernel_clone+0x2f8/0xa60 [ 1390.528484] kernel_clone+0xe7/0xa60 [ 1390.529297] ? find_held_lock+0x2c/0x110 [ 1390.530167] ? create_io_thread+0xf0/0xf0 [ 1390.531061] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1390.532130] ? bit_wait_io_timeout+0x160/0x160 [ 1390.533101] ? lock_is_held_type+0xd7/0x130 [ 1390.534018] __do_sys_fork+0x8a/0xc0 [ 1390.534827] ? kernel_clone+0xa60/0xa60 [ 1390.535719] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1390.536917] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1390.538014] ? lockdep_hardirqs_on+0x79/0x100 [ 1390.538972] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1390.540077] do_syscall_64+0x3b/0x90 [ 1390.540885] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1390.541999] RIP: 0033:0x7fe050cdfb19 [ 1390.542788] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1390.546692] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1390.548311] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1390.549817] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1390.551314] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1390.552839] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1390.554343] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1390.555891] 20:42:14 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 10) 20:42:14 executing program 1: r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)) io_uring_enter(r0, 0x1, 0x0, 0x0, 0x0, 0x0) syz_io_uring_setup(0xeaf, &(0x7f0000000080)={0x0, 0x4, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) r2 = fork() syz_io_uring_setup(0x37db, &(0x7f0000000080)={0x0, 0x0, 0x20}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) r5 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) syz_io_uring_submit(r1, r4, &(0x7f0000000180)=@IORING_OP_OPENAT={0x12, 0x7, 0x0, r5, 0x0, &(0x7f0000000040)='./file0\x00', 0x108, 0xa000, 0x23456}, 0x9c) r6 = syz_open_procfs(r2, &(0x7f00000001c0)='net/udplite6\x00') r7 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', &(0x7f0000000380)={0x2282c1, 0x3c, 0x8}, 0xfffffffffffffcf2) fsconfig$FSCONFIG_SET_PATH(r6, 0x3, &(0x7f0000000200)='\x00', &(0x7f0000000240)='./file0\x00', r7) ioctl$BTRFS_IOC_DEFRAG(r0, 0x50009402, 0x0) 20:42:14 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 9) 20:42:14 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x100000) 20:42:14 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 30) 20:42:14 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x2000000) 20:42:14 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x2000000) 20:42:14 executing program 7: r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) ioctl$sock_SIOCGIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r0, 0x8982, &(0x7f0000000040)) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x1b, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000def4655fdef4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000000001000028020000028401001b0000000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38383037323533333400"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000713aa3a4ba984e5d8a0373c06ca5ba29010000000c00000000000000ddf4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000000000000000000000000000000000000002500000000000000", 0x40, 0x540}, {&(0x7f0000010300)="0000000000000000000000000000000000000000010400"/32, 0x20, 0x640}, {&(0x7f0000010400)="030000000400000005000000dc000f000300040000000000000000000f004582", 0x20, 0x800}, {&(0x7f0000010500)="ffffffff07000000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000ddf4655fddf4655fddf4655f00"/2080, 0x820, 0xc00}, {&(0x7f0000010e00)="ed41000000040000ddf4655fdef4655fdef4655f00000000000004000200000000000000050000000d00"/64, 0x40, 0x1500}, {&(0x7f0000010f00)="2000000060ed753160ed753100000000ddf4655f00"/32, 0x20, 0x1580}, {&(0x7f0000011000)="c0410000002c0000ddf4655fddf4655fddf4655f00000000000002001600000000000000000000000e0000000f000000100000001100000012000000130000001400000015000000160000001700000018000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000ddf4655f000000000000000000000000000002ea00"/192, 0xc0, 0x1e00}, {&(0x7f0000011100)="ed4100003c000000def4655fdef4655fdef4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c6531000000000000000000000000000000000000000000000000000000322728ea0000000000000000000000000000000000000000000000002000000060ed753160ed753160ed7531def4655f60ed75310000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x1f00}, {&(0x7f0000011200)="ed8100001a040000def4655fdef4655fdef4655f0000000000000100040000000000000001000000190000001a00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feb0eba70000000000000000000000000000000000000000000000002000000060ed753160ed753160ed7531def4655f60ed75310000000000000000", 0xa0, 0x2000}, {&(0x7f0000011300)="ffa1000026000000def4655fdef4655fdef4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3838303732353333342f66696c65302f66696c653000000000000000000000000000000000000000000000e06e12cc0000000000000000000000000000000000000000000000002000000060ed753160ed753160ed7531def4655f60ed75310000000000000000", 0xa0, 0x2100}, {&(0x7f0000011400)="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", 0x1a0, 0x2200}, {&(0x7f0000011600)="ed81000064000000def4655fdef4655fdef4655f000000000000010000000000000000100100000073797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616cea6ae86100000000000000000000000000000000000000000000000020000000b0116a32b0116a3260ed7531def4655f60ed75310000000000000000000002ea040734000000000028000000000000006461746100000000000000000000000000000000000000000000000000000000000000006c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273", 0x100, 0x2400}, {&(0x7f0000011700)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009403090166696c652e636f6c64000000", 0x80, 0x3400}, {&(0x7f0000011800)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8030000", 0x20, 0x3800}, {&(0x7f0000011900)="00000000000400"/32, 0x20, 0x3c00}, {&(0x7f0000011a00)="00000000000400"/32, 0x20, 0x4000}, {&(0x7f0000011b00)="00000000000400"/32, 0x20, 0x4400}, {&(0x7f0000011c00)="00000000000400"/32, 0x20, 0x4800}, {&(0x7f0000011d00)="00000000000400"/32, 0x20, 0x4c00}, {&(0x7f0000011e00)="00000000000400"/32, 0x20, 0x5000}, {&(0x7f0000011f00)="00000000000400"/32, 0x20, 0x5400}, {&(0x7f0000012000)="00000000000400"/32, 0x20, 0x5800}, {&(0x7f0000012100)="00000000000400"/32, 0x20, 0x5c00}, {&(0x7f0000012200)="00000000000400"/32, 0x20, 0x6000}, {&(0x7f0000012300)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x6400}], 0x0, &(0x7f0000012800)) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x8, 0x80}}, './file0\x00'}) [ 1405.536431] FAULT_INJECTION: forcing a failure. [ 1405.536431] name failslab, interval 1, probability 0, space 0, times 0 [ 1405.538765] CPU: 1 PID: 20219 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1405.540418] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1405.542661] Call Trace: [ 1405.543172] [ 1405.543631] dump_stack_lvl+0x8b/0xb3 [ 1405.544397] should_fail.cold+0x5/0xa [ 1405.545153] ? alloc_fdtable+0x7e/0x270 [ 1405.545942] should_failslab+0x5/0x10 [ 1405.546693] kmem_cache_alloc_trace+0x55/0x3c0 [ 1405.547614] alloc_fdtable+0x7e/0x270 [ 1405.548369] dup_fd+0x718/0xca0 [ 1405.549029] copy_process+0x1fd8/0x6d10 [ 1405.549846] ? __cleanup_sighand+0xb0/0xb0 [ 1405.550698] ? lock_release+0x3b2/0x6f0 [ 1405.551480] ? ksys_write+0x212/0x250 [ 1405.552245] ? kernel_clone+0x2f8/0xa60 [ 1405.553037] kernel_clone+0xe7/0xa60 [ 1405.553776] ? find_held_lock+0x2c/0x110 [ 1405.554575] ? create_io_thread+0xf0/0xf0 [ 1405.555396] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1405.556376] ? bit_wait_io_timeout+0x160/0x160 [ 1405.557280] ? lock_is_held_type+0xd7/0x130 [ 1405.558133] __do_sys_fork+0x8a/0xc0 [ 1405.558874] ? kernel_clone+0xa60/0xa60 [ 1405.559672] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1405.560763] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1405.561773] ? lockdep_hardirqs_on+0x79/0x100 20:42:14 executing program 1: madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() sigaltstack(&(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000000)) [ 1405.562648] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1405.563884] do_syscall_64+0x3b/0x90 [ 1405.564629] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1405.565656] RIP: 0033:0x7fe050cdfb19 [ 1405.566381] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1405.569974] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1405.571458] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1405.572867] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1405.574254] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1405.575651] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1405.577045] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1405.578476] [ 1405.580902] FAULT_INJECTION: forcing a failure. [ 1405.580902] name failslab, interval 1, probability 0, space 0, times 0 [ 1405.583145] CPU: 1 PID: 20225 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1405.584789] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1405.586997] Call Trace: [ 1405.587504] [ 1405.587952] dump_stack_lvl+0x8b/0xb3 [ 1405.588716] should_fail.cold+0x5/0xa [ 1405.589476] ? create_object.isra.0+0x3a/0xa20 [ 1405.590394] should_failslab+0x5/0x10 [ 1405.591150] kmem_cache_alloc+0x5b/0x480 [ 1405.591975] ? obj_cgroup_charge+0x247/0x740 [ 1405.592855] create_object.isra.0+0x3a/0xa20 [ 1405.593728] ? kasan_unpoison+0x23/0x50 [ 1405.594533] kmem_cache_alloc+0x239/0x480 [ 1405.595358] anon_vma_clone+0xdc/0x580 [ 1405.596167] anon_vma_fork+0x82/0x6a0 [ 1405.596931] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1405.597926] ? __vm_enough_memory+0x184/0x360 [ 1405.598819] dup_mm+0x91b/0x1250 [ 1405.599516] ? replace_mm_exe_file+0x490/0x490 [ 1405.600456] ? __raw_spin_lock_init+0x36/0x110 [ 1405.601376] copy_process+0x3a28/0x6d10 [ 1405.602206] ? __cleanup_sighand+0xb0/0xb0 [ 1405.603065] ? lock_release+0x3b2/0x6f0 [ 1405.603858] ? ksys_write+0x212/0x250 [ 1405.604632] ? kernel_clone+0x2f8/0xa60 [ 1405.605435] kernel_clone+0xe7/0xa60 [ 1405.606183] ? find_held_lock+0x2c/0x110 [ 1405.606989] ? create_io_thread+0xf0/0xf0 [ 1405.607828] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1405.608821] ? bit_wait_io_timeout+0x160/0x160 [ 1405.609733] ? lock_is_held_type+0xd7/0x130 [ 1405.610594] __do_sys_fork+0x8a/0xc0 [ 1405.611340] ? kernel_clone+0xa60/0xa60 [ 1405.612162] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1405.613270] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1405.614298] ? lockdep_hardirqs_on+0x79/0x100 [ 1405.615185] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1405.616217] do_syscall_64+0x3b/0x90 [ 1405.616962] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1405.618000] RIP: 0033:0x7f9fc1cadb19 [ 1405.618733] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1405.622372] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1405.623881] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1405.625293] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1405.626713] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1405.628129] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1405.629536] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1405.630951] [ 1405.643097] FAULT_INJECTION: forcing a failure. [ 1405.643097] name failslab, interval 1, probability 0, space 0, times 0 [ 1405.644389] CPU: 0 PID: 20223 Comm: syz-executor.3 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1405.645268] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1405.646498] Call Trace: [ 1405.646789] [ 1405.647047] dump_stack_lvl+0x8b/0xb3 [ 1405.647471] should_fail.cold+0x5/0xa [ 1405.647886] ? security_prepare_creds+0x10a/0x180 [ 1405.648409] should_failslab+0x5/0x10 [ 1405.648813] __kmalloc+0x72/0x440 [ 1405.649185] security_prepare_creds+0x10a/0x180 [ 1405.649694] prepare_creds+0x505/0x6f0 [ 1405.650116] copy_creds+0x76/0xb20 [ 1405.650509] copy_process+0xe3f/0x6d10 [ 1405.650935] ? lock_release+0x3b2/0x6f0 [ 1405.651372] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1405.651949] ? __cleanup_sighand+0xb0/0xb0 [ 1405.652397] ? lock_is_held_type+0xd7/0x130 [ 1405.652875] ? lock_release+0x3b2/0x6f0 [ 1405.653294] ? ksys_write+0x212/0x250 [ 1405.653696] ? kernel_clone+0x2f8/0xa60 [ 1405.654115] kernel_clone+0xe7/0xa60 [ 1405.654511] ? find_held_lock+0x2c/0x110 [ 1405.654931] ? create_io_thread+0xf0/0xf0 [ 1405.655374] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1405.655899] ? bit_wait_io_timeout+0x160/0x160 [ 1405.656381] ? lock_is_held_type+0xd7/0x130 [ 1405.656848] __do_sys_fork+0x8a/0xc0 [ 1405.657256] ? kernel_clone+0xa60/0xa60 [ 1405.657685] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1405.658267] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1405.658809] ? lockdep_hardirqs_on+0x79/0x100 [ 1405.659283] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1405.659851] do_syscall_64+0x3b/0x90 [ 1405.660257] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1405.660819] RIP: 0033:0x7f0ecb13db19 [ 1405.661205] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1405.663166] RSP: 002b:00007f0ec86b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1405.663965] RAX: ffffffffffffffda RBX: 00007f0ecb250f60 RCX: 00007f0ecb13db19 [ 1405.664709] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1405.665465] RBP: 00007f0ec86b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1405.666215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1405.666968] R13: 00007ffe225f4d7f R14: 00007f0ec86b3300 R15: 0000000000022000 [ 1405.667729] 20:42:14 executing program 7: prctl$PR_GET_TAGGED_ADDR_CTRL(0x38) prctl$PR_GET_TAGGED_ADDR_CTRL(0x38) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x23, &(0x7f0000000580)=[{&(0x7f0000010000)="200000004000000003000000290000000f000000000000000200000002000000008000000080000020000000d9f4655fd9f4655f0100ffff53ef010001000000d8f4655f000000000000000001000000000000000b000000800000000800000052470000620100000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e31313530373134353800"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000708595ab15e94b9c8803908244a41818010000000c00000000000000d8f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500080000000000000000000000040000006e00000000000000", 0x20, 0x560}, {&(0x7f0000010300)="030000000400"/32, 0x20, 0x640}, {&(0x7f0000010400)="02000000120000002200000029000f0003000400"/32, 0x20, 0x1000}, {&(0x7f0000010500)="ff3f0c00fc010000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c653300000011000000940f090166696c652e636f6c64000000", 0x1080, 0x2000}, {&(0x7f0000011600)="0b0000000c0001022e00000002000000f40f02022e2e00"/32, 0x20, 0x4000}, {&(0x7f0000011700)="00000000001000"/32, 0x20, 0x5000}, {&(0x7f0000011800)="00000000001000"/32, 0x20, 0x6000}, {&(0x7f0000011900)="00000000001000"/32, 0x20, 0x7000}, {&(0x7f0000011a00)="504d4d00504d4dffd9f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7033310075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/128, 0x80, 0x8000}, {&(0x7f0000011b00)="111fc0d901000000803a0900803a090000000000060000000000000005000000", 0x20, 0x9000}, {&(0x7f0000011c00)="0200"/32, 0x20, 0x9400}, {&(0x7f0000011d00)="0300"/32, 0x20, 0x9800}, {&(0x7f0000011e00)="0400"/32, 0x20, 0x9c00}, {&(0x7f0000011f00)="0500"/32, 0x20, 0xa000}, {&(0x7f0000012000)="0000000000000000010000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000d000"/96, 0x60, 0xa400}, {&(0x7f0000012100)="2719c0d901000000803a0900803a090000000000060000000000000005000000", 0x20, 0xb000}, {&(0x7f0000012200)="0200"/32, 0x20, 0xb400}, {&(0x7f0000012300)="0300"/32, 0x20, 0xb800}, {&(0x7f00000000c0)="0400"/32, 0x20, 0xbc00}, {&(0x7f0000012500)="0500"/32, 0x20, 0xc000}, {&(0x7f0000012600)="0000000000000000010000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000d000"/96, 0x60, 0xc400}, {&(0x7f0000012700)="0c0000000c0001022e000000020000000c0002022e2e00000d0000001000050166696c65300000000e000000d80f050766696c653100"/64, 0x40, 0xd000}, {&(0x7f0000012800)="ffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff000002ea0100000001000000270f240c000000000000000000000000000000000601f80f0000000006000000779b539778617474723100000601f00f00000000060000007498539778617474723200"/4192, 0x1060, 0x12000}, {&(0x7f0000013900)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00xattr2\x00\x00xattr1\x00\x00', 0x20, 0x13fe0}, {&(0x7f0000013a00)="0000000000000000d8f4655fd8f4655fd8f4655f00"/32, 0x20, 0x22000}, {&(0x7f0000013b00)="ed41000000100000d8f4655fd9f4655fd9f4655f00000000000004000800000000000800050000000af301000400000000000000000000000100000003000000", 0x40, 0x22080}, {&(0x7f0000013c00)="8081000000180000d8f4655fd8f4655fd8f4655f00000000000001001000000010000800000000000af301000400000000000000000000000200000009000000", 0x40, 0x22100}, {&(0x7f0000013d00)="8081000000180000d8f4655fd8f4655fd8f4655f00000000000001001000000010000800000000000af30100040000000000000000000000020000000b000000", 0x40, 0x22180}, {&(0x7f0000013e00)="c041000000400000d8f4655fd8f4655fd8f4655f00000000000002002000000000000800000000000af301000400000000000000000000000400000004000000", 0x40, 0x22500}, {&(0x7f0000013f00)="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"/768, 0x300, 0x22580}, {&(0x7f0000014200)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallecsyzkallersyzkallersyzkaersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallsyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzKallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00\x00\x00', 0x41e, 0x23000}, {&(0x7f0000000080)='syzkallers\x00'/32, 0x20, 0x24000}, {&(0x7f0000014800)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x28000}], 0x0, &(0x7f0000014900)=ANY=[@ANYBLOB="de"]) prctl$PR_GET_TAGGED_ADDR_CTRL(0x38) prctl$PR_GET_TAGGED_ADDR_CTRL(0x38) 20:42:14 executing program 1: syz_io_uring_setup(0x54c6, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() [ 1405.731179] loop7: detected capacity change from 0 to 640 [ 1405.735913] ext4: Unknown parameter 'Þ' 20:42:14 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x3000000) 20:42:28 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 10) 20:42:28 executing program 2: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) r3 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)) syz_io_uring_submit(r4, r2, &(0x7f0000000300)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x3}, 0x0) recvmsg$unix(r3, &(0x7f0000001880)={&(0x7f0000000180), 0x6e, &(0x7f0000001740)=[{&(0x7f00000003c0)=""/193, 0xc1}, {&(0x7f0000000280)=""/97, 0x61}, {&(0x7f00000004c0)=""/4096, 0x1000}, {&(0x7f00000014c0)=""/100, 0x64}, {&(0x7f0000001540)=""/209, 0xd1}, {&(0x7f0000000340)=""/21, 0x15}, {&(0x7f0000001640)=""/204, 0xcc}], 0x7, &(0x7f00000017c0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="f78f00001c00000000a691532cd64bc0a700872c", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000024000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32, @ANYRES32=0xffffffffffffffff, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32], 0xb8}, 0x2122) io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0) io_uring_enter(r0, 0x62c7, 0x0, 0x0, 0x0, 0x0) r6 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$SO_TIMESTAMP(r6, 0x1, 0x40, &(0x7f0000000040)=0x9, 0x4) 20:42:28 executing program 1: syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) syz_io_uring_submit(r0, 0x0, &(0x7f00000000c0)=@IORING_OP_WRITE={0x17, 0x4, 0x2000, @fd_index=0x8, 0x2, &(0x7f0000000000)="765f70776ef122e95f909de17e5bac3ac4af75b00d9317c50fa6ac13c1650276567d492c66721f5a3da755258296273a4a48062aaae4855107812489eef93e2a3623b7145a5d57add706c7bfc00ab84352bc2833e55ae7feef5bcf61903a481ddf95b89c8f1cf9fcf7f3f7d1142bd74443bcfe0139269098843cb93788fe40e7113a7552f0e84fae", 0x88, 0x4}, 0x9) r3 = syz_mount_image$iso9660(&(0x7f0000000280), &(0x7f00000001c0)='./file0\x00', 0x201, 0x3, &(0x7f0000000880)=[{&(0x7f0000000700)="a10ec9ce15ba8dfe058e011cd0ff957f3179c62b1cb32f7f30493fd687d63b3b58a3800341eb19a065e802f46c86d499308381384540f4ae16543b510b6762f54bb008e6c430ee9e45f258b29c5c6cbcb83c7919749d73b133", 0x59, 0x3}, {&(0x7f0000000380)="1186bd80d28009969eff8bf917795e0b06aeb0e3f1cbacc6483359cbaf69f3cfd23b64f786e4a25bb5f02c06000000000000006e6acf8e10dde3850b61bc55a17b4182b47061a1f250ba0e560157cac28b563ce419e7d733d2e3ceea56468801b3633c420885b9f5efe5d3151954aaa8f1e7f25ff0602eba4b058ec7b419a6c80418f4201dff106057e89fc859830617946651af384203e61725593930390314f6a5a09f855a4db80d82fc7f38f73068257180f447286a535537b419a7a5dda24cd5e82fd7aae88e359418eba7", 0xcd, 0x3}, {&(0x7f0000000780)="aa29611817bcb8a75cf00a9167aa1bc030392ed93fc4392ff9f86917e8de5a6ce4812845db0e77fe75db1ebbdfde0ac9a3a9a4c7fc3edded1584c22011c97d4b04f7bb12d5c056fd10ed7330c94593fdb6c4b1452aa47ae5cf385561dc65a08dbcf9694dfcd87784435df19bb82e2ad7c12f65612da66edddd6f25fce2df76b5d33c4b4f583b7b4e3051019142d79b3f97cb3655c9e9126789ae0fd2584ec94f61ab1664b2b0c7ed231b294e683775339797c6b751fb179ab39d754b0639d782480b22f927ecbff8bc24e4f0ae1600233cab3a96a5a75b5ec3", 0xd9, 0x1}], 0x2010c04, &(0x7f0000000480)={[{@mode={'mode', 0x3d, 0x16b4}}, {@sbsector={'sbsector', 0x3d, 0x8}}], [{@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@subj_type={'subj_type', 0x3d, '\xaa\xaa\xaa\xaa\xaa'}}]}) statx(r3, &(0x7f0000000540)='./file0\x00', 0x100, 0x20, &(0x7f0000000580)) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000680)={0xffffffffffffffff}) ioctl$FAT_IOCTL_GET_ATTRIBUTES(r4, 0x80047210, &(0x7f00000006c0)) 20:42:28 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x4000000) 20:42:28 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x3000000) 20:42:28 executing program 7: chdir(&(0x7f0000000140)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x101042, 0x0) write$P9_RREADLINK(r0, &(0x7f00000000c0)=ANY=[], 0xfffffdef) r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs2/binder1\x00', 0x0, 0x0) fcntl$F_SET_RW_HINT(r1, 0x40c, &(0x7f0000000040)=0x2) write$P9_RREADLINK(0xffffffffffffffff, &(0x7f00000001c0)={0xfffffffffffffe7f, 0x17, 0x1, {0x7, './file0'}}, 0x10) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) openat(r0, &(0x7f0000000000)='./file0\x00', 0x4040, 0x60) openat(r2, &(0x7f00000000c0)='./file0\x00', 0x10400, 0x2) pivot_root(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='./file0\x00') ioctl$TIOCVHANGUP(r0, 0x5437, 0x0) 20:42:28 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 31) 20:42:28 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 11) [ 1419.632218] FAULT_INJECTION: forcing a failure. [ 1419.632218] name failslab, interval 1, probability 0, space 0, times 0 [ 1419.633495] CPU: 0 PID: 20467 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1419.634393] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1419.635614] Call Trace: [ 1419.635897] [ 1419.636131] dump_stack_lvl+0x8b/0xb3 [ 1419.636554] should_fail.cold+0x5/0xa [ 1419.636955] ? anon_vma_fork+0xed/0x6a0 [ 1419.637409] should_failslab+0x5/0x10 [ 1419.637924] kmem_cache_alloc+0x5b/0x480 [ 1419.638510] anon_vma_fork+0xed/0x6a0 [ 1419.639069] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1419.639799] ? __vm_enough_memory+0x184/0x360 [ 1419.640446] dup_mm+0x91b/0x1250 [ 1419.640500] FAULT_INJECTION: forcing a failure. [ 1419.640500] name failslab, interval 1, probability 0, space 0, times 0 [ 1419.640910] ? replace_mm_exe_file+0x490/0x490 [ 1419.643703] ? __raw_spin_lock_init+0x36/0x110 [ 1419.644235] copy_process+0x3a28/0x6d10 [ 1419.644691] ? __cleanup_sighand+0xb0/0xb0 [ 1419.645167] ? lock_release+0x3b2/0x6f0 [ 1419.645613] ? ksys_write+0x212/0x250 [ 1419.646031] ? kernel_clone+0x2f8/0xa60 [ 1419.646481] kernel_clone+0xe7/0xa60 [ 1419.646894] ? find_held_lock+0x2c/0x110 [ 1419.647347] ? create_io_thread+0xf0/0xf0 [ 1419.647810] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1419.648378] ? bit_wait_io_timeout+0x160/0x160 [ 1419.648875] ? lock_is_held_type+0xd7/0x130 [ 1419.649424] __do_sys_fork+0x8a/0xc0 [ 1419.649842] ? kernel_clone+0xa60/0xa60 [ 1419.650300] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1419.650889] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1419.651469] ? lockdep_hardirqs_on+0x79/0x100 [ 1419.651949] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1419.652545] do_syscall_64+0x3b/0x90 [ 1419.652949] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1419.653537] RIP: 0033:0x7f9fc1cadb19 [ 1419.653929] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1419.655994] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1419.656810] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1419.657607] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1419.658403] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1419.659192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1419.659997] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1419.660807] [ 1419.661066] CPU: 1 PID: 20469 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1419.662818] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1419.665161] Call Trace: [ 1419.665692] [ 1419.666141] dump_stack_lvl+0x8b/0xb3 [ 1419.666937] should_fail.cold+0x5/0xa [ 1419.667725] ? create_object.isra.0+0x3a/0xa20 [ 1419.668715] should_failslab+0x5/0x10 [ 1419.669492] kmem_cache_alloc+0x5b/0x480 [ 1419.670323] ? obj_cgroup_charge+0x247/0x740 [ 1419.671218] create_object.isra.0+0x3a/0xa20 [ 1419.672147] ? kasan_unpoison+0x23/0x50 [ 1419.672991] kmem_cache_alloc_trace+0x22e/0x3c0 [ 1419.673959] alloc_fdtable+0x7e/0x270 [ 1419.674749] dup_fd+0x718/0xca0 [ 1419.675453] copy_process+0x1fd8/0x6d10 [ 1419.676335] ? __cleanup_sighand+0xb0/0xb0 [ 1419.677244] ? lock_release+0x3b2/0x6f0 [ 1419.678068] ? ksys_write+0x212/0x250 [ 1419.678851] ? kernel_clone+0x2f8/0xa60 [ 1419.679688] kernel_clone+0xe7/0xa60 [ 1419.680497] ? find_held_lock+0x2c/0x110 [ 1419.681334] ? create_io_thread+0xf0/0xf0 [ 1419.682161] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1419.683189] ? bit_wait_io_timeout+0x160/0x160 [ 1419.684119] ? lock_is_held_type+0xd7/0x130 [ 1419.685034] __do_sys_fork+0x8a/0xc0 [ 1419.685800] ? kernel_clone+0xa60/0xa60 [ 1419.686627] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1419.687740] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1419.688820] ? lockdep_hardirqs_on+0x79/0x100 [ 1419.689730] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1419.690766] do_syscall_64+0x3b/0x90 [ 1419.691534] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1419.692614] RIP: 0033:0x7fe050cdfb19 [ 1419.693361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1419.697099] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1419.698881] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1419.700610] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1419.702280] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1419.703982] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1419.705682] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1419.707397] [ 1419.743819] loop1: detected capacity change from 0 to 1 [ 1419.749771] FAULT_INJECTION: forcing a failure. [ 1419.749771] name failslab, interval 1, probability 0, space 0, times 0 [ 1419.752410] CPU: 1 PID: 20477 Comm: syz-executor.3 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1419.754634] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1419.757214] Call Trace: [ 1419.757793] [ 1419.758294] dump_stack_lvl+0x8b/0xb3 [ 1419.759182] should_fail.cold+0x5/0xa [ 1419.760049] ? alloc_fdtable+0x7e/0x270 [ 1419.760943] should_failslab+0x5/0x10 [ 1419.761825] kmem_cache_alloc_trace+0x55/0x3c0 [ 1419.762876] alloc_fdtable+0x7e/0x270 [ 1419.763784] dup_fd+0x718/0xca0 [ 1419.764580] copy_process+0x1fd8/0x6d10 [ 1419.765537] ? __cleanup_sighand+0xb0/0xb0 [ 1419.766527] ? lock_release+0x3b2/0x6f0 [ 1419.767440] ? ksys_write+0x212/0x250 [ 1419.768336] ? kernel_clone+0x2f8/0xa60 [ 1419.769274] kernel_clone+0xe7/0xa60 [ 1419.770151] ? find_held_lock+0x2c/0x110 [ 1419.771075] ? create_io_thread+0xf0/0xf0 [ 1419.772052] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1419.773196] ? bit_wait_io_timeout+0x160/0x160 [ 1419.774236] ? lock_is_held_type+0xd7/0x130 [ 1419.775211] __do_sys_fork+0x8a/0xc0 [ 1419.776115] ? kernel_clone+0xa60/0xa60 [ 1419.777139] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1419.778734] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1419.780270] ? lockdep_hardirqs_on+0x79/0x100 [ 1419.781350] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1419.782562] do_syscall_64+0x3b/0x90 [ 1419.783452] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1419.784710] RIP: 0033:0x7f0ecb13db19 [ 1419.785586] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1419.789815] RSP: 002b:00007f0ec86b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1419.791593] RAX: ffffffffffffffda RBX: 00007f0ecb250f60 RCX: 00007f0ecb13db19 [ 1419.793242] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1419.794922] RBP: 00007f0ec86b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1419.796573] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1419.797977] R13: 00007ffe225f4d7f R14: 00007f0ec86b3300 R15: 0000000000022000 [ 1419.799403] 20:42:28 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x4000000) [ 1419.815594] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22 20:42:28 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x5000000) 20:42:28 executing program 2: syz_mount_image$ext4(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f00000001c0)=ANY=[@ANYBLOB='/dev/'], &(0x7f0000000200)='./file0\x00', 0x0, 0x15008, 0x0) r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0)=0x1, 0x4) r1 = socket$inet6(0xa, 0x8000a, 0xffff) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000001c0)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000140)={@ipv4={'\x00', '\xff\xff', @private=0xa010100}, 0x5, 0x1, 0x3, 0x0, 0xfff, 0xff}, 0x20) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) getsockopt$inet6_int(r1, 0x29, 0x1, 0x0, &(0x7f0000000540)) ioctl$BTRFS_IOC_ADD_DEV(r1, 0x5000940a, &(0x7f0000000240)={{r0}, "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"}) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x4}, 0x1c) getresuid(&(0x7f0000000000), &(0x7f0000000080)=0x0, &(0x7f00000000c0)) pidfd_getfd(0xffffffffffffffff, r0, 0x0) setsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000100)={0xffffffffffffffff, r2, 0xee01}, 0xc) r3 = getuid() mount$cgroup2(0x0, &(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000080), 0x40, &(0x7f0000000240)={[{@memory_localevents}, {@subsystem='rdma'}, {}, {@subsystem='io'}, {@subsystem='rdma'}, {@memory_localevents}, {@memory_recursiveprot}, {}, {@memory_recursiveprot}, {@memory_localevents}], [{@subj_user}, {@euid_lt={'euid<', 0xee01}}, {@euid_lt={'euid<', r2}}, {@smackfshat={'smackfshat', 0x3d, '-'}}, {@uid_lt={'uid<', r3}}, {@subj_role={'subj_role', 0x3d, '/\\*'}}, {@rootcontext={'rootcontext', 0x3d, 'user_u'}}]}) [ 1419.886124] loop1: detected capacity change from 0 to 1 [ 1419.889665] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22 20:42:43 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 32) 20:42:43 executing program 7: r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80000, 0x1d, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000500100000f000000000000000000000004000000000002000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000008000000018000000c20500002b0200000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e32343530303330383600"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000b138543112eb43ac9dbc7e1411f64d55010040000c00000000000000d7f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0100000000000500400000000000000000000000000000003400000000000000", 0x20, 0x560}, {&(0x7f0000010300)="03000000040000000500000015000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010400)="ff070000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000d7f4655fd7f4655fd7f4655f00"/2080, 0x820, 0xc00}, {&(0x7f0000010d00)="ed41000000040000d7f4655fd8f4655fd8f4655f00000000000004002000000000000800050000000af301000400000000000000000000000100000010000000", 0x40, 0x1480}, {&(0x7f0000010e00)="8081000000300404d7f4655fd7f4655fd7f4655f00000000000001002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000", 0x60, 0x1700}, {&(0x7f0000010f00)="c041000000300000d7f4655fd7f4655fd7f4655f00000000000002002000000000000800000000000af301000400000000000000000000000c00000020000000", 0x40, 0x1900}, {&(0x7f0000011000)="ed41000000040000d8f4655fd8f4655fd8f4655f00000000000002002000000000000800030000000af30100040000000000000000000000010000005000000000000000000000000000000000000000000000000000000000000000000000000000000011c938eb000000000000000000000000000000000000000000000000ed8100001a040000d8f4655fd8f4655fd8f4655f00000000000001002000000000000800010000000af3010004000000000000000000000002000000600000000000000000000000000000000000000000000000000000000000000000000000000000006718be5a000000000000000000000000000000000000000000000000ffa1000026000000d8f4655fd8f4655fd8f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3234353030333038362f66696c65302f66696c65300000000000000000000000000000000000000000000069f94ae3000000000000000000000000000000000000000000000000ed8100000a000000d8f4655fd8f4655fd8f4655f00000000000001004000000000000800010000000af3010004000000000000000000000001000000700000000000000000000000000000000000000000000000000000000000000000000000000000009ea5744c800000000000000000000000000000000000000000000000ed81000028230000d8f4655fd8f4655fd8f4655f00000000000002002000000000000800010000000af3010004000000000000000000000009000000900000000000000000000000000000000000000000000000000000000000000000000000000000007cd46898000000000000000000000000000000000000000000000000ed81000064000000d8f4655fd8f4655fd8f4655f00000000000001002000000000000800010000000af3010004000000000000000000000001000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000029d245d00"/768, 