fffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 68)

05:08:58 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 54)

05:08:58 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 81)

05:08:58 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x2000000000000000, 0x0)

05:08:58 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 72)

05:08:58 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0xb00000000000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:08:58 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x900000000000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:08:58 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) (fail_nth: 20)

[ 1178.536498]  ? __kmem_cache_alloc_node+0x1f8/0x310
[ 1178.537006]  ? __pfx_perf_trace_preemptirq_template+0x10/0x10
[ 1178.537445]  ? __pfx_lock_release+0x10/0x10
[ 1178.537759]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1178.538113]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1178.538488]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1178.538847]  ? v9fs_mount+0x9e/0xbd0
[ 1178.539134]  v9fs_mount+0xbd/0xbd0
[ 1178.539402]  ? vfs_parse_fs_param+0xd8/0x3d0
[ 1178.539717]  ? __pfx_v9fs_mount+0x10/0x10
[ 1178.540029]  ? vfs_parse_fs_string+0xfc/0x150
[ 1178.540350]  ? cap_capable+0x1be/0x220
[ 1178.540649]  ? __pfx_v9fs_mount+0x10/0x10
[ 1178.540953]  legacy_get_tree+0x109/0x220
[ 1178.541265]  vfs_get_tree+0x92/0x360
[ 1178.541549]  path_mount+0x133c/0x1e50
[ 1178.541842]  ? kasan_quarantine_put+0x81/0x1d0
[ 1178.542178]  ? __pfx_path_mount+0x10/0x10
[ 1178.542486]  ? putname+0x102/0x140
[ 1178.542749]  ? kmem_cache_free+0xff/0x4a0
[ 1178.543053]  ? putname+0x102/0x140
[ 1178.543320]  __x64_sys_mount+0x286/0x310
[ 1178.543612]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1178.543936]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1178.544313]  do_syscall_64+0x3f/0x90
[ 1178.544595]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1178.544971] RIP: 0033:0x7f7b9f748b19
[ 1178.545236] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1178.546509] RSP: 002b:00007f7b9ccbe188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1178.547037] RAX: ffffffffffffffda RBX: 00007f7b9f85bf60 RCX: 00007f7b9f748b19
[ 1178.547531] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000020000000
[ 1178.548029] RBP: 00007f7b9ccbe1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1178.548528] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1178.548992] R13: 00007ffc06d11d1f R14: 00007f7b9ccbe300 R15: 0000000000022000
[ 1178.549508]  </TASK>
[ 1178.587243] FAULT_INJECTION: forcing a failure.
[ 1178.587243] name failslab, interval 1, probability 0, space 0, times 0
[ 1178.588372] CPU: 0 PID: 7555 Comm: syz-executor.5 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1178.589111] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1178.589847] Call Trace:
[ 1178.590078]  <TASK>
[ 1178.590285]  dump_stack_lvl+0xc1/0xf0
[ 1178.590664]  should_fail_ex+0x4b4/0x5b0
[ 1178.591080]  ? __kernfs_new_node+0xd4/0x870
[ 1178.591492]  should_failslab+0x9/0x20
[ 1178.591863]  kmem_cache_alloc+0x5a/0x390
[ 1178.592278]  __kernfs_new_node+0xd4/0x870
[ 1178.592700]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1178.593171]  ? down_write+0x11a/0x1f0
[ 1178.593574]  ? up_write+0x196/0x510
[ 1178.593940]  kernfs_new_node+0x97/0x120
[ 1178.594339]  __kernfs_create_file+0x55/0x350
[ 1178.594780]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1178.595237]  ? __pfx_slab_attr_store+0x10/0x10
[ 1178.595681]  internal_create_group+0x322/0xb90
[ 1178.596119]  ? __pfx_internal_create_group+0x10/0x10
[ 1178.596590]  ? up_write+0x196/0x510
[ 1178.596960]  sysfs_slab_add+0x18e/0x220
[ 1178.597352]  __kmem_cache_create+0x1fe/0x610