0x300, 0x1980}, {&(0x7f0000011300)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009403090166696c652e636f6c64000000", 0x80, 0x4000}, {&(0x7f0000011400)="0b0000000c0001022e00000002000000f40302022e2e00"/32, 0x20, 0x8000}, {&(0x7f0000011500)="00000000000400"/32, 0x20, 0x8400}, {&(0x7f0000011600)="00000000000400"/32, 0x20, 0x8800}, {&(0x7f0000011700)="00000000000400"/32, 0x20, 0x8c00}, {&(0x7f0000011800)="00000000000400"/32, 0x20, 0x9000}, {&(0x7f0000011900)="00000000000400"/32, 0x20, 0x9400}, {&(0x7f0000011a00)="00000000000400"/32, 0x20, 0x9800}, {&(0x7f0000011b00)="00000000000400"/32, 0x20, 0x9c00}, {&(0x7f0000011c00)="00000000000400"/32, 0x20, 0xa000}, {&(0x7f0000011d00)="00000000000400"/32, 0x20, 0xa400}, {&(0x7f0000011e00)="00000000000400"/32, 0x20, 0xa800}, {&(0x7f0000011f00)="00000000000400"/32, 0x20, 0xac00}, {&(0x7f0000012000)="504d4d00504d4dffd8f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7032390075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/128, 0x80, 0x10000}, {&(0x7f0000012100)="0c0000000c0001022e000000020000000c0002022e2e00000d0000001000050166696c65300000000e000000d803050766696c653100"/64, 0x40, 0x14000}, {&(0x7f0000012200)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x18000}, {&(0x7f0000012700)='syzkallers\x00'/32, 0x20, 0x1c000}, {&(0x7f0000012800)="000002ea0100000001000000270f240c000000000000000000000000000000000601f8030000000006000000779b539778617474723100000601f00300000000060000007498539778617474723200"/96, 0x60, 0x20000}, {&(0x7f0000012900)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00xattr2\x00\x00xattr1\x00\x00', 0x20, 0x203e0}, {&(0x7f0000012a00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x28000}], 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="06eca815ef6f2457776949227033df155182b6523fe62dffe971abae479446676a1add2e9c6e091adcb07318bfc1c2c555ea5a0f346e863af6867cfcb4630ec11a26119f4797039bba21b06e4ca45b262c693b0623f90ca2f8b3a906f793dabfe3df54b74f7f4e1f913df7158a9c0b60a72abfda71fcc081e070d08330f785b8ec74055335e8cf4234b79d22965a988bed4b94be97246b85915f3f9c3bcc68"]) open_tree(r0, &(0x7f0000000040)='./file0\x00', 0x91001) 20:42:43 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 12) 20:42:43 executing program 2: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000140), &(0x7f0000000380)) r1 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)) io_uring_enter(r1, 0x1, 0x0, 0x0, 0x0, 0x0) io_uring_enter(r1, 0x4acf, 0x73a5, 0x0, &(0x7f0000000000)={[0x1]}, 0x8) r3 = syz_io_uring_setup(0x6e51, &(0x7f0000000280), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000fff000/0x1000)=nil, 0x0, 0x0) close(r0) r4 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2, 0x4010, r3, 0x10000000) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r7 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) r8 = socket$nl_xfrm(0x10, 0x3, 0x6) syz_io_uring_submit(r2, r4, &(0x7f0000000040)=@IORING_OP_TEE={0x21, 0x5, 0x0, @fd=r7, 0x0, 0x0, 0x8, 0x4, 0x0, {0x0, 0x0, r8}}, 0x20) ppoll(0x0, 0x0, &(0x7f00000000c0)={0x0, 0x989680}, &(0x7f0000000100), 0x8) 20:42:43 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x5000000) 20:42:43 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x6000000) 20:42:43 executing program 1: r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r0, 0x1, 0x0, 0x0, 0x0, 0x0) r1 = syz_io_uring_setup(0xeaf, &(0x7f0000000200)={0x0, 0x0, 0x2, 0x0, 0x0, 0x0, r0}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) madvise(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0xd) fork() r2 = fcntl$getown(r1, 0x9) write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000000)=r2, 0x12) 20:42:43 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 11) [ 1434.867835] FAULT_INJECTION: forcing a failure. [ 1434.867835] name failslab, interval 1, probability 0, space 0, times 0 [ 1434.870156] CPU: 1 PID: 20603 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1434.871781] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1434.874021] Call Trace: [ 1434.874526] [ 1434.874967] dump_stack_lvl+0x8b/0xb3 [ 1434.875736] should_fail.cold+0x5/0xa [ 1434.876505] ? create_object.isra.0+0x3a/0xa20 [ 1434.877423] should_failslab+0x5/0x10 [ 1434.878071] loop7: detected capacity change from 0 to 1024 [ 1434.878171] kmem_cache_alloc+0x5b/0x480 [ 1434.879621] ? obj_cgroup_charge+0x247/0x740 [ 1434.880512] create_object.isra.0+0x3a/0xa20 [ 1434.881392] ? kasan_unpoison+0x23/0x50 [ 1434.882198] kmem_cache_alloc+0x239/0x480 [ 1434.883024] anon_vma_fork+0xed/0x6a0 [ 1434.883790] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1434.884328] FAULT_INJECTION: forcing a failure. [ 1434.884328] name failslab, interval 1, probability 0, space 0, times 0 [ 1434.884796] ? __vm_enough_memory+0x184/0x360 [ 1434.886871] dup_mm+0x91b/0x1250 [ 1434.887564] ? replace_mm_exe_file+0x490/0x490 [ 1434.888483] ? __raw_spin_lock_init+0x36/0x110 [ 1434.889394] copy_process+0x3a28/0x6d10 [ 1434.890235] ? __cleanup_sighand+0xb0/0xb0 [ 1434.891095] ? lock_release+0x3b2/0x6f0 [ 1434.891894] ? ksys_write+0x212/0x250 [ 1434.892665] ? kernel_clone+0x2f8/0xa60 [ 1434.893471] kernel_clone+0xe7/0xa60 [ 1434.894221] ? find_held_lock+0x2c/0x110 [ 1434.895028] ? create_io_thread+0xf0/0xf0 [ 1434.895862] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1434.896873] ? bit_wait_io_timeout+0x160/0x160 [ 1434.897781] ? lock_is_held_type+0xd7/0x130 [ 1434.898648] __do_sys_fork+0x8a/0xc0 [ 1434.899392] ? kernel_clone+0xa60/0xa60 [ 1434.900196] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1434.901304] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1434.902324] ? lockdep_hardirqs_on+0x79/0x100 [ 1434.903204] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1434.904241] do_syscall_64+0x3b/0x90 [ 1434.904986] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1434.906025] RIP: 0033:0x7f9fc1cadb19 [ 1434.906755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1434.910390] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1434.911902] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1434.913331] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1434.914733] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1434.916154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1434.917562] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1434.918980] [ 1434.919433] CPU: 0 PID: 20612 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1434.920330] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1434.921508] Call Trace: [ 1434.921772] [ 1434.922005] dump_stack_lvl+0x8b/0xb3 [ 1434.922412] should_fail.cold+0x5/0xa [ 1434.922816] ? kvmalloc_node+0x3e/0x130 [ 1434.923237] should_failslab+0x5/0x10 [ 1434.923627] __kmalloc_node+0x76/0x470 [ 1434.924052] kvmalloc_node+0x3e/0x130 [ 1434.924449] alloc_fdtable+0xcd/0x270 [ 1434.924848] dup_fd+0x718/0xca0 [ 1434.925206] copy_process+0x1fd8/0x6d10 [ 1434.925645] ? __cleanup_sighand+0xb0/0xb0 [ 1434.926100] ? lock_release+0x3b2/0x6f0 [ 1434.926525] ? ksys_write+0x212/0x250 [ 1434.926933] ? kernel_clone+0x2f8/0xa60 [ 1434.927349] kernel_clone+0xe7/0xa60 [ 1434.927741] ? find_held_lock+0x2c/0x110 [ 1434.928182] ? create_io_thread+0xf0/0xf0 [ 1434.928629] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1434.929147] ? bit_wait_io_timeout+0x160/0x160 [ 1434.929626] ? lock_is_held_type+0xd7/0x130 [ 1434.930081] __do_sys_fork+0x8a/0xc0 [ 1434.930473] ? kernel_clone+0xa60/0xa60 [ 1434.930888] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1434.931471] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1434.932016] ? lockdep_hardirqs_on+0x79/0x100 [ 1434.932482] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1434.933014] do_syscall_64+0x3b/0x90 [ 1434.933408] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1434.933958] RIP: 0033:0x7fe050cdfb19 [ 1434.934353] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1434.936265] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1434.937063] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1434.937798] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1434.938544] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1434.939269] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1434.940026] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1434.940769] [ 1434.949227] ext4: Unknown parameter 'ì¨ïo$WwiI"p3ßQ‚¶R?æ-ÿéq«®G”FgjÝ.œn Ü°s¿ÁÂÅUêZ4n†:ö†|ü´cÁ&ŸG—›º!°nL¤[&' [ 1434.951698] FAULT_INJECTION: forcing a failure. [ 1434.951698] name failslab, interval 1, probability 0, space 0, times 0 [ 1434.953998] CPU: 1 PID: 20608 Comm: syz-executor.3 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1434.955662] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1434.957920] Call Trace: [ 1434.958443] [ 1434.958896] dump_stack_lvl+0x8b/0xb3 [ 1434.959661] should_fail.cold+0x5/0xa [ 1434.960428] ? create_object.isra.0+0x3a/0xa20 [ 1434.961345] should_failslab+0x5/0x10 [ 1434.962088] kmem_cache_alloc+0x5b/0x480 [ 1434.962895] create_object.isra.0+0x3a/0xa20 [ 1434.963765] ? kasan_unpoison+0x23/0x50 [ 1434.964585] kmem_cache_alloc_trace+0x22e/0x3c0 [ 1434.965507] alloc_fdtable+0x7e/0x270 [ 1434.966255] dup_fd+0x718/0xca0 [ 1434.966919] copy_process+0x1fd8/0x6d10 [ 1434.967734] ? __cleanup_sighand+0xb0/0xb0 [ 1434.968596] ? lock_release+0x3b2/0x6f0 [ 1434.969376] ? ksys_write+0x212/0x250 [ 1434.970138] ? kernel_clone+0x2f8/0xa60 [ 1434.970925] kernel_clone+0xe7/0xa60 [ 1434.971687] ? find_held_lock+0x2c/0x110 [ 1434.972500] ? create_io_thread+0xf0/0xf0 [ 1434.973334] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1434.974309] ? bit_wait_io_timeout+0x160/0x160 [ 1434.975223] ? lock_is_held_type+0xd7/0x130 [ 1434.976071] __do_sys_fork+0x8a/0xc0 [ 1434.976818] ? kernel_clone+0xa60/0xa60 [ 1434.977620] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1434.978725] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1434.979746] ? lockdep_hardirqs_on+0x79/0x100 [ 1434.980641] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1434.981664] do_syscall_64+0x3b/0x90 [ 1434.982417] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1434.983452] RIP: 0033:0x7f0ecb13db19 [ 1434.984202] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1434.987836] RSP: 002b:00007f0ec86b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1434.989352] RAX: ffffffffffffffda RBX: 00007f0ecb250f60 RCX: 00007f0ecb13db19 [ 1434.990768] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1434.992180] RBP: 00007f0ec86b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1434.993592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1434.995005] R13: 00007ffe225f4d7f R14: 00007f0ec86b3300 R15: 0000000000022000 [ 1434.996453] 20:42:43 executing program 7: open(&(0x7f0000000080)='./file0\x00', 0x0, 0x8) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(0xffffffffffffffff, 0xc0096616, &(0x7f0000000040)={0xa, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) rmdir(&(0x7f0000000100)='./file0\x00') r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f00000000c0)=ANY=[@ANYBLOB="04000000040049db"]) [ 1435.056530] program syz-executor.7 is using a deprecated SCSI ioctl, please convert it to SG_IO 20:42:43 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x7000000) 20:42:43 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x6000000) 20:42:43 executing program 1: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000280), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_ADD_IFACE(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0b00000000000000e0002100000009001f0070687930000000000a00010096ad9a6ab047"], 0x2c}}, 0x0) sendmsg$IEEE802154_ASSOCIATE_RESP(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, r1, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@IEEE802154_ATTR_STATUS={0x5, 0x3, 0x1}, @IEEE802154_ATTR_STATUS={0x5, 0x3, 0x90}]}, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x44014) r3 = syz_io_uring_setup(0xeaf, &(0x7f0000000200)={0x0, 0xbffa, 0x2}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) r4 = dup(r3) io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) fork() madvise(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x3) madvise(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1) madvise(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0xd) 20:42:43 executing program 2: r0 = socket$packet(0x11, 0x3, 0x300) r1 = accept4(r0, 0x0, &(0x7f0000000000), 0x0) sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4000}, 0x0) recvmsg$unix(r1, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000080)=""/146, 0x92}, {&(0x7f0000000140)=""/54, 0x36}, {&(0x7f0000000340)=""/180, 0xb4}, {&(0x7f0000000400)=""/242, 0xf2}, {&(0x7f0000000180)=""/123, 0x7b}, {&(0x7f0000000500)=""/162, 0xa2}, {&(0x7f00000005c0)=""/130, 0x82}, {&(0x7f0000000280)=""/13, 0xd}], 0x8, &(0x7f0000000700)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x40) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r3, &(0x7f0000000140)=@ocfs2={0xc, 0x1, {0x400, 0x5}}, 0x0) sendmsg$MPTCP_PM_CMD_SET_LIMITS(r3, &(0x7f00000008c0)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000880)={&(0x7f0000000800)={0x68, 0x0, 0x20, 0x70bd28, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x3}, @MPTCP_PM_ATTR_SUBFLOWS={0x8}, @MPTCP_PM_ATTR_ADDR={0x3c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5}, @MPTCP_PM_ADDR_ATTR_ID={0x5}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7e}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x8}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x24004840}, 0x10) syz_genetlink_get_family_id$gtp(&(0x7f0000000040), r2) syz_genetlink_get_family_id$gtp(&(0x7f00000002c0), r1) r4 = openat$sr(0xffffffffffffff9c, &(0x7f0000000300), 0x400, 0x0) setsockopt$packet_int(r4, 0x107, 0x12, &(0x7f0000000780)=0x7fffffff, 0x4) 20:42:43 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x7000000) 20:42:43 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x10000000) 20:42:43 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 13) [ 1435.313424] FAULT_INJECTION: forcing a failure. [ 1435.313424] name failslab, interval 1, probability 0, space 0, times 0 [ 1435.315798] CPU: 1 PID: 20849 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1435.317473] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1435.319733] Call Trace: [ 1435.320276] [ 1435.320732] dump_stack_lvl+0x8b/0xb3 [ 1435.321504] should_fail.cold+0x5/0xa [ 1435.322269] ? create_object.isra.0+0x3a/0xa20 [ 1435.323187] should_failslab+0x5/0x10 [ 1435.323940] kmem_cache_alloc+0x5b/0x480 [ 1435.324770] create_object.isra.0+0x3a/0xa20 [ 1435.325652] ? kasan_unpoison+0x23/0x50 [ 1435.326456] __kmalloc_node+0x26f/0x470 [ 1435.327255] kvmalloc_node+0x3e/0x130 [ 1435.328024] alloc_fdtable+0xcd/0x270 [ 1435.328783] dup_fd+0x718/0xca0 [ 1435.329457] copy_process+0x1fd8/0x6d10 [ 1435.330282] ? __cleanup_sighand+0xb0/0xb0 [ 1435.331142] ? lock_release+0x3b2/0x6f0 [ 1435.331934] ? ksys_write+0x212/0x250 [ 1435.332720] ? kernel_clone+0x2f8/0xa60 [ 1435.333519] kernel_clone+0xe7/0xa60 [ 1435.334267] ? find_held_lock+0x2c/0x110 [ 1435.335078] ? create_io_thread+0xf0/0xf0 [ 1435.335916] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1435.336921] ? bit_wait_io_timeout+0x160/0x160 [ 1435.337947] ? lock_is_held_type+0xd7/0x130 [ 1435.338813] __do_sys_fork+0x8a/0xc0 [ 1435.339560] ? kernel_clone+0xa60/0xa60 [ 1435.340383] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1435.341490] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1435.342513] ? lockdep_hardirqs_on+0x79/0x100 [ 1435.343398] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1435.344426] do_syscall_64+0x3b/0x90 [ 1435.345173] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1435.346211] RIP: 0033:0x7fe050cdfb19 [ 1435.346945] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1435.350589] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1435.352100] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1435.353507] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1435.354915] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1435.356321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1435.357723] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1435.359152] 20:42:43 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 33) 20:42:43 executing program 7: r0 = syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x11d0440, 0x0) r1 = openat(r0, &(0x7f0000000000)='./file0/file0\x00', 0x300c0, 0x82) mount$cgroup(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000240)={[{@release_agent={'release_agent', 0x3d, './file0'}}, {@release_agent={'release_agent', 0x3d, './file0'}}]}) syz_mount_image$tmpfs(&(0x7f0000000280), &(0x7f00000002c0)='./file0/file0\x00', 0xfffffffffffffffd, 0x1, &(0x7f00000003c0)=[{&(0x7f0000000300)="803f1a4d7f05407470eb6c7eb692d32d26443e5222bee854411f1bb57c40b10afce6f18322833696989467af7a82270642c011ec857f47f9ee65ca036f312d1366effdf124982a8dc9c83f3dedd874f3c4ebde84ca8d01280618e47ff0e47053bab0643cca9ae6c6282088fe7f5bf8752c29a90e7ea1eedc6a9bee0f60fd1265653d837e588a0ce6c9a4ef8b4d4da3e2908c0217f38e801ae8c391e9fc5551f1df7d5b16", 0xa4, 0x1}], 0x297048, &(0x7f0000000400)={[{@size={'size', 0x3d, [0x25, 0x36, 0x78]}}, {@huge_within_size}], [{@permit_directio}, {@hash}]}) openat(r1, &(0x7f0000001500)='./file0/file0\x00', 0x40, 0x10) r2 = syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000140)='./file0/file0\x00', 0x10001, 0x0, &(0x7f00000013c0), 0x400, &(0x7f0000000180)={[], [{@permit_directio}, {@euid_eq={'euid', 0x3d, 0xee01}}, {@fscontext={'fscontext', 0x3d, 'root'}}, {@subj_role={'subj_role', 0x3d, './{%)$'}}, {@appraise_type}, {@context={'context', 0x3d, 'unconfined_u'}}, {@rootcontext={'rootcontext', 0x3d, 'unconfined_u'}}, {@obj_user}]}) ioctl$AUTOFS_IOC_CATATONIC(r2, 0x9362, 0x0) 20:42:43 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x10000000) [ 1435.396151] cgroup: release_agent respecified [ 1435.403531] loop7: detected capacity change from 0 to 264192 [ 1435.431572] loop7: detected capacity change from 0 to 128 [ 1435.439994] SELinux: security_context_str_to_sid (root) failed with errno=-22 20:42:43 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x48000000) [ 1435.517230] FAULT_INJECTION: forcing a failure. [ 1435.517230] name failslab, interval 1, probability 0, space 0, times 0 [ 1435.519528] CPU: 0 PID: 20877 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1435.521235] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1435.523514] Call Trace: [ 1435.524032] [ 1435.524484] dump_stack_lvl+0x8b/0xb3 [ 1435.525268] should_fail.cold+0x5/0xa [ 1435.526052] ? create_object.isra.0+0x3a/0xa20 [ 1435.526987] should_failslab+0x5/0x10 [ 1435.527743] kmem_cache_alloc+0x5b/0x480 [ 1435.528571] ? obj_cgroup_charge+0x247/0x740 [ 1435.529458] create_object.isra.0+0x3a/0xa20 [ 1435.530340] ? kasan_unpoison+0x23/0x50 [ 1435.531142] kmem_cache_alloc+0x239/0x480 [ 1435.531973] anon_vma_fork+0xed/0x6a0 [ 1435.532751] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1435.533741] ? __vm_enough_memory+0x184/0x360 [ 1435.534635] dup_mm+0x91b/0x1250 [ 1435.535331] ? replace_mm_exe_file+0x490/0x490 [ 1435.536255] ? __raw_spin_lock_init+0x36/0x110 [ 1435.537170] copy_process+0x3a28/0x6d10 [ 1435.538000] ? __cleanup_sighand+0xb0/0xb0 [ 1435.538862] ? lock_release+0x3b2/0x6f0 [ 1435.539649] ? ksys_write+0x212/0x250 [ 1435.540425] ? kernel_clone+0x2f8/0xa60 [ 1435.541223] kernel_clone+0xe7/0xa60 [ 1435.541972] ? find_held_lock+0x2c/0x110 [ 1435.542774] ? create_io_thread+0xf0/0xf0 [ 1435.543605] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1435.544594] ? bit_wait_io_timeout+0x160/0x160 [ 1435.545507] ? lock_is_held_type+0xd7/0x130 [ 1435.546365] __do_sys_fork+0x8a/0xc0 [ 1435.547109] ? kernel_clone+0xa60/0xa60 [ 1435.547904] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1435.549026] ? syscall_enter_from_user_mode+0x1d/0x50 20:42:44 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x48000000) [ 1435.550048] ? lockdep_hardirqs_on+0x79/0x100 [ 1435.551068] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1435.552098] do_syscall_64+0x3b/0x90 [ 1435.552847] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1435.553874] RIP: 0033:0x7f9fc1cadb19 [ 1435.554608] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1435.558217] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1435.559716] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1435.561133] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1435.562534] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1435.563932] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1435.565338] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1435.566764] 20:42:44 executing program 2: r0 = socket$packet(0x11, 0x3, 0x300) r1 = accept4(r0, 0x0, &(0x7f0000000000), 0x0) sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x4000}, 0x0) recvmsg$unix(r1, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000080)=""/146, 0x92}, {&(0x7f0000000140)=""/54, 0x36}, {&(0x7f0000000340)=""/180, 0xb4}, {&(0x7f0000000400)=""/242, 0xf2}, {&(0x7f0000000180)=""/123, 0x7b}, {&(0x7f0000000500)=""/162, 0xa2}, {&(0x7f00000005c0)=""/130, 0x82}, {&(0x7f0000000280)=""/13, 0xd}], 0x8, &(0x7f0000000700)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x40) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r3, &(0x7f0000000140)=@ocfs2={0xc, 0x1, {0x400, 0x5}}, 0x0) sendmsg$MPTCP_PM_CMD_SET_LIMITS(r3, &(0x7f00000008c0)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000880)={&(0x7f0000000800)={0x68, 0x0, 0x20, 0x70bd28, 0x25dfdbff, {}, [@MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x6}, @MPTCP_PM_ATTR_SUBFLOWS={0x8, 0x3, 0x3}, @MPTCP_PM_ATTR_SUBFLOWS={0x8}, @MPTCP_PM_ATTR_ADDR={0x3c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5}, @MPTCP_PM_ADDR_ATTR_ID={0x5}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x2}, @MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x7e}, @MPTCP_PM_ADDR_ATTR_IF_IDX={0x8}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x8}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x24004840}, 0x10) syz_genetlink_get_family_id$gtp(&(0x7f0000000040), r2) syz_genetlink_get_family_id$gtp(&(0x7f00000002c0), r1) r4 = openat$sr(0xffffffffffffff9c, &(0x7f0000000300), 0x400, 0x0) setsockopt$packet_int(r4, 0x107, 0x12, &(0x7f0000000780)=0x7fffffff, 0x4) 20:42:44 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x4c000000) 20:42:58 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x48000000) 20:42:58 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 34) 20:42:58 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x4c000000) 20:42:58 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 12) [ 1449.630061] FAULT_INJECTION: forcing a failure. [ 1449.630061] name failslab, interval 1, probability 0, space 0, times 0 [ 1449.631378] CPU: 0 PID: 20985 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1449.632309] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1449.633566] Call Trace: [ 1449.633858] [ 1449.634111] dump_stack_lvl+0x8b/0xb3 [ 1449.634560] should_fail.cold+0x5/0xa [ 1449.635004] ? kvmalloc_node+0x3e/0x130 [ 1449.635464] should_failslab+0x5/0x10 [ 1449.635899] __kmalloc_node+0x76/0x470 [ 1449.636372] kvmalloc_node+0x3e/0x130 [ 1449.636777] alloc_fdtable+0x139/0x270 [ 1449.637218] dup_fd+0x718/0xca0 [ 1449.637600] copy_process+0x1fd8/0x6d10 [ 1449.638080] ? __cleanup_sighand+0xb0/0xb0 [ 1449.638573] ? lock_release+0x3b2/0x6f0 [ 1449.639029] ? ksys_write+0x212/0x250 [ 1449.639471] ? kernel_clone+0x2f8/0xa60 [ 1449.639918] kernel_clone+0xe7/0xa60 [ 1449.640349] ? find_held_lock+0x2c/0x110 [ 1449.640786] ? create_io_thread+0xf0/0xf0 [ 1449.641264] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1449.641824] ? bit_wait_io_timeout+0x160/0x160 [ 1449.642351] ? lock_is_held_type+0xd7/0x130 [ 1449.642837] __do_sys_fork+0x8a/0xc0 [ 1449.643265] ? kernel_clone+0xa60/0xa60 [ 1449.643727] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1449.644374] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1449.644974] ? lockdep_hardirqs_on+0x79/0x100 [ 1449.645486] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1449.646064] do_syscall_64+0x3b/0x90 [ 1449.646467] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1449.647062] RIP: 0033:0x7fe050cdfb19 [ 1449.647487] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1449.649438] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1449.650307] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1449.651064] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1449.651866] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1449.652681] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1449.653484] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1449.654250] [ 1449.665270] FAULT_INJECTION: forcing a failure. [ 1449.665270] name failslab, interval 1, probability 0, space 0, times 0 [ 1449.666612] CPU: 0 PID: 20991 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1449.667551] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1449.668752] Call Trace: [ 1449.669020] [ 1449.669251] dump_stack_lvl+0x8b/0xb3 [ 1449.669659] should_fail.cold+0x5/0xa [ 1449.670069] ? create_object.isra.0+0x3a/0xa20 [ 1449.670571] should_failslab+0x5/0x10 [ 1449.670975] kmem_cache_alloc+0x5b/0x480 [ 1449.671436] ? obj_cgroup_charge+0x247/0x740 [ 1449.671909] create_object.isra.0+0x3a/0xa20 [ 1449.672428] ? kasan_unpoison+0x23/0x50 [ 1449.672853] kmem_cache_alloc+0x239/0x480 [ 1449.673335] anon_vma_fork+0x1de/0x6a0 [ 1449.673794] dup_mm+0x91b/0x1250 [ 1449.674189] ? replace_mm_exe_file+0x490/0x490 [ 1449.674710] ? __raw_spin_lock_init+0x36/0x110 [ 1449.675240] copy_process+0x3a28/0x6d10 [ 1449.675708] ? __cleanup_sighand+0xb0/0xb0 [ 1449.676215] ? lock_release+0x3b2/0x6f0 [ 1449.676658] ? ksys_write+0x212/0x250 [ 1449.677091] ? kernel_clone+0x2f8/0xa60 [ 1449.677533] kernel_clone+0xe7/0xa60 [ 1449.677964] ? find_held_lock+0x2c/0x110 [ 1449.678410] ? create_io_thread+0xf0/0xf0 [ 1449.678872] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1449.679419] ? bit_wait_io_timeout+0x160/0x160 [ 1449.679941] ? lock_is_held_type+0xd7/0x130 [ 1449.680441] __do_sys_fork+0x8a/0xc0 [ 1449.680855] ? kernel_clone+0xa60/0xa60 [ 1449.681310] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1449.681944] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1449.682523] ? lockdep_hardirqs_on+0x79/0x100 [ 1449.683027] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1449.683616] do_syscall_64+0x3b/0x90 [ 1449.684047] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1449.684643] RIP: 0033:0x7f9fc1cadb19 [ 1449.685059] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1449.687141] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1449.688002] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1449.688829] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1449.689636] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1449.690450] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1449.691269] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1449.692096] 20:42:58 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x48000000) 20:42:58 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x68000000) 20:42:58 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 14) 20:42:58 executing program 1: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r0, &(0x7f0000000140)=@ocfs2={0xc, 0x1, {0x400, 0x5}}, 0x0) r1 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000001c0)=0x1, 0x4) r2 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f00000001c0)=0x1, 0x4) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f0000000140)={@ipv4={'\x00', '\xff\xff', @private=0xa010100}, 0x5, 0x1, 0x3, 0x0, 0xfff, 0xff}, 0x20) connect$inet6(r2, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) getsockopt$inet6_int(r2, 0x29, 0x1, 0x0, &(0x7f0000000540)) ioctl$BTRFS_IOC_ADD_DEV(r2, 0x5000940a, &(0x7f0000000240)={{r1}, "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"}) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x4}, 0x1c) getresuid(&(0x7f0000000000), &(0x7f0000000080)=0x0, &(0x7f00000000c0)) pidfd_getfd(0xffffffffffffffff, r1, 0x0) setsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000100)={0xffffffffffffffff, r3, 0xee01}, 0xc) sendmsg$nl_netfilter(r0, &(0x7f0000000080)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f0000000280)={0x6c4, 0x11, 0x6, 0x801, 0x70bd28, 0x25dfdbfb, {0x3, 0x0, 0x1}, [@typed={0xc, 0x84, 0x0, 0x0, @u64=0x6}, @generic="9a58bc35dbae6a4899b5cf0786b76b7d671242a60d8960aaa0f2e9e471e29153b341965b92b5120d8caacba6a7c548163db5ea91c825f0d207b8d547e4f4c6906076ee276780e6c1fa0dae2fedb00f1e0f76ead1e8c38c5bdd7ca519b3a5643c4101246ba22b861cefba63ca71f27e3fb57c422358795e0bae2d47dab8624db9e9744be6e05af06a8463e1ac7df6bc", @nested={0x136, 0x73, 0x0, 0x1, [@generic="fd712b178fbbb7556c26ec1bf1e049f81d3c5e518a2bdde856af4bcda3f9a1ad47ddac02ebedc01d08e867162f9651c713d73dcf1cba5f2909113aaa3cc3d8cb4ff2a8de35ad54406c9dcb6a26ab9964e8e197deb2abb4677ed1f00d", @generic="5ed200be6d6d8c72812ad5be6d2d8888807eeff7ec70a2b66ec47dbda140f77ee3f51510a1fea73cd3102c0c8c029db84d001337c867302e1341bb612a053f3baece97fd2f1d05293829938e72f414b64ddce404bdefdaa559c425c2fb127919239d17cd98c2dfbd512187ae4955e192a2c4c6f267ae8e8546e4c7a5cf762511cfb58cbe7689aabb19b43fe580a8095bf7542d9ee9dc3f2fcae4d62833eef3d50a218dc53bf5de69db1f238b9250c8301e79897501f73a64f05589f9eb46adb81e13aa1ab857d71c01bbe9cfb1af452f037ebbbe86ec"]}, @generic, @nested={0x260, 0x19, 0x0, 0x1, [@generic="b04d28124654169ed0072f159b3a50ec88", @generic="687960523a2363084f6d1820d0580d597dc57f50dfd27f3b94f4fb804743309bd32c6e2c35f23e3ee964abefeeb93fcc36020251b52b777fff3d2201e4785f348255e138cd14fbeb33e243185da0a6745bc4a4ec788d4e1b46895fae58d04aafd6abcd33bb5ceda54d8932618e9fd32c43ab2fe82b24ce38162af100f72f100ff3f5d37b8736a983ba62d01ba2767cb7dc03d0dc765c52078dc75fa6aa7d65d552afc2303e3822657a3cb61ef24c570ff5e90183390e3dd459055554ad07e617ee2e45d6372c2eda3d383c885bf7b4800735671ce8859c99f7", @generic="2513632ebc5d7277dd361d0b3fd53b7ff00bb88f06c0224a1c4465c46846d9a341f8987aeb51b11410fc1fbed05390bc13753b00b9b1727d8f9874ed332c556ecf1b25b0531f73c72d8bd56a2855110469af5a5f3224f3810473c25af949", @typed={0x8, 0x21, 0x0, 0x0, @pid=0xffffffffffffffff}, @typed={0x14, 0x8b, 0x0, 0x0, @ipv6=@loopback}, @generic, @typed={0x14, 0x48, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00'}, @generic="3e77385e2b4c23b3495d4803f8f7df4b411424c18e24fe", @generic="df52fe012c04bb12adab43d38fbefe10b3e97511d704a182f718b29f74738c6f0cb6ff883a39f059e909fc9e1443f611401f957a43b44769880e0c9e9a07a6ffb4165676db5c503cf881d00a9c2994dd69c37e205001c62ba619051da9a7fb2643b326089e0a940b371755c6a47b1ff94b6fa02056193fa783dbcb43d7e27f5ba3d122f8c7cc8be9431b6f2a9e86fe16f93443e5460d6082ad72d08627a950cbc54f2e10589fccd5f58222f282ec12c2315c603d62094b961e9b94bbf00c992c5a9a5a3d02293baad0a6ad9e59"]}, @nested={0x18e, 0x35, 0x0, 0x1, [@typed={0x8, 0x17, 0x0, 0x0, @uid=r3}, @generic="dd24940aabd4e81848d5ff2e1ab1c7210ba79b0f2bdaf983be99aee515744a62e9c813992a9ef12b09834d55f95e2b78432487c3f5646530f5c6c4bee2b60726fd11675aa50be6d910537bcbf52b087f80811677475394d4023152813215722e13ad30e5bceec389adb7dfc5966111ea443ca85bb764149e6c194572d9fd05970d91247bb36a6d2f2e246afd9b4dce6fd6e63be21b37c86f68df253f21fe4ecf039945672e59640ec5f983ee0cb2f7194db4f41055e41c", @generic="fef68786955d30c141f2284d574c251a18668be5614955147a781b9b147f925a1bfb5ad2ff244a143f91127d59bd1feca207d8fb813b89968fb1316bb13873e5162878790af6f7fca8f1f9c49bd0afa6b373fb6e78506d757f3b0682705dc33b3a5a7813520d5ec1d5a4cdd82cebb12bcd9c17f6dbc38d9148b4d21d28a848190b7bb9f583ddb2a38a7250e5604f9910318c2f3a2ac27465d7537adb611e51d4dda1302552552f9f6bab2205787b806ac66a4b7d695ab0b48b16446ca1a0e6", @typed={0xc, 0x27, 0x0, 0x0, @u64=0x80}]}, @nested={0x28, 0x2d, 0x0, 0x1, [@typed={0x5, 0x18, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x53, 0x0, 0x0, @uid=0xee01}, @typed={0x14, 0x12, 0x0, 0x0, @ipv6=@remote}]}, @typed={0x8, 0x15, 0x0, 0x0, @uid=0xee00}, @generic="3a9b80f11cd0cd63bed523484a96ddb321afca918a21d1e005d0e990bcdd3f53c7d95c15acacb117274f3f2a194b71827bbd2d0b5f7e355efc6386f035e7469797c859ed54eccae4f77dbaa65544631bbb100aa812cfc33a51f9662a0086002ed1607f86c035910f5d38407c07a881e2326c18b7a0145d630a035c944428269743e7d02f07e5238996f207e60970822863f4a9f45103f753f7465dfdcaae97851b8937142f50dcdf96df5222c34db5b53698ab2433ac586c617a"]}, 0x6c4}, 0x1, 0x0, 0x0, 0x8000}, 0x0) syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() [ 1449.707211] FAULT_INJECTION: forcing a failure. [ 1449.707211] name failslab, interval 1, probability 0, space 0, times 0 [ 1449.709552] CPU: 1 PID: 20983 Comm: syz-executor.3 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1449.711183] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1449.713483] Call Trace: [ 1449.713998] [ 1449.714457] dump_stack_lvl+0x8b/0xb3 [ 1449.715232] should_fail.cold+0x5/0xa [ 1449.716005] ? kvmalloc_node+0x3e/0x130 [ 1449.716800] should_failslab+0x5/0x10 [ 1449.717552] __kmalloc_node+0x76/0x470 [ 1449.718333] kvmalloc_node+0x3e/0x130 [ 1449.719088] alloc_fdtable+0xcd/0x270 [ 1449.719845] dup_fd+0x718/0xca0 [ 1449.720537] copy_process+0x1fd8/0x6d10 [ 1449.721378] ? __cleanup_sighand+0xb0/0xb0 [ 1449.722229] ? lock_release+0x3b2/0x6f0 [ 1449.723029] ? ksys_write+0x212/0x250 [ 1449.723786] ? kernel_clone+0x2f8/0xa60 [ 1449.724612] kernel_clone+0xe7/0xa60 [ 1449.725357] ? find_held_lock+0x2c/0x110 [ 1449.726174] ? create_io_thread+0xf0/0xf0 [ 1449.727003] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1449.727973] ? bit_wait_io_timeout+0x160/0x160 [ 1449.728904] ? lock_is_held_type+0xd7/0x130 [ 1449.729758] __do_sys_fork+0x8a/0xc0 [ 1449.730511] ? kernel_clone+0xa60/0xa60 [ 1449.731303] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1449.732452] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1449.733471] ? lockdep_hardirqs_on+0x79/0x100 [ 1449.734368] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1449.735384] do_syscall_64+0x3b/0x90 [ 1449.736137] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1449.737174] RIP: 0033:0x7f0ecb13db19 [ 1449.737918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1449.741606] RSP: 002b:00007f0ec86b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1449.743091] RAX: ffffffffffffffda RBX: 00007f0ecb250f60 RCX: 00007f0ecb13db19 [ 1449.744495] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1449.745883] RBP: 00007f0ec86b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1449.747270] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1449.748668] R13: 00007ffe225f4d7f R14: 00007f0ec86b3300 R15: 0000000000022000 [ 1449.750082] 20:42:58 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000280), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_ADD_IFACE(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0b00000000000000e0002100000009001f0070687930000000000a00010096ad9a6ab047"], 0x2c}}, 0x0) sendmsg$IEEE802154_ASSOCIATE_RESP(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, r1, 0x800, 0x70bd29, 0x25dfdbfd, {}, [@IEEE802154_ATTR_STATUS={0x5, 0x3, 0x1}, @IEEE802154_ATTR_STATUS={0x5, 0x3, 0x90}]}, 0x24}, 0x1, 0x0, 0x0, 0x40000}, 0x44014) r3 = syz_io_uring_setup(0xeaf, &(0x7f0000000200)={0x0, 0xbffa, 0x2}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) r4 = dup(r3) io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) fork() madvise(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x3) madvise(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1) madvise(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0xd) 20:42:58 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 15) [ 1449.825990] FAULT_INJECTION: forcing a failure. [ 1449.825990] name failslab, interval 1, probability 0, space 0, times 0 [ 1449.827249] CPU: 0 PID: 21004 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1449.828120] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1449.829334] Call Trace: [ 1449.829603] [ 1449.829842] dump_stack_lvl+0x8b/0xb3 [ 1449.830258] should_fail.cold+0x5/0xa [ 1449.830661] ? create_object.isra.0+0x3a/0xa20 [ 1449.831158] should_failslab+0x5/0x10 [ 1449.831565] kmem_cache_alloc+0x5b/0x480 [ 1449.831999] ? obj_cgroup_charge+0x247/0x740 [ 1449.832475] create_object.isra.0+0x3a/0xa20 [ 1449.832938] ? kasan_unpoison+0x23/0x50 [ 1449.833368] __kmalloc_node+0x26f/0x470 [ 1449.833787] kvmalloc_node+0x3e/0x130 [ 1449.834196] alloc_fdtable+0x139/0x270 [ 1449.834604] dup_fd+0x718/0xca0 [ 1449.834959] copy_process+0x1fd8/0x6d10 [ 1449.835402] ? __cleanup_sighand+0xb0/0xb0 [ 1449.835854] ? lock_release+0x3b2/0x6f0 [ 1449.836294] ? ksys_write+0x212/0x250 [ 1449.836720] ? kernel_clone+0x2f8/0xa60 [ 1449.837165] kernel_clone+0xe7/0xa60 [ 1449.837584] ? find_held_lock+0x2c/0x110 [ 1449.838020] ? create_io_thread+0xf0/0xf0 [ 1449.838482] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1449.839021] ? bit_wait_io_timeout+0x160/0x160 [ 1449.839522] ? lock_is_held_type+0xd7/0x130 [ 1449.839991] __do_sys_fork+0x8a/0xc0 [ 1449.840425] ? kernel_clone+0xa60/0xa60 [ 1449.840848] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1449.841453] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1449.842004] ? lockdep_hardirqs_on+0x79/0x100 [ 1449.842501] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1449.843067] do_syscall_64+0x3b/0x90 [ 1449.843488] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1449.844058] RIP: 0033:0x7fe050cdfb19 [ 1449.844474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1449.846477] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1449.847283] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1449.848063] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1449.848850] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1449.849625] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1449.850405] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1449.851196] 20:43:13 executing program 7: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$HCIINQUIRY(r0, 0x800448d2, &(0x7f0000000000)={0x3fc, 0x0, "0f1008"}) 20:43:13 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x6c000000) 20:43:13 executing program 2: syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x0, &(0x7f0000011200)=ANY=[]) chdir(&(0x7f0000000140)='./file0\x00') r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="563b00040000007af3b2f67f0d4c82b0b60ce5a13ce02223bb0ffae37f4eea4526860d08c67e8f84e463ba1c7cd3b5b1ca47bd759944fd58f19b7fcefaa870cf6dee8a81ec1f513a8b5ba9cbc0157bfa9e1aad87cd5e1efdfa18"], 0x0) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) pwritev(r2, &(0x7f00000001c0), 0x12, 0x7, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) chdir(&(0x7f0000000040)='./file1\x00') sendfile(r3, r4, 0x0, 0x7fffffff) openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x40, 0x10a) 20:43:13 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 16) 20:43:13 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 13) 20:43:13 executing program 1: syz_io_uring_setup(0x2eb, &(0x7f0000000200), &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() 20:43:13 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 35) 20:43:13 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x68000000) [ 1465.253895] FAULT_INJECTION: forcing a failure. [ 1465.253895] name failslab, interval 1, probability 0, space 0, times 0 [ 1465.255045] CPU: 0 PID: 21021 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1465.255848] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1465.256942] Call Trace: [ 1465.257195] [ 1465.257416] dump_stack_lvl+0x8b/0xb3 [ 1465.257803] should_fail.cold+0x5/0xa [ 1465.258218] ? copy_fs_struct+0x45/0x340 [ 1465.258622] should_failslab+0x5/0x10 [ 1465.258720] loop2: detected capacity change from 0 to 256 [ 1465.259026] kmem_cache_alloc+0x5b/0x480 [ 1465.260040] copy_fs_struct+0x45/0x340 [ 1465.260430] ? copy_process+0x206b/0x6d10 [ 1465.260849] copy_process+0x32f5/0x6d10 [ 1465.261260] ? __cleanup_sighand+0xb0/0xb0 [ 1465.261684] ? lock_release+0x3b2/0x6f0 [ 1465.262077] ? ksys_write+0x212/0x250 [ 1465.262480] ? kernel_clone+0x2f8/0xa60 [ 1465.262907] kernel_clone+0xe7/0xa60 [ 1465.263306] ? find_held_lock+0x2c/0x110 [ 1465.263731] ? create_io_thread+0xf0/0xf0 [ 1465.264171] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1465.264706] ? bit_wait_io_timeout+0x160/0x160 [ 1465.265184] ? lock_is_held_type+0xd7/0x130 [ 1465.265635] __do_sys_fork+0x8a/0xc0 [ 1465.266031] ? kernel_clone+0xa60/0xa60 [ 1465.266455] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1465.267038] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1465.267580] ? lockdep_hardirqs_on+0x79/0x100 [ 1465.268042] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1465.268591] do_syscall_64+0x3b/0x90 [ 1465.268995] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1465.269544] RIP: 0033:0x7fe050cdfb19 [ 1465.269941] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1465.271858] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1465.272664] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1465.273417] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1465.274182] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1465.274932] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1465.275678] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1465.276452] [ 1465.277831] FAULT_INJECTION: forcing a failure. [ 1465.277831] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1465.279122] CPU: 1 PID: 21028 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1465.279998] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1465.281221] Call Trace: [ 1465.281495] [ 1465.281729] dump_stack_lvl+0x8b/0xb3 [ 1465.282154] should_fail.cold+0x5/0xa [ 1465.282575] prepare_alloc_pages+0x17b/0x500 [ 1465.283065] __alloc_pages+0x131/0x4e0 [ 1465.283488] ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10 [ 1465.284150] ? lock_release+0x3b2/0x6f0 [ 1465.284585] alloc_pages+0x1a0/0x2f0 [ 1465.284997] get_zeroed_page+0x14/0xa0 [ 1465.285415] __pud_alloc+0x33/0x270 [ 1465.285805] copy_page_range+0x2ed2/0x3ea0 [ 1465.286252] ? lock_is_held_type+0xd7/0x130 [ 1465.286738] ? find_held_lock+0x2c/0x110 [ 1465.287178] ? lock_downgrade+0x6d0/0x6d0 [ 1465.287637] ? vm_iomap_memory+0x190/0x190 [ 1465.288095] ? up_write+0x148/0x460 [ 1465.288351] FAULT_INJECTION: forcing a failure. [ 1465.288351] name failslab, interval 1, probability 0, space 0, times 0 [ 1465.288488] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1465.290184] ? __vma_link_rb+0x540/0x700 [ 1465.290624] dup_mm+0x961/0x1250 [ 1465.291005] ? replace_mm_exe_file+0x490/0x490 [ 1465.291502] ? __raw_spin_lock_init+0x36/0x110 [ 1465.292000] copy_process+0x3a28/0x6d10 [ 1465.292474] ? __cleanup_sighand+0xb0/0xb0 [ 1465.292946] ? lock_release+0x3b2/0x6f0 [ 1465.293395] ? ksys_write+0x212/0x250 [ 1465.293808] ? kernel_clone+0x2f8/0xa60 [ 1465.294249] kernel_clone+0xe7/0xa60 [ 1465.294650] ? find_held_lock+0x2c/0x110 [ 1465.295091] ? create_io_thread+0xf0/0xf0 [ 1465.295543] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1465.296084] ? bit_wait_io_timeout+0x160/0x160 [ 1465.296601] ? lock_is_held_type+0xd7/0x130 [ 1465.297068] __do_sys_fork+0x8a/0xc0 [ 1465.297473] ? kernel_clone+0xa60/0xa60 [ 1465.297912] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1465.298515] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1465.299067] ? lockdep_hardirqs_on+0x79/0x100 [ 1465.299551] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1465.300108] do_syscall_64+0x3b/0x90 [ 1465.300519] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1465.301089] RIP: 0033:0x7f9fc1cadb19 [ 1465.301489] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1465.303467] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1465.304286] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1465.305067] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1465.305835] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1465.306605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1465.307374] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1465.308155] [ 1465.308404] CPU: 0 PID: 21022 Comm: syz-executor.3 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1465.309477] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1465.310911] Call Trace: [ 1465.311238] [ 1465.311525] dump_stack_lvl+0x8b/0xb3 [ 1465.312021] should_fail.cold+0x5/0xa [ 1465.312626] ? create_object.isra.0+0x3a/0xa20 [ 1465.313220] should_failslab+0x5/0x10 [ 1465.313704] kmem_cache_alloc+0x5b/0x480 [ 1465.314232] create_object.isra.0+0x3a/0xa20 [ 1465.314799] ? kasan_unpoison+0x23/0x50 [ 1465.315320] __kmalloc_node+0x26f/0x470 [ 1465.315835] kvmalloc_node+0x3e/0x130 [ 1465.316269] alloc_fdtable+0xcd/0x270 [ 1465.316681] dup_fd+0x718/0xca0 [ 1465.317036] copy_process+0x1fd8/0x6d10 [ 1465.317475] ? __cleanup_sighand+0xb0/0xb0 [ 1465.317935] ? lock_release+0x3b2/0x6f0 [ 1465.318360] ? ksys_write+0x212/0x250 [ 1465.318763] ? kernel_clone+0x2f8/0xa60 [ 1465.319179] kernel_clone+0xe7/0xa60 [ 1465.319549] ? find_held_lock+0x2c/0x110 [ 1465.319981] ? create_io_thread+0xf0/0xf0 [ 1465.320436] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1465.320865] FAT-fs (loop2): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 1465.320962] ? bit_wait_io_timeout+0x160/0x160 [ 1465.322316] ? lock_is_held_type+0xd7/0x130 [ 1465.322786] __do_sys_fork+0x8a/0xc0 [ 1465.323180] ? kernel_clone+0xa60/0xa60 [ 1465.323611] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1465.324209] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1465.324770] ? lockdep_hardirqs_on+0x79/0x100 [ 1465.325248] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1465.325799] do_syscall_64+0x3b/0x90 [ 1465.326198] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1465.326758] RIP: 0033:0x7f0ecb13db19 [ 1465.327153] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1465.329082] RSP: 002b:00007f0ec86b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1465.329890] RAX: ffffffffffffffda RBX: 00007f0ecb250f60 RCX: 00007f0ecb13db19 [ 1465.330585] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1465.331336] RBP: 00007f0ec86b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1465.332085] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1465.332848] R13: 00007ffe225f4d7f R14: 00007f0ec86b3300 R15: 0000000000022000 [ 1465.333554] 20:43:13 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x6c000000) 20:43:13 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x74000000) 20:43:13 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 17) 20:43:13 executing program 7: r0 = syz_io_uring_setup(0x46ac, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000000)=0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r4 = openat$zero(0xffffffffffffff9c, &(0x7f00000000c0), 0x81, 0x0) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_OPENAT={0x12, 0x9, 0x0, r4, 0x0, &(0x7f0000000140)='./file0\x00', 0x3, 0x2102, 0x23456, {0x0, r5}}, 0x0) read(r3, &(0x7f0000000000), 0xfffffdef) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_MADVISE={0x19, 0x1, 0x0, 0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x14}, 0x0) io_uring_enter(r0, 0x7fd6, 0x0, 0x0, 0x0, 0x0) r6 = syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x20, 0x0, 0x3ca}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f00000002c0)) io_uring_enter(r6, 0x1, 0x0, 0x0, 0x0, 0x0) r7 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0) r11 = socket$inet_tcp(0x2, 0x1, 0x0) syz_io_uring_submit(r8, r9, &(0x7f0000000300)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r11, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r10}}, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x4, 0x0, @fd=r6, 0x1f, 0x0, 0x0, 0x0, 0x2, {0x1, r10}}, 0x9) 20:43:13 executing program 2: r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg$inet6(r0, &(0x7f0000001b80)=[{{&(0x7f0000000000)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c, 0x0}}, {{&(0x7f0000000040)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c, 0x0, 0x0, &(0x7f0000001c40)=[@pktinfo={{0x24, 0x29, 0x32, {@ipv4={'\x00', '\xff\xff', @multicast2}}}}, @pktinfo={{0x24, 0x29, 0x32, {@empty}}}], 0x50}}], 0x2, 0x0) openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x140, 0x0) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f00000000c0)) [ 1465.411336] FAT-fs (loop2): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:43:13 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x7a000000) 20:43:13 executing program 1: r0 = syz_io_uring_setup(0xbe8, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) msync(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1) fork() r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000004, 0x10, r0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f00000003c0)=@IORING_OP_WRITEV={0x2, 0x1, 0x2007, @fd_index=0x6, 0x8c98, &(0x7f0000000380)=[{&(0x7f0000000000)="934832271093efe4ee7406bb78b04541d2cf20ce60fe303ba264c30e2a963976437b6a92997d878e7f6b28c80e8c9098c1d60bb8d9ec936be0fdcec98dd66e01fa583d3521eb33139776e27be19102e6607d6545760598c1b7e4", 0x5a}, {&(0x7f0000000080)="0aa504a51fd36f7c6fb1073b62e2cb67d3ba596de46b781fd3dddfe1c52fae664df03f2ca3336636a772bbcfbe501315cffe7d5c794b1f64fcdb501977c481443b1f18a5e00e16b76c0a8ed176b11e721aace2adb6c352c951d76e0178e319ce422d97938db6f94464b0a5ea162da7e34b92fdac7e549cf0d5f6bb", 0x7b}, {&(0x7f0000000100)="fdd462db5383c929c0aa2e1e35f3bd14e3df11bfb9e072ab1d2f9e0d84027000a89df589bbe5809ab1622ad8019ce39d88ecb59e3a63bc7c2be24b2e70d60a44d31f368668891c66fd8281aefacc2d8695ee2f6623060058a9e56157e4a32c18d9df36dcd0c2db227d3b54aac176407c03288939f4f1304083cdb9b38c01ec63ad5fd80fbc8cb5c2c9603215a369c9b4f3e6cc040c2ea6a6d39d4ecf308efb9873dbc50bfbd6748cec5b513ff69782d98d1270504cd370cc59fd7a8f43ebd7a4749dabc20664", 0xc6}, {&(0x7f0000000280)="47c7f084456a7abbd43c827d15708ea59cd3f541a301c68efe09faff057103780800ea829335253c8630bd2c408773780ab09a5fc471fbc37b9f33a77178677516219c9aa2ae26dcca98d81cf6ef5e9052bc7f2a20a7e4b126670ec1f21df69153fdb92f080e084119b01cf4a431bff8a9af53c77c2513260588fe8f139161648f0ab5f8153224b0ee516432730d481812ff12c6a383f7c9651d0439a5dc2465439c36f5393cc7d23dee777ac4e105c2d3daadcfae809681bf1ce4cd3d24585016bd9da10107a8dc5ea41ae18cac", 0xce}], 0x4, 0x1a, 0x0, {0x3}}, 0x1f) 20:43:13 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x74000000) [ 1465.460440] FAULT_INJECTION: forcing a failure. [ 1465.460440] name failslab, interval 1, probability 0, space 0, times 0 [ 1465.461828] CPU: 0 PID: 21046 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1465.462714] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1465.463898] Call Trace: [ 1465.464174] [ 1465.464402] dump_stack_lvl+0x8b/0xb3 [ 1465.464832] should_fail.cold+0x5/0xa [ 1465.465233] ? create_object.isra.0+0x3a/0xa20 [ 1465.465729] should_failslab+0x5/0x10 [ 1465.466115] kmem_cache_alloc+0x5b/0x480 [ 1465.466538] ? obj_cgroup_charge+0x247/0x740 [ 1465.467008] create_object.isra.0+0x3a/0xa20 [ 1465.467482] ? kasan_unpoison+0x23/0x50 [ 1465.467911] kmem_cache_alloc+0x239/0x480 [ 1465.468354] copy_fs_struct+0x45/0x340 [ 1465.468766] ? copy_process+0x206b/0x6d10 [ 1465.469221] copy_process+0x32f5/0x6d10 [ 1465.469671] ? __cleanup_sighand+0xb0/0xb0 [ 1465.470130] ? lock_release+0x3b2/0x6f0 [ 1465.470568] ? ksys_write+0x212/0x250 [ 1465.470978] ? kernel_clone+0x2f8/0xa60 [ 1465.471418] kernel_clone+0xe7/0xa60 [ 1465.471828] ? find_held_lock+0x2c/0x110 [ 1465.472264] ? create_io_thread+0xf0/0xf0 [ 1465.472729] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1465.473261] ? bit_wait_io_timeout+0x160/0x160 [ 1465.473757] ? lock_is_held_type+0xd7/0x130 [ 1465.474227] __do_sys_fork+0x8a/0xc0 [ 1465.474639] ? kernel_clone+0xa60/0xa60 [ 1465.475076] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1465.475689] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1465.476249] ? lockdep_hardirqs_on+0x79/0x100 [ 1465.476751] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1465.477309] do_syscall_64+0x3b/0x90 [ 1465.477717] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1465.478278] RIP: 0033:0x7fe050cdfb19 [ 1465.478687] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1465.480662] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1465.481477] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1465.482240] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1465.483007] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1465.483775] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1465.484553] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1465.485343] 20:43:14 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 36) 20:43:14 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x81000000) 20:43:14 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x7a000000) [ 1465.542600] FAULT_INJECTION: forcing a failure. [ 1465.542600] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1465.543899] CPU: 1 PID: 21128 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1465.544794] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1465.546004] Call Trace: [ 1465.546278] [ 1465.546510] dump_stack_lvl+0x8b/0xb3 [ 1465.546942] should_fail.cold+0x5/0xa [ 1465.547352] prepare_alloc_pages+0x17b/0x500 [ 1465.547837] __alloc_pages+0x131/0x4e0 [ 1465.548251] ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10 [ 1465.548907] ? find_held_lock+0x2c/0x110 [ 1465.549343] ? lock_downgrade+0x6d0/0x6d0 [ 1465.549777] ? do_raw_spin_lock+0x121/0x260 [ 1465.550242] alloc_pages+0x1a0/0x2f0 [ 1465.550644] __pmd_alloc+0x37/0x680 [ 1465.551025] copy_page_range+0x2e09/0x3ea0 [ 1465.551469] ? lock_is_held_type+0xd7/0x130 [ 1465.551950] ? lock_downgrade+0x6d0/0x6d0 [ 1465.552397] ? vm_iomap_memory+0x190/0x190 [ 1465.552846] ? up_write+0x148/0x460 [ 1465.553225] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1465.553761] ? __vma_link_rb+0x540/0x700 [ 1465.554196] dup_mm+0x961/0x1250 [ 1465.554575] ? replace_mm_exe_file+0x490/0x490 [ 1465.555058] ? __raw_spin_lock_init+0x36/0x110 [ 1465.555544] copy_process+0x3a28/0x6d10 [ 1465.555984] ? __cleanup_sighand+0xb0/0xb0 [ 1465.556465] ? lock_release+0x3b2/0x6f0 [ 1465.556886] ? ksys_write+0x212/0x250 [ 1465.557284] ? kernel_clone+0x2f8/0xa60 [ 1465.557703] kernel_clone+0xe7/0xa60 [ 1465.558103] ? find_held_lock+0x2c/0x110 [ 1465.558527] ? create_io_thread+0xf0/0xf0 [ 1465.558963] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1465.559487] ? bit_wait_io_timeout+0x160/0x160 [ 1465.559971] ? lock_is_held_type+0xd7/0x130 [ 1465.560443] __do_sys_fork+0x8a/0xc0 [ 1465.560846] ? kernel_clone+0xa60/0xa60 [ 1465.561279] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1465.561886] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1465.562446] ? lockdep_hardirqs_on+0x79/0x100 [ 1465.562931] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1465.563478] do_syscall_64+0x3b/0x90 [ 1465.563885] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1465.564455] RIP: 0033:0x7f9fc1cadb19 [ 1465.564855] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1465.566834] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1465.567655] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1465.568442] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1465.569206] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1465.569973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1465.570744] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1465.571533] 20:43:14 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 14) 20:43:14 executing program 2: r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x1b, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000def4655fdef4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000000001000028020000028401001b0000000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38383037323533333400"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000713aa3a4ba984e5d8a0373c06ca5ba29010000000c00000000000000ddf4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000000000000000000000000000000000000002500000000000000", 0x40, 0x540}, {&(0x7f0000010300)="0000000000000000000000000000000000000000010400"/32, 0x20, 0x640}, {&(0x7f0000010400)="030000000400000005000000dc000f000300040000000000000000000f004582", 0x20, 0x800}, {&(0x7f0000010500)="ffffffff07000000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000ddf4655fddf4655fddf4655f00"/2080, 0x820, 0xc00}, {&(0x7f0000010e00)="ed41000000040000ddf4655fdef4655fdef4655f00000000000004000200000000000000050000000d00"/64, 0x40, 0x1500}, {&(0x7f0000010f00)="2000000060ed753160ed753100000000ddf4655f00"/32, 0x20, 0x1580}, {&(0x7f0000011000)="c0410000002c0000ddf4655fddf4655fddf4655f00000000000002001600000000000000000000000e0000000f000000100000001100000012000000130000001400000015000000160000001700000018000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000ddf4655f000000000000000000000000000002ea00"/192, 0xc0, 0x1e00}, {&(0x7f0000011100)="ed4100003c000000def4655fdef4655fdef4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c6531000000000000000000000000000000000000000000000000000000322728ea0000000000000000000000000000000000000000000000002000000060ed753160ed753160ed7531def4655f60ed75310000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x1f00}, {&(0x7f0000011200)="ed8100001a040000def4655fdef4655fdef4655f0000000000000100040000000000000001000000190000001a00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feb0eba70000000000000000000000000000000000000000000000002000000060ed753160ed753160ed7531def4655f60ed75310000000000000000", 0xa0, 0x2000}, {&(0x7f0000011300)="ffa1000026000000def4655fdef4655fdef4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3838303732353333342f66696c65302f66696c653000000000000000000000000000000000000000000000e06e12cc0000000000000000000000000000000000000000000000002000000060ed753160ed753160ed7531def4655f60ed75310000000000000000", 0xa0, 0x2100}, {&(0x7f0000011400)="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", 0x1a0, 0x2200}, {&(0x7f0000011600)="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", 0x100, 0x2400}, {&(0x7f0000011700)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009403090166696c652e636f6c64000000", 0x80, 0x3400}, {&(0x7f0000011800)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8030000", 0x20, 0x3800}, {&(0x7f0000011900)="00000000000400"/32, 0x20, 0x3c00}, {&(0x7f0000011a00)="00000000000400"/32, 0x20, 0x4000}, {&(0x7f0000011b00)="00000000000400"/32, 0x20, 0x4400}, {&(0x7f0000011c00)="00000000000400"/32, 0x20, 0x4800}, {&(0x7f0000011d00)="00000000000400"/32, 0x20, 0x4c00}, {&(0x7f0000011e00)="00000000000400"/32, 0x20, 0x5000}, {&(0x7f0000011f00)="00000000000400"/32, 0x20, 0x5400}, {&(0x7f0000012000)="00000000000400"/32, 0x20, 0x5800}, {&(0x7f0000012100)="00000000000400"/32, 0x20, 0x5c00}, {&(0x7f0000012200)="00000000000400"/32, 0x20, 0x6000}, {&(0x7f0000012300)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x6400}], 0x0, &(0x7f0000012800)) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0xf1c5}}, './file1\x00'}) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) futimesat(r1, &(0x7f0000000080)='./file0\x00', &(0x7f0000000180)={{r2, r3/1000+10000}, {r4, r5/1000+10000}}) 20:43:14 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x81000000) 20:43:14 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0xf5ffffff) [ 1465.634466] FAULT_INJECTION: forcing a failure. [ 1465.634466] name failslab, interval 1, probability 0, space 0, times 0 [ 1465.635705] CPU: 0 PID: 21166 Comm: syz-executor.3 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1465.636587] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1465.637774] Call Trace: [ 1465.638042] [ 1465.638272] dump_stack_lvl+0x8b/0xb3 [ 1465.638677] should_fail.cold+0x5/0xa [ 1465.639088] ? kvmalloc_node+0x3e/0x130 [ 1465.639506] should_failslab+0x5/0x10 [ 1465.639909] __kmalloc_node+0x76/0x470 [ 1465.640323] kvmalloc_node+0x3e/0x130 [ 1465.640734] alloc_fdtable+0x139/0x270 [ 1465.641140] dup_fd+0x718/0xca0 [ 1465.641485] copy_process+0x1fd8/0x6d10 [ 1465.641924] ? __cleanup_sighand+0xb0/0xb0 [ 1465.642388] ? lock_release+0x3b2/0x6f0 [ 1465.642806] ? ksys_write+0x212/0x250 [ 1465.643185] ? kernel_clone+0x2f8/0xa60 [ 1465.643605] kernel_clone+0xe7/0xa60 [ 1465.644002] ? find_held_lock+0x2c/0x110 [ 1465.644432] ? create_io_thread+0xf0/0xf0 [ 1465.644849] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1465.645372] ? bit_wait_io_timeout+0x160/0x160 [ 1465.645863] ? lock_is_held_type+0xd7/0x130 [ 1465.646320] __do_sys_fork+0x8a/0xc0 [ 1465.646691] ? kernel_clone+0xa60/0xa60 [ 1465.647120] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1465.647715] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1465.648266] ? lockdep_hardirqs_on+0x79/0x100 [ 1465.648758] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1465.649311] do_syscall_64+0x3b/0x90 [ 1465.649716] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1465.650272] RIP: 0033:0x7f0ecb13db19 [ 1465.650668] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1465.652666] RSP: 002b:00007f0ec86b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1465.653456] RAX: ffffffffffffffda RBX: 00007f0ecb250f60 RCX: 00007f0ecb13db19 [ 1465.654222] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1465.654969] RBP: 00007f0ec86b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1465.655728] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1465.656504] R13: 00007ffe225f4d7f R14: 00007f0ec86b3300 R15: 0000000000022000 [ 1465.657272] [ 1465.673723] loop2: detected capacity change from 0 to 512 [ 1465.709919] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. 