[ 1178.597804]  kmem_cache_create_usercopy+0x218/0x340
[ 1178.598298]  p9_client_create+0xd0b/0x1260
[ 1178.598710]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1178.599189]  ? __pfx_p9_client_create+0x10/0x10
[ 1178.599631]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1178.600101]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1178.600543]  ? __kasan_kmalloc+0x7f/0x90
[ 1178.600939]  ? __raw_spin_lock_init+0x3a/0x110
[ 1178.601409]  v9fs_session_init+0x1e0/0x17b0
[ 1178.601847]  ? __pfx_lock_release+0x10/0x10
[ 1178.602277]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1178.602734]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1178.603249]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1178.603727]  ? v9fs_mount+0x9e/0xbd0
[ 1178.604125]  v9fs_mount+0xbd/0xbd0
[ 1178.604483]  ? legacy_init_fs_context+0x44/0xe0
[ 1178.604933]  ? __pfx_v9fs_mount+0x10/0x10
[ 1178.605349]  ? cap_capable+0x1be/0x220
[ 1178.605751]  ? __pfx_v9fs_mount+0x10/0x10
[ 1178.606161]  legacy_get_tree+0x109/0x220
[ 1178.606573]  vfs_get_tree+0x92/0x360
[ 1178.606950]  path_mount+0x133c/0x1e50
[ 1178.607335]  ? kasan_quarantine_put+0x81/0x1d0
[ 1178.607759]  ? __pfx_path_mount+0x10/0x10
[ 1178.608156]  ? putname+0x102/0x140
[ 1178.608516]  ? kmem_cache_free+0xff/0x4a0
[ 1178.608903]  ? putname+0x102/0x140
[ 1178.609282]  __x64_sys_mount+0x286/0x310
[ 1178.609668]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1178.610113]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1178.610614]  do_syscall_64+0x3f/0x90
[ 1178.610982]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1178.611472] RIP: 0033:0x7f05858feb19
[ 1178.611817] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1178.613399] RSP: 002b:00007f0582e74188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1178.614083] RAX: ffffffffffffffda RBX: 00007f0585a11f60 RCX: 00007f05858feb19
[ 1178.614726] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1178.615348] RBP: 00007f0582e741d0 R08: 0000000020000240 R09: 0000000000000000
[ 1178.615970] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1178.616608] R13: 00007ffd3f25a19f R14: 00007f0582e74300 R15: 0000000000022000
[ 1178.617311]  </TASK>
[ 1178.714814] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1178.715887] CPU: 0 PID: 7555 Comm: syz-executor.5 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1178.716931] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1178.717989] Call Trace:
[ 1178.718341]  <TASK>
[ 1178.718661]  dump_stack_lvl+0xc1/0xf0
[ 1178.719207]  kmem_cache_create_usercopy+0x12b/0x340
[ 1178.719968]  p9_client_create+0xd0b/0x1260
[ 1178.720572]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1178.721333]  ? __pfx_p9_client_create+0x10/0x10
[ 1178.722026]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1178.722745]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1178.723441]  ? __kasan_kmalloc+0x7f/0x90
[ 1178.724064]  ? __raw_spin_lock_init+0x3a/0x110
[ 1178.724760]  v9fs_session_init+0x1e0/0x17b0
[ 1178.725459]  ? __pfx_lock_release+0x10/0x10
[ 1178.726109]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1178.726815]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1178.727594]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1178.728310]  ? v9fs_mount+0x9e/0xbd0
[ 1178.728911]  v9fs_mount+0xbd/0xbd0
[ 1178.729459]  ? legacy_init_fs_context+0x44/0xe0
[ 1178.730152]  ? __pfx_v9fs_mount+0x10/0x10
[ 1178.730778]  ? cap_capable+0x1be/0x220
[ 1178.731392]  ? __pfx_v9fs_mount+0x10/0x10
[ 1178.732013]  legacy_get_tree+0x109/0x220
[ 1178.732641]  vfs_get_tree+0x92/0x360
[ 1178.733224]  path_mount+0x133c/0x1e50
[ 1178.733846]  ? kasan_quarantine_put+0x81/0x1d0
[ 1178.734530]  ? __pfx_path_mount+0x10/0x10
[ 1178.735159]  ? putname+0x102/0x140