20:43:26 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0xf5ffffff) [ 1478.456346] loop2: detected capacity change from 0 to 512 20:43:26 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 18) 20:43:26 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0xfffffff5) 20:43:26 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 15) 20:43:26 executing program 1: syz_io_uring_setup(0xeaf, &(0x7f0000000200)={0x0, 0x41be, 0x0, 0x0, 0x97}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, 0x0) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x13) fork() r0 = fork() pidfd_open(r0, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r1, &(0x7f0000000140)=@ocfs2={0xc, 0x1, {0x400, 0x5}}, 0x0) process_mrelease(r1, 0x0) 20:43:26 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 37) 20:43:26 executing program 2: r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x1b, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000def4655fdef4655f0100ffff53ef010001000000ddf4655f000000000000000001000000000000000b0000000001000028020000028401001b0000000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e38383037323533333400"/192, 0xc0, 0x400}, {&(0x7f0000010100)="000000000000000000000000713aa3a4ba984e5d8a0373c06ca5ba29010000000c00000000000000ddf4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000000000000000000000000000000000000002500000000000000", 0x40, 0x540}, {&(0x7f0000010300)="0000000000000000000000000000000000000000010400"/32, 0x20, 0x640}, {&(0x7f0000010400)="030000000400000005000000dc000f000300040000000000000000000f004582", 0x20, 0x800}, {&(0x7f0000010500)="ffffffff07000000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000ddf4655fddf4655fddf4655f00"/2080, 0x820, 0xc00}, {&(0x7f0000010e00)="ed41000000040000ddf4655fdef4655fdef4655f00000000000004000200000000000000050000000d00"/64, 0x40, 0x1500}, {&(0x7f0000010f00)="2000000060ed753160ed753100000000ddf4655f00"/32, 0x20, 0x1580}, {&(0x7f0000011000)="c0410000002c0000ddf4655fddf4655fddf4655f00000000000002001600000000000000000000000e0000000f000000100000001100000012000000130000001400000015000000160000001700000018000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000ddf4655f000000000000000000000000000002ea00"/192, 0xc0, 0x1e00}, {&(0x7f0000011100)="ed4100003c000000def4655fdef4655fdef4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c6531000000000000000000000000000000000000000000000000000000322728ea0000000000000000000000000000000000000000000000002000000060ed753160ed753160ed7531def4655f60ed75310000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x1f00}, {&(0x7f0000011200)="ed8100001a040000def4655fdef4655fdef4655f0000000000000100040000000000000001000000190000001a00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feb0eba70000000000000000000000000000000000000000000000002000000060ed753160ed753160ed7531def4655f60ed75310000000000000000", 0xa0, 0x2000}, {&(0x7f0000011300)="ffa1000026000000def4655fdef4655fdef4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3838303732353333342f66696c65302f66696c653000000000000000000000000000000000000000000000e06e12cc0000000000000000000000000000000000000000000000002000000060ed753160ed753160ed7531def4655f60ed75310000000000000000", 0xa0, 0x2100}, {&(0x7f0000011400)="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", 0x1a0, 0x2200}, {&(0x7f0000011600)="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", 0x100, 0x2400}, {&(0x7f0000011700)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009403090166696c652e636f6c64000000", 0x80, 0x3400}, {&(0x7f0000011800)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8030000", 0x20, 0x3800}, {&(0x7f0000011900)="00000000000400"/32, 0x20, 0x3c00}, {&(0x7f0000011a00)="00000000000400"/32, 0x20, 0x4000}, {&(0x7f0000011b00)="00000000000400"/32, 0x20, 0x4400}, {&(0x7f0000011c00)="00000000000400"/32, 0x20, 0x4800}, {&(0x7f0000011d00)="00000000000400"/32, 0x20, 0x4c00}, {&(0x7f0000011e00)="00000000000400"/32, 0x20, 0x5000}, {&(0x7f0000011f00)="00000000000400"/32, 0x20, 0x5400}, {&(0x7f0000012000)="00000000000400"/32, 0x20, 0x5800}, {&(0x7f0000012100)="00000000000400"/32, 0x20, 0x5c00}, {&(0x7f0000012200)="00000000000400"/32, 0x20, 0x6000}, {&(0x7f0000012300)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x6400}], 0x0, &(0x7f0000012800)) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0xf1c5}}, './file1\x00'}) clock_gettime(0x0, &(0x7f00000000c0)={0x0, 0x0}) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) futimesat(r1, &(0x7f0000000080)='./file0\x00', &(0x7f0000000180)={{r2, r3/1000+10000}, {r4, r5/1000+10000}}) 20:43:26 executing program 7: r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x6, &(0x7f0000000200)=[{&(0x7f0000000280)="200000008000000006000000660000000f000000000000000100000001000000004000000040000020000000daf4655fdaf4655f0100ffff53ef", 0x3a, 0x400}], 0x0, &(0x7f0000000340)={[{@resuid}]}) stat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0}) lchown(&(0x7f0000000100)='./file0\x00', r2, r1) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000003400)=[{{&(0x7f0000000140)=@abs, 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000380)=""/250, 0xfa}, {&(0x7f0000000480)=""/212, 0xd4}], 0x2, &(0x7f00000001c0)=[@cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x40}}, {{&(0x7f00000002c0)=@abs, 0x6e, &(0x7f00000018c0)=[{&(0x7f0000000580)=""/144, 0x90}, {&(0x7f0000000640)=""/4096, 0x1000}, {&(0x7f0000001640)=""/222, 0xde}, {&(0x7f0000001740)=""/231, 0xe7}, {&(0x7f0000001840)=""/120, 0x78}], 0x5}}, {{&(0x7f0000001940)=@abs, 0x6e, &(0x7f0000001bc0)=[{&(0x7f00000019c0)=""/117, 0x75}, {&(0x7f0000001a40)=""/179, 0xb3}, {&(0x7f0000000240)=""/5, 0x5}, {&(0x7f0000001b00)=""/160, 0xa0}], 0x4, &(0x7f0000001c00)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0xd8}}, {{&(0x7f0000001d00)=@abs, 0x6e, &(0x7f0000001f40)=[{&(0x7f0000001d80)=""/153, 0x99}, {&(0x7f0000001e40)=""/168, 0xa8}, {&(0x7f0000001f00)}], 0x3, &(0x7f0000001f80)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x118}}, {{0x0, 0x0, &(0x7f0000003300)=[{&(0x7f00000020c0)=""/24, 0x18}, {&(0x7f0000002100)=""/179, 0xb3}, {&(0x7f00000021c0)=""/10, 0xa}, {&(0x7f0000002200)=""/86, 0x56}, {&(0x7f0000002280)=""/108, 0x6c}, {&(0x7f0000002300)=""/4096, 0x1000}], 0x6, &(0x7f0000003380)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x60}}], 0x5, 0x100, &(0x7f0000003540)) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x8008, &(0x7f0000003580)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@privport}, {@cache_fscache}, {@access_uid={'access', 0x3d, 0xee00}}, {@cache_mmap}, {@dfltgid={'dfltgid', 0x3d, 0xee01}}, {@version_u}], [{@obj_role={'obj_role', 0x3d, 'resuid'}}]}}) [ 1478.462535] FAULT_INJECTION: forcing a failure. [ 1478.462535] name failslab, interval 1, probability 0, space 0, times 0 [ 1478.463713] CPU: 0 PID: 21186 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1478.464512] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1478.465600] Call Trace: [ 1478.465852] [ 1478.466072] dump_stack_lvl+0x8b/0xb3 [ 1478.466461] should_fail.cold+0x5/0xa [ 1478.466836] ? copy_process+0x2142/0x6d10 [ 1478.467247] should_failslab+0x5/0x10 [ 1478.467623] kmem_cache_alloc+0x5b/0x480 [ 1478.468026] copy_process+0x2142/0x6d10 [ 1478.468434] ? __cleanup_sighand+0xb0/0xb0 [ 1478.468865] ? lock_release+0x3b2/0x6f0 [ 1478.469262] ? ksys_write+0x212/0x250 [ 1478.469639] ? kernel_clone+0x2f8/0xa60 [ 1478.470035] kernel_clone+0xe7/0xa60 [ 1478.470405] ? find_held_lock+0x2c/0x110 [ 1478.470805] ? create_io_thread+0xf0/0xf0 [ 1478.471216] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1478.471701] ? bit_wait_io_timeout+0x160/0x160 [ 1478.472155] ? lock_is_held_type+0xd7/0x130 [ 1478.472582] __do_sys_fork+0x8a/0xc0 [ 1478.472967] ? kernel_clone+0xa60/0xa60 [ 1478.473361] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1478.473905] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1478.474410] ? lockdep_hardirqs_on+0x79/0x100 [ 1478.474844] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1478.475352] do_syscall_64+0x3b/0x90 [ 1478.475721] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1478.476237] RIP: 0033:0x7fe050cdfb19 [ 1478.476623] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1478.478479] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1478.479256] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1478.479985] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1478.480723] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1478.481415] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1478.482136] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1478.482865] [ 1478.508599] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 1478.512026] loop7: detected capacity change from 0 to 4 [ 1478.518042] FAULT_INJECTION: forcing a failure. [ 1478.518042] name failslab, interval 1, probability 0, space 0, times 0 [ 1478.519211] CPU: 0 PID: 21199 Comm: syz-executor.3 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1478.520045] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1478.521185] Call Trace: [ 1478.521453] [ 1478.521678] dump_stack_lvl+0x8b/0xb3 [ 1478.522066] should_fail.cold+0x5/0xa [ 1478.522443] ? create_object.isra.0+0x3a/0xa20 [ 1478.522903] should_failslab+0x5/0x10 [ 1478.523277] kmem_cache_alloc+0x5b/0x480 [ 1478.523391] FAULT_INJECTION: forcing a failure. [ 1478.523391] name failslab, interval 1, probability 0, space 0, times 0 [ 1478.523679] ? obj_cgroup_charge+0x247/0x740 [ 1478.523702] create_object.isra.0+0x3a/0xa20 [ 1478.526909] ? kasan_unpoison+0x23/0x50 [ 1478.527307] __kmalloc_node+0x26f/0x470 [ 1478.527705] kvmalloc_node+0x3e/0x130 [ 1478.528079] alloc_fdtable+0x139/0x270 [ 1478.528481] dup_fd+0x718/0xca0 [ 1478.528820] copy_process+0x1fd8/0x6d10 [ 1478.529245] ? __cleanup_sighand+0xb0/0xb0 [ 1478.529686] ? lock_release+0x3b2/0x6f0 [ 1478.530094] ? ksys_write+0x212/0x250 [ 1478.530489] ? kernel_clone+0x2f8/0xa60 [ 1478.530894] kernel_clone+0xe7/0xa60 [ 1478.531272] ? find_held_lock+0x2c/0x110 [ 1478.531682] ? create_io_thread+0xf0/0xf0 [ 1478.532110] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1478.532604] ? bit_wait_io_timeout+0x160/0x160 [ 1478.533068] ? lock_is_held_type+0xd7/0x130 [ 1478.533509] __do_sys_fork+0x8a/0xc0 [ 1478.533893] ? kernel_clone+0xa60/0xa60 [ 1478.534300] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1478.534865] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1478.535387] ? lockdep_hardirqs_on+0x79/0x100 [ 1478.535842] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1478.536368] do_syscall_64+0x3b/0x90 [ 1478.536745] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1478.537271] RIP: 0033:0x7f0ecb13db19 [ 1478.537644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1478.539483] RSP: 002b:00007f0ec86b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1478.540243] RAX: ffffffffffffffda RBX: 00007f0ecb250f60 RCX: 00007f0ecb13db19 [ 1478.540967] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1478.541693] RBP: 00007f0ec86b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1478.542384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1478.543097] R13: 00007ffe225f4d7f R14: 00007f0ec86b3300 R15: 0000000000022000 [ 1478.543804] [ 1478.544041] CPU: 1 PID: 21201 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1478.545844] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1478.548263] Call Trace: [ 1478.548822] [ 1478.549303] dump_stack_lvl+0x8b/0xb3 [ 1478.550134] should_fail.cold+0x5/0xa [ 1478.550957] ? __pmd_alloc+0x94/0x680 [ 1478.551767] should_failslab+0x5/0x10 [ 1478.552584] kmem_cache_alloc+0x5b/0x480 [ 1478.553479] ? alloc_pages+0x1a8/0x2f0 [ 1478.554335] __pmd_alloc+0x94/0x680 [ 1478.555117] copy_page_range+0x2e09/0x3ea0 [ 1478.556017] ? lock_is_held_type+0xd7/0x130 [ 1478.556987] ? lock_downgrade+0x6d0/0x6d0 [ 1478.557890] ? vm_iomap_memory+0x190/0x190 [ 1478.558787] ? up_write+0x148/0x460 [ 1478.559566] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1478.560649] ? __vma_link_rb+0x540/0x700 [ 1478.561527] dup_mm+0x961/0x1250 [ 1478.562289] ? replace_mm_exe_file+0x490/0x490 [ 1478.563276] ? __raw_spin_lock_init+0x36/0x110 [ 1478.564272] copy_process+0x3a28/0x6d10 [ 1478.565193] ? __cleanup_sighand+0xb0/0xb0 [ 1478.566123] ? lock_release+0x3b2/0x6f0 [ 1478.566969] ? ksys_write+0x212/0x250 [ 1478.567776] ? kernel_clone+0x2f8/0xa60 [ 1478.568648] kernel_clone+0xe7/0xa60 [ 1478.569446] ? find_held_lock+0x2c/0x110 [ 1478.570314] ? create_io_thread+0xf0/0xf0 [ 1478.571227] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1478.572279] ? bit_wait_io_timeout+0x160/0x160 [ 1478.573291] ? lock_is_held_type+0xd7/0x130 [ 1478.574222] __do_sys_fork+0x8a/0xc0 [ 1478.575032] ? kernel_clone+0xa60/0xa60 [ 1478.575892] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1478.577090] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1478.578203] ? lockdep_hardirqs_on+0x79/0x100 [ 1478.579163] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1478.580257] do_syscall_64+0x3b/0x90 [ 1478.581285] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1478.582531] RIP: 0033:0x7f9fc1cadb19 [ 1478.583401] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1478.587706] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1478.589498] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1478.591162] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1478.592831] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1478.594484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1478.596136] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1478.597754] 20:43:27 executing program 2: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x101, 0x798}}, './file0\x00'}) r2 = pidfd_getfd(r1, r1, 0x0) ioctl$HIDIOCGREPORT(r2, 0x400c4807, &(0x7f0000000100)={0x1, 0x0, 0x100}) bind$unix(r1, &(0x7f0000000080)=@file={0x0, './file0\x00'}, 0x6e) connect$unix(r0, &(0x7f0000000480)=@file={0x1, './file0\x00'}, 0x6e) 20:43:27 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0xfffffff5) 20:43:27 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 19) 20:43:27 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 38) 20:43:27 executing program 2: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x2, &(0x7f0000000100)=[{0x20, 0x0, 0x0, 0x2}, {0x6}]}) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000480)={0x500, 0x0, 0x8}) openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x48100, 0x0) [ 1478.772704] EXT4-fs warning (device sda): verify_group_input:137: Cannot add at group 1280 (only 16 groups) [ 1478.826266] FAULT_INJECTION: forcing a failure. [ 1478.826266] name failslab, interval 1, probability 0, space 0, times 0 [ 1478.828571] CPU: 1 PID: 21394 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1478.830214] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1478.832418] Call Trace: [ 1478.832926] [ 1478.833365] dump_stack_lvl+0x8b/0xb3 [ 1478.834128] should_fail.cold+0x5/0xa [ 1478.834881] ? create_object.isra.0+0x3a/0xa20 [ 1478.835792] should_failslab+0x5/0x10 [ 1478.836537] kmem_cache_alloc+0x5b/0x480 [ 1478.837355] ? obj_cgroup_charge+0x247/0x740 [ 1478.838413] create_object.isra.0+0x3a/0xa20 [ 1478.839360] ? kasan_unpoison+0x23/0x50 [ 1478.840262] kmem_cache_alloc+0x239/0x480 [ 1478.841359] copy_process+0x2142/0x6d10 [ 1478.842376] ? __cleanup_sighand+0xb0/0xb0 [ 1478.843249] ? lock_release+0x3b2/0x6f0 [ 1478.844074] ? ksys_write+0x212/0x250 [ 1478.844906] ? kernel_clone+0x2f8/0xa60 [ 1478.845757] kernel_clone+0xe7/0xa60 [ 1478.846536] ? find_held_lock+0x2c/0x110 [ 1478.847421] ? create_io_thread+0xf0/0xf0 [ 1478.848342] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1478.849352] ? bit_wait_io_timeout+0x160/0x160 [ 1478.850310] ? lock_is_held_type+0xd7/0x130 [ 1478.851169] __do_sys_fork+0x8a/0xc0 [ 1478.851957] ? kernel_clone+0xa60/0xa60 [ 1478.852761] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1478.853924] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1478.854933] ? lockdep_hardirqs_on+0x79/0x100 [ 1478.855866] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1478.856909] do_syscall_64+0x3b/0x90 [ 1478.857699] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1478.858727] RIP: 0033:0x7fe050cdfb19 [ 1478.859496] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1478.863171] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1478.864804] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1478.866230] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1478.867760] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1478.869211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1478.870695] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1478.872149] [ 1478.873522] EXT4-fs (loop7): bad geometry: first data block 0 is beyond end of filesystem (0) [ 1478.911741] FAULT_INJECTION: forcing a failure. [ 1478.911741] name failslab, interval 1, probability 0, space 0, times 0 [ 1478.912977] CPU: 0 PID: 21397 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1478.913805] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1478.914946] Call Trace: [ 1478.915203] [ 1478.915428] dump_stack_lvl+0x8b/0xb3 [ 1478.915825] should_fail.cold+0x5/0xa [ 1478.916223] ? create_object.isra.0+0x3a/0xa20 [ 1478.916703] should_failslab+0x5/0x10 [ 1478.917089] kmem_cache_alloc+0x5b/0x480 [ 1478.917510] create_object.isra.0+0x3a/0xa20 [ 1478.917965] ? kasan_unpoison+0x23/0x50 [ 1478.918378] kmem_cache_alloc+0x239/0x480 [ 1478.918802] __pmd_alloc+0x94/0x680 [ 1478.919172] copy_page_range+0x2e09/0x3ea0 [ 1478.919595] ? lock_is_held_type+0xd7/0x130 [ 1478.920061] ? lock_downgrade+0x6d0/0x6d0 [ 1478.920494] ? vm_iomap_memory+0x190/0x190 [ 1478.920948] ? up_write+0x148/0x460 [ 1478.921318] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1478.921823] ? __vma_link_rb+0x540/0x700 [ 1478.922244] dup_mm+0x961/0x1250 [ 1478.922605] ? replace_mm_exe_file+0x490/0x490 [ 1478.923071] ? __raw_spin_lock_init+0x36/0x110 [ 1478.923542] copy_process+0x3a28/0x6d10 [ 1478.923964] ? __cleanup_sighand+0xb0/0xb0 [ 1478.924403] ? lock_release+0x3b2/0x6f0 [ 1478.924816] ? ksys_write+0x212/0x250 [ 1478.925196] ? kernel_clone+0x2f8/0xa60 [ 1478.925605] kernel_clone+0xe7/0xa60 [ 1478.925983] ? find_held_lock+0x2c/0x110 [ 1478.926389] ? create_io_thread+0xf0/0xf0 [ 1478.926808] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1478.927307] ? bit_wait_io_timeout+0x160/0x160 [ 1478.927776] ? lock_is_held_type+0xd7/0x130 [ 1478.928212] __do_sys_fork+0x8a/0xc0 [ 1478.928597] ? kernel_clone+0xa60/0xa60 [ 1478.929019] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1478.929584] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1478.930100] ? lockdep_hardirqs_on+0x79/0x100 [ 1478.930551] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1478.931063] do_syscall_64+0x3b/0x90 [ 1478.931452] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1478.931970] RIP: 0033:0x7f9fc1cadb19 [ 1478.932339] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1478.934182] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1478.934948] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1478.935666] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1478.936387] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1478.937114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1478.937828] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1478.938568] 20:43:44 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 16) [ 1495.917842] FAULT_INJECTION: forcing a failure. [ 1495.917842] name failslab, interval 1, probability 0, space 0, times 0 [ 1495.919123] CPU: 1 PID: 21436 Comm: syz-executor.3 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1495.919982] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1495.921231] Call Trace: [ 1495.921511] [ 1495.921757] dump_stack_lvl+0x8b/0xb3 [ 1495.922185] should_fail.cold+0x5/0xa [ 1495.922612] ? copy_fs_struct+0x45/0x340 [ 1495.923065] should_failslab+0x5/0x10 [ 1495.923493] kmem_cache_alloc+0x5b/0x480 [ 1495.923949] copy_fs_struct+0x45/0x340 [ 1495.924352] ? copy_process+0x206b/0x6d10 [ 1495.924820] copy_process+0x32f5/0x6d10 [ 1495.925269] ? __cleanup_sighand+0xb0/0xb0 [ 1495.925752] ? lock_release+0x3b2/0x6f0 [ 1495.926200] ? ksys_write+0x212/0x250 [ 1495.926621] ? kernel_clone+0x2f8/0xa60 [ 1495.927071] kernel_clone+0xe7/0xa60 [ 1495.927484] ? find_held_lock+0x2c/0x110 [ 1495.927937] ? create_io_thread+0xf0/0xf0 [ 1495.928406] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1495.928973] ? bit_wait_io_timeout+0x160/0x160 [ 1495.929464] ? lock_is_held_type+0xd7/0x130 [ 1495.929923] __do_sys_fork+0x8a/0xc0 [ 1495.930325] ? kernel_clone+0xa60/0xa60 [ 1495.930750] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1495.931347] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1495.932151] ? lockdep_hardirqs_on+0x79/0x100 20:43:44 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 39) 20:43:44 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 20) 20:43:44 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') r1 = socket$inet6(0xa, 0x4, 0x9) r2 = fspick(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1) pwritev(r2, &(0x7f0000000140), 0x0, 0x7f, 0x0) preadv(r1, &(0x7f0000000080)=[{&(0x7f0000000000)=""/38, 0x26}], 0x1, 0x7b, 0x8000009) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r0, 0xc018937a, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, {0xfff}}, './file0\x00'}) 20:43:44 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x3, 0x0, r3, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) pwrite64(r3, &(0x7f00000001c0)="3cfc1783f3fbe082be17a4d417678bd8ba11b5a4daaa4a9cf18974fdd6ede643db8e18de6087ad267148d6fd5e5db8ba0604a1271e6e8f524df9f4fe6593f73f25261fc9a4c543a3450754beece67e4525a274e1cb3cc9f9bfbd123921b5679aedd9615b3a8aa06ddcb710f847155020c2ae4037d21a303e0a36c19b8db01a4344f2a6f64124314a228f8431cafa8cf017a275da5189740495953a29d37b2739e2d427b48cfce641500c27b3c47974fbdb9108080e05e8db80f53690f4f03f21caafd8e800ba48d2c6a5a828331dc96aaef8d91b6a7ab3affd45d48aa81bbf7b52e1becab61fae8642a725879b3f542bdf3a652c", 0xf4, 0x7) fcntl$setpipe(r0, 0x407, 0x3ff) 20:43:44 executing program 7: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r1, &(0x7f0000000140)=@ocfs2={0xc, 0x1, {0x400, 0x5}}, 0x0) r2 = eventfd2(0x2, 0x80000) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000000)={{0x1, 0x1, 0x18, r2, @in_args={0x2}}, './file1\x00'}) pwritev(r0, &(0x7f00000000c0)=[{0x0}], 0x1, 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) ioctl$EXT4_IOC_GET_ES_CACHE(r3, 0x40305839, &(0x7f0000000040)=ANY=[@ANYBLOB="0600000000fddda784adff18000000000040002b"]) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) write(r4, &(0x7f0000000080)="01", 0x20000081) 20:43:44 executing program 1: ioctl$BTRFS_IOC_TREE_SEARCH_V2(0xffffffffffffffff, 0xc0709411, &(0x7f000006fdc0)={{0x0, 0x100000000, 0x1, 0x20, 0x5, 0x7, 0x8, 0x1, 0x5, 0xffffffe0, 0x8, 0x2, 0x400, 0x8}, 0x10, [0x0, 0x0]}) ioctl$BTRFS_IOC_TREE_SEARCH(0xffffffffffffffff, 0xd0009411, &(0x7f000006fe40)={{0x0, 0x1, 0x100000001, 0x6, 0x101, 0x9, 0x138, 0x7ff, 0x8, 0x1, 0x4a, 0x7cb9bd4d, 0x2, 0x3, 0xdacd}}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000070e40)={0x0, 0x0, "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", "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"}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000071e40)={0x0}) [ 1495.932814] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1495.933501] do_syscall_64+0x3b/0x90 [ 1495.933912] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1495.934485] RIP: 0033:0x7f0ecb13db19 [ 1495.934867] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1495.936911] RSP: 002b:00007f0ec86b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1495.937698] RAX: ffffffffffffffda RBX: 00007f0ecb250f60 RCX: 00007f0ecb13db19 [ 1495.938482] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1495.939274] RBP: 00007f0ec86b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1495.940069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1495.940865] R13: 00007ffe225f4d7f R14: 00007f0ec86b3300 R15: 0000000000022000 [ 1495.941671] [ 1495.946003] FAULT_INJECTION: forcing a failure. [ 1495.946003] name failslab, interval 1, probability 0, space 0, times 0 [ 1495.947325] CPU: 1 PID: 21443 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1495.948230] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1495.949486] Call Trace: [ 1495.949771] [ 1495.950015] dump_stack_lvl+0x8b/0xb3 [ 1495.950445] should_fail.cold+0x5/0xa [ 1495.950874] ? copy_process+0x22c1/0x6d10 [ 1495.951309] should_failslab+0x5/0x10 [ 1495.951720] kmem_cache_alloc+0x5b/0x480 [ 1495.952181] copy_process+0x22c1/0x6d10 [ 1495.952644] ? __cleanup_sighand+0xb0/0xb0 [ 1495.953098] ? lock_release+0x3b2/0x6f0 [ 1495.953539] ? ksys_write+0x212/0x250 [ 1495.953967] ? kernel_clone+0x2f8/0xa60 [ 1495.954380] kernel_clone+0xe7/0xa60 [ 1495.954797] ? find_held_lock+0x2c/0x110 [ 1495.955211] ? create_io_thread+0xf0/0xf0 [ 1495.955675] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1495.956182] ? bit_wait_io_timeout+0x160/0x160 [ 1495.956693] ? lock_is_held_type+0xd7/0x130 [ 1495.957165] __do_sys_fork+0x8a/0xc0 [ 1495.957589] ? kernel_clone+0xa60/0xa60 [ 1495.958037] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1495.958620] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1495.959200] ? lockdep_hardirqs_on+0x79/0x100 [ 1495.959665] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1495.960243] do_syscall_64+0x3b/0x90 [ 1495.960636] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1495.961217] RIP: 0033:0x7fe050cdfb19 [ 1495.961630] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1495.963671] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1495.964510] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1495.965314] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000072040)={0x0, 0x0, "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", "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"}) r5 = memfd_secret(0x80000) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r5, 0xc0189373, &(0x7f0000000140)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) ioctl$CDROMRESUME(r5, 0x5302) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r6, 0x81f8943c, &(0x7f00000005c0)={0x0, ""/256, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r5, 0xd000943d, &(0x7f00000007c0)={0x1, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0}], 0x5, "c75f3a47e3abfa"}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r6, 0xd000943d, &(0x7f0000085b40)={0x75, [{r7}, {r8}], 0x7, "6a0db6c6cfe162"}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000073040)={0x7, [{}, {}, {}, {}, {}, {0x0}], 0x40, "47318dd6133282"}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000074040)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}], 0x1, "9770b70ad42760"}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000075040)={0x2, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0}], 0x1, "03a45be96b45f1"}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000076040)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000076240)={0x0, 0x0, "377d965342dd1881078058c184c731d442f74a3c1f4e7dd97bf61b017b8bb19475dabec1c0cfb64b783fd8675e39e32938bc3cffb8f2a0572062f0c6ae02fe7c3eb545dc28f2ebd5c2081dd4f3d0d68b57b59d9369fdfba89588711cf87ec97a6e1703de2ec7bcbd2d95be2c27b28d87d3d306a49505a40f98684053ff0820a8437d5fad5466fdced1f381cb30612b5f81b6135b39b3721cf092ba914af2dccc81c7a749f65dc20cb4db1fe3f28770f529d5cc1899a7bbf1a379396f5da58aece3821133538808d4b26d569e0f2ec92154b0e5485fe92faa7744897875aba502d6bf78b13dd44694a505de2571fdca7e0486a6babcfeb51ad9c16799de74a085", "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"}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000077240)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r0}, {r1}, {0x0, r2}, {r3, r4}, {}, {r7}, {r9, r10}, {r11, r12}, {}, {}, {}, {0x0, r13}], 0x2, "95957e2cd2a0c1"}) syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() 20:43:44 executing program 2: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) r1 = fcntl$dupfd(r0, 0x0, r0) [ 1495.966334] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1495.967251] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1495.968022] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1495.968253] FAULT_INJECTION: forcing a failure. [ 1495.968253] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1495.968778] [ 1495.974269] CPU: 0 PID: 21444 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1495.976385] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1495.979270] Call Trace: [ 1495.979924] [ 1495.980496] dump_stack_lvl+0x8b/0xb3 [ 1495.981506] should_fail.cold+0x5/0xa [ 1495.982373] prepare_alloc_pages+0x17b/0x500 [ 1495.983371] __alloc_pages+0x131/0x4e0 [ 1495.984270] ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10 [ 1495.985654] ? lock_is_held_type+0xd7/0x130 [ 1495.986640] ? find_held_lock+0x2c/0x110 [ 1495.987578] alloc_pages+0x1a0/0x2f0 [ 1495.988507] pte_alloc_one+0x16/0x1f0 [ 1495.989508] __pte_alloc+0x69/0x200 [ 1495.990459] ? pmd_install+0x250/0x250 [ 1495.991460] ? do_raw_spin_unlock+0x4f/0x210 [ 1495.992599] ? _raw_spin_unlock+0x24/0x40 [ 1495.993696] copy_page_range+0x1b8b/0x3ea0 [ 1495.994842] ? vm_iomap_memory+0x190/0x190 [ 1495.995856] ? up_write+0x148/0x460 [ 1495.996678] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1495.997822] ? __vma_link_rb+0x540/0x700 [ 1495.998788] dup_mm+0x961/0x1250 [ 1495.999598] ? replace_mm_exe_file+0x490/0x490 [ 1496.000592] ? __raw_spin_lock_init+0x36/0x110 [ 1496.001665] copy_process+0x3a28/0x6d10 [ 1496.002600] ? __cleanup_sighand+0xb0/0xb0 [ 1496.003599] ? lock_release+0x3b2/0x6f0 [ 1496.004520] ? ksys_write+0x212/0x250 [ 1496.005423] ? kernel_clone+0x2f8/0xa60 [ 1496.006351] kernel_clone+0xe7/0xa60 [ 1496.007156] ? find_held_lock+0x2c/0x110 [ 1496.008092] ? create_io_thread+0xf0/0xf0 [ 1496.009050] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1496.010182] ? bit_wait_io_timeout+0x160/0x160 [ 1496.011249] ? lock_is_held_type+0xd7/0x130 [ 1496.012262] __do_sys_fork+0x8a/0xc0 [ 1496.013165] ? kernel_clone+0xa60/0xa60 [ 1496.014090] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1496.015391] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1496.016561] ? lockdep_hardirqs_on+0x79/0x100 [ 1496.017603] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1496.018793] do_syscall_64+0x3b/0x90 [ 1496.019667] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1496.020843] RIP: 0033:0x7f9fc1cadb19 [ 1496.021728] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1496.026102] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1496.026133] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1496.026151] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1496.026167] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1496.026183] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1496.026199] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1496.026247] [ 1496.124552] FAULT_INJECTION: forcing a failure. [ 1496.124552] name failslab, interval 1, probability 0, space 0, times 0 [ 1496.125887] CPU: 1 PID: 21695 Comm: syz-executor.3 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1496.125903] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r3 = syz_open_dev$tty20(0xc, 0x4, 0x1) r4 = fcntl$dupfd(r3, 0x0, r3) r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000040), 0x4) r6 = openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0), 0x80800, 0x0) r7 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r7, 0x1, 0x0, 0x0, 0x0, 0x0) poll(&(0x7f0000000180)=[{r6, 0x104a}, {r4}, {r2, 0x2480}, {r5, 0x10d2}, {r3}, {r7, 0x8001}], 0x6, 0x6) ioctl$TIOCL_SETSEL(r4, 0x541c, &(0x7f0000000000)={0x2, {0x2, 0x3, 0x14, 0x0, 0x1}}) ioctl$VT_RESIZE(r1, 0x5609, &(0x7f0000000080)={0x0, 0x7, 0x3}) 20:43:44 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) 20:43:44 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 17) 20:43:44 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='stat\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) 20:43:44 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 21) 20:43:44 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 40) [ 1496.125912] Call Trace: [ 1496.125916] [ 1496.125921] dump_stack_lvl+0x8b/0xb3 [ 1496.125945] should_fail.cold+0x5/0xa [ 1496.125962] ? create_object.isra.0+0x3a/0xa20 [ 1496.125984] should_failslab+0x5/0x10 [ 1496.125996] kmem_cache_alloc+0x5b/0x480 [ 1496.126011] ? obj_cgroup_charge+0x247/0x740 [ 1496.126031] create_object.isra.0+0x3a/0xa20 [ 1496.126049] ? kasan_unpoison+0x23/0x50 [ 1496.126070] kmem_cache_alloc+0x239/0x480 [ 1496.126088] copy_fs_struct+0x45/0x340 [ 1496.126103] ? copy_process+0x206b/0x6d10 [ 1496.126123] copy_process+0x32f5/0x6d10 [ 1496.126156] ? __cleanup_sighand+0xb0/0xb0 [ 1496.126180] ? lock_release+0x3b2/0x6f0 [ 1496.126195] ? ksys_write+0x212/0x250 [ 1496.126212] ? kernel_clone+0x2f8/0xa60 [ 1496.126231] kernel_clone+0xe7/0xa60 [ 1496.126249] ? find_held_lock+0x2c/0x110 [ 1496.126262] ? create_io_thread+0xf0/0xf0 [ 1496.126285] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1496.126306] ? bit_wait_io_timeout+0x160/0x160 [ 1496.126323] ? lock_is_held_type+0xd7/0x130 [ 1496.126339] __do_sys_fork+0x8a/0xc0 [ 1496.126357] ? kernel_clone+0xa60/0xa60 [ 1496.126374] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1496.126399] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1496.126413] ? lockdep_hardirqs_on+0x79/0x100 [ 1496.126425] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1496.126439] do_syscall_64+0x3b/0x90 [ 1496.126457] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1496.126478] RIP: 0033:0x7f0ecb13db19 [ 1496.126487] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1496.126499] RSP: 002b:00007f0ec86b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1496.126513] RAX: ffffffffffffffda RBX: 00007f0ecb250f60 RCX: 00007f0ecb13db19 [ 1496.126521] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1496.126529] RBP: 00007f0ec86b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1496.126537] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1496.126544] R13: 00007ffe225f4d7f R14: 00007f0ec86b3300 R15: 0000000000022000 [ 1496.126565] [ 1496.162044] FAULT_INJECTION: forcing a failure. [ 1496.162044] name failslab, interval 1, probability 0, space 0, times 0 [ 1496.162064] CPU: 1 PID: 21714 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1496.162077] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1496.162086] Call Trace: [ 1496.162090] [ 1496.162095] dump_stack_lvl+0x8b/0xb3 [ 1496.162121] should_fail.cold+0x5/0xa [ 1496.162137] ? create_object.isra.0+0x3a/0xa20 [ 1496.162159] should_failslab+0x5/0x10 [ 1496.162172] kmem_cache_alloc+0x5b/0x480 [ 1496.162186] ? obj_cgroup_charge+0x247/0x740 [ 1496.162207] create_object.isra.0+0x3a/0xa20 [ 1496.162224] ? kasan_unpoison+0x23/0x50 [ 1496.162246] kmem_cache_alloc+0x239/0x480 [ 1496.162264] copy_process+0x22c1/0x6d10 [ 1496.162301] ? __cleanup_sighand+0xb0/0xb0 [ 1496.162325] ? lock_release+0x3b2/0x6f0 [ 1496.162340] ? ksys_write+0x212/0x250 [ 1496.162356] ? kernel_clone+0x2f8/0xa60 [ 1496.162375] kernel_clone+0xe7/0xa60 [ 1496.162394] ? find_held_lock+0x2c/0x110 [ 1496.162407] ? create_io_thread+0xf0/0xf0 [ 1496.162427] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1496.162447] ? bit_wait_io_timeout+0x160/0x160 [ 1496.162465] ? lock_is_held_type+0xd7/0x130 [ 1496.162481] __do_sys_fork+0x8a/0xc0 [ 1496.162499] ? kernel_clone+0xa60/0xa60 [ 1496.162516] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1496.162540] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1496.162554] ? lockdep_hardirqs_on+0x79/0x100 [ 1496.162567] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1496.162580] do_syscall_64+0x3b/0x90 [ 1496.162598] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1496.162618] RIP: 0033:0x7fe050cdfb19 [ 1496.162627] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1496.162639] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1496.162652] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1496.162661] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1496.162669] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1496.162676] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1496.162684] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1496.162704] [ 1496.209548] FAULT_INJECTION: forcing a failure. [ 1496.209548] name failslab, interval 1, probability 0, space 0, times 0 [ 1496.253889] CPU: 1 PID: 21736 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1496.254744] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1496.255917] Call Trace: [ 1496.256195] [ 1496.256429] dump_stack_lvl+0x8b/0xb3 [ 1496.256838] should_fail.cold+0x5/0xa [ 1496.257247] ? ptlock_alloc+0x1d/0x70 [ 1496.257644] should_failslab+0x5/0x10 [ 1496.258037] kmem_cache_alloc+0x5b/0x480 [ 1496.258468] ptlock_alloc+0x1d/0x70 [ 1496.258854] pte_alloc_one+0x68/0x1f0 [ 1496.259254] __pte_alloc+0x69/0x200 [ 1496.259644] ? pmd_install+0x250/0x250 [ 1496.260063] ? do_raw_spin_unlock+0x4f/0x210 [ 1496.260529] ? _raw_spin_unlock+0x24/0x40 [ 