[ 1178.735698]  ? kmem_cache_free+0xff/0x4a0
[ 1178.736317]  ? putname+0x102/0x140
[ 1178.736883]  __x64_sys_mount+0x286/0x310
[ 1178.737480]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1178.738151]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1178.738925]  do_syscall_64+0x3f/0x90
[ 1178.739508]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1178.740267] RIP: 0033:0x7f05858feb19
[ 1178.740802] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1178.743264] RSP: 002b:00007f0582e74188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1178.744334] RAX: ffffffffffffffda RBX: 00007f0585a11f60 RCX: 00007f05858feb19
[ 1178.745362] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1178.746340] RBP: 00007f0582e741d0 R08: 0000000020000240 R09: 0000000000000000
[ 1178.747325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1178.748329] R13: 00007ffd3f25a19f R14: 00007f0582e74300 R15: 0000000000022000
[ 1178.749386]  </TASK>
05:09:10 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 69)

05:09:10 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 82)

05:09:10 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 73)

05:09:10 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x1000000000000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:09:10 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) (fail_nth: 21)

05:09:10 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0xa00000000000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:09:10 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 55)

05:09:10 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x2010000000000000, 0x0)

[ 1190.220114] 9pnet_virtio: no channels available for device ./file0
[ 1190.222985] FAULT_INJECTION: forcing a failure.
[ 1190.222985] name failslab, interval 1, probability 0, space 0, times 0
[ 1190.223780] CPU: 1 PID: 7583 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1190.224313] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1190.224844] Call Trace:
[ 1190.225022]  <TASK>
[ 1190.225182]  dump_stack_lvl+0xc1/0xf0
[ 1190.225469]  should_fail_ex+0x4b4/0x5b0
[ 1190.225758]  ? __kernfs_new_node+0xd4/0x870
[ 1190.226054]  should_failslab+0x9/0x20
[ 1190.226323]  kmem_cache_alloc+0x5a/0x390
[ 1190.226614]  __kernfs_new_node+0xd4/0x870
[ 1190.226910]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1190.227241]  ? down_write+0x11a/0x1f0
[ 1190.227515]  ? up_write+0x196/0x510
[ 1190.227780]  kernfs_new_node+0x97/0x120
[ 1190.228061]  __kernfs_create_file+0x55/0x350
[ 1190.228377]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1190.228700]  ? __pfx_slab_attr_store+0x10/0x10
[ 1190.229026]  internal_create_group+0x322/0xb90
[ 1190.229348]  ? __pfx_internal_create_group+0x10/0x10
[ 1190.229714]  ? up_write+0x196/0x510
[ 1190.229983]  sysfs_slab_add+0x18e/0x220
[ 1190.230271]  __kmem_cache_create+0x1fe/0x610
[ 1190.230601]  kmem_cache_create_usercopy+0x218/0x340
[ 1190.230960]  p9_client_create+0xd0b/0x1260
[ 1190.231273]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1190.231648]  ? __pfx_p9_client_create+0x10/0x10
[ 1190.231981]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1190.232333]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1190.232671]  ? __kasan_kmalloc+0x7f/0x90
[ 1190.232960]  ? __raw_spin_lock_init+0x3a/0x110
[ 1190.233285]  v9fs_session_init+0x1e0/0x17b0
[ 1190.233612]  ? __pfx_lock_release+0x10/0x10
[ 1190.233918]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1190.234271]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1190.234644]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1190.234998]  ? v9fs_mount+0x9e/0xbd0
[ 1190.235285]  v9fs_mount+0xbd/0xbd0
[ 1190.235551]  ? legacy_init_fs_context+0x44/0xe0
[ 1190.235885]  ? __pfx_v9fs_mount+0x10/0x10