1496.260991] copy_page_range+0x1b8b/0x3ea0 [ 1496.261465] ? vm_iomap_memory+0x190/0x190 [ 1496.261912] ? up_write+0x148/0x460 [ 1496.262294] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1496.262817] ? __vma_link_rb+0x540/0x700 [ 1496.263249] dup_mm+0x961/0x1250 [ 1496.263629] ? replace_mm_exe_file+0x490/0x490 [ 1496.264116] ? __raw_spin_lock_init+0x36/0x110 [ 1496.264599] copy_process+0x3a28/0x6d10 [ 1496.265046] ? __cleanup_sighand+0xb0/0xb0 [ 1496.265504] ? lock_release+0x3b2/0x6f0 [ 1496.265918] ? ksys_write+0x212/0x250 [ 1496.266321] ? kernel_clone+0x2f8/0xa60 [ 1496.266739] kernel_clone+0xe7/0xa60 [ 1496.267130] ? find_held_lock+0x2c/0x110 [ 1496.267556] ? create_io_thread+0xf0/0xf0 [ 1496.267995] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1496.268507] ? bit_wait_io_timeout+0x160/0x160 [ 1496.268996] ? lock_is_held_type+0xd7/0x130 [ 1496.269448] __do_sys_fork+0x8a/0xc0 [ 1496.269849] ? kernel_clone+0xa60/0xa60 [ 1496.270269] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1496.270856] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1496.271390] ? lockdep_hardirqs_on+0x79/0x100 [ 1496.271858] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1496.272390] do_syscall_64+0x3b/0x90 [ 1496.272785] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1496.273346] RIP: 0033:0x7f9fc1cadb19 [ 1496.273730] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1496.275627] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1496.276423] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1496.277170] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1496.277906] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1496.278658] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1496.279399] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1496.280151] 20:43:44 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) ioctl$EXT4_IOC_SWAP_BOOT(r1, 0x6611) preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) 20:43:44 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='oom_adj\x00') preadv(r0, &(0x7f0000000080)=[{&(0x7f00000000c0)=""/197, 0xc5}, {&(0x7f0000000000)=""/17, 0x11}], 0x2, 0x81, 0x0) 20:43:44 executing program 1: syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) r3 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r3, 0x1, 0x0, 0x0, 0x0, 0x0) syz_io_uring_submit(r0, 0x0, &(0x7f0000000080)=@IORING_OP_EPOLL_CTL=@del={0x1d, 0x2, 0x0, 0xffffffffffffffff, 0x0, r3}, 0x3ff) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xf) fork() getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={0x0}, &(0x7f0000000040)=0xc) ptrace$setopts(0xffffffffffffffff, r4, 0x3, 0x25) 20:43:44 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 22) 20:43:44 executing program 2: r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) r1 = fcntl$dupfd(r0, 0x0, r0) r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r3 = syz_open_dev$tty20(0xc, 0x4, 0x1) r4 = fcntl$dupfd(r3, 0x0, r3) r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000040), 0x4) r6 = openat$autofs(0xffffffffffffff9c, &(0x7f00000000c0), 0x80800, 0x0) r7 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r7, 0x1, 0x0, 0x0, 0x0, 0x0) poll(&(0x7f0000000180)=[{r6, 0x104a}, {r4}, {r2, 0x2480}, {r5, 0x10d2}, {r3}, {r7, 0x8001}], 0x6, 0x6) ioctl$TIOCL_SETSEL(r4, 0x541c, &(0x7f0000000000)={0x2, {0x2, 0x3, 0x14, 0x0, 0x1}}) ioctl$VT_RESIZE(r1, 0x5609, &(0x7f0000000080)={0x0, 0x7, 0x3}) 20:43:44 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r1, &(0x7f0000000140)=@ocfs2={0xc, 0x1, {0x400, 0x5}}, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='net/tcp6\x00') ioctl$EVIOCSFF(r1, 0x40304580, &(0x7f0000000000)={0x53, 0x0, 0xfb70, {0xcd, 0x7fff}, {0x3, 0x400}, @period={0x5c, 0x2, 0x85, 0xa06f, 0x800, {0x81, 0x219, 0x2, 0x3}, 0x6, &(0x7f00000000c0)=[0x2158, 0x92a2, 0x81, 0x205, 0x5, 0x7]}}) ioctl$FS_IOC_GET_ENCRYPTION_NONCE(r0, 0x8010661b, &(0x7f00000001c0)) preadv(r0, &(0x7f0000000400)=[{&(0x7f0000000200)=""/206, 0xce}], 0x1, 0x81, 0x0) sendfile(r0, r0, &(0x7f0000000080)=0xfffffffffffffffa, 0x101) 20:43:44 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 18) [ 1496.394464] FAULT_INJECTION: forcing a failure. [ 1496.394464] name failslab, interval 1, probability 0, space 0, times 0 [ 1496.395787] CPU: 1 PID: 21799 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1496.396657] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1496.397873] Call Trace: [ 1496.398139] [ 1496.398386] dump_stack_lvl+0x8b/0xb3 [ 1496.398794] should_fail.cold+0x5/0xa [ 1496.399202] ? dup_mm+0x88/0x1250 [ 1496.399584] should_failslab+0x5/0x10 [ 1496.399986] kmem_cache_alloc+0x5b/0x480 [ 1496.400430] dup_mm+0x88/0x1250 [ 1496.400786] ? lock_release+0x3b2/0x6f0 [ 1496.401224] ? copy_process+0x278b/0x6d10 [ 1496.401676] ? replace_mm_exe_file+0x490/0x490 [ 1496.402166] ? __raw_spin_lock_init+0x36/0x110 [ 1496.402654] copy_process+0x3a28/0x6d10 [ 1496.403096] ? __cleanup_sighand+0xb0/0xb0 [ 1496.403560] ? lock_release+0x3b2/0x6f0 [ 1496.403978] ? ksys_write+0x212/0x250 [ 1496.404374] ? kernel_clone+0x2f8/0xa60 [ 1496.404795] kernel_clone+0xe7/0xa60 [ 1496.405194] ? find_held_lock+0x2c/0x110 [ 1496.405615] ? create_io_thread+0xf0/0xf0 [ 1496.406054] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1496.406566] ? bit_wait_io_timeout+0x160/0x160 [ 1496.407044] ? lock_is_held_type+0xd7/0x130 [ 1496.407492] __do_sys_fork+0x8a/0xc0 [ 1496.407881] ? kernel_clone+0xa60/0xa60 [ 1496.408294] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1496.408892] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1496.409424] ? lockdep_hardirqs_on+0x79/0x100 [ 1496.409884] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1496.410418] do_syscall_64+0x3b/0x90 [ 1496.410809] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1496.411345] RIP: 0033:0x7fe050cdfb19 [ 1496.411725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1496.413627] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1496.414420] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1496.415166] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1496.415903] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1496.416639] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1496.417394] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1496.418151] [ 1496.457784] FAULT_INJECTION: forcing a failure. [ 1496.457784] name failslab, interval 1, probability 0, space 0, times 0 [ 1496.459051] CPU: 1 PID: 21938 Comm: syz-executor.3 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1496.459916] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1496.461097] Call Trace: [ 1496.461371] [ 1496.461603] dump_stack_lvl+0x8b/0xb3 [ 1496.462010] should_fail.cold+0x5/0xa [ 1496.462427] ? create_object.isra.0+0x3a/0xa20 [ 1496.462924] should_failslab+0x5/0x10 [ 1496.463327] kmem_cache_alloc+0x5b/0x480 [ 1496.463767] ? obj_cgroup_charge+0x247/0x740 [ 1496.464255] create_object.isra.0+0x3a/0xa20 [ 1496.464720] ? kasan_unpoison+0x23/0x50 [ 1496.465152] __kmalloc_node+0x26f/0x470 [ 1496.465585] kvmalloc_node+0x3e/0x130 [ 1496.465994] alloc_fdtable+0x139/0x270 [ 1496.466410] dup_fd+0x718/0xca0 [ 1496.466761] copy_process+0x1fd8/0x6d10 [ 1496.467213] ? __cleanup_sighand+0xb0/0xb0 [ 1496.467680] ? lock_release+0x3b2/0x6f0 [ 1496.468094] ? ksys_write+0x212/0x250 [ 1496.468491] ? kernel_clone+0x2f8/0xa60 [ 1496.468934] kernel_clone+0xe7/0xa60 [ 1496.469324] ? find_held_lock+0x2c/0x110 [ 1496.469774] ? create_io_thread+0xf0/0xf0 [ 1496.470209] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1496.470726] ? bit_wait_io_timeout+0x160/0x160 [ 1496.471202] ? lock_is_held_type+0xd7/0x130 [ 1496.471654] __do_sys_fork+0x8a/0xc0 [ 1496.472048] ? kernel_clone+0xa60/0xa60 [ 1496.472473] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1496.473064] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1496.473607] ? lockdep_hardirqs_on+0x79/0x100 [ 1496.474074] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1496.474622] do_syscall_64+0x3b/0x90 [ 1496.475015] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1496.475579] RIP: 0033:0x7f0ecb13db19 [ 1496.475960] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1496.477935] RSP: 002b:00007f0ec86b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1496.478731] RAX: ffffffffffffffda RBX: 00007f0ecb250f60 RCX: 00007f0ecb13db19 [ 1496.479467] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1496.479856] cgroup: fork rejected by pids controller in [ 1496.480210] RBP: 00007f0ec86b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1496.480219] /syz1 [ 1496.480769] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1496.480778] R13: 00007ffe225f4d7f R14: 00007f0ec86b3300 R15: 0000000000022000 [ 1496.480799] [ 1496.488330] 20:43:58 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') ioctl$AUTOFS_IOC_SETTIMEOUT(0xffffffffffffffff, 0x80049367, &(0x7f0000000000)=0x5) preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) 20:43:58 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r0, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) ioctl$EXT4_IOC_SWAP_BOOT(r1, 0x6611) preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) 20:43:58 executing program 1: syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) r3 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ff8000/0x2000)=nil, 0x2000, 0x100000a, 0x10, 0xffffffffffffffff, 0x0) io_uring_enter(r3, 0x1, 0x0, 0x0, 0x0, 0x0) syz_io_uring_submit(r0, 0x0, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x5, 0x0, @fd=r3, 0x1, 0x0, 0xfffffff8, 0x5}, 0xff) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() 20:43:58 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/snmp6\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) 20:43:58 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 41) 20:43:58 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 19) 20:43:58 executing program 2: r0 = socket$inet_udp(0x2, 0x2, 0x0) close(r0) setsockopt$inet_int(r0, 0x0, 0x32, &(0x7f0000000040), 0x4) 20:43:58 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 23) [ 1510.173086] FAULT_INJECTION: forcing a failure. [ 1510.173086] name failslab, interval 1, probability 0, space 0, times 0 [ 1510.174460] CPU: 0 PID: 22155 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1510.175336] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1510.176513] Call Trace: [ 1510.176783] [ 1510.177024] dump_stack_lvl+0x8b/0xb3 [ 1510.177446] should_fail.cold+0x5/0xa [ 1510.177864] ? create_object.isra.0+0x3a/0xa20 [ 1510.178376] should_failslab+0x5/0x10 [ 1510.178786] kmem_cache_alloc+0x5b/0x480 [ 1510.179222] create_object.isra.0+0x3a/0xa20 [ 1510.179702] ? kasan_unpoison+0x23/0x50 [ 1510.180136] kmem_cache_alloc+0x239/0x480 [ 1510.180585] ptlock_alloc+0x1d/0x70 [ 1510.180969] pte_alloc_one+0x68/0x1f0 [ 1510.181394] __pte_alloc+0x69/0x200 [ 1510.181788] ? pmd_install+0x250/0x250 [ 1510.182201] ? do_raw_spin_unlock+0x4f/0x210 [ 1510.182688] ? _raw_spin_unlock+0x24/0x40 [ 1510.183146] copy_page_range+0x1b8b/0x3ea0 [ 1510.183645] ? vm_iomap_memory+0x190/0x190 [ 1510.184105] ? up_write+0x148/0x460 [ 1510.184509] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1510.185063] ? __vma_link_rb+0x540/0x700 [ 1510.185516] dup_mm+0x961/0x1250 [ 1510.185897] ? replace_mm_exe_file+0x490/0x490 [ 1510.186392] ? __raw_spin_lock_init+0x36/0x110 [ 1510.186882] copy_process+0x3a28/0x6d10 [ 1510.187335] ? __cleanup_sighand+0xb0/0xb0 [ 1510.187796] ? lock_release+0x3b2/0x6f0 [ 1510.188225] ? ksys_write+0x212/0x250 [ 1510.188640] ? kernel_clone+0x2f8/0xa60 [ 1510.189076] kernel_clone+0xe7/0xa60 [ 1510.189496] ? find_held_lock+0x2c/0x110 [ 1510.189931] ? create_io_thread+0xf0/0xf0 [ 1510.190393] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1510.190928] ? bit_wait_io_timeout+0x160/0x160 [ 1510.191433] __do_sys_fork+0x8a/0xc0 [ 1510.191836] ? kernel_clone+0xa60/0xa60 [ 1510.192280] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1510.192837] ? lockdep_hardirqs_on+0x79/0x100 [ 1510.193326] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1510.193350] FAULT_INJECTION: forcing a failure. [ 1510.193350] name failslab, interval 1, probability 0, space 0, times 0 [ 1510.193875] do_syscall_64+0x3b/0x90 [ 1510.196661] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1510.197223] RIP: 0033:0x7f9fc1cadb19 [ 1510.197624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1510.199646] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1510.200504] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1510.201261] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1510.202039] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1510.202783] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1510.203563] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1510.204346] [ 1510.204765] CPU: 1 PID: 22189 Comm: syz-executor.3 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1510.206619] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1510.209028] Call Trace: [ 1510.209634] [ 1510.210115] dump_stack_lvl+0x8b/0xb3 [ 1510.210946] should_fail.cold+0x5/0xa [ 1510.211765] ? create_object.isra.0+0x3a/0xa20 [ 1510.212755] should_failslab+0x5/0x10 [ 1510.213575] kmem_cache_alloc+0x5b/0x480 [ 1510.214442] ? obj_cgroup_charge+0x247/0x740 [ 1510.215396] create_object.isra.0+0x3a/0xa20 [ 1510.216343] ? kasan_unpoison+0x23/0x50 [ 1510.217213] kmem_cache_alloc+0x239/0x480 [ 1510.218105] copy_process+0x2142/0x6d10 [ 1510.218993] ? __cleanup_sighand+0xb0/0xb0 [ 1510.219917] ? lock_release+0x3b2/0x6f0 [ 1510.220767] ? ksys_write+0x212/0x250 [ 1510.221603] ? kernel_clone+0x2f8/0xa60 [ 1510.222461] kernel_clone+0xe7/0xa60 [ 1510.223266] ? find_held_lock+0x2c/0x110 [ 1510.224131] ? create_io_thread+0xf0/0xf0 [ 1510.225025] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1510.226094] ? bit_wait_io_timeout+0x160/0x160 [ 1510.227072] ? lock_is_held_type+0xd7/0x130 [ 1510.227998] __do_sys_fork+0x8a/0xc0 [ 1510.228800] ? kernel_clone+0xa60/0xa60 [ 1510.229671] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1510.230865] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1510.231966] ? lockdep_hardirqs_on+0x79/0x100 [ 1510.232919] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1510.234024] do_syscall_64+0x3b/0x90 [ 1510.234827] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1510.235938] RIP: 0033:0x7f0ecb13db19 [ 1510.236726] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1510.240624] RSP: 002b:00007f0ec86b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1510.242251] RAX: ffffffffffffffda RBX: 00007f0ecb250f60 RCX: 00007f0ecb13db19 [ 1510.243765] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1510.245292] RBP: 00007f0ec86b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1510.246804] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1510.248312] R13: 00007ffe225f4d7f R14: 00007f0ec86b3300 R15: 0000000000022000 [ 1510.249857] 20:43:58 executing program 7: r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r0, 0x1, 0x0, 0x0, 0x0, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r7 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) r8 = dup(0xffffffffffffffff) r9 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r9, 0x1, 0x0, 0x0, 0x0, 0x0) ioctl$FIDEDUPERANGE(r0, 0xc0189436, &(0x7f0000000340)={0x200, 0x2, 0x7, 0x0, 0x0, [{{r3}, 0x8}, {{r4}, 0x3f}, {{}, 0xff}, {{r7}, 0x1}, {{r8}, 0x9}, {{r9}, 0xfffffffffffffff7}, {{}, 0x9}]}) r10 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0xffed}], 0x0, &(0x7f0000011200)=ANY=[]) chdir(&(0x7f0000000140)='./file0\x00') r11 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0) mkdirat(r10, &(0x7f0000000040)='./file2\x00', 0x0) r12 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) pwritev(r12, &(0x7f00000001c0)=[{&(0x7f0000000300)="99", 0x1}], 0x1, 0x8000000, 0x0) sendfile(r11, r11, 0x0, 0xffffffff000) [ 1510.268108] FAULT_INJECTION: forcing a failure. [ 1510.268108] name failslab, interval 1, probability 0, space 0, times 0 [ 1510.269354] CPU: 0 PID: 22188 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1510.270278] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1510.271506] Call Trace: [ 1510.271788] [ 1510.272027] dump_stack_lvl+0x8b/0xb3 [ 1510.272444] should_fail.cold+0x5/0xa [ 1510.272847] ? create_object.isra.0+0x3a/0xa20 [ 1510.273374] should_failslab+0x5/0x10 [ 1510.273779] kmem_cache_alloc+0x5b/0x480 [ 1510.274214] ? obj_cgroup_charge+0x247/0x740 [ 1510.274697] create_object.isra.0+0x3a/0xa20 [ 1510.275182] ? kasan_unpoison+0x23/0x50 [ 1510.275621] kmem_cache_alloc+0x239/0x480 [ 1510.276078] dup_mm+0x88/0x1250 [ 1510.276444] ? lock_release+0x3b2/0x6f0 [ 1510.276867] ? copy_process+0x278b/0x6d10 [ 1510.277335] ? replace_mm_exe_file+0x490/0x490 [ 1510.277833] ? __raw_spin_lock_init+0x36/0x110 [ 1510.278342] copy_process+0x3a28/0x6d10 [ 1510.278798] ? __cleanup_sighand+0xb0/0xb0 [ 1510.279267] ? lock_release+0x3b2/0x6f0 [ 1510.279704] ? ksys_write+0x212/0x250 [ 1510.280123] ? kernel_clone+0x2f8/0xa60 [ 1510.280563] kernel_clone+0xe7/0xa60 [ 1510.280973] ? find_held_lock+0x2c/0x110 [ 1510.281427] ? create_io_thread+0xf0/0xf0 [ 1510.281884] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1510.282429] ? bit_wait_io_timeout+0x160/0x160 [ 1510.282933] ? lock_is_held_type+0xd7/0x130 [ 1510.283411] __do_sys_fork+0x8a/0xc0 [ 1510.283819] ? kernel_clone+0xa60/0xa60 [ 1510.284256] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1510.284865] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1510.285434] ? lockdep_hardirqs_on+0x79/0x100 [ 1510.285930] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1510.286505] do_syscall_64+0x3b/0x90 [ 1510.286925] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1510.287501] RIP: 0033:0x7fe050cdfb19 [ 1510.287890] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1510.289878] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1510.290691] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1510.291442] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1510.292191] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1510.292930] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1510.293691] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1510.294478] 20:43:58 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x10000081, 0x0) 20:43:58 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000002c0)={0x14, 0x2a, 0x103, 0x0, 0x0, "", [@generic="ab"]}, 0x14}], 0x1}, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000280), 0x2, 0x0) r4 = accept$inet6(r3, &(0x7f0000001500)={0xa, 0x0, 0x0, @mcast1}, &(0x7f0000001540)=0x1c) sendmmsg(r0, &(0x7f0000001980)=[{{&(0x7f0000001580)=@pppol2tpin6={0x18, 0x1, {0x0, r4, 0x1, 0x3, 0x0, 0x2, {0xa, 0x4e24, 0x8, @local, 0x4}}}, 0x80, &(0x7f00000017c0)=[{&(0x7f0000001600)="4dddb3ae5d6d727fe2092c5eb64cd473a465b30e84c72d6ace3340bc5119f950d633cdb8ab27a2e82c3ac7011b6160a9227c93f510892f69ecc26a820ac6fd4e8bf41ad896f54f18ae75d711908f17865d01f419420a44a57e4abec50393790c9556802def98e4cf9980cdf7f541c307453d78d8a7f1003d1ad34b38940d846be10d45a3cfaa844934871b9343eed0c1818455ab7c06b3804adbdb723c4b6b1f0e555cfb0bb4ab9c2280ff582607a6a01468b4", 0xb3}, {&(0x7f00000016c0)="8f74f30b29ce32f165efedf1a9cceebeabeb538577a9fea7a8a807edcf42bdfbb2b362b46ce1a68154bdefbb85ae28417c361f8484a315a93c837080c0b003295be2e1390b5c64ee311f3888161fe53d87f4e5f3bc96c93b9b411f582b6145cc3984da0d66e4ed9b64c796eb0bbbc29d0dd1ec25a0dbc5d0dcc04f389defb7fbfb116f363c8aaae22118385349954480b56de0ef12b89fb4c099bce824f69fa7473930c485d6a30391bbbdc5c28d1bf6ae8bb634d97673e93810a02496", 0xbd}, {&(0x7f0000001780)="ff7823455d85891ed8ea431dd55a044f52ec29254c2f38e323427ca0a25b0c44324b2e", 0x23}], 0x3, &(0x7f0000001800)=[{0x70, 0x1, 0x26b, "3a9003c54ddfc63a5c7916b98aee19ac900fc3db6d047fa49cb68a75d5c585322b1792d87a51fd0d1608218ef88527a0d83491ee43730dc9e55a778e5a819f1998ca84754ea767664e4d26a097926d24c72380e3eacc5fc290eb29a7"}, {0xe0, 0x88, 0x5, "100bf7d60940fcf360bf14f1393b8d412424ff2d8448d8119ebc2e58a48026e424c949d2e8b54ed0188e7e170cb1ddd95ea2c97d323fe2b34e2324732495542aca500e8e91cc33bafa6219def897680d766f97826411262a425d223b237876352171d3475548607dbef6f02a8f6d390e446edc42307c0c2cb3ea4678e6e9c8fb66d612e5e434b83faf94a857f53531ae36977839505b5de1c106a125f7cd3a24cdfbceb42d159b80bd97223e247dd2e33646674b11fa89246ee6a3855087e2b341f77c44a78bb2f099d06b"}], 0x150}}], 0x1, 0x1) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) preadv(r3, &(0x7f0000001440)=[{&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000000000)=""/239, 0xef}, {&(0x7f0000000100)=""/100, 0x64}, {&(0x7f0000000180)=""/139, 0x8b}, {&(0x7f0000001300)=""/95, 0x5f}, {&(0x7f0000001380)=""/183, 0xb7}], 0x6, 0xf7e9, 0xffffffff) [ 1510.310141] loop7: detected capacity change from 0 to 255 20:43:58 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(0xffffffffffffffff, &(0x7f0000001200), 0x0, 0x1010481, 0x0) r1 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000001240)='/proc/self/attr/exec\x00', 0x2, 0x0) ioctl$FITHAW(r1, 0xc0045878) openat(r0, &(0x7f0000000000)='./file0\x00', 0x0, 0x160) [ 1510.328328] FAT-fs (loop7): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:43:58 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r1, &(0x7f0000000140)=@ocfs2={0xc, 0x1, {0x400, 0x5}}, 0x0) ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r0) preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) [ 1510.441221] FAT-fs (loop7): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 20:43:58 executing program 7: r0 = syz_io_uring_setup(0xeb3, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000280)=@IORING_OP_SYNC_FILE_RANGE, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x2, 0x0, @fd_index, 0x0, 0x0}, 0x0) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) 20:43:59 executing program 2: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f00000002c0)={0x14, 0x2a, 0x103, 0x0, 0x0, "", [@generic="ab"]}, 0x14}], 0x1}, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000280), 0x2, 0x0) r4 = accept$inet6(r3, &(0x7f0000001500)={0xa, 0x0, 0x0, @mcast1}, &(0x7f0000001540)=0x1c) sendmmsg(r0, &(0x7f0000001980)=[{{&(0x7f0000001580)=@pppol2tpin6={0x18, 0x1, {0x0, r4, 0x1, 0x3, 0x0, 0x2, {0xa, 0x4e24, 0x8, @local, 0x4}}}, 0x80, &(0x7f00000017c0)=[{&(0x7f0000001600)="4dddb3ae5d6d727fe2092c5eb64cd473a465b30e84c72d6ace3340bc5119f950d633cdb8ab27a2e82c3ac7011b6160a9227c93f510892f69ecc26a820ac6fd4e8bf41ad896f54f18ae75d711908f17865d01f419420a44a57e4abec50393790c9556802def98e4cf9980cdf7f541c307453d78d8a7f1003d1ad34b38940d846be10d45a3cfaa844934871b9343eed0c1818455ab7c06b3804adbdb723c4b6b1f0e555cfb0bb4ab9c2280ff582607a6a01468b4", 0xb3}, {&(0x7f00000016c0)="8f74f30b29ce32f165efedf1a9cceebeabeb538577a9fea7a8a807edcf42bdfbb2b362b46ce1a68154bdefbb85ae28417c361f8484a315a93c837080c0b003295be2e1390b5c64ee311f3888161fe53d87f4e5f3bc96c93b9b411f582b6145cc3984da0d66e4ed9b64c796eb0bbbc29d0dd1ec25a0dbc5d0dcc04f389defb7fbfb116f363c8aaae22118385349954480b56de0ef12b89fb4c099bce824f69fa7473930c485d6a30391bbbdc5c28d1bf6ae8bb634d97673e93810a02496", 0xbd}, {&(0x7f0000001780)="ff7823455d85891ed8ea431dd55a044f52ec29254c2f38e323427ca0a25b0c44324b2e", 0x23}], 0x3, &(0x7f0000001800)=[{0x70, 0x1, 0x26b, "3a9003c54ddfc63a5c7916b98aee19ac900fc3db6d047fa49cb68a75d5c585322b1792d87a51fd0d1608218ef88527a0d83491ee43730dc9e55a778e5a819f1998ca84754ea767664e4d26a097926d24c72380e3eacc5fc290eb29a7"}, {0xe0, 0x88, 0x5, "100bf7d60940fcf360bf14f1393b8d412424ff2d8448d8119ebc2e58a48026e424c949d2e8b54ed0188e7e170cb1ddd95ea2c97d323fe2b34e2324732495542aca500e8e91cc33bafa6219def897680d766f97826411262a425d223b237876352171d3475548607dbef6f02a8f6d390e446edc42307c0c2cb3ea4678e6e9c8fb66d612e5e434b83faf94a857f53531ae36977839505b5de1c106a125f7cd3a24cdfbceb42d159b80bd97223e247dd2e33646674b11fa89246ee6a3855087e2b341f77c44a78bb2f099d06b"}], 0x150}}], 0x1, 0x1) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) preadv(r3, &(0x7f0000001440)=[{&(0x7f0000000300)=""/4096, 0x1000}, {&(0x7f0000000000)=""/239, 0xef}, {&(0x7f0000000100)=""/100, 0x64}, {&(0x7f0000000180)=""/139, 0x8b}, {&(0x7f0000001300)=""/95, 0x5f}, {&(0x7f0000001380)=""/183, 0xb7}], 0x6, 0xf7e9, 0xffffffff) 20:43:59 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/class/scsi_host', 0x191001, 0x171) r2 = accept$inet6(r0, 0x0, &(0x7f0000000280)) r3 = syz_open_dev$vcsu(&(0x7f0000000300), 0x7, 0x4000) pidfd_getfd(r2, r3, 0x0) write$binfmt_misc(r2, &(0x7f0000001440)={'syz0', "d631af167983112530b7f4a5f44c4e89a325b217c29b1ac369ca34d53be7e90fe2c321d3d1c697f9760407adc2712b413dc2e68271baff5fa89ec68f6dc9842f1679f9edda3caf3791e3d25d9c7c"}, 0x52) ioctl$BTRFS_IOC_ADD_DEV(r1, 0x5000940a, &(0x7f0000000440)={{r2}, "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"}) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000001c0)={'wlan0\x00'}) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000380)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_MESH_CONFIG(r0, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="100100000000fedbdf251d000000104001005405000e0003000000080003400000000000353e", @ANYRES32=0x0, @ANYBLOB="08000300", @ANYRES32=0x0, @ANYBLOB="08000300", @ANYRES32=r4, @ANYBLOB], 0x40}, 0x1, 0x0, 0x0, 0x24004800}, 0x4810) sendfile(r0, r0, &(0x7f0000000000)=0xc4, 0x0) 20:43:59 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 42) [ 1510.604062] FAULT_INJECTION: forcing a failure. [ 1510.604062] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1510.605409] CPU: 0 PID: 22759 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1510.606283] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1510.607489] Call Trace: [ 1510.607765] [ 1510.608004] dump_stack_lvl+0x8b/0xb3 [ 1510.608420] should_fail.cold+0x5/0xa [ 1510.608856] prepare_alloc_pages+0x17b/0x500 [ 1510.609350] __alloc_pages+0x131/0x4e0 [ 1510.609779] ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10 [ 1510.610435] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1510.611011] ? lock_is_held_type+0xd7/0x130 [ 1510.611476] alloc_pages+0x1a0/0x2f0 [ 1510.611889] pte_alloc_one+0x16/0x1f0 [ 1510.612302] __pte_alloc+0x69/0x200 [ 1510.612695] ? pmd_install+0x250/0x250 [ 1510.613128] copy_page_range+0x1b8b/0x3ea0 [ 1510.613622] ? vm_iomap_memory+0x190/0x190 [ 1510.614078] ? up_write+0x148/0x460 [ 1510.614493] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1510.615053] ? __vma_link_rb+0x540/0x700 [ 1510.615495] dup_mm+0x961/0x1250 [ 1510.615864] ? replace_mm_exe_file+0x490/0x490 [ 1510.616351] ? __raw_spin_lock_init+0x36/0x110 [ 1510.616838] copy_process+0x3a28/0x6d10 [ 1510.617283] ? __cleanup_sighand+0xb0/0xb0 [ 1510.617741] ? lock_release+0x3b2/0x6f0 [ 1510.618160] ? ksys_write+0x212/0x250 [ 1510.618565] ? kernel_clone+0x2f8/0xa60 [ 1510.618985] kernel_clone+0xe7/0xa60 [ 1510.619387] ? find_held_lock+0x2c/0x110 [ 1510.619825] ? create_io_thread+0xf0/0xf0 [ 1510.620267] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1510.620790] ? bit_wait_io_timeout+0x160/0x160 [ 1510.621286] ? lock_is_held_type+0xd7/0x130 [ 1510.621836] __do_sys_fork+0x8a/0xc0 [ 1510.622314] ? kernel_clone+0xa60/0xa60 [ 1510.622748] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1510.623352] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1510.623904] ? lockdep_hardirqs_on+0x79/0x100 [ 1510.624389] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1510.624943] do_syscall_64+0x3b/0x90 [ 1510.625353] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1510.625923] RIP: 0033:0x7f9fc1cadb19 [ 1510.626327] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1510.628303] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1510.629133] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1510.629904] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1510.630680] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1510.631462] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1510.632235] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1510.633017] 20:44:12 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = open(&(0x7f0000000080)='./file0\x00', 0x200, 0x10) syz_genetlink_get_family_id$batadv(&(0x7f0000000000), r4) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000240)=ANY=[@ANYBLOB="4861a9e4", @ANYRES16=r2, @ANYBLOB="f9ea00000000000000004400000008000300", @ANYRES32=r5, @ANYBLOB="0c00238006000c0003000000"], 0x28}}, 0x0) preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) 20:44:12 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000500)={0x1c, r1, 0x1, 0x0, 0x0, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x410c0000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0xbc, r1, 0x100, 0x70bd25, 0x25dfdbfd, {{}, {@val={0x8}, @val={0xc, 0x99, {0xc12, 0x25}}}}, [@NL80211_ATTR_IE={0x1c, 0x2a, [@peer_mgmt={0x75, 0x16, {0x1, 0x227, @val=0x1f, @void, @val="9e6b36f7fda80dfc7ac03e46749ee9ea"}}]}, @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x6}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xb}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x2f}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x1}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x812a}], @NL80211_ATTR_EXTERNAL_AUTH_SUPPORT={0x4}, @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x26}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xe}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xa}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x1b}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x80000000}], @NL80211_ATTR_SSID={0xd, 0x34, @random="bf850d2810ee2d6db2"}, @NL80211_ATTR_PRIVACY={0x4}]}, 0xbc}, 0x1, 0x0, 0x0, 0x1}, 0x24008801) syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), r0) syz_io_uring_setup(0xeaf, &(0x7f0000000200)={0x0, 0x0, 0x4}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() 20:44:12 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 43) 20:44:12 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 24) 20:44:12 executing program 7: syz_mount_image$msdos(&(0x7f00000002c0), &(0x7f0000000300)='./file0\x00', 0x0, 0x0, &(0x7f0000000500), 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="00000000000000c246c84fd45c68bb6f94a24ba824eceb68f3bec9a5355ec582f5addc89059a5d79b251707d19f7fde95294b9885179ef734b81aadbb315151b7755ad3ea7787e2241109d6a4b8762e7c881b142311144471ca1838a993109eab5daef56012c9f"]) 20:44:12 executing program 5: syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') [ 1523.834869] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 1523.837395] FAULT_INJECTION: forcing a failure. [ 1523.837395] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1523.838640] CPU: 0 PID: 22849 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1523.839539] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1523.840723] Call Trace: [ 1523.840996] [ 1523.841233] dump_stack_lvl+0x8b/0xb3 [ 1523.841662] should_fail.cold+0x5/0xa [ 1523.842061] prepare_alloc_pages+0x17b/0x500 [ 1523.842543] __alloc_pages+0x131/0x4e0 [ 1523.842964] ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10 [ 1523.843597] ? lock_is_held_type+0xd7/0x130 [ 1523.844065] alloc_pages+0x1a0/0x2f0 [ 1523.844468] __get_free_pages+0xc/0xa0 [ 1523.844872] pgd_alloc+0x84/0x4b0 [ 1523.845239] ? lock_downgrade+0x6d0/0x6d0 [ 1523.845680] ? pgd_page_get_mm+0x40/0x40 [ 1523.846104] ? lockdep_init_map_type+0x21a/0x7e0 [ 1523.846592] ? lockdep_init_map_type+0x21a/0x7e0 [ 1523.847089] mm_init+0x5cf/0xa70 [ 1523.847454] dup_mm+0xd5/0x1250 [ 1523.847817] ? lock_release+0x3b2/0x6f0 [ 1523.848235] ? copy_process+0x278b/0x6d10 [ 1523.848670] ? replace_mm_exe_file+0x490/0x490 20:44:12 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r1, 0x5437, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCVHANGUP(r2, 0x5437, 0x0) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f0000000080)={{0x1, 0x1, 0x18, r2, {0xffffffffffffffff}}, './file0\x00'}) ioctl$FIONREAD(r3, 0x541b, &(0x7f0000001600)) [ 1523.849146] ? __raw_spin_lock_init+0x36/0x110 [ 1523.849799] copy_process+0x3a28/0x6d10 [ 1523.850229] ? __cleanup_sighand+0xb0/0xb0 [ 1523.850675] ? lock_release+0x3b2/0x6f0 [ 1523.851090] ? ksys_write+0x212/0x250 [ 1523.851489] ? kernel_clone+0x2f8/0xa60 [ 1523.851911] kernel_clone+0xe7/0xa60 [ 1523.852310] ? find_held_lock+0x2c/0x110 [ 1523.852733] ? create_io_thread+0xf0/0xf0 [ 1523.853151] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1523.853674] ? bit_wait_io_timeout+0x160/0x160 [ 1523.854148] ? lock_is_held_type+0xd7/0x130 [ 1523.854600] __do_sys_fork+0x8a/0xc0 [ 1523.854991] ? kernel_clone+0xa60/0xa60 [ 1523.855408] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1523.855999] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1523.856533] ? lockdep_hardirqs_on+0x79/0x100 [ 1523.856991] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1523.857515] do_syscall_64+0x3b/0x90 [ 1523.857908] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1523.858451] RIP: 0033:0x7fe050cdfb19 [ 1523.858851] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1523.860753] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1523.861547] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1523.862290] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1523.862763] FAULT_INJECTION: forcing a failure. [ 1523.862763] name