[ 1190.236189]  ? cap_capable+0x1be/0x220
[ 1190.236485]  ? __pfx_v9fs_mount+0x10/0x10
[ 1190.236788]  legacy_get_tree+0x109/0x220
[ 1190.237095]  vfs_get_tree+0x92/0x360
[ 1190.237373]  path_mount+0x133c/0x1e50
[ 1190.237669]  ? kasan_quarantine_put+0x81/0x1d0
[ 1190.238001]  ? __pfx_path_mount+0x10/0x10
[ 1190.238303]  ? putname+0x102/0x140
[ 1190.238567]  ? kmem_cache_free+0xff/0x4a0
[ 1190.238870]  ? putname+0x102/0x140
[ 1190.239141]  __x64_sys_mount+0x286/0x310
[ 1190.239429]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1190.239752]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1190.240123]  do_syscall_64+0x3f/0x90
[ 1190.240402]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1190.240772] RIP: 0033:0x7fcf62391b19
[ 1190.241033] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1190.242266] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1190.242787] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1190.243279] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1190.243769] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1190.244258] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1190.244749] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1190.245253]  </TASK>
05:09:10 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) (fail_nth: 22)

[ 1190.294838] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1190.295363] CPU: 1 PID: 7583 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1190.295890] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1190.296423] Call Trace:
[ 1190.296602]  <TASK>
[ 1190.296759]  dump_stack_lvl+0xc1/0xf0
[ 1190.297036]  kmem_cache_create_usercopy+0x12b/0x340
[ 1190.297387]  p9_client_create+0xd0b/0x1260
[ 1190.297702]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1190.298057]  ? __pfx_p9_client_create+0x10/0x10
[ 1190.298376]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1190.298713]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1190.299032]  ? __kasan_kmalloc+0x7f/0x90
[ 1190.299317]  ? __raw_spin_lock_init+0x3a/0x110
[ 1190.299635]  v9fs_session_init+0x1e0/0x17b0
[ 1190.299941]  ? __pfx_lock_release+0x10/0x10
[ 1190.300242]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1190.300571]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1190.300927]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1190.301261]  ? v9fs_mount+0x9e/0xbd0
[ 1190.301545]  v9fs_mount+0xbd/0xbd0
[ 1190.301798]  ? legacy_init_fs_context+0x44/0xe0
[ 1190.302116]  ? __pfx_v9fs_mount+0x10/0x10
[ 1190.302408]  ? cap_capable+0x1be/0x220
[ 1190.302694]  ? __pfx_v9fs_mount+0x10/0x10
[ 1190.302982]  legacy_get_tree+0x109/0x220
[ 1190.303272]  vfs_get_tree+0x92/0x360
[ 1190.303541]  path_mount+0x133c/0x1e50
[ 1190.303820]  ? kasan_quarantine_put+0x81/0x1d0
[ 1190.304139]  ? __pfx_path_mount+0x10/0x10
[ 1190.304428]  ? putname+0x102/0x140
[ 1190.304679]  ? kmem_cache_free+0xff/0x4a0
[ 1190.304968]  ? putname+0x102/0x140
[ 1190.305237]  __x64_sys_mount+0x286/0x310
[ 1190.305534]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1190.305861]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1190.306236]  do_syscall_64+0x3f/0x90
[ 1190.306514]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1190.306884] RIP: 0033:0x7fcf62391b19
[ 1190.307150] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1190.308369] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1190.308885] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1190.309380] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1190.309882] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1190.310365] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1190.310852] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1190.311357]  </TASK>
[ 1190.312822] FAULT_INJECTION: forcing a failure.
[ 1190.312822] name failslab, interval 1, probability 0, space 0, times 0
[ 1190.313775] CPU: 1 PID: 7589 Comm: syz-executor.6 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1190.314331] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1190.314895] Call Trace:
[ 1190.315085]  <TASK>
[ 1190.315256]  dump_stack_lvl+0xc1/0xf0
[ 1190.315537]  should_fail_ex+0x4b4/0x5b0
[ 1190.315839]  ? __kernfs_new_node+0xd4/0x870
[ 1190.316147]  should_failslab+0x9/0x20
[ 1190.316428]  kmem_cache_alloc+0x5a/0x390
[ 1190.316733]  __kernfs_new_node+0xd4/0x870
[ 1190.317043]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1190.317392]  ? down_write+0x11a/0x1f0
[ 1190.317699]  ? up_write+0x196/0x510
[ 1190.317980]  kernfs_new_node+0x97/0x120
[ 1190.318279]  __kernfs_create_file+0x55/0x350
[ 1190.318609]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1190.318945]  ? __pfx_slab_attr_store+0x10/0x10
[ 1190.319286]  internal_create_group+0x322/0xb90
[ 1190.319622]  ? __pfx_internal_create_group+0x10/0x10
[ 1190.319988]  ? up_write+0x196/0x510
[ 1190.320266]  sysfs_slab_add+0x18e/0x220
[ 1190.320557]  __kmem_cache_create+0x1fe/0x610
[ 1190.320886]  kmem_cache_create_usercopy+0x218/0x340
[ 1190.321267]  p9_client_create+0xd0b/0x1260
[ 1190.321588]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1190.321957]  ? __pfx_p9_client_create+0x10/0x10
[ 1190.322291]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1190.322652]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1190.322993]  ? __kasan_kmalloc+0x7f/0x90
[ 1190.323296]  ? __raw_spin_lock_init+0x3a/0x110
[ 1190.323637]  v9fs_session_init+0x1e0/0x17b0
[ 1190.323956]  ? __pfx_lock_release+0x10/0x10
[ 1190.324271]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1190.324621]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1190.324999]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1190.325353]  ? v9fs_mount+0x9e/0xbd0
[ 1190.325648]  v9fs_mount+0xbd/0xbd0
[ 1190.325915]  ? legacy_init_fs_context+0x44/0xe0
[ 1190.326250]  ? __pfx_v9fs_mount+0x10/0x10
[ 1190.326555]  ? cap_capable+0x1be/0x220
[ 1190.326851]  ? __pfx_v9fs_mount+0x10/0x10
[ 1190.327156]  legacy_get_tree+0x109/0x220
[ 1190.327457]  vfs_get_tree+0x92/0x360
[ 1190.327738]  path_mount+0x133c/0x1e50
[ 1190.328030]  ? kasan_quarantine_put+0x81/0x1d0
[ 1190.328365]  ? __pfx_path_mount+0x10/0x10
[ 1190.328673]  ? putname+0x102/0x140
[ 1190.328936]  ? kmem_cache_free+0xff/0x4a0
[ 1190.329244]  ? putname+0x102/0x140
[ 1190.329531]  __x64_sys_mount+0x286/0x310
[ 1190.329824]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1190.330155]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1190.330535]  do_syscall_64+0x3f/0x90
[ 1190.330815]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1190.331187] RIP: 0033:0x7fdb13b24b19
05:09:10 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x8cffffff00000000, 0x0)

[ 1190.331455] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1190.332871] RSP: 002b:00007fdb1109a188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1190.333410] RAX: ffffffffffffffda RBX: 00007fdb13c37f60 RCX: 00007fdb13b24b19
[ 1190.333904] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1190.334393] RBP: 00007fdb1109a1d0 R08: 0000000020000240 R09: 0000000000000000
[ 1190.334873] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1190.335354] R13: 00007fff73fffccf R14: 00007fdb1109a300 R15: 0000000000022000
[ 1190.335860]  </TASK>
05:09:10 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x2000000000000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1190.342102] FAULT_INJECTION: forcing a failure.