failslab, interval 1, probability 0, space 0, times 0 20:44:12 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 20) [ 1523.863026] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1523.863036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1523.863044] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1523.863065] [ 1523.870292] CPU: 1 PID: 22846 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1523.871926] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1523.874171] Call Trace: [ 1523.874181] [ 1523.874916] dump_stack_lvl+0x8b/0xb3 [ 1523.875699] should_fail.cold+0x5/0xa [ 1523.875733] ? ptlock_alloc+0x1d/0x70 [ 1523.875762] should_failslab+0x5/0x10 [ 1523.875786] kmem_cache_alloc+0x5b/0x480 [ 1523.878456] ptlock_alloc+0x1d/0x70 [ 1523.879177] pte_alloc_one+0x68/0x1f0 [ 1523.879939] __pte_alloc+0x69/0x200 [ 1523.880670] ? pmd_install+0x250/0x250 [ 1523.881480] copy_page_range+0x1b8b/0x3ea0 [ 1523.882372] ? vm_iomap_memory+0x190/0x190 [ 1523.883217] ? up_write+0x148/0x460 [ 1523.883945] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1523.884929] ? __vma_link_rb+0x540/0x700 [ 1523.885752] dup_mm+0x961/0x1250 [ 1523.886452] ? replace_mm_exe_file+0x490/0x490 [ 1523.887361] ? __raw_spin_lock_init+0x36/0x110 [ 1523.888273] copy_process+0x3a28/0x6d10 [ 1523.889100] ? __cleanup_sighand+0xb0/0xb0 [ 1523.889977] ? lock_release+0x3b2/0x6f0 [ 1523.890766] ? ksys_write+0x212/0x250 [ 1523.891532] ? kernel_clone+0x2f8/0xa60 [ 1523.892339] kernel_clone+0xe7/0xa60 [ 1523.893085] ? find_held_lock+0x2c/0x110 [ 1523.893917] ? create_io_thread+0xf0/0xf0 [ 1523.894809] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1523.895340] FAT-fs (loop7): bogus number of reserved sectors [ 1523.895858] ? bit_wait_io_timeout+0x160/0x160 [ 1523.896724] FAT-fs (loop7): Can't find a valid FAT filesystem [ 1523.897669] ? lock_is_held_type+0xd7/0x130 [ 1523.899194] __do_sys_fork+0x8a/0xc0 [ 1523.899992] ? kernel_clone+0xa60/0xa60 [ 1523.900839] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1523.902034] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1523.903145] ? lockdep_hardirqs_on+0x79/0x100 [ 1523.904116] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1523.905205] do_syscall_64+0x3b/0x90 [ 1523.906013] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1523.907101] RIP: 0033:0x7f9fc1cadb19 [ 1523.907894] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1523.911763] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1523.913352] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1523.914831] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1523.916313] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1523.917810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1523.919310] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1523.920835] 20:44:12 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/class/scsi_host', 0x191001, 0x171) r2 = accept$inet6(r0, 0x0, &(0x7f0000000280)) r3 = syz_open_dev$vcsu(&(0x7f0000000300), 0x7, 0x4000) pidfd_getfd(r2, r3, 0x0) write$binfmt_misc(r2, &(0x7f0000001440)={'syz0', "d631af167983112530b7f4a5f44c4e89a325b217c29b1ac369ca34d53be7e90fe2c321d3d1c697f9760407adc2712b413dc2e68271baff5fa89ec68f6dc9842f1679f9edda3caf3791e3d25d9c7c"}, 0x52) ioctl$BTRFS_IOC_ADD_DEV(r1, 0x5000940a, &(0x7f0000000440)={{r2}, "c28b2ea7ae2666722db261e917ba77080ba2bf5b60f27b8194801674128ab375f227bd85bb85a38df0c3463f8aa5a2ca5af4293dda6bba8f50d6172d5ffa6f65474afe734dd379b2549d4bea7b799336eea59a6abd6ccb8335aa89c0979bea7ea85c151835e543f1f5909b27945ca92f1eeb77be3befa513c5a9ad3cf3ae0724ea92c18fd70119e9d7dacb682b35463a84db40fc7620005b623379be298a9ebb7c655e91f7c86aa230fda9c7381923c7e10ede056033c63e5a1cfaf9cb3878f7097d6d5f549aa38e703b526f0a25e64e7d9771cb50449460ab2f25b79794627cfd1e97babf2b1bb3c0a55044f95ec826661512010b97fb88f75fa37f21caad3c6cdea48bbcbc405489da9b0966f658a240ddf5a95a5d23ac47b75a7da9930c58c7d658df09e73522a71b1b56c93e69edda1e3e49da94861be041e4dd4530e49a29ab66501613b6cf4c748c4c9750ddd51c9bc506cbd873c9fd284d23251ff6d7639f068406c2bfa50886918d94e22ee0afdfc2bebdbd7d4b102073494ce9202cc3fa6aec79e670340f1805b36f5cdfce2f62ff124971b2e21d5aca6c41506d47fa444e11d670e1ae0f35e4d1cd191a1d700ded1c62a0e7fde0f9d94a696396e62031b97b5d7a04718604176adcc9024013d310cb33361dbe6df1e84290a234e0c43e44980ced958fb8b4f116697aaf6c9f0375f147aa4a2014728d49a412ff9f32524507bd13307cf6411098b3262d3468a701f40cbca84adcfe58d0d812fe15c282b936a826cd29fd8327b4fc5068776384af41a9af8027ae72a17e425e9c76f1d741fac46d5555ca6f238dc0d2c4da3ff91f50cac5f46837381118f641b79f604b43742d324ba07b5e1265dd9c28027923fa6777824454251ffba317475720076d657d44614a6e0e5660feefefb37b21ed3745573376c00a264664addfc226182ed54de5c2230680684545e6d5865bed94af0b7da1f4165898f57c6cb797c27985262302a592dd8d7b206da61392b4d198eff46b038ec91b33410b19e3eeecd2d562e8cc4d20f599385a1477d6ddb8bb053abab90c49f8c332731ba108362cd1fd946dbab24d7a1ebd39c662c7dae1ad1057a63a84528b98f03bdbd02b1e37b1d606568faf4a18862f6e62f5be607cad334e097a3d867958233abf485fcd6595fa3f6f6cc56341cdffb69bdc0a84038c03d94c92c0f54db46eef44586d0f30b8e385dc0d0b1a7e42d242770e4ee4f87d56f49ed250de9257d5dbbbf9eaf4f0d8d202034faca5eb704175c4e18135323e46b63f12ca7c2baff334a52ed389dd26873d4e590e03c2349772deb58bb5dfc2de35a025598c212fce8b6a65ddade9fbf319b5ce3d46fc9de926895e9a9847a23c43e3e07ff1a3fe01c56d56c73f56af3c8469dbdc379de220e6b067f8b21e4fd2e7ac597e303d5064a59c64e51ed7fd0916112b9abb582da7034034bb25a639be1af70ea2b02d74f708a329f8aefa12678cb5203ff5d88fb05b17a5d26b310ac2a23a8dac6eb70a6f71fe052a9f25baf1cb5af70fcc3f2d4939a439f8cb6c690bec861ab7e678b45b485aaedcaab655d20b9760c33ceb8fc506a26b85a178d7b9d89198b656f77d9ba21b890d64a67b378c9dc4a079db157f8ad80c626157748813acb3cfd4535e11bfb7227ef8260980417bac681f469ad280f478f3aec8d645d808134d763afa45af68206c2b162a065262d270f90780423469068edf260df55b903812916c1b988d3ed1b5bba0b408ba88442bedfffa5effb45c0a426143e782dc9d519c42c329859390291fca4c241fcd6f7d85b1a595a98c71ea400b6cac1593b21fb013f1222370f8cc7e9f2c60e21c9ca07f3da99464afb6bcad8092025cf8b9ae09100cd0bb74fb94bf3e066daa6f88ada108f06483e8d5e2e35a2af5ac856740079071a064daac6f249c6afe79a63967320436ed22aa2288bd57c7ad78461bb24ed4dccaa1d6cd89bc534fde106740e3cedc27ebfd98daea8911d9c94107da4b19d1ff503ed237d9c8f652b4f780721711a15314ad9cc2a7828529e3ccd33ca2b6d4b48a17d961872366ac5c22e6142eccb80c3dbdbeb70465a86c1fa525b2b00251dd5cfd2d53fb7eb7f80ff9aa3dddfe01ad905c6fc006e7f9e76b47cd52c1569df22e032e88e6e768e98135dbeaa013d1d936083a1e4509e2a981c44526fb9fb57f31ff0f691ed43cff8562e3d0f91b4dfd17ac810b911321db6f44c39b8d447d3f6f01bb76f6125dbd176c37d4f04beb31f381226dadb20e10ee1904eeb8ebf16c9600e8cef3bae0644006d81f2299353775e19996d1165d5a85f68749e994a6fc3e914ca3d082d0be54639885108bde8437e246a939bbc715f1189d14ae9bd94c98e903c3790f4403a5243817a78a461a38f477cb034632023e3a1138588fc5fc9b6f5b786c5ed857347a2c96798d4599ba2c835e0300fb2085eeba9c6a254954af5847cb1cabe0e0f9bd69c52b8c18d067350a90b453f3400cbcad7a11315c136d487fedb92cf17928e6f4357107f16f73237b2137afbeaec189492960db0e16899e28a7495b33e8fce397b51f021ff7b49a069d4845e1325a169af6626537e68a567d37c631c72995f889ee898d3edc3e245ec6b85755443ff4098971330f15b687114c8c78ff332fbb898273699086152272d30efe268d79d4b8f8d0368a575be5da65157142be3da19328c8273e3b61ed4808505015d31a4c1c478e2198ae40acdeda6877c235c060a04bb5b68b3ecf81bee6a6d33939b02a8c791f37fce77f13a1e7ef9fb1307be474796a5dc5b31f4691e336c42685cf7a95dfe54d69103a91fa0c1b564fd930ec2e9d6b474c3451483231552e85aa210197b5defc8b680f3a6ce458aba5a7378d2ec48bb28471c0090b27703e56d446fc2396eb46bc7b874c8403459d5b1bd0a89d78f519e84cd447562d0cf2c8538e219647b871df7bf5e2ee011b003ef12b055478f56413c743fa16831fbf183270634a4a4526806ddf6dac45ae2141d67a1bdeaa9d420d451df0a656556e2180f775e1842129e9c286248c91a74bfdacef5da5b2131e34a103ddf06b79364cb202003d216c4666ad3d1c633f1aad0d2d4052210c937a528b3062198b8d7788b04fc44e5936a723223eb84fb2a087377a3f884aae12546f71c818aa73fd4dfa3626022d5d0e115904456be9616607837ae86800a66bc3d2a1f3813a33c7e36c40f2ce00dd384493e51d550bab4199312ace5a183f402517c45c86056f2a8aade3e249c6875351af1fe01b82778548958b4f73939c2431df77a70aab880340bee0098b44089e3f6d97a51b1372d9edd3c110f8e6c1d4d04247b0ff72a2540e404baed98065a95277800fc2e7cfaf103941196598bc523696f4905b8fe3f46ccf0360c4453f86ac5996e44597f0b289571d648f2a018740219e5d8cc2d4d7897d58c38a5307174b04bff78015b69d415fe2aa8befc6aeab22a5d19be21c9770f24d214adb9240a28f081342afa5048cabb86bd847c2c3c72e3845b18b5eb0c714b14ef8801ae59daccb57a27ebfe43f0b37d8ba2bf6844c4cbaf28d7339b27cda9dc704b08ec80372124dd15ba3ab89182ca19319b694c4836367dc3bb27f7bd3e1555ad438773c0c96d7fe6ef40fdcbb29c856c330e41904ce6672ffb83cabcd6506e45279ea8e411a08a217c7de521aeecd3729b04fea73bfe0d74c68a15e97f4c3a8adc4be5f3951811de3cb4ef9b678d9dd9e0c182dc3388a1aea570d06e5803e3cfc84020eb21e41155fd4815087a0abfe3c3b596ef82ddd3b73a4e37adde53efad6e37367bb16804b8dddd5157ba95e1702486c2b1247b90e043476b674d045f4d534ed2f1902127ee0903dd8476c68fff478d54de8acf9b9980414250da32d4d5c68ebac89b55dd14333a9ae73040ef3aa9438193eafa8480ef7f530f20d3715db983deafa89d655cc8ee7bfa91af0e81143081b8fa375665de91b333a67f1efec4f5db7e7c21bb68edc39b7f513699f09e78ce7aed5af81716b410913e22cf6b4d1413d1d493a4fd365bfbf26b6ce068bbe3cbc30349b42d5dfaa4a930dbdcd1562f5e2d09115eb838e02d288664fdbe8edead52396d8868d0e55fcdd98c29f64f15dc84da4530c926f9fa39134f3d1d820b5e2855a29ec9d62153f31902bf006da7ac6069d48f0ae4c91b63beedd25bcaab4b5ae6c16f3eee2ec16612a82de7cab9be3ab220aa1ddb445b0f78d35deb1276b8323a95ea162d5fd0cdba731ad3f7a242ee3ccf191aa4a8e6c437232584ee3a80d4ae6411fa51abd2707378e62fbc2df3dd83630bdffab3954139c9826dc89436090cc24b97263fed90cca64cb7b51e69724a2e5240c6175c6eba63f38b2af168bf02c73a7153fa34d68430beabaef8438b205782e4155ab4c40eb9c57ec391e8df70fd7ad8985e19a5dedba7e9553c1afcf7d06f7e58069c27734a0d684aa267846376e509e0309d6b4dec123136029f66cfb94467a9ceb1125a5ef86d0480b6297b31653c5cf1b6d099819464ac2aff7fd8dfc40b37bb5302efec855a056c5ee86e67595594faa29abff968bea7a0aed072f89fabe3cdba38f3a0720eb95d95e1c353df4f8ebba2a3135ca3262b4361da264bebd76e42585ad86a56ee998e91d5cc00765358dc56b51826c083bc14b6423cb32cffd7b3038d0664e91ab67edf284914435f27561ad2559916e5bcab95c63a24a054aaf3b454575ca5944509fcf441d5c7d292086836918f39ca09e5ca0404efdb6dabfee17517737b67ef309c3e85b4e862636869d5a780177ef2a241917ce65a33c70458ab54dd5ccc29d6e515245e463e001b3a32a68248d26e1620e3a61eefc2cd7bafee91e7dcb0aa047d8cc1c7d05b2bca5fef3529ba357118629acd103eab8858e4123d79fa404877fdf2c98d0d11f5ec6483debccdeb79538967f9bd2f9235b21338ffada7f78d44f2e83dfb617081438b83b52d96b12495d26037042d064988e4c5f2407a3531896bc77cb515c208c235616d976ac48635fefbaa4b1b6b1c74301592fa729b3ef77f9d139be20b1ea9291625244cb3d464b99158f3222e93726593b5b374296c74edc06c144addb48bc16ed772309d4697e829b36af06c8b78ccaf59b70428049aba787826ea3d097e6f64ee0d932795e30e1f919194d325f8b9a3af29fde01338ab4e53b88d8073a4952551919501ea93593f3376af1c556c79f496aa1d63d3d6d523aad09033cd0252342f50838ba8fd9fade444abe5b5e08e6ea90a988dc769f7d39837e8c709a20eb2fde5634f8c6364f5c3290b65288213d7cdec25088de0e7ecdedec70fc2d32d611511eeedfa2cbbc29182631b3f4255e5e2ad8a9b41eabf4da1ac3089f800698e4796b52660210934a740b04d8d5bc5255de2e17020e51e5d5303a0a055bf1ef00f0ba91a3bedd7e295a337d5d8d8d21cb6973306016a567cf53842b0da462578f058d9af7cde4f041c57fbb9101cd699d93e50ca2bd86da43a39be5938d23de4c62a4ac03cbaecf73b9526b1f00d0b65c9d71849a6750b5733e4e0cc3940db0f3cc61fba8ba90ed563041d28743808fc720735ea1bd7879b050b593114cda30b73c0642749addaea03764e3c32be7779a7aac872bc352c2562cca70f5e1fb635feb0899b2008fb64c9f27bafdb525d53905aa19d267178995419671b7062b4ba6a16be832eaec48e0bcea1848b72c1bf48f1c298f267b97d8a71dd8ed59f219b0face30bb3a4758c5"}) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000001c0)={'wlan0\x00'}) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000380)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_MESH_CONFIG(r0, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="100100000000fedbdf251d000000104001005405000e0003000000080003400000000000353e", @ANYRES32=0x0, @ANYBLOB="08000300", @ANYRES32=0x0, @ANYBLOB="08000300", @ANYRES32=r4, @ANYBLOB], 0x40}, 0x1, 0x0, 0x0, 0x24004800}, 0x4810) sendfile(r0, r0, &(0x7f0000000000)=0xc4, 0x0) 20:44:12 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 25) [ 1523.944678] FAT-fs (loop7): bogus number of reserved sectors [ 1523.945313] FAT-fs (loop7): Can't find a valid FAT filesystem [ 1523.963452] FAULT_INJECTION: forcing a failure. [ 1523.963452] name failslab, interval 1, probability 0, space 0, times 0 [ 1523.965889] CPU: 1 PID: 22955 Comm: syz-executor.3 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1523.967613] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1523.969968] Call Trace: [ 1523.970510] [ 1523.970971] dump_stack_lvl+0x8b/0xb3 [ 1523.971779] should_fail.cold+0x5/0xa [ 1523.972587] ? copy_process+0x22c1/0x6d10 [ 1523.973472] should_failslab+0x5/0x10 [ 1523.974271] kmem_cache_alloc+0x5b/0x480 [ 1523.975144] copy_process+0x22c1/0x6d10 [ 1523.976042] ? __cleanup_sighand+0xb0/0xb0 [ 1523.976952] ? lock_release+0x3b2/0x6f0 [ 1523.977818] ? ksys_write+0x212/0x250 [ 1523.978634] ? kernel_clone+0x2f8/0xa60 [ 1523.979490] kernel_clone+0xe7/0xa60 [ 1523.980319] ? find_held_lock+0x2c/0x110 [ 1523.981161] ? create_io_thread+0xf0/0xf0 [ 1523.982069] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1523.983169] ? bit_wait_io_timeout+0x160/0x160 [ 1523.984349] ? lock_is_held_type+0xd7/0x130 [ 1523.985367] FAULT_INJECTION: forcing a failure. [ 1523.985367] name failslab, interval 1, probability 0, space 0, times 0 [ 1523.985476] __do_sys_fork+0x8a/0xc0 [ 1523.987529] ? kernel_clone+0xa60/0xa60 [ 1523.988449] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1523.989646] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1523.990736] ? lockdep_hardirqs_on+0x79/0x100 [ 1523.991669] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1523.992763] do_syscall_64+0x3b/0x90 [ 1523.993579] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1523.994682] RIP: 0033:0x7f0ecb13db19 [ 1523.995471] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1523.999304] RSP: 002b:00007f0ec86b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1524.000911] RAX: ffffffffffffffda RBX: 00007f0ecb250f60 RCX: 00007f0ecb13db19 [ 1524.002441] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1524.003956] RBP: 00007f0ec86b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1524.005516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1524.007039] R13: 00007ffe225f4d7f R14: 00007f0ec86b3300 R15: 0000000000022000 [ 1524.008668] [ 1524.009165] CPU: 0 PID: 22960 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 20:44:12 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r0, 0xc0189372, &(0x7f0000000080)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="8300000000000000000000000000000031587551c888be975cfe7f23d1a59fc27c0ac4eb7d78f5"]) recvmsg$unix(r1, &(0x7f0000000580)={&(0x7f00000001c0), 0x6e, &(0x7f00000003c0)=[{&(0x7f0000000240)=""/186, 0xba}, {&(0x7f0000000300)=""/155, 0x9b}, {&(0x7f0000000080)}, {&(0x7f00000005c0)=""/162, 0xa2}], 0x4, &(0x7f0000000500)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}, 0x40002001) [ 1524.010065] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1524.011430] Call Trace: [ 1524.011692] [ 1524.011929] dump_stack_lvl+0x8b/0xb3 [ 1524.012345] should_fail.cold+0x5/0xa [ 1524.012746] ? vm_area_dup+0x78/0x290 [ 1524.013169] should_failslab+0x5/0x10 [ 1524.013591] kmem_cache_alloc+0x5b/0x480 [ 1524.014026] vm_area_dup+0x78/0x290 [ 1524.014411] ? __lock_acquire+0xbac/0x6120 [ 1524.014874] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1524.015439] ? vm_area_alloc+0x110/0x110 [ 1524.015841] ? find_held_lock+0x2c/0x110 [ 1524.016300] ? lock_release+0x3b2/0x6f0 [ 1524.016751] ? get_mm_exe_file+0x137/0x2b0 [ 1524.017227] ? lock_downgrade+0x6d0/0x6d0 [ 1524.017708] ? get_mm_exe_file+0x159/0x2b0 [ 1524.018183] dup_mm+0x53f/0x1250 [ 1524.018564] ? replace_mm_exe_file+0x490/0x490 [ 1524.019073] ? __raw_spin_lock_init+0x36/0x110 [ 1524.019584] copy_process+0x3a28/0x6d10 [ 1524.020050] ? __cleanup_sighand+0xb0/0xb0 [ 1524.020538] ? lock_release+0x3b2/0x6f0 [ 1524.020980] ? ksys_write+0x212/0x250 [ 1524.021417] ? kernel_clone+0x2f8/0xa60 [ 1524.021867] kernel_clone+0xe7/0xa60 [ 1524.022291] ? find_held_lock+0x2c/0x110 [ 1524.022742] ? create_io_thread+0xf0/0xf0 [ 1524.023212] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1524.023766] ? bit_wait_io_timeout+0x160/0x160 [ 1524.024284] ? lock_is_held_type+0xd7/0x130 [ 1524.024774] __do_sys_fork+0x8a/0xc0 [ 1524.025199] ? kernel_clone+0xa60/0xa60 [ 1524.025664] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1524.026288] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1524.026872] ? lockdep_hardirqs_on+0x79/0x100 [ 1524.027377] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1524.027945] do_syscall_64+0x3b/0x90 [ 1524.028367] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1524.028948] RIP: 0033:0x7fe050cdfb19 [ 1524.029372] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1524.031430] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1524.032276] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1524.032973] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1524.033770] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1524.034538] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1524.035316] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1524.036100] 20:44:12 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') ioctl$int_out(r0, 0xfca0, &(0x7f0000000000)) preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) 20:44:12 executing program 7: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000440)=0x0, &(0x7f0000000380)=0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r3 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0) syz_open_dev$tty20(0xc, 0x4, 0x1) r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r4, &(0x7f0000000140)=@ocfs2={0xc, 0x1, {0x400, 0x5}}, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'veth1_to_team\x00'}) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x6, 0x0, 0x0}, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r7 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) r8 = mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2000009, 0x12, r3, 0x10000000) r9 = accept4$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f00000001c0)=0x14, 0x80000) syz_io_uring_submit(r5, r8, &(0x7f0000001a40)=@IORING_OP_RECVMSG={0xa, 0x3, 0x0, r9, 0x0, &(0x7f0000001a00)={&(0x7f0000000280)=@ethernet, 0x80, &(0x7f0000001880)=[{&(0x7f0000000300)=""/119, 0x77}, {&(0x7f00000003c0)=""/70, 0x46}, {&(0x7f0000000480)=""/37, 0x25}, {&(0x7f00000004c0)=""/228, 0xe4}, {&(0x7f00000005c0)=""/188, 0xbc}, {&(0x7f0000000680)=""/196, 0xc4}, {&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000001780)=""/231, 0xe7}, {&(0x7f00000024c0)=""/4096, 0x1000}], 0x9, &(0x7f0000001940)=""/138, 0x8a}, 0x0, 0x0, 0x1, {0x2}}, 0x8000) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r10 = syz_open_dev$tty20(0xc, 0x4, 0x1) r11 = fcntl$dupfd(r10, 0x0, r10) ioctl$TCSETA(r11, 0x5423, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "afaa172a3cf884d6"}) 20:44:12 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$sock_int(r0, 0x1, 0x29, &(0x7f00000030c0)=0xffffffff, 0x4) r1 = open(&(0x7f0000000000)='./file0\x00', 0x1, 0x1a) accept4$packet(0xffffffffffffffff, &(0x7f0000000540)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000580)=0x14, 0x80000) sendmsg$inet(r1, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000040)="dfa26d991d75808e4bdc57b7efdfe6775676c573304f4f809208b484641e94e1dd7ea774a64618012fd7dc5f0fa261adbc0138501dce2ff2e257107fdbb15cd886a1878c0619f6f0728e4f721de70a22e3e92f6d460d4943fa50ae1adbc7a2e3d3cf152185b43376cb4e4300a671e755facd591e478a3f9cf5d30e31e4226af8f1695cb7d83a3634ea531efa6047", 0x8e}, {&(0x7f0000000100)="81dcc6d8e75f0df014a12a2d6cc7682eca7a61aecd9713b915906e4978449cc476b53a3a2b61357375bf323dd9a04d83eae85c5f3978e928656590f261fda039329d6cba0900f173717aa417be0a39695fbe99c5828680d4c4b484130f1433f1227062cead9017aa7efb04ab7980833dd2bb4834bbadef4c206bb15e5a05851cd4dfc8b99b553c835ffd7d32bf4257d5a41412da7bd8c9e966aaa03c8be60dc7129d4f3c2e8b04678a50ef3291247602cd1f943a66b66741", 0xb8}, {&(0x7f00000001c0)}, {&(0x7f0000000200)="3152ad313126abf0985bba5c89422bef5291ddef99760d8ab04fd5369ee3556e80ed0748695feee57ab588a27d8f02d6711fc8ae1f3099f5517a39aedf75c1", 0x3f}, {&(0x7f0000000240)="a6cf5e6f0ca5a13c5cccc7294c52d424fde3c714f065ffbeaf7271b071798f3b3c69132aab79388a60ef6817f403e7d2e6ce2ad2b199739f17cefaac34adf067e7592dd22c1b132ef4cc560cc245c4441faed1eb392acb0e34be474d43b27ab02f75ea07c1241535b5cda679259dd501e00423781325f8125ecadbf9d4e26136b77a8332caff9f5588fb726f6471f5dfd96c1fc7d04938a4f53676932bfe54bbd26befc58dee53ad05753d0671f2692808e3f4270ec665a517a69b03abb2dc792e47bcc369147056d42560d0d8a91ed4bf474ea6a63a3b75b2724b6929a245c9575120e9c68e1db9045a9abc77", 0xed}, {&(0x7f0000000340)="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", 0xff}, {&(0x7f0000000440)="2b9cc28f778364a49726a284fe5e9ce4b71d3b7b569fa2801a434468b26092ec5332a5c7cd54ea2c40a5d002ecfc02a5588169ff58d28c1611159d870013adeee2385f0e8336870aada3a7d34354a7babdddadd8d7cd294af097b07068c5644b35afab63c8c8f58cbe73", 0x6a}], 0x7, &(0x7f00000005c0)=[@ip_retopts={{0x3c, 0x0, 0x7, {[@noop, @ssrr={0x89, 0x1b, 0x4, [@multicast2, @multicast1, @loopback, @dev={0xac, 0x14, 0x14, 0x30}, @empty, @dev={0xac, 0x14, 0x14, 0x33}]}, @generic={0x94, 0x10, "2f3b0a23a5954819e0edf0e84de8"}]}}}, @ip_tos_u8={{0x11}}, @ip_retopts={{0x68, 0x0, 0x7, {[@timestamp_addr={0x44, 0x44, 0x6f, 0x1, 0x3, [{@multicast1, 0x4}, {@loopback, 0x80000000}, {@multicast2, 0x1ff}, {@multicast1, 0x8}, {@multicast2, 0xffff}, {@local}, {@dev={0xac, 0x14, 0x14, 0x1e}, 0x2}, {@broadcast, 0xb75}]}, @end, @cipso={0x86, 0xd, 0x3, [{0x6, 0x7, "3486b3d2e9"}]}, @ra={0x94, 0x4}]}}}, @ip_retopts={{0x3c, 0x0, 0x7, {[@ra={0x94, 0x4, 0x1}, @end, @rr={0x7, 0x23, 0x1d, [@remote, @initdev={0xac, 0x1e, 0x1, 0x0}, @private=0xa010100, @rand_addr=0x80000000, @initdev={0xac, 0x1e, 0x0, 0x0}, @rand_addr=0x64010100, @dev={0xac, 0x14, 0x14, 0x11}, @rand_addr=0x64010100]}, @noop]}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {r2, @local, @initdev={0xac, 0x1e, 0x1, 0x0}}}}], 0x120}, 0x4001) sendmmsg$inet(r0, &(0x7f0000007e00)=[{{&(0x7f00000036c0)={0x2, 0x0, @multicast2}, 0x10, &(0x7f0000004c80)=[{&(0x7f0000003700)='@f', 0x2}], 0x1, &(0x7f0000004dc0)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @loopback, @local}}}], 0x20}}], 0x1, 0x0) 20:44:12 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) syz_io_uring_setup(0x10, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x39a}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'rose0\x00'}) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) dup3(r1, r0, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f00000000c0)={'batadv_slave_1\x00', &(0x7f0000000080)=@ethtool_gfeatures={0x3a, 0x3, [{}, {}, {}]}}) 20:44:12 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 44) 20:44:12 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/180, 0xb4}], 0x1, 0x81, 0x0) [ 1524.216861] FAULT_INJECTION: forcing a failure. [ 1524.216861] name failslab, interval 1, probability 0, space 0, times 0 [ 1524.218184] CPU: 0 PID: 23250 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1524.219061] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1524.220234] Call Trace: [ 1524.220498] [ 1524.220735] dump_stack_lvl+0x8b/0xb3 [ 1524.221151] should_fail.cold+0x5/0xa [ 1524.221556] ? create_object.isra.0+0x3a/0xa20 [ 1524.222051] should_failslab+0x5/0x10 [ 1524.222455] kmem_cache_alloc+0x5b/0x480 [ 1524.222888] create_object.isra.0+0x3a/0xa20 [ 1524.223358] ? kasan_unpoison+0x23/0x50 [ 1524.223791] kmem_cache_alloc+0x239/0x480 [ 1524.224238] ptlock_alloc+0x1d/0x70 [ 1524.224622] pte_alloc_one+0x68/0x1f0 [ 1524.225006] __pte_alloc+0x69/0x200 [ 1524.225405] ? pmd_install+0x250/0x250 [ 1524.225826] ? do_raw_spin_unlock+0x4f/0x210 [ 1524.226304] ? _raw_spin_unlock+0x24/0x40 [ 1524.226773] copy_page_range+0x1b8b/0x3ea0 [ 1524.227267] ? vm_iomap_memory+0x190/0x190 [ 1524.227740] ? up_write+0x148/0x460 [ 1524.228149] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1524.228713] ? __vma_link_rb+0x540/0x700 [ 1524.229129] dup_mm+0x961/0x1250 [ 1524.229542] ? replace_mm_exe_file+0x490/0x490 [ 1524.230058] ? __raw_spin_lock_init+0x36/0x110 [ 1524.230573] copy_process+0x3a28/0x6d10 [ 1524.231042] ? __cleanup_sighand+0xb0/0xb0 [ 1524.231524] ? lock_release+0x3b2/0x6f0 [ 1524.231968] ? ksys_write+0x212/0x250 [ 1524.232402] ? kernel_clone+0x2f8/0xa60 [ 1524.232849] kernel_clone+0xe7/0xa60 [ 1524.233254] ? find_held_lock+0x2c/0x110 [ 1524.233718] ? create_io_thread+0xf0/0xf0 [ 1524.234186] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1524.234745] ? bit_wait_io_timeout+0x160/0x160 [ 1524.235258] ? lock_is_held_type+0xd7/0x130 [ 1524.235748] __do_sys_fork+0x8a/0xc0 [ 1524.236168] ? kernel_clone+0xa60/0xa60 [ 1524.236616] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1524.237232] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1524.237829] ? lockdep_hardirqs_on+0x79/0x100 [ 1524.238331] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1524.238900] do_syscall_64+0x3b/0x90 [ 1524.239318] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1524.239896] RIP: 0033:0x7f9fc1cadb19 [ 1524.240305] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1524.242370] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1524.243223] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1524.244011] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1524.244818] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1524.245613] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1524.246395] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1524.247193] 20:44:26 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='map_files\x00') setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x3, 0x8000}, 0x4) symlinkat(&(0x7f0000000180)='./file0\x00', r0, &(0x7f00000001c0)='./file0\x00') 20:44:26 executing program 1: r0 = syz_io_uring_complete(0x0) r1 = syz_io_uring_setup(0x8d1, &(0x7f0000000000)={0x0, 0x80000000, 0x8, 0xfffffffd, 0x0, 0x0, r0}, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, 0x0) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x64) fork() fork() io_uring_register$IORING_UNREGISTER_PERSONALITY(r1, 0xa, 0x0, 0x0) 20:44:26 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 45) 20:44:26 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) socket$inet6(0xa, 0x2, 0x400) 20:44:26 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 21) 20:44:26 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 26) 20:44:26 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/187, 0xbb}], 0x1, 0x81, 0x0) r1 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r1, 0x1, 0x0, 0x0, 0x0, 0x0) pwrite64(r1, &(0x7f0000000180)="fc2d3dcca669b17e642e89c38ca000e8dc1f23dfac5074c179921dd13a94bf3dd17e1e66c2ded5bb4358b542e3d1091f8a964503082554566bf3af3787f7e9efa8b1b81d7fad3b947651aea288c88d4add5cab5bd91fbfeff1d96f4c13aeb750463cb4bea24f3e8ccc38aa7455ea7f2192621d73133eac874db855c56cbea30b032284a0ed3ae7df94d2428cd10177afc854eda6abeb69fb407574378afe820a5cf4b2c931f16981eb9c3012c5fe767ef285595a0c9654a13df6dbae86bce218a39a71057986111349dd1825a0e714086c423b51a3037d3aa51e8144aa2641e257", 0xe1, 0x9) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r0, 0xc018937a, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x5}}, './file0\x00'}) dup3(r0, r2, 0x0) 20:44:26 executing program 7: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000440)=0x0, &(0x7f0000000380)=0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r3 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0) syz_open_dev$tty20(0xc, 0x4, 0x1) r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r4, &(0x7f0000000140)=@ocfs2={0xc, 0x1, {0x400, 0x5}}, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'veth1_to_team\x00'}) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x6, 0x0, 0x0}, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r7 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) r8 = mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2000009, 0x12, r3, 0x10000000) r9 = accept4$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f00000001c0)=0x14, 0x80000) syz_io_uring_submit(r5, r8, &(0x7f0000001a40)=@IORING_OP_RECVMSG={0xa, 0x3, 0x0, r9, 0x0, &(0x7f0000001a00)={&(0x7f0000000280)=@ethernet, 0x80, &(0x7f0000001880)=[{&(0x7f0000000300)=""/119, 0x77}, {&(0x7f00000003c0)=""/70, 0x46}, {&(0x7f0000000480)=""/37, 0x25}, {&(0x7f00000004c0)=""/228, 0xe4}, {&(0x7f00000005c0)=""/188, 0xbc}, {&(0x7f0000000680)=""/196, 0xc4}, {&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000001780)=""/231, 0xe7}, {&(0x7f00000024c0)=""/4096, 0x1000}], 0x9, &(0x7f0000001940)=""/138, 0x8a}, 0x0, 0x0, 0x1, {0x2}}, 0x8000) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r10 = syz_open_dev$tty20(0xc, 0x4, 0x1) r11 = fcntl$dupfd(r10, 0x0, r10) ioctl$TCSETA(r11, 0x5423, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "afaa172a3cf884d6"}) [ 1537.993963] FAULT_INJECTION: forcing a failure. [ 1537.993963] name failslab, interval 1, probability 0, space 0, times 0 [ 1537.996174] CPU: 1 PID: 23396 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1537.997803] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1538.000004] Call Trace: [ 1538.000506] [ 1538.000942] dump_stack_lvl+0x8b/0xb3 [ 1538.001725] should_fail.cold+0x5/0xa [ 1538.002477] ? vm_area_dup+0x78/0x290 [ 1538.003233] should_failslab+0x5/0x10 [ 1538.003977] kmem_cache_alloc+0x5b/0x480 [ 1538.004788] vm_area_dup+0x78/0x290 [ 1538.005525] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1538.006607] ? copy_page_range+0x27c7/0x3ea0 [ 1538.006996] FAULT_INJECTION: forcing a failure. [ 1538.006996] name failslab, interval 1, probability 0, space 0, times 0 [ 1538.007507] ? vm_area_alloc+0x110/0x110 [ 1538.009938] ? vm_iomap_memory+0x190/0x190 [ 1538.010768] ? up_write+0x148/0x460 [ 1538.011482] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1538.012461] ? __vma_link_rb+0x540/0x700 [ 1538.013268] dup_mm+0x53f/0x1250 [ 1538.013975] ? replace_mm_exe_file+0x490/0x490 [ 1538.014875] ? __raw_spin_lock_init+0x36/0x110 [ 1538.015777] copy_process+0x3a28/0x6d10 [ 1538.016595] ? __cleanup_sighand+0xb0/0xb0 [ 1538.017446] ? lock_release+0x3b2/0x6f0 [ 1538.018246] ? ksys_write+0x212/0x250 [ 1538.018996] ? kernel_clone+0x2f8/0xa60 [ 1538.019783] kernel_clone+0xe7/0xa60 [ 1538.020518] ? find_held_lock+0x2c/0x110 [ 1538.021310] ? create_io_thread+0xf0/0xf0 [ 1538.022137] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1538.023106] ? bit_wait_io_timeout+0x160/0x160 [ 1538.024001] ? lock_is_held_type+0xd7/0x130 [ 1538.024850] __do_sys_fork+0x8a/0xc0 [ 1538.025596] ? kernel_clone+0xa60/0xa60 [ 1538.026388] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1538.027478] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1538.028498] ? lockdep_hardirqs_on+0x79/0x100 [ 1538.029369] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1538.030395] do_syscall_64+0x3b/0x90 [ 1538.031140] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1538.032156] RIP: 0033:0x7f9fc1cadb19 [ 1538.032879] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1538.036502] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1538.038003] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1538.039400] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1538.040792] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1538.042196] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1538.043589] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1538.045009] [ 1538.045464] CPU: 0 PID: 23395 Comm: syz-executor.3 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1538.046686] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1538.048235] Call Trace: [ 1538.048599] [ 1538.048909] dump_stack_lvl+0x8b/0xb3 [ 1538.049460] should_fail.cold+0x5/0xa [ 1538.050006] ? create_object.isra.0+0x3a/0xa20 [ 1538.050651] should_failslab+0x5/0x10 [ 1538.051190] kmem_cache_alloc+0x5b/0x480 [ 1538.051760] ? obj_cgroup_charge+0x247/0x740 [ 1538.052376] create_object.isra.0+0x3a/0xa20 [ 1538.052992] ? kasan_unpoison+0x23/0x50 [ 1538.053561] kmem_cache_alloc+0x239/0x480 [ 1538.054139] copy_process+0x22c1/0x6d10 [ 1538.054721] ? __cleanup_sighand+0xb0/0xb0 [ 1538.055317] ? lock_release+0x3b2/0x6f0 [ 1538.055865] ? ksys_write+0x212/0x250 [ 1538.056400] ? kernel_clone+0x2f8/0xa60 [ 1538.056977] kernel_clone+0xe7/0xa60 [ 1538.057514] ? find_held_lock+0x2c/0x110 [ 1538.058052] ? create_io_thread+0xf0/0xf0 [ 1538.058638] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1538.059321] ? bit_wait_io_timeout+0x160/0x160 [ 1538.059980] ? lock_is_held_type+0xd7/0x130 [ 1538.060625] __do_sys_fork+0x8a/0xc0 [ 1538.061168] ? kernel_clone+0xa60/0xa60 [ 1538.061766] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1538.062588] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1538.063334] ? lockdep_hardirqs_on+0x79/0x100 [ 1538.064004] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1538.064758] do_syscall_64+0x3b/0x90 [ 1538.065308] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1538.066071] RIP: 