[ 1190.342102] name failslab, interval 1, probability 0, space 0, times 0
[ 1190.342912] CPU: 1 PID: 7597 Comm: syz-executor.4 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1190.343452] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1190.343986] Call Trace:
[ 1190.344161]  <TASK>
[ 1190.344322]  dump_stack_lvl+0xc1/0xf0
[ 1190.344593]  should_fail_ex+0x4b4/0x5b0
[ 1190.344884]  should_failslab+0x9/0x20
[ 1190.345155]  __kmem_cache_alloc_node+0x5b/0x310
[ 1190.345489]  ? p9_client_create+0xb3/0x1260
[ 1190.345790]  kmalloc_trace+0x26/0xc0
[ 1190.346061]  p9_client_create+0xb3/0x1260
05:09:10 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0xb00000000000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1190.346347]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1190.346816]  ? __pfx_p9_client_create+0x10/0x10
[ 1190.347144]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1190.347484]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1190.347807]  ? __kasan_kmalloc+0x7f/0x90
[ 1190.348097]  ? __raw_spin_lock_init+0x3a/0x110
[ 1190.348420]  v9fs_session_init+0x1e0/0x17b0
[ 1190.348729]  ? __pfx_lock_release+0x10/0x10
[ 1190.349039]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1190.349373]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1190.349747]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1190.350085]  ? v9fs_mount+0x9e/0xbd0
[ 1190.350365]  v9fs_mount+0xbd/0xbd0
[ 1190.350624]  ? vfs_parse_fs_param+0xd8/0x3d0
[ 1190.350926]  ? __pfx_v9fs_mount+0x10/0x10
[ 1190.351228]  ? vfs_parse_fs_string+0xfc/0x150
[ 1190.351555]  ? cap_capable+0x1be/0x220
[ 1190.351850]  ? __pfx_v9fs_mount+0x10/0x10
[ 1190.352163]  legacy_get_tree+0x109/0x220
[ 1190.352469]  vfs_get_tree+0x92/0x360
[ 1190.352751]  path_mount+0x133c/0x1e50
[ 1190.353044]  ? kasan_quarantine_put+0x81/0x1d0
[ 1190.353386]  ? __pfx_path_mount+0x10/0x10
[ 1190.353707]  ? putname+0x102/0x140
[ 1190.353975]  ? kmem_cache_free+0xff/0x4a0
[ 1190.354281]  ? putname+0x102/0x140
[ 1190.354554]  __x64_sys_mount+0x286/0x310
[ 1190.354847]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1190.355178]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1190.355551]  do_syscall_64+0x3f/0x90
[ 1190.355830]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1190.356205] RIP: 0033:0x7f7b9f748b19
[ 1190.356466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1190.357717] RSP: 002b:00007f7b9ccbe188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1190.358237] RAX: ffffffffffffffda RBX: 00007f7b9f85bf60 RCX: 00007f7b9f748b19
[ 1190.358725] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000020000000
[ 1190.359216] RBP: 00007f7b9ccbe1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1190.359710] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1190.360201] R13: 00007ffc06d11d1f R14: 00007f7b9ccbe300 R15: 0000000000022000
[ 1190.360702]  </TASK>
[ 1190.379613] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1190.380121] CPU: 1 PID: 7589 Comm: syz-executor.6 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1190.380668] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1190.381196] Call Trace:
[ 1190.381375]  <TASK>
[ 1190.381551]  dump_stack_lvl+0xc1/0xf0
[ 1190.381828]  kmem_cache_create_usercopy+0x12b/0x340
[ 1190.382169]  p9_client_create+0xd0b/0x1260
[ 1190.382459]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1190.382809]  ? __pfx_p9_client_create+0x10/0x10
[ 1190.383121]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1190.383456]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1190.383780]  ? __kasan_kmalloc+0x7f/0x90
[ 1190.384061]  ? __raw_spin_lock_init+0x3a/0x110
[ 1190.384382]  v9fs_session_init+0x1e0/0x17b0
[ 1190.384690]  ? __pfx_lock_release+0x10/0x10
[ 1190.384991]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1190.385326]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1190.385688]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1190.386022]  ? v9fs_mount+0x9e/0xbd0
[ 1190.386298]  v9fs_mount+0xbd/0xbd0
[ 1190.386553]  ? legacy_init_fs_context+0x44/0xe0
[ 1190.386865]  ? __pfx_v9fs_mount+0x10/0x10
[ 1190.387153]  ? cap_capable+0x1be/0x220
[ 1190.387436]  ? __pfx_v9fs_mount+0x10/0x10
[ 1190.387722]  legacy_get_tree+0x109/0x220
[ 1190.388009]  vfs_get_tree+0x92/0x360
[ 1190.388289]  path_mount+0x133c/0x1e50
[ 1190.388565]  ? kasan_quarantine_put+0x81/0x1d0
[ 1190.388878]  ? __pfx_path_mount+0x10/0x10
[ 1190.389160]  ? putname+0x102/0x140
[ 1190.389417]  ? kmem_cache_free+0xff/0x4a0
[ 1190.389708]  ? putname+0x102/0x140
[ 1190.389965]  __x64_sys_mount+0x286/0x310
[ 1190.390256]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1190.390566]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1190.390926]  do_syscall_64+0x3f/0x90
[ 1190.391191]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1190.391565] RIP: 0033:0x7fdb13b24b19
[ 1190.391829] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1190.393051] RSP: 002b:00007fdb1109a188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1190.393584] RAX: ffffffffffffffda RBX: 00007fdb13c37f60 RCX: 00007fdb13b24b19
[ 1190.394070] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1190.394564] RBP: 00007fdb1109a1d0 R08: 0000000020000240 R09: 0000000000000000
[ 1190.395053] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1190.395546] R13: 00007fff73fffccf R14: 00007fdb1109a300 R15: 0000000000022000
[ 1190.396053]  </TASK>
[ 1190.397144] FAULT_INJECTION: forcing a failure.
[ 1190.397144] name failslab, interval 1, probability 0, space 0, times 0
[ 1190.398096] CPU: 1 PID: 7584 Comm: syz-executor.3 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1190.398654] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1190.399196] Call Trace:
[ 1190.399380]  <TASK>
[ 1190.399552]  dump_stack_lvl+0xc1/0xf0
[ 1190.399835]  should_fail_ex+0x4b4/0x5b0
[ 1190.400132]  ? __kernfs_new_node+0xd4/0x870
[ 1190.400439]  should_failslab+0x9/0x20
[ 1190.400718]  kmem_cache_alloc+0x5a/0x390
[ 1190.401019]  __kernfs_new_node+0xd4/0x870
[ 1190.401334]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1190.401697]  ? down_write+0x11a/0x1f0
[ 1190.401987]  ? up_write+0x196/0x510
[ 1190.402267]  kernfs_new_node+0x97/0x120
[ 1190.402567]  __kernfs_create_file+0x55/0x350
[ 1190.402896]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1190.403229]  ? __pfx_slab_attr_store+0x10/0x10
[ 1190.403567]  internal_create_group+0x322/0xb90
[ 1190.403901]  ? __pfx_internal_create_group+0x10/0x10
[ 1190.404262]  ? up_write+0x196/0x510
[ 1190.404551]  sysfs_slab_add+0x18e/0x220
[ 1190.404839]  __kmem_cache_create+0x1fe/0x610
[ 1190.405176]  kmem_cache_create_usercopy+0x218/0x340
[ 1190.405547]  p9_client_create+0xd0b/0x1260
[ 1190.405856]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1190.406218]  ? __pfx_p9_client_create+0x10/0x10
[ 1190.406551]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1190.406899]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1190.407238]  ? __kasan_kmalloc+0x7f/0x90
[ 1190.407549]  ? __raw_spin_lock_init+0x3a/0x110
[ 1190.407888]  v9fs_session_init+0x1e0/0x17b0