0033:0x7f0ecb13db19 [ 1538.066618] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1538.066636] RSP: 002b:00007f0ec86b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1538.066654] RAX: ffffffffffffffda RBX: 00007f0ecb250f60 RCX: 00007f0ecb13db19 [ 1538.066665] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1538.066676] RBP: 00007f0ec86b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1538.066686] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1538.066696] R13: 00007ffe225f4d7f R14: 00007f0ec86b3300 R15: 0000000000022000 [ 1538.066723] [ 1538.077853] FAULT_INJECTION: forcing a failure. [ 1538.077853] name failslab, interval 1, probability 0, space 0, times 0 [ 1538.077878] CPU: 0 PID: 23400 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 20:44:26 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) getsockopt$IP6T_SO_GET_ENTRIES(r3, 0x29, 0x41, &(0x7f0000000440)={'security\x00', 0x1c, "cd8d547d701c2dce9459831b0e6da828ffedb951fbbd756c96cd9443"}, &(0x7f0000000480)=0x40) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) preadv(r3, &(0x7f0000000080)=[{&(0x7f0000000000)=""/11, 0xb}, {&(0x7f0000000240)=""/249, 0xf9}, {&(0x7f0000000340)=""/181, 0xb5}], 0x3, 0x4, 0x40) preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(0xffffffffffffffff, 0x80489439, &(0x7f00000001c0)) [ 1538.077895] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1538.077905] Call Trace: [ 1538.077910] [ 1538.077916] dump_stack_lvl+0x8b/0xb3 [ 1538.077942] should_fail.cold+0x5/0xa [ 1538.077964] ? create_object.isra.0+0x3a/0xa20 [ 1538.077990] should_failslab+0x5/0x10 [ 1538.078005] kmem_cache_alloc+0x5b/0x480 [ 1538.078023] ? obj_cgroup_charge+0x247/0x740 [ 1538.078050] create_object.isra.0+0x3a/0xa20 [ 1538.078077] ? kasan_unpoison+0x23/0x50 [ 1538.078106] kmem_cache_alloc+0x239/0x480 [ 1538.078131] vm_area_dup+0x78/0x290 [ 1538.078159] ? __lock_acquire+0xbac/0x6120 [ 1538.078194] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1538.078231] ? vm_area_alloc+0x110/0x110 [ 1538.078252] ? find_held_lock+0x2c/0x110 [ 1538.078272] ? lock_release+0x3b2/0x6f0 [ 1538.078290] ? get_mm_exe_file+0x137/0x2b0 [ 1538.078313] ? lock_downgrade+0x6d0/0x6d0 [ 1538.078352] ? get_mm_exe_file+0x159/0x2b0 [ 1538.078376] dup_mm+0x53f/0x1250 [ 1538.078411] ? replace_mm_exe_file+0x490/0x490 [ 1538.078437] ? __raw_spin_lock_init+0x36/0x110 [ 1538.078464] copy_process+0x3a28/0x6d10 [ 1538.078510] ? __cleanup_sighand+0xb0/0xb0 [ 1538.078543] ? lock_release+0x3b2/0x6f0 [ 1538.078561] ? ksys_write+0x212/0x250 [ 1538.078582] ? kernel_clone+0x2f8/0xa60 [ 1538.078608] kernel_clone+0xe7/0xa60 [ 1538.078631] ? find_held_lock+0x2c/0x110 [ 1538.078648] ? create_io_thread+0xf0/0xf0 [ 1538.078675] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1538.078703] ? bit_wait_io_timeout+0x160/0x160 [ 1538.078726] ? lock_is_held_type+0xd7/0x130 [ 1538.078747] __do_sys_fork+0x8a/0xc0 [ 1538.078771] ? kernel_clone+0xa60/0xa60 [ 1538.078793] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1538.078826] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1538.078845] ? lockdep_hardirqs_on+0x79/0x100 [ 1538.078861] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1538.078879] do_syscall_64+0x3b/0x90 [ 1538.078901] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1538.078927] RIP: 0033:0x7fe050cdfb19 [ 1538.078939] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1538.078953] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1538.078970] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1538.078981] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1538.078991] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1538.079001] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1538.079011] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1538.079040] 20:44:39 executing program 7: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000440)=0x0, &(0x7f0000000380)=0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r3 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0) syz_open_dev$tty20(0xc, 0x4, 0x1) r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r4, &(0x7f0000000140)=@ocfs2={0xc, 0x1, {0x400, 0x5}}, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'veth1_to_team\x00'}) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x6, 0x0, 0x0}, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r7 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) r8 = mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2000009, 0x12, r3, 0x10000000) r9 = accept4$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f00000001c0)=0x14, 0x80000) syz_io_uring_submit(r5, r8, &(0x7f0000001a40)=@IORING_OP_RECVMSG={0xa, 0x3, 0x0, r9, 0x0, &(0x7f0000001a00)={&(0x7f0000000280)=@ethernet, 0x80, &(0x7f0000001880)=[{&(0x7f0000000300)=""/119, 0x77}, {&(0x7f00000003c0)=""/70, 0x46}, {&(0x7f0000000480)=""/37, 0x25}, {&(0x7f00000004c0)=""/228, 0xe4}, {&(0x7f00000005c0)=""/188, 0xbc}, {&(0x7f0000000680)=""/196, 0xc4}, {&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000001780)=""/231, 0xe7}, {&(0x7f00000024c0)=""/4096, 0x1000}], 0x9, &(0x7f0000001940)=""/138, 0x8a}, 0x0, 0x0, 0x1, {0x2}}, 0x8000) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r10 = syz_open_dev$tty20(0xc, 0x4, 0x1) r11 = fcntl$dupfd(r10, 0x0, r10) ioctl$TCSETA(r11, 0x5423, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "afaa172a3cf884d6"}) 20:44:39 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) getsockopt$IP6T_SO_GET_ENTRIES(r3, 0x29, 0x41, &(0x7f0000000440)={'security\x00', 0x1c, "cd8d547d701c2dce9459831b0e6da828ffedb951fbbd756c96cd9443"}, &(0x7f0000000480)=0x40) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) preadv(r3, &(0x7f0000000080)=[{&(0x7f0000000000)=""/11, 0xb}, {&(0x7f0000000240)=""/249, 0xf9}, {&(0x7f0000000340)=""/181, 0xb5}], 0x3, 0x4, 0x40) preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(0xffffffffffffffff, 0x80489439, &(0x7f00000001c0)) 20:44:39 executing program 0: r0 = getpid() sched_getattr(r0, &(0x7f0000000000)={0x38}, 0x38, 0x0) syz_open_procfs(r0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(0xffffffffffffffff, &(0x7f0000000340)=[{&(0x7f0000000000)=""/5, 0x5}, {&(0x7f0000000080)=""/191, 0xbf}, {&(0x7f00000003c0)=""/80, 0x50}, {&(0x7f0000000200)=""/59, 0x3b}, {&(0x7f0000000240)=""/239, 0xffffffffffffff45}], 0x5, 0x5, 0x9) 20:44:39 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 27) 20:44:39 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000000)=[{&(0x7f0000000080)=""/133, 0x85}, {&(0x7f0000000140)=""/123, 0x7b}, {&(0x7f00000001c0)=""/87, 0x57}, {&(0x7f0000000240)=""/246, 0xf6}], 0x4, 0x81, 0x0) 20:44:39 executing program 1: setsockopt$IP_VS_SO_SET_ADDDEST(0xffffffffffffffff, 0x0, 0x487, &(0x7f0000000180)={{0x21, @multicast1, 0x4e23, 0x4, 'sed\x00', 0x2, 0x0, 0x3b}, {@private=0xa010100, 0x4e22, 0x10000, 0x0, 0x1, 0x17c5}}, 0x44) getcwd(&(0x7f0000000000)=""/178, 0xb2) getcwd(&(0x7f00000000c0)=""/191, 0xbf) syz_io_uring_setup(0x52b, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x95a}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) setsockopt$inet_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000280)=0x1, 0x4) fork() syz_io_uring_setup(0x55a2, &(0x7f00000002c0)={0x0, 0x4809, 0x0, 0x3, 0x284}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000340), &(0x7f0000000380)) 20:44:39 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 22) 20:44:39 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 46) [ 1551.091471] FAULT_INJECTION: forcing a failure. [ 1551.091471] name failslab, interval 1, probability 0, space 0, times 0 [ 1551.092723] CPU: 1 PID: 23942 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1551.093599] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1551.094830] Call Trace: [ 1551.095122] [ 1551.095350] dump_stack_lvl+0x8b/0xb3 [ 1551.095766] should_fail.cold+0x5/0xa [ 1551.096188] ? ptlock_alloc+0x1d/0x70 20:44:39 executing program 2: symlink(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f00000000c0)='./file0\x00') umount2(&(0x7f0000000100)='./file0/../file0\x00', 0x0) mknod$loop(&(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x1) umount2(&(0x7f0000000080)='./file0/../file0\x00', 0x9) lgetxattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000180)=@random={'security.', '\x00'}, &(0x7f0000000240)=""/141, 0x8d) umount2(&(0x7f0000000140)='./file0\x00', 0x1) [ 1551.096206] should_failslab+0x5/0x10 [ 1551.096220] kmem_cache_alloc+0x5b/0x480 [ 1551.096241] ptlock_alloc+0x1d/0x70 [ 1551.096255] pte_alloc_one+0x68/0x1f0 [ 1551.096276] __pte_alloc+0x69/0x200 [ 1551.096296] ? pmd_install+0x250/0x250 [ 1551.096322] copy_page_range+0x1b8b/0x3ea0 [ 1551.096367] ? vm_iomap_memory+0x190/0x190 [ 1551.096384] ? up_write+0x148/0x460 [ 1551.096401] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 20:44:39 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 28) [ 1551.096418] ? __vma_link_rb+0x540/0x700 [ 1551.096439] dup_mm+0x961/0x1250 [ 1551.096467] ? replace_mm_exe_file+0x490/0x490 [ 1551.096487] ? __raw_spin_lock_init+0x36/0x110 [ 1551.096509] copy_process+0x3a28/0x6d10 [ 1551.096546] ? __cleanup_sighand+0xb0/0xb0 [ 1551.096571] ? lock_release+0x3b2/0x6f0 [ 1551.096586] ? ksys_write+0x212/0x250 [ 1551.096604] ? kernel_clone+0x2f8/0xa60 [ 1551.096624] kernel_clone+0xe7/0xa60 [ 1551.096642] ? find_held_lock+0x2c/0x110 [ 1551.096656] ? create_io_thread+0xf0/0xf0 [ 1551.096676] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1551.096699] ? bit_wait_io_timeout+0x160/0x160 [ 1551.096717] ? lock_is_held_type+0xd7/0x130 [ 1551.096734] __do_sys_fork+0x8a/0xc0 [ 1551.096752] ? kernel_clone+0xa60/0xa60 [ 1551.096770] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1551.096795] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1551.096810] ? lockdep_hardirqs_on+0x79/0x100 [ 1551.096823] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1551.096836] do_syscall_64+0x3b/0x90 [ 1551.096855] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1551.096876] RIP: 0033:0x7f9fc1cadb19 [ 1551.096886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1551.096898] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1551.096912] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1551.096923] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1551.096932] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1551.096942] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1551.096950] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1551.096973] [ 1551.108836] FAULT_INJECTION: forcing a failure. [ 1551.108836] name failslab, interval 1, probability 0, space 0, times 0 [ 1551.108856] CPU: 1 PID: 23953 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1551.108870] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1551.108879] Call Trace: [ 1551.108882] [ 1551.108887] dump_stack_lvl+0x8b/0xb3 [ 1551.108908] should_fail.cold+0x5/0xa [ 1551.108927] ? vm_area_dup+0x78/0x290 [ 1551.108946] should_failslab+0x5/0x10 [ 1551.108958] kmem_cache_alloc+0x5b/0x480 [ 1551.108978] vm_area_dup+0x78/0x290 [ 1551.108998] ? lock_release+0x3b2/0x6f0 [ 1551.109012] ? avc_has_perm_noaudit+0x1c8/0x390 [ 1551.109028] ? lock_downgrade+0x6d0/0x6d0 [ 1551.109042] ? copy_page_range+0x27c7/0x3ea0 [ 1551.109060] ? __sanitizer_cov_trace_cmp2+0x22/0x80 [ 1551.109081] ? avc_has_perm_noaudit+0x1ef/0x390 [ 1551.109096] ? avc_has_extended_perms+0xeb0/0xeb0 [ 1551.109116] ? vm_area_alloc+0x110/0x110 [ 1551.109132] ? find_held_lock+0x2c/0x110 [ 1551.109150] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1551.109166] ? selinux_vm_enough_memory+0x10f/0x170 [ 1551.109185] ? selinux_sctp_sk_clone+0x370/0x370 [ 1551.109205] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1551.109221] ? percpu_counter_add_batch+0x143/0x170 [ 1551.109242] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1551.109258] ? __vm_enough_memory+0x184/0x360 [ 1551.109272] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 1551.109292] dup_mm+0x53f/0x1250 [ 1551.109319] ? replace_mm_exe_file+0x490/0x490 [ 1551.109339] ? __raw_spin_lock_init+0x36/0x110 [ 1551.109360] copy_process+0x3a28/0x6d10 [ 1551.109396] ? __cleanup_sighand+0xb0/0xb0 [ 1551.109422] ? lock_release+0x3b2/0x6f0 [ 1551.109436] ? ksys_write+0x212/0x250 [ 1551.109452] ? kernel_clone+0x2f8/0xa60 [ 1551.109472] kernel_clone+0xe7/0xa60 [ 1551.109490] ? find_held_lock+0x2c/0x110 [ 1551.109503] ? create_io_thread+0xf0/0xf0 [ 1551.109524] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1551.109544] ? bit_wait_io_timeout+0x160/0x160 [ 1551.109562] ? lock_is_held_type+0xd7/0x130 [ 1551.109578] __do_sys_fork+0x8a/0xc0 [ 1551.109596] ? kernel_clone+0xa60/0xa60 [ 1551.109614] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1551.109639] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1551.109653] ? lockdep_hardirqs_on+0x79/0x100 [ 1551.109666] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1551.109680] do_syscall_64+0x3b/0x90 [ 1551.109705] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1551.109724] RIP: 0033:0x7fe050cdfb19 [ 1551.109734] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1551.109746] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1551.109759] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1551.109767] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1551.109775] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1551.109783] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1551.109791] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1551.109814] [ 1551.109876] FAULT_INJECTION: forcing a failure. [ 1551.109876] name failslab, interval 1, probability 0, space 0, times 0 [ 1551.109913] CPU: 0 PID: 23926 Comm: syz-executor.3 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1551.109939] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1551.109959] Call Trace: [ 1551.109968] [ 1551.109980] dump_stack_lvl+0x8b/0xb3 [ 1551.110041] should_fail.cold+0x5/0xa [ 1551.110099] ? dup_mm+0x88/0x1250 [ 1551.110138] should_failslab+0x5/0x10 [ 1551.110161] kmem_cache_alloc+0x5b/0x480 [ 1551.110196] dup_mm+0x88/0x1250 [ 1551.110230] ? lock_release+0x3b2/0x6f0 [ 1551.110262] ? copy_process+0x278b/0x6d10 [ 1551.110301] ? replace_mm_exe_file+0x490/0x490 [ 1551.110339] ? __raw_spin_lock_init+0x36/0x110 [ 1551.110377] copy_process+0x3a28/0x6d10 [ 1551.110439] ? __cleanup_sighand+0xb0/0xb0 [ 1551.110484] ? lock_release+0x3b2/0x6f0 [ 1551.110511] ? ksys_write+0x212/0x250 [ 1551.110543] ? kernel_clone+0x2f8/0xa60 [ 1551.110579] kernel_clone+0xe7/0xa60 [ 1551.110613] ? find_held_lock+0x2c/0x110 [ 1551.110638] ? create_io_thread+0xf0/0xf0 [ 1551.110676] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1551.110715] ? bit_wait_io_timeout+0x160/0x160 [ 1551.110748] ? lock_is_held_type+0xd7/0x130 [ 1551.110777] __do_sys_fork+0x8a/0xc0 [ 1551.110812] ? kernel_clone+0xa60/0xa60 [ 1551.110844] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1551.110889] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1551.110915] ? lockdep_hardirqs_on+0x79/0x100 [ 1551.110938] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1551.110963] do_syscall_64+0x3b/0x90 [ 1551.110996] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1551.111033] RIP: 0033:0x7f0ecb13db19 [ 1551.111050] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1551.111072] RSP: 002b:00007f0ec86b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1551.111097] RAX: ffffffffffffffda RBX: 00007f0ecb250f60 RCX: 00007f0ecb13db19 [ 1551.111113] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1551.111127] RBP: 00007f0ec86b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1551.111141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1551.111155] R13: 00007ffe225f4d7f R14: 00007f0ec86b3300 R15: 0000000000022000 [ 1551.111193] [ 1551.235086] FAULT_INJECTION: forcing a failure. [ 1551.235086] name failslab, interval 1, probability 0, space 0, times 0 [ 1551.235124] CPU: 0 PID: 24163 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1551.235154] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1551.235184] Call Trace: [ 1551.235195] [ 1551.235210] dump_stack_lvl+0x8b/0xb3 [ 1551.235281] should_fail.cold+0x5/0xa [ 1551.235331] ? create_object.isra.0+0x3a/0xa20 [ 1551.235373] should_failslab+0x5/0x10 [ 1551.235397] kmem_cache_alloc+0x5b/0x480 [ 1551.235425] ? obj_cgroup_charge+0x247/0x740 [ 1551.235466] create_object.isra.0+0x3a/0xa20 [ 1551.235509] ? kasan_unpoison+0x23/0x50 [ 1551.235557] kmem_cache_alloc+0x239/0x480 [ 1551.235595] vm_area_dup+0x78/0x290 [ 1551.235638] ? lock_release+0x3b2/0x6f0 [ 1551.235668] ? avc_has_perm_noaudit+0x1c8/0x390 [ 1551.235699] ? lock_downgrade+0x6d0/0x6d0 [ 1551.235725] ? copy_page_range+0x27c7/0x3ea0 [ 1551.235763] ? __sanitizer_cov_trace_cmp2+0x22/0x80 [ 1551.235807] ? avc_has_perm_noaudit+0x1ef/0x390 [ 1551.235839] ? avc_has_extended_perms+0xeb0/0xeb0 [ 1551.235880] ? vm_area_alloc+0x110/0x110 [ 1551.235912] ? find_held_lock+0x2c/0x110 [ 1551.235951] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1551.235987] ? selinux_vm_enough_memory+0x10f/0x170 [ 1551.236023] ? selinux_sctp_sk_clone+0x370/0x370 [ 1551.236061] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1551.236092] ? percpu_counter_add_batch+0xb4/0x170 [ 1551.236131] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1551.236161] ? __vm_enough_memory+0x184/0x360 [ 1551.236189] ? security_vm_enough_memory_mm+0x8b/0xc0 [ 1551.236228] dup_mm+0x53f/0x1250 [ 1551.236284] ? replace_mm_exe_file+0x490/0x490 [ 1551.236323] ? __raw_spin_lock_init+0x36/0x110 [ 1551.236367] copy_process+0x3a28/0x6d10 [ 1551.236441] ? __cleanup_sighand+0xb0/0xb0 [ 1551.236494] ? lock_release+0x3b2/0x6f0 [ 1551.236528] ? ksys_write+0x212/0x250 [ 1551.236567] ? kernel_clone+0x2f8/0xa60 [ 1551.236630] kernel_clone+0xe7/0xa60 [ 1551.236675] ? find_held_lock+0x2c/0x110 [ 1551.236703] ? create_io_thread+0xf0/0xf0 [ 1551.236753] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1551.236803] ? bit_wait_io_timeout+0x160/0x160 [ 1551.236840] ? lock_is_held_type+0xd7/0x130 [ 1551.236874] __do_sys_fork+0x8a/0xc0 [ 1551.236917] ? kernel_clone+0xa60/0xa60 [ 1551.236960] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1551.237007] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1551.237037] ? lockdep_hardirqs_on+0x79/0x100 [ 1551.237063] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1551.237093] do_syscall_64+0x3b/0x90 [ 1551.237140] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1551.237199] RIP: 0033:0x7fe050cdfb19 [ 1551.237220] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1551.237244] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1551.237269] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1551.237285] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1551.237299] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1551.237314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1551.237328] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1551.237371] 20:44:55 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 47) 20:44:55 executing program 7: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000440)=0x0, &(0x7f0000000380)=0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r3 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, 0x0, 0x0) syz_open_dev$tty20(0xc, 0x4, 0x1) r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000002480)='fd/3\x00') open_by_handle_at(r4, &(0x7f0000000140)=@ocfs2={0xc, 0x1, {0x400, 0x5}}, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'veth1_to_team\x00'}) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x6, 0x0, 0x0}, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r7 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) r8 = mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2000009, 0x12, r3, 0x10000000) r9 = accept4$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f00000001c0)=0x14, 0x80000) syz_io_uring_submit(r5, r8, &(0x7f0000001a40)=@IORING_OP_RECVMSG={0xa, 0x3, 0x0, r9, 0x0, &(0x7f0000001a00)={&(0x7f0000000280)=@ethernet, 0x80, &(0x7f0000001880)=[{&(0x7f0000000300)=""/119, 0x77}, {&(0x7f00000003c0)=""/70, 0x46}, {&(0x7f0000000480)=""/37, 0x25}, {&(0x7f00000004c0)=""/228, 0xe4}, {&(0x7f00000005c0)=""/188, 0xbc}, {&(0x7f0000000680)=""/196, 0xc4}, {&(0x7f0000000780)=""/4096, 0x1000}, {&(0x7f0000001780)=""/231, 0xe7}, {&(0x7f00000024c0)=""/4096, 0x1000}], 0x9, &(0x7f0000001940)=""/138, 0x8a}, 0x0, 0x0, 0x1, {0x2}}, 0x8000) io_uring_enter(r0, 0x100001, 0x0, 0x0, 0x0, 0x0) r10 = syz_open_dev$tty20(0xc, 0x4, 0x1) r11 = fcntl$dupfd(r10, 0x0, r10) ioctl$TCSETA(r11, 0x5423, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "afaa172a3cf884d6"}) 20:44:55 executing program 1: syz_io_uring_setup(0xeaf, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0xfffffffc}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_inet6_udp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000280)) syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) r3 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ff9000/0x3000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r9 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r9, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r12 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r10, r11, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r12, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) ppoll(&(0x7f0000000040)=[{r9, 0x8}, {r12, 0x8001}], 0x2, &(0x7f0000000180)={0x77359400}, &(0x7f00000001c0)={[0x6]}, 0x8) r13 = socket$inet_tcp(0x2, 0x1, 0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000300)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r13, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r6}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x4, 0x0, @fd=r2, 0x0, 0x0, 0x0, 0x11, 0x1, {0x3, r6}}, 0x5) 20:44:55 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) sendmsg$NL80211_CMD_DEL_INTERFACE(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000001c0)={&(0x7f0000000080)={0x14, 0x0, 0x200, 0x70bd28, 0x25dfdbfe, {{}, {@void, @void}}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x2004c0e1}, 0x10) 20:44:55 executing program 2: symlink(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f00000000c0)='./file0\x00') umount2(&(0x7f0000000100)='./file0/../file0\x00', 0x0) mknod$loop(&(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x1) umount2(&(0x7f0000000080)='./file0/../file0\x00', 0x9) lgetxattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000180)=@random={'security.', '\x00'}, &(0x7f0000000240)=""/141, 0x8d) umount2(&(0x7f0000000140)='./file0\x00', 0x1) 20:44:55 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000080)=[{&(0x7f00000000c0)=""/186, 0xba}, {&(0x7f0000000000)=""/4, 0x4}], 0x2, 0x81, 0x4485) 20:44:55 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 23) 20:44:55 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 29) [ 1566.705052] FAULT_INJECTION: forcing a failure. [ 1566.705052] name failslab, interval 1, probability 0, space 0, times 0 [ 1566.706557] CPU: 1 PID: 24255 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1566.707444] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1566.708664] Call Trace: [ 1566.708920] [ 1566.709149] dump_stack_lvl+0x8b/0xb3 [ 1566.709542] should_fail.cold+0x5/0xa [ 1566.709977] ? vm_area_dup+0x78/0x290 [ 1566.710395] should_failslab+0x5/0x10 [ 1566.710802] kmem_cache_alloc+0x5b/0x480 [ 1566.711242] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1566.711833] vm_area_dup+0x78/0x290 [ 1566.712233] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1566.712821] ? copy_page_range+0x27c7/0x3ea0 [ 1566.713315] ? vm_area_alloc+0x110/0x110 [ 1566.713754] ? vm_iomap_memory+0x190/0x190 [ 1566.714181] ? down_write+0xde/0x150 [ 1566.714587] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1566.715124] ? __vma_link_rb+0x540/0x700 [ 1566.715569] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1566.716157] ? vm_stat_account+0xed/0x180 [ 1566.716609] dup_mm+0x53f/0x1250 [ 1566.716989] ? replace_mm_exe_file+0x490/0x490 [ 1566.717484] ? __raw_spin_lock_init+0x36/0x110 [ 1566.718005] copy_process+0x3a28/0x6d10 [ 1566.718460] ? __cleanup_sighand+0xb0/0xb0 [ 1566.718930] ? lock_release+0x3b2/0x6f0 [ 1566.719358] ? ksys_write+0x212/0x250 [ 1566.719770] ? kernel_clone+0x2f8/0xa60 [ 1566.720200] kernel_clone+0xe7/0xa60 [ 1566.720611] ? find_held_lock+0x2c/0x110 [ 1566.721047] ? create_io_thread+0xf0/0xf0 [ 1566.721509] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1566.722054] ? bit_wait_io_timeout+0x160/0x160 [ 1566.722558] ? lock_is_held_type+0xd7/0x130 [ 1566.723037] __do_sys_fork+0x8a/0xc0 [ 1566.723463] ? kernel_clone+0xa60/0xa60 [ 1566.723482] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1566.723507] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1566.723522] ? lockdep_hardirqs_on+0x79/0x100 [ 1566.723535] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1566.723549] do_syscall_64+0x3b/0x90 [ 1566.723567] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1566.723588] RIP: 0033:0x7f9fc1cadb19 20:44:55 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') r1 = syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000200)='./file0/file0\x00', 0x2, 0x3, &(0x7f0000000440)=[{&(0x7f0000000240)="e27124eeb673115dd6d26d8c9f9bf0ef528b55da319103fe96f515f4bc89f75a78bfdc6a717289e9101eecefb61826aeca4e0eeaaca2648f75007660fd8df001765e78dcb35b4ea9dfc7292d83705eda4fdfd5d415d273409fac4a39e77ec78f9e775f2b8ea15bb6c4b0de84a31efa624373f090ec8f7928b6c64ccdcbdad5575cc203832851c2e5c6b5cff611390f26ee3b9a4ed850fae4f546bc26cf8422fe959b2a64068ee3301e5e1ce73db1c11a7cbab3f246ea0d2cb95dc7c2ad003551f82113f09165f57708dc031583298dfb1468358f4a2bc6ba8b3f6132d52be2d6f2691ab06faa8c22cb617facf5cc80a8939171e2b0e56655ee", 0xf9, 0x5}, {&(0x7f0000000340)="53ee3d038fb3a46d621ada8f8ad98ffcb4fc2459eebee1c07cd9d23f5193bb46df6a73a5790f831ecf59ffe570f72ce12474c0e03c1201a10ac3a0fa84d201add6043b612c81bdc74b73", 0x4a, 0x4}, {&(0x7f00000003c0)="83bb3622270a6ec5303d3e751769747a039541e1cd1fabaf3b07cd99c3375a05c3a7f279b0", 0x25, 0x5}], 0x40000, &(0x7f00000004c0)={[{@fat=@flush}], [{@uid_gt={'uid>', 0xee00}}, {@dont_hash}]}) openat2(r1, &(0x7f0000000500)='./file0\x00', &(0x7f0000000540)={0x20082, 0x4, 0x12}, 0x18) preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0xee00, 0xee01}}, './file0\x00'}) openat(r2, &(0x7f0000000080)='./file0\x00', 0x10d481, 0x102) [ 1566.723597] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1566.723609] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1566.723623] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1566.723632] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1566.723639] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 20:44:55 executing program 0: pkey_mprotect(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x4, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') r1 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) pwritev(r4, &(0x7f0000000500)=[{&(0x7f00000001c0)="e1d542fb4a26552fb9db302fd09466a774103c3adc646f2c1568d29d3f835073acc5466207335515d815ecc47af485c7b9e17dc154de62ad01c107c832eff3d1db361d1fc9aad294aeb0845d066a38360db714f5841f5dedaffa9cbf453777590fec75e9952c33a078381967eb4074da250e856f3069ae94f523eb3cd8608418c64a5a4ee0c3b1fb50f1eec2bbdb42a2567aa05d7a909f91444275b0c0f43839d920964967b72970ae5bbdd82171a3fdbbc9c4d8d3e488cc3c4c621417b1a1ff30ebc4176f7581a94fa0dd679e77a5221333b58581c131b808ea8ade53d08efb3028", 0xe2}, {&(0x7f0000000000)='\a', 0x1}, {&(0x7f00000002c0)="b9ba1f8071264216abfe6de99d554bc7275a165f39f94b44364ac19c930a141d40c57cbdfb09eca82271a3bf33a3f18018fc8716ae9833d4b14f1e3ad7ae73782ef3b77bb47025d1e853449f6e194c5994b7299c6ef4c91b6d30316aa8b5e1fa9c2986fbfee9d53c94019c65eb1e1233b6dc25ebd8c7e0d0f7b7", 0x7a}, {&(0x7f0000000340)="b01de2c413f76ae77e87b91a337ed67e8f92afcc757e98accdd5a4f9c86110c166bd12479589bc619d411ae2bd18cd37ffa08af2ec6b6ebeffe85d24fd1e194f02201d25045a95258e9db09214dcea1ff084b71329ae1ea79a189f820bd1db4eff5bc6e0921e2f6929620ff7cb51eb811c4652ece029", 0x76}, {&(0x7f0000000080)}, {&(0x7f0000000440)="1d8fef758c907f247adec27e056924fa60cd87bf881d1818b5da47934591d3bbc64050fd190306a8806ae49db0d828cffc5119945dcfcc94c9d1f479beb4b95f2e0abbcd3c9edc085791c109ae1c9893c354ffdb617a8879ebe65bc64316ba59dcc4de9b31c9d5c17af9f0086fda7cd44bbccd47088811076b96175fe0caab7e8f4cc2ba1ad7ed63e6adba517f3bf10c3293f7c4a3c585b461527bba5a2b4dff7c3ab22b9367a89b90ef731d7386b621ba1d40736f687f1a", 0xb8}], 0x6, 0x400, 0x7) sendfile(r1, r0, &(0x7f00000003c0)=0x5c80, 0x7fff) preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) sendmsg$inet(r4, &(0x7f0000000740)={&(0x7f0000000580)={0x2, 0x8001, @local}, 0x10, &(0x7f00000006c0)=[{&(0x7f00000005c0)="ba44c884b12f3679d5f0d74beb91015b97949a25d8c9554f68bc981b869de0c4ece66cc79a3ead70a9fb6748999cd1e76ee4b0cbec86448967e7ab614f04de45b8eec45babd5dc3342996b5882095ac1b9c6c66234e7f8f130d8da32ea53b311c696e850d85c26c8d6842892214c88ed1c224f7f66ac9bf0e9ebfc5b528554ec402b6c6ba6381cf479", 0x89}, {&(0x7f0000000680)="ebe02c14a0431b", 0x7}], 0x2, &(0x7f0000000700)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x1fc000}}], 0x18}, 0x4004014) 20:44:55 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 48) [ 1566.723647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1566.723655] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 20:44:55 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000080)=[{&(0x7f00000000c0)=""/186, 0xba}, {&(0x7f0000000000)=""/4, 0x4}], 0x2, 0x81, 0x4485) [ 1566.723678] [ 1566.727960] FAULT_INJECTION: forcing a failure. [ 1566.727960] name failslab, interval 1, probability 0, space 0, times 0 [ 1566.727997] CPU: 0 PID: 24254 Comm: syz-executor.3 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1566.728024] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 20:44:55 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 30) [ 1566.728048] Call Trace: [ 1566.728059] [ 1566.728073] dump_stack_lvl+0x8b/0xb3 [ 1566.728139] should_fail.cold+0x5/0xa [ 1566.728195] ? create_object.isra.0+0x3a/0xa20 [ 1566.728238] should_failslab+0x5/0x10 [ 1566.728266] kmem_cache_alloc+0x5b/0x480 [ 1566.728306] create_object.isra.0+0x3a/0xa20 [ 1566.728339] ? kasan_unpoison+0x23/0x50 20:44:55 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') r1 = perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x0, 0xff, 0x0, 0x9, 0x0, 0x3, 0x40010, 0xa, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x4, @perf_config_ext={0xa00, 0x2}, 0x1200, 0x3, 0xd2, 0x9, 0x1f, 0x6, 0x9, 0x0, 0x4, 0x0, 0x9}, 0xffffffffffffffff, 0xffffffffffffffff, r0, 0x1) dup2(r1, r0) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000100), 0x80400, 0x0) ioctl$VT_RESIZE(r2, 0x5609, &(0x7f0000000140)={0x6, 0x9, 0x2}) preadv(r0, &(0x7f0000000400)=[{&(0x7f00000001c0)=""/199, 0xc7}], 0x1, 0x81, 0x0) r3 = fsopen(&(0x7f0000000000)='rootfs\x00', 0x0) ioctl$F2FS_IOC_START_ATOMIC_WRITE(r3, 0xf501, 0x0) [ 1566.728379] kmem_cache_alloc+0x239/0x480 [ 1566.728416] dup_mm+0x88/0x1250 [ 1566.728454] ? lock_release+0x3b2/0x6f0 [ 1566.728481] ? copy_process+0x278b/0x6d10 [ 1566.728520] ? replace_mm_exe_file+0x490/0x490 20:44:55 executing program 2: r0 = syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f0000000700)='./file0\x00', 0xff, 0x0, 0x0, 0x52800, &(0x7f0000000000)) mknodat$null(r0, &(0x7f0000000040)='./file0\x00', 0x2000, 0x103) [ 1566.728556] ? __raw_spin_lock_init+0x36/0x110 [ 1566.728594] copy_process+0x3a28/0x6d10 20:44:55 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 24) [ 1566.728655] ? __cleanup_sighand+0xb0/0xb0 [ 1566.728699] ? lock_release+0x3b2/0x6f0 [ 1566.728725] ? ksys_write+0x212/0x250 [ 1566.728755] ? kernel_clone+0x2f8/0xa60 [ 1566.728791] kernel_clone+0xe7/0xa60 [ 1566.728824] ? find_held_lock+0x2c/0x110 [ 1566.728848] ? create_io_thread+0xf0/0xf0 [ 1566.728885] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1566.728923] ? bit_wait_io_timeout+0x160/0x160 [ 1566.728955] ? lock_is_held_type+0xd7/0x130 [ 1566.728984] __do_sys_fork+0x8a/0xc0 [ 1566.729017] ? kernel_clone+0xa60/0xa60 [ 1566.729050] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1566.729095] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1566.729122] ? lockdep_hardirqs_on+0x79/0x100 [ 1566.729145] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1566.729170] do_syscall_64+0x3b/0x90 [ 1566.729203] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1566.729239] RIP: 0033:0x7f0ecb13db19 [ 1566.729257] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1566.729279] RSP: 002b:00007f0ec86b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1566.729303] RAX: ffffffffffffffda RBX: 00007f0ecb250f60 RCX: 00007f0ecb13db19 [ 1566.729319] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1566.729333] RBP: 00007f0ec86b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1566.729348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1566.729362] R13: 00007ffe225f4d7f R14: 00007f0ec86b3300 R15: 0000000000022000 [ 1566.729400] [ 1566.743192] FAULT_INJECTION: forcing a failure. [ 1566.743192] name failslab, interval 1, probability 0, space 0, times 0 [ 1566.743211] CPU: 1 PID: 24296 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1566.743232] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1566.743259] Call Trace: [ 1566.743267] [ 1566.743278] dump_stack_lvl+0x8b/0xb3 [ 1566.743328] should_fail.cold+0x5/0xa [ 1566.743371] ? anon_vma_clone+0xdc/0x580 [ 1566.743392] should_failslab+0x5/0x10 [ 1566.743405] kmem_cache_alloc+0x5b/0x480 [ 1566.743424] anon_vma_clone+0xdc/0x580 [ 1566.743456] anon_vma_fork+0x82/0x6a0 [ 1566.743475] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1566.743490] ? __vm_enough_memory+0x184/0x360 [ 1566.743509] dup_mm+0x91b/0x1250 [ 1566.743536] ? replace_mm_exe_file+0x490/0x490 [ 1566.743556] ? __raw_spin_lock_init+0x36/0x110 [ 1566.743578] copy_process+0x3a28/0x6d10 [ 1566.743614] ? __cleanup_sighand+0xb0/0xb0 [ 1566.743640] ? lock_release+0x3b2/0x6f0 [ 1566.743653] ? ksys_write+0x212/0x250 [ 1566.743670] ? kernel_clone+0x2f8/0xa60 [ 1566.743691] kernel_clone+0xe7/0xa60 [ 1566.743709] ? find_held_lock+0x2c/0x110 [ 1566.743722] ? create_io_thread+0xf0/0xf0 [ 1566.743742] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1566.743764] ? bit_wait_io_timeout+0x160/0x160 [ 1566.743782] ? lock_is_held_type+0xd7/0x130 [ 1566.743798] __do_sys_fork+0x8a/0xc0 [ 1566.743816] ? kernel_clone+0xa60/0xa60 [ 1566.743834] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1566.743859] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1566.743874] ? lockdep_hardirqs_on+0x79/0x100 [ 1566.743886] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1566.743900] do_syscall_64+0x3b/0x90 [ 1566.743918] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1566.743938] RIP: 0033:0x7fe050cdfb19 [ 1566.743947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1566.743959] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1566.743972] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1566.743981] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1566.743988] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1566.743996] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1566.744004] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1566.744026] [ 1566.897337] FAULT_INJECTION: forcing a failure. [ 1566.897337] name failslab, interval 1, probability 0, space 0, times 0 [ 1566.897362] CPU: 1 PID: 24514 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1566.897376] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1566.897386] Call Trace: [ 1566.897391] [ 1566.897397] dump_stack_lvl+0x8b/0xb3 [ 1566.897421] should_fail.cold+0x5/0xa [ 1566.897439] ? create_object.isra.0+0x3a/0xa20 [ 1566.897461] should_failslab+0x5/0x10 [ 1566.897474] kmem_cache_alloc+0x5b/0x480 [ 1566.897489] ? obj_cgroup_charge+0x247/0x740 [ 1566.897510] create_object.isra.0+0x3a/0xa20 [ 1566.897528] ? kasan_unpoison+0x23/0x50 [ 1566.897550] kmem_cache_alloc+0x239/0x480 [ 1566.897569] vm_area_dup+0x78/0x290 [ 1566.897594] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1566.897612] ? copy_page_range+0x27c7/0x3ea0 [ 1566.897649] ? vm_area_alloc+0x110/0x110 [ 1566.897671] ? vm_iomap_memory+0x190/0x190 [ 1566.897688] ? down_write+0xde/0x150 [ 1566.897708] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1566.897723] ? __vma_link_rb+0x540/0x700 [ 1566.897740] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 1566.897755] ? vm_stat_account+0xed/0x180 [ 1566.897772] dup_mm+0x53f/0x1250 [ 1566.897799] ? replace_mm_exe_file+0x490/0x490 [ 1566.897823] ? __raw_spin_lock_init+0x36/0x110 [ 1566.897845] copy_process+0x3a28/0x6d10 [ 1566.897881] ? __cleanup_sighand+0xb0/0xb0 [ 1566.897906] ? lock_release+0x3b2/0x6f0 [ 1566.897935] ? finish_task_switch.isra.0+0x221/0x870 [ 1566.897955] ? kernel_clone+0x2f8/0xa60 [ 1566.897975] kernel_clone+0xe7/0xa60 [ 1566.897995] ? create_io_thread+0xf0/0xf0 [ 1566.898013] ? finish_task_switch.isra.0+0x226/0x870 [ 1566.898032] ? lockdep_hardirqs_on+0x79/0x100 [ 1566.898045] ? finish_task_switch.isra.0+0x226/0x870 [ 1566.898075] __do_sys_fork+0x8a/0xc0 [ 1566.898093] ? kernel_clone+0xa60/0xa60 [ 1566.898120] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1566.898135] ? lockdep_hardirqs_on+0x79/0x100 [ 1566.898148] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1566.898162] do_syscall_64+0x3b/0x90 [ 1566.898179] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1566.898200] RIP: 0033:0x7f9fc1cadb19 [ 1566.898210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1566.898223] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1566.898237] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1566.898245] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1566.898253] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1566.898261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1566.898269] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1566.898292] [ 1566.965608] FAULT_INJECTION: forcing a failure. [ 1566.965608] name failslab, interval 1, probability 0, space 0, times 0 [ 1566.965631] CPU: 1 PID: 24612 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1566.965645] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1566.965654] Call Trace: [ 1566.965659] [ 1566.965664] dump_stack_lvl+0x8b/0xb3 [ 1566.965688] should_fail.cold+0x5/0xa [ 1566.965705] ? create_object.isra.0+0x3a/0xa20 [ 1566.965727] should_failslab+0x5/0x10 [ 1566.965744] kmem_cache_alloc+0x5b/0x480 [ 1566.965759] ? obj_cgroup_charge+0x247/0x740 [ 1566.965780] create_object.isra.0+0x3a/0xa20 [ 1566.965797] ? kasan_unpoison+0x23/0x50 [ 1566.965819] kmem_cache_alloc+0x239/0x480 [ 1566.965838] anon_vma_clone+0xdc/0x580 [ 1566.965866] anon_vma_fork+0x82/0x6a0 [ 1566.965884] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1566.965901] ? __vm_enough_memory+0x184/0x360 [ 1566.965925] dup_mm+0x91b/0x1250 [ 1566.965954] ? replace_mm_exe_file+0x490/0x490 [ 1566.965973] ? __raw_spin_lock_init+0x36/0x110 [ 1566.965996] copy_process+0x3a28/0x6d10 [ 1566.966031] ? __cleanup_sighand+0xb0/0xb0 [ 1566.966057] ? lock_release+0x3b2/0x6f0 [ 1566.966071] ? ksys_write+0x212/0x250 [ 1566.966087] ? kernel_clone+0x2f8/0xa60 [ 1566.966107] kernel_clone+0xe7/0xa60 [ 1566.966126] ? find_held_lock+0x2c/0x110 [ 1566.966139] ? create_io_thread+0xf0/0xf0 [ 1566.966159] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1566.966182] ? bit_wait_io_timeout+0x160/0x160 [ 1566.966199] ? lock_is_held_type+0xd7/0x130 [ 1566.966216] __do_sys_fork+0x8a/0xc0 [ 1566.966234] ? kernel_clone+0xa60/0xa60 [ 1566.966252] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1566.966277] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1566.966292] ? lockdep_hardirqs_on+0x79/0x100 [ 1566.966305] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1566.966319] do_syscall_64+0x3b/0x90 [ 1566.966337] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1566.966357] RIP: 0033:0x7fe050cdfb19 [ 1566.966367] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1566.966380] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1566.966393] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1566.966402] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1566.966410] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1566.966418] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1566.966425] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1566.966448] [ 1567.070090] FAULT_INJECTION: forcing a failure. [ 1567.070090] name failslab, interval 1, probability 0, space 0, times 0 [ 1567.070127] CPU: 0 PID: 24719 Comm: syz-executor.3 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1567.070153] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1567.070169] Call Trace: [ 1567.070176] [ 1567.070184] dump_stack_lvl+0x8b/0xb3 [ 1567.070224] should_fail.cold+0x5/0xa [ 1567.070260] ? create_object.isra.0+0x3a/0xa20 [ 1567.070299] should_failslab+0x5/0x10 [ 1567.070321] kmem_cache_alloc+0x5b/0x480 [ 1567.070346] ? obj_cgroup_charge+0x247/0x740 [ 1567.070383] create_object.isra.0+0x3a/0xa20 [ 1567.070416] ? kasan_unpoison+0x23/0x50 [ 1567.070455] kmem_cache_alloc+0x239/0x480 [ 1567.070488] copy_process+0x22c1/0x6d10 [ 1567.070550] ? __cleanup_sighand+0xb0/0xb0 [ 1567.070595] ? lock_release+0x3b2/0x6f0 [ 1567.070622] ? ksys_write+0x212/0x250 [ 1567.070651] ? kernel_clone+0x2f8/0xa60 [ 1567.070687] kernel_clone+0xe7/0xa60 [ 1567.070719] ? find_held_lock+0x2c/0x110 [ 1567.070744] ? create_io_thread+0xf0/0xf0 [ 1567.070780] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1567.070818] ? bit_wait_io_timeout+0x160/0x160 [ 1567.070849] ? lock_is_held_type+0xd7/0x130 [ 1567.070879] __do_sys_fork+0x8a/0xc0 [ 1567.070911] ? kernel_clone+0xa60/0xa60 [ 1567.070943] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1567.070988] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1567.071014] ? lockdep_hardirqs_on+0x79/0x100 [ 1567.071037] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1567.071062] do_syscall_64+0x3b/0x90 [ 1567.071095] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1567.071132] RIP: 0033:0x7f0ecb13db19 [ 1567.071150] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1567.071173] RSP: 002b:00007f0ec86b3188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1567.071197] RAX: ffffffffffffffda RBX: 00007f0ecb250f60 RCX: 00007f0ecb13db19 [ 1567.071213] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1567.071227] RBP: 00007f0ec86b31d0 R08: 0000000000000000 R09: 0000000000000000 [ 1567.071242] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1567.071256] R13: 00007ffe225f4d7f R14: 00007f0ec86b3300 R15: 0000000000022000 [ 1567.071294] 20:45:10 executing program 7: syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x4, 0x0, 0x0, 0x0, 0x0) unlink(&(0x7f0000000040)='./file0\x00') open$dir(&(0x7f0000000000)='./file0\x00', 0x200000, 0x88) r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000001340), 0x400480, 0x0) mkdirat(r0, &(0x7f0000001380)='./file0\x00', 0x100) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x4, 0x3, &(0x7f0000001280)=[{&(0x7f0000000140)="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", 0x1000, 0x10001}, {&(0x7f0000001140)="82930d37162595ad29f1cee2de99d71eeb5760c307f2ed8be43fcc203d4a4ee28dd291556f36b3f4ac764a6ea7c9fdb9bad078cd4ed7b059f2bc5d3bdefa07d92a1be6ea44bcfe1198844ef5bdb2a3b5ced4d0ec21a1f5", 0x57, 0x11bc}, {&(0x7f00000011c0)="a615a53bc2b814fe7b51cc5ae71f7b8cbbcda96f0c98c0cc6e672cc1a0ed769f6521c49eaf8ce36127f271b6cc844c0ca3816dfe6781bdc6e24f35938694e688a2cb72c4c23a45afcce30050b3f78c80a727407bbfe925660e89ac43e0a0eb445bc9c601d0f6903cb772e0783a3f801d496c38206b8bcbc63dbae46ba01bee8ef0a6eef2df306e9345baebebddd36e5123620176e811853eb17acd3d2b1b", 0x9e, 0x100000001}], 0x90, &(0x7f0000001300)={[{@numtail}, {@shortname_winnt}, {@shortname_mixed}, {@uni_xlate}]}) 20:45:10 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') r1 = syz_open_dev$rtc(&(0x7f0000000000), 0x9, 0x0) fallocate(r1, 0x25, 0x101, 0xfff) ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0, {0x4, 0x5}}, './file0\x00'}) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), r0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000001c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_TDLS_CHANNEL_SWITCH(r2, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x210208}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x40, r3, 0x400, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_OPER_CLASS={0x5, 0xd6, 0xe2}, @chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x2}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x1}]]}, 0x40}, 0x1, 0x0, 0x0, 0xc081}, 0x14) 20:45:10 executing program 2: syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r5 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001700)='./file0\x00', 0x0, 0xa, &(0x7f00000017c0)=[{&(0x7f00000001c0)="3f3825c452494327a57d097fa6696b70cf68104fc54d5bebba8a5f", 0x1b, 0x1ff}, {&(0x7f0000000380)="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", 0x1000, 0xffffffffffff8001}, {&(0x7f0000000200)="1848cc130cda7ba6fc759bd00910d347737137cf3b2051defedf16c9edba22086c07b041aaa13d975cb6c99a389a2aac0a2bf2d3f5d195796eb704185b1e5b0716a0d939f03aeebbb416f640ebb4658ba7ff36fe066d0f7d368313ec50cc0aaf98beb6f03d933f45efeb819ed658f505fa4e8a8ded933410b21623d33c65574d84314c654409018236f317c68d1bf148664384a3566b6f661aba1278fbda649eb079947f730df28faa", 0xa9, 0x1}, {&(0x7f0000001380)="b5064817c671d22c8dd84e01358fee4d12fed18af1e1c763ce6ba8f1d800e34b5eac95ea929999d74ebf52f5af8311859e7b899c5d357d001fe27e45637cf5f9d460fbd0dd5483301806df861acf1cba3ecf65c9d9d8c11aec6141eaf33e8398d846f8571216426e43a2e2b3973fca9403c487c8fdeeb99eeb10c7d65ae1b57c6bd92a3d31d23e792e03598e67a28894278e98667fa3893d191fc36ff7defd7a6812", 0xa2, 0x7}, {&(0x7f0000001440)="602cd2c7851d9787b8d958b52e588f7fae50c4fdfadb3c84ba9d185a6a5d91015242afd0df4e996734189a8253bafb49e67413667c11e91ca1d6ba8a00e39eda31eb016a8409b37a002c866ea001810561a4bfb3db0a4782e854ddd7bb931c8691662c7030df4011aa0c36da63cc5ddbe159710765a849918bb92c547f78576c84a9618423aec7ec90725ec77e315de8a622c05c1a5ce8833aa6ca21af070a6df4c24df48f0828265510c0cfa188c2b20f16ca2744ccf715d7f0066ad43ffda921cab4ae26ffe10bdb4d817b8281ca0796500a974c", 0xd5, 0x200}, {&(0x7f0000001540)="2a24e34bd126e9f72fbecf6e12a0f7d9287384f69460665da2c178e10fdf43cef5c833d71e78958715c334265ca1c474fc03713036e29bcd9109be881478070d566f95783d7e20", 0x47, 0x4}, {&(0x7f00000015c0)="9701b948caec7b49fa8b59c45a070e6b18cc29b34effcf32c283288af5dac7f479bb97b4d172d6b6cf10b0b2b1ff32f47d1d3705194df48cbe8ba30539d892701600820807303d846535da8e9c38fac90e747e73feb595d65fb22d7adef1fe355501af4a844a367c766c150a7133c8ca37e44b18fb1e1e9ac1b90c6118b91ad7143fb11d616b63b66931bd2f6e6dd731a2ce159b00114b591591dff5e662e1e731380d685212a3b492715e8ea1c6df1b155acf8a598c008da9d2", 0xba, 0x16c}, {&(0x7f00000002c0)="a328ae4d1ce2cb8fb9a04b6724", 0xd, 0x9c6f}, {&(0x7f0000001680)="2642bbe8a15dba560a1ecb5cfc2e605cbb8b3972e333b89ee524c775ad2fd0559186850332a5f867366cd31f349c6d216e732d1af8112fbda259541dd18fb2e85dc087b1f555e64976bdf6ae2f3ceb3ad9bc2396f40791f7e1a3395cd46797688c09b4614c0d9de656dd4bee68fb105ea2", 0x71, 0xc7}, {&(0x7f00000018c0)="001cd3fe9d0ea636ba4e840abd65e8111c12e748cfce51987cfe19f3dce03585b5bb8529e61536f7a169cbb9eaadbdbbd2faa5083bf4b6f591d56b30c543848ddb9395a943683ca4473afdffa9f6f57219b1025f236aaf13b6616088a49212b397c6625a5eee01008d5e4c734275ac19e91bea91565f079c15ca24c9fd5bd0f01d3d56440821a07970edefe6d901441d325530743674622cac8f279e06db21beccf15cde3a3ca93c07bbf3ae3a4fefefbc14fb917728", 0xb6, 0x7}], 0x4000b, &(0x7f0000000040)=ANY=[@ANYRESOCT=r5, @ANYRESOCT]) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0) 20:45:10 executing program 1: syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) madvise(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x10) fork() 20:45:10 executing program 6: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 49) 20:45:10 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') ioctl$AUTOFS_IOC_PROTOVER(r0, 0x80049363, &(0x7f0000000000)) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) sendfile(r0, r1, 0x0, 0x6) preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r0, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {0x1}}, './file0\x00'}) 20:45:10 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 31) [ 1582.034515] FAULT_INJECTION: forcing a failure. [ 1582.034515] name failslab, interval 1, probability 0, space 0, times 0 [ 1582.036710] CPU: 1 PID: 24898 Comm: syz-executor.4 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1582.038679] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 20:45:10 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() [ 1582.041342] Call Trace: [ 1582.042074] [ 1582.042615] dump_stack_lvl+0x8b/0xb3 [ 1582.043536] should_fail.cold+0x5/0xa [ 1582.044446] ? anon_vma_fork+0xed/0x6a0 [ 1582.045410] should_failslab+0x5/0x10 [ 1582.046337] kmem_cache_alloc+0x5b/0x480 [ 1582.047311] anon_vma_fork+0xed/0x6a0 [ 1582.048129] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1582.049189] ? __vm_enough_memory+0x184/0x360 [ 1582.050158] dup_mm+0x91b/0x1250 [ 1582.050911] ? replace_mm_exe_file+0x490/0x490 [ 1582.051898] ? __raw_spin_lock_init+0x36/0x110 [ 1582.052889] copy_process+0x3a28/0x6d10 [ 1582.053779] ? __cleanup_sighand+0xb0/0xb0 [ 1582.054709] ? lock_release+0x3b2/0x6f0 [ 1582.055553] ? ksys_write+0x212/0x250 [ 1582.056368] ? kernel_clone+0x2f8/0xa60 [ 1582.057224] kernel_clone+0xe7/0xa60 [ 1582.058025] ? find_held_lock+0x2c/0x110 [ 1582.058902] ? create_io_thread+0xf0/0xf0 [ 1582.059799] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1582.060858] ? bit_wait_io_timeout+0x160/0x160 [ 1582.061835] ? lock_is_held_type+0xd7/0x130 [ 1582.062760] __do_sys_fork+0x8a/0xc0 [ 1582.063556] ? kernel_clone+0xa60/0xa60 [ 1582.064406] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1582.065585] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1582.066693] ? lockdep_hardirqs_on+0x79/0x100 [ 1582.067640] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1582.068724] do_syscall_64+0x3b/0x90 [ 1582.069520] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1582.070627] RIP: 0033:0x7fe050cdfb19 [ 1582.071408] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1582.075225] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1582.076820] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1582.078367] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1582.079807] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1582.081298] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1582.082795] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1582.084323] [ 1582.117515] loop2: detected capacity change from 0 to 16256 [ 1582.132864] loop7: detected capacity change from 0 to 264192 [ 1582.139741] FAULT_INJECTION: forcing a failure. [ 1582.139741] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1582.142561] CPU: 1 PID: 24963 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1582.144367] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1582.146764] Call Trace: [ 1582.147326] [ 1582.147809] dump_stack_lvl+0x8b/0xb3 [ 1582.148653] should_fail.cold+0x5/0xa [ 1582.149497] prepare_alloc_pages+0x17b/0x500 [ 1582.150487] __alloc_pages+0x131/0x4e0 [ 1582.151341] ? memtype_seq_stop+0x20/0x20 [ 1582.152238] ? __alloc_pages_slowpath.constprop.0+0x1f10/0x1f10 [ 1582.153549] ? lookup_memtype+0x5b/0x1f0 [ 1582.154443] ? arch_io_reserve_memtype_wc+0xa0/0xa0 [ 1582.155557] alloc_pages+0x1a0/0x2f0 [ 1582.156395] pte_alloc_one+0x16/0x1f0 [ 1582.157239] __pte_alloc+0x69/0x200 [ 1582.158048] ? pmd_install+0x250/0x250 [ 1582.158942] copy_page_range+0x1b8b/0x3ea0 [ 1582.159869] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 1582.161082] ? vm_iomap_memory+0x190/0x190 [ 1582.162015] ? down_write+0xde/0x150 [ 1582.162855] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1582.163945] ? __vma_link_rb+0x540/0x700 [ 1582.164844] dup_mm+0x961/0x1250 [ 1582.165612] ? replace_mm_exe_file+0x490/0x490 [ 1582.166627] ? __raw_spin_lock_init+0x36/0x110 [ 1582.167643] copy_process+0x3a28/0x6d10 [ 1582.168562] ? __cleanup_sighand+0xb0/0xb0 [ 1582.169514] ? lock_release+0x3b2/0x6f0 [ 1582.170410] ? ksys_write+0x212/0x250 [ 1582.171249] ? kernel_clone+0x2f8/0xa60 [ 1582.172132] kernel_clone+0xe7/0xa60 [ 1582.172959] ? find_held_lock+0x2c/0x110 [ 1582.173855] ? create_io_thread+0xf0/0xf0 [ 1582.174787] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1582.175884] ? bit_wait_io_timeout+0x160/0x160 [ 1582.176901] ? lock_is_held_type+0xd7/0x130 [ 1582.177859] __do_sys_fork+0x8a/0xc0 [ 1582.178704] ? kernel_clone+0xa60/0xa60 [ 1582.179588] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1582.180820] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1582.181953] ? lockdep_hardirqs_on+0x79/0x100 [ 1582.182956] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1582.184099] do_syscall_64+0x3b/0x90 [ 1582.184938] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1582.186091] RIP: 0033:0x7f9fc1cadb19 [ 1582.186933] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1582.190869] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1582.192543] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1582.193996] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1582.195458] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1582.196844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1582.198246] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1582.199672] [ 1582.219086] FAT-fs (loop7): bogus number of reserved sectors [ 1582.220369] FAT-fs (loop7): Can't find a valid FAT filesystem [ 1582.220494] loop2: detected capacity change from 0 to 16256 [ 1582.256581] ------------[ cut here ]------------ [ 1582.258192] WARNING: CPU: 0 PID: 24963 at arch/x86/mm/pat/memtype.c:1099 untrack_pfn+0x247/0x290 [ 1582.260366] Modules linked in: [ 1582.261121] CPU: 0 PID: 24963 Comm: syz-executor.6 Not tainted 5.17.0-rc8-next-20220318 #1 [ 1582.263070] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1582.265702] RIP: 0010:untrack_pfn+0x247/0x290 [ 1582.266808] Code: 84 6c ff ff ff e8 09 1f 30 00 4c 89 ee 4c 89 e7 e8 9e db ff ff e8 f9 1e 30 00 48 85 db 0f 85 58 ff ff ff eb 82 e8 e9 1e 30 00 <0f> 0b e9 76 ff ff ff 48 89 df e8 aa 80 61 00 e9 98 fe ff ff e8 90 [ 1582.271084] RSP: 0018:ffff888044de7748 EFLAGS: 00010216 [ 1582.272350] RAX: 0000000000028dd2 RBX: ffff88800bea9e00 RCX: ffffc9000aa00000 [ 1582.275217] RDX: 0000000000040000 RSI: ffffffff81133257 RDI: 0000000000000003 [ 1582.276907] RBP: 1ffff110089bcee9 R08: 0000000000000000 R09: ffff888041d252a3 [ 1582.278589] R10: ffffffff81133126 R11: 0000000000000001 R12: 00000000ffffffea [ 1582.280264] R13: 0000000000000000 R14: 0000000000000000 R15: ffff88800bea9e50 [ 1582.281927] FS: 00007f9fbf223700(0000) GS:ffff88806ce00000(0000) knlGS:0000000000000000 [ 1582.283820] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1582.285193] CR2: 00007fab2853c000 CR3: 0000000040630000 CR4: 0000000000350ef0 [ 1582.286873] Call Trace: [ 1582.287498] [ 1582.288019] ? track_pfn_insert+0x140/0x140 [ 1582.289064] ? vm_normal_page+0x2e0/0x2e0 [ 1582.290069] ? lock_release+0x3b2/0x6f0 [ 1582.291057] ? lock_downgrade+0x6d0/0x6d0 [ 1582.292037] ? uprobe_munmap+0x1c/0x560 [ 1582.292986] unmap_single_vma+0x1bc/0x310 [ 1582.294004] unmap_vmas+0x16b/0x2f0 [ 1582.294892] ? lock_downgrade+0x6d0/0x6d0 [ 1582.295872] ? unmap_mapping_range+0x280/0x280 [ 1582.296977] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 1582.298291] exit_mmap+0x192/0x460 [ 1582.299108] ? do_munmap+0x40/0x40 [ 1582.299978] ? delayed_uprobe_remove+0x27/0x230 [ 1582.301088] mmput+0xc8/0x380 [ 1582.301848] dup_mm+0xdd1/0x1250 [ 1582.302693] ? replace_mm_exe_file+0x490/0x490 [ 1582.303770] ? __raw_spin_lock_init+0x36/0x110 [ 1582.304843] copy_process+0x3a28/0x6d10 [ 1582.305814] ? __cleanup_sighand+0xb0/0xb0 [ 1582.306832] ? lock_release+0x3b2/0x6f0 [ 1582.307750] ? ksys_write+0x212/0x250 [ 1582.308637] ? kernel_clone+0x2f8/0xa60 [ 1582.309564] kernel_clone+0xe7/0xa60 [ 1582.310462] ? find_held_lock+0x2c/0x110 [ 1582.311401] ? create_io_thread+0xf0/0xf0 [ 1582.312373] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1582.313512] ? bit_wait_io_timeout+0x160/0x160 [ 1582.314582] ? lock_is_held_type+0xd7/0x130 [ 1582.315578] __do_sys_fork+0x8a/0xc0 [ 1582.316452] ? kernel_clone+0xa60/0xa60 [ 1582.317378] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1582.318664] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1582.319858] ? lockdep_hardirqs_on+0x79/0x100 [ 1582.320888] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1582.322068] do_syscall_64+0x3b/0x90 [ 1582.322954] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1582.324139] RIP: 0033:0x7f9fc1cadb19 [ 1582.324986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1582.329072] RSP: 002b:00007f9fbf223188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1582.330800] RAX: ffffffffffffffda RBX: 00007f9fc1dc0f60 RCX: 00007f9fc1cadb19 [ 1582.332405] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1582.333996] RBP: 00007f9fbf2231d0 R08: 0000000000000000 R09: 0000000000000000 [ 1582.335601] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1582.337182] R13: 00007ffe50d9a82f R14: 00007f9fbf223300 R15: 0000000000022000 [ 1582.338794] [ 1582.339328] irq event stamp: 1695 [ 1582.340072] hardirqs last enabled at (1703): [] __up_console_sem+0x78/0x80 [ 1582.341967] hardirqs last disabled at (1712): [] __up_console_sem+0x5d/0x80 [ 1582.343884] softirqs last enabled at (1014): [] __irq_exit_rcu+0x113/0x170 [ 1582.345782] softirqs last disabled at (929): [] __irq_exit_rcu+0x113/0x170 [ 1582.347656] ---[ end trace 0000000000000000 ]--- 20:45:10 executing program 2: getgroups(0x2, &(0x7f0000000140)=[0x0, 0xee00]) r1 = syz_mount_image$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) stat(&(0x7f0000000240)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r2, 0x0) r3 = openat$null(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) fsconfig$FSCONFIG_SET_PATH(0xffffffffffffffff, 0x3, &(0x7f0000000080)='!!\x00', &(0x7f00000000c0)='./file0\x00', r3) setresgid(0x0, 0x0, 0x0) setfsgid(r0) r4 = pidfd_getfd(0xffffffffffffffff, r1, 0x0) unlinkat(r4, &(0x7f0000000000)='./file0\x00', 0x0) 20:45:10 executing program 4: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) fork() (fail_nth: 32) 20:45:10 executing program 5: ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32, @ANYBLOB="05000000bd449e1d7d000000c52e2f66"]) getsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x9, &(0x7f0000000080)=""/29, &(0x7f00000001c0)=0x1d) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) 20:45:10 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$BLKFRASET(r0, 0x1264, &(0x7f0000000080)=0x6) ioctl$BLKDISCARD(r0, 0x1277, &(0x7f00000002c0)=0xedd) preadv(r0, &(0x7f0000000000)=[{&(0x7f00000000c0)=""/193, 0xc1}, {&(0x7f00000001c0)=""/80, 0x50}, {&(0x7f0000000240)=""/97, 0x61}], 0x3, 0x81, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) [ 1582.461444] FAULT_INJECTION: forcing a failure. [ 1582.461444] name failslab, interval 1, probability 0, space 0, times 0 [ 1582.463822] CPU: 0 PID: 25316 Comm: syz-executor.4 Tainted: G W 5.17.0-rc8-next-20220318 #1 [ 1582.465770] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014 [ 1582.468055] Call Trace: [ 1582.468575] [ 1582.469044] dump_stack_lvl+0x8b/0xb3 [ 1582.469841] should_fail.cold+0x5/0xa [ 1582.470646] ? create_object.isra.0+0x3a/0xa20 [ 1582.471588] should_failslab+0x5/0x10 [ 1582.472353] kmem_cache_alloc+0x5b/0x480 [ 1582.473174] ? obj_cgroup_charge+0x247/0x740 [ 1582.474079] create_object.isra.0+0x3a/0xa20 [ 1582.474987] ? kasan_unpoison+0x23/0x50 [ 1582.475798] kmem_cache_alloc+0x239/0x480 [ 1582.476641] anon_vma_fork+0xed/0x6a0 [ 1582.477413] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 1582.478427] ? __vm_enough_memory+0x184/0x360 [ 1582.479333] dup_mm+0x91b/0x1250 [ 1582.480037] ? replace_mm_exe_file+0x490/0x490 [ 1582.480961] ? __raw_spin_lock_init+0x36/0x110 [ 1582.481884] copy_process+0x3a28/0x6d10 [ 1582.482732] ? __cleanup_sighand+0xb0/0xb0 [ 1582.483591] ? lock_release+0x3b2/0x6f0 [ 1582.484380] ? ksys_write+0x212/0x250 [ 1582.485142] ? kernel_clone+0x2f8/0xa60 [ 1582.485944] kernel_clone+0xe7/0xa60 [ 1582.486698] ? find_held_lock+0x2c/0x110 [ 1582.487507] ? create_io_thread+0xf0/0xf0 [ 1582.488344] ? __mutex_unlock_slowpath+0x15c/0x5e0 [ 1582.489328] ? bit_wait_io_timeout+0x160/0x160 [ 1582.490253] ? lock_is_held_type+0xd7/0x130 [ 1582.491113] __do_sys_fork+0x8a/0xc0 [ 1582.491861] ? kernel_clone+0xa60/0xa60 [ 1582.492657] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 1582.493764] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1582.494903] ? lockdep_hardirqs_on+0x79/0x100 [ 1582.495919] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1582.497085] do_syscall_64+0x3b/0x90 [ 1582.497944] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 1582.499130] RIP: 0033:0x7fe050cdfb19 [ 1582.499968] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1582.504139] RSP: 002b:00007fe04e255188 EFLAGS: 00000246 ORIG_RAX: 0000000000000039 [ 1582.505883] RAX: ffffffffffffffda RBX: 00007fe050df2f60 RCX: 00007fe050cdfb19 [ 1582.507501] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1582.509093] RBP: 00007fe04e2551d0 R08: 0000000000000000 R09: 0000000000000000 [ 1582.510704] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1582.512307] R13: 00007fff3e6047df R14: 00007fe04e255300 R15: 0000000000022000 [ 1582.513939] 20:45:11 executing program 1: r0 = syz_io_uring_setup(0xead, &(0x7f0000000200)={0x0, 0x0, 0x1}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) io_uring_enter(r0, 0x381c, 0x4704, 0x0, &(0x7f0000000040), 0x8) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) mmap$IORING_OFF_SQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x6, 0x8010, 0xffffffffffffffff, 0x0) fork() syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x0, 0x0, 0x0, 0x0, 0x12345}, 0x800) 20:45:11 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') ioctl$AUTOFS_IOC_PROTOVER(r0, 0x80049363, &(0x7f0000000000)) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) sendfile(r0, r1, 0x0, 0x6) preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r0, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {0x1}}, './file0\x00'}) 20:45:11 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') ioctl$AUTOFS_IOC_PROTOVER(r0, 0x80049363, &(0x7f0000000000)) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) sendfile(r0, r1, 0x0, 0x6) preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r0, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {0x1}}, './file0\x00'}) 20:45:11 executing program 3: r0 = syz_io_uring_setup(0xeaf, &(0x7f0000000200), &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff9000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000040)) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x300000c, 0x13, r0, 0x8000000) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xa) 20:45:11 executing program 5: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') openat(r0, &(0x7f0000000000)='./file0\x00', 0x553140, 0x0) preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x7d, 0x0) 20:45:11 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ipv6_route\x00') syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0xffffffff}, &(0x7f00000a0000)=nil, &(0x7f0000ffb000/0x5000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000300)=@rc={0x1f, @fixed}}, 0x0) pidfd_getfd(0xffffffffffffffff, r3, 0x0) preadv(r0, &(0x7f0000000400)=[{&(0x7f00000000c0)=""/193, 0xc1}], 0x1, 0x81, 0x0) VM DIAGNOSIS: 20:45:11 Registers: info registers vcpu 0 RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd RSI=ffffffff82383b2c RDI=ffffffff873a5200 RBP=ffffffff873a51c0 RSP=ffff888044de7100 R8 =0000000000000051 R9 =0000000000000052 R10=ffffffff8236b20b R11=000000000000000a R12=0000000000000020 R13=fffffbfff0e74a8b R14=fffffbfff0e74a42 R15=dffffc0000000000 RIP=ffffffff82383b80 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f9fbf223700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fab2853c000 CR3=0000000040630000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 0000000000000000 3fd0000000000000 YMM02=0000000000000000 0000000000000000 0000000000000000 417e857b50000000 YMM03=0000000000000000 0000000000000000 0000000000000000 3ff0000000000000 YMM04=0000000000000000 0000000000000000 0000000000000000 3fd3333333333333 YMM05=0000000000000000 0000000000000000 000000c005a3f3c8 000000c005a3f370 YMM06=0000000000000000 0000000000000000 000000c005a3f478 000000c005a3f420 YMM07=0000000000000000 0000000000000000 000000c005a3f528 000000c005a3f4d0 YMM08=0000000000000000 0000000000000000 000000c005a3f5d8 000000c005a3f580 YMM09=0000000000000000 0000000000000000 000000c005a3f688 000000c005a3f630 YMM10=0000000000000000 0000000000000000 000000c005a3f738 000000c005a3f6e0 YMM11=0000000000000000 0000000000000000 000000c005a3f7e8 000000c005a3f790 YMM12=0000000000000000 0000000000000000 000000c005a3f898 000000c005a3f840 YMM13=0000000000000000 0000000000000000 000000c005a3f948 000000c005a3f8f0 YMM14=0000000000000000 0000000000000000 000000c005a3f9f8 000000c005a3f9a0 YMM15=0000000000000000 0000000000000000 000000c005a3faa8 000000c005a3fa50 info registers vcpu 1 RAX=0000000000000007 RBX=1ffff11009995e6b RCX=0000000000000000 RDX=0000000000000000 RSI=0000000000000003 RDI=ffff8880428989a4 RBP=0000000000000000 RSP=ffff88804ccaf340 R8 =0000000000000000 R9 =ffffffff858cc397 R10=fffffbfff0b19872 R11=0000000000000001 R12=0000000000000002 R13=0000000000000000 R14=ffffffff85201cc0 R15=0000000000000000 RIP=ffffffff8128dcb6 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00005555569d7400 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ffd58147f20 CR3=0000000017ede000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM01=0000000000000000 0000000000000000 00007faa7915c7c0 00007faa7915c7c8 YMM02=0000000000000000 0000000000000000 00007faa7915c7e0 00007faa7915c7c0 YMM03=0000000000000000 0000000000000000 00007faa7915c7c8 00007faa7915c7c0 YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000 YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245 YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040 YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000