[ 1190.408222]  ? __pfx_lock_release+0x10/0x10
[ 1190.408533]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1190.408885]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1190.409269]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1190.409631]  ? v9fs_mount+0x9e/0xbd0
[ 1190.409930]  v9fs_mount+0xbd/0xbd0
[ 1190.410201]  ? legacy_init_fs_context+0x44/0xe0
[ 1190.410550]  ? __pfx_v9fs_mount+0x10/0x10
[ 1190.410852]  ? cap_capable+0x1be/0x220
[ 1190.411162]  ? __pfx_v9fs_mount+0x10/0x10
[ 1190.411463]  legacy_get_tree+0x109/0x220
[ 1190.411776]  vfs_get_tree+0x92/0x360
[ 1190.412059]  path_mount+0x133c/0x1e50
[ 1190.412361]  ? kasan_quarantine_put+0x81/0x1d0
[ 1190.412697]  ? __pfx_path_mount+0x10/0x10
[ 1190.413008]  ? putname+0x102/0x140
[ 1190.413275]  ? kmem_cache_free+0xff/0x4a0
[ 1190.413603]  ? putname+0x102/0x140
[ 1190.413883]  __x64_sys_mount+0x286/0x310
[ 1190.414182]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1190.414524]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1190.414910]  do_syscall_64+0x3f/0x90
[ 1190.415195]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1190.415577] RIP: 0033:0x7ff349defb19
[ 1190.415852] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1190.417103] RSP: 002b:00007ff347365188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1190.417670] RAX: ffffffffffffffda RBX: 00007ff349f02f60 RCX: 00007ff349defb19
[ 1190.418172] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1190.418682] RBP: 00007ff3473651d0 R08: 0000000020000240 R09: 0000000000000000
[ 1190.419201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1190.419715] R13: 00007fffc306ac3f R14: 00007ff347365300 R15: 0000000000022000
[ 1190.420250]  </TASK>
[ 1190.457203] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1190.457810] CPU: 1 PID: 7584 Comm: syz-executor.3 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1190.458360] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1190.458922] Call Trace:
[ 1190.459108]  <TASK>
[ 1190.459276]  dump_stack_lvl+0xc1/0xf0
[ 1190.459557]  kmem_cache_create_usercopy+0x12b/0x340
[ 1190.459921]  p9_client_create+0xd0b/0x1260
[ 1190.460230]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1190.460589]  ? __pfx_p9_client_create+0x10/0x10
[ 1190.460920]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1190.461270]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1190.461617]  ? __kasan_kmalloc+0x7f/0x90
[ 1190.461917]  ? __raw_spin_lock_init+0x3a/0x110
[ 1190.462253]  v9fs_session_init+0x1e0/0x17b0
[ 1190.462579]  ? __pfx_lock_release+0x10/0x10
[ 1190.462892]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1190.463236]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1190.463614]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1190.463952]  ? v9fs_mount+0x9e/0xbd0
[ 1190.464242]  v9fs_mount+0xbd/0xbd0
[ 1190.464502]  ? legacy_init_fs_context+0x44/0xe0
[ 1190.464829]  ? __pfx_v9fs_mount+0x10/0x10
[ 1190.465134]  ? cap_capable+0x1be/0x220
[ 1190.465437]  ? __pfx_v9fs_mount+0x10/0x10
[ 1190.465737]  legacy_get_tree+0x109/0x220
[ 1190.466035]  vfs_get_tree+0x92/0x360
[ 1190.466312]  path_mount+0x133c/0x1e50
[ 1190.466614]  ? kasan_quarantine_put+0x81/0x1d0
[ 1190.466951]  ? __pfx_path_mount+0x10/0x10
[ 1190.467265]  ? putname+0x102/0x140
[ 1190.467530]  ? kmem_cache_free+0xff/0x4a0
[ 1190.467848]  ? putname+0x102/0x140
[ 1190.468139]  __x64_sys_mount+0x286/0x310
[ 1190.468445]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1190.468798]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1190.469191]  do_syscall_64+0x3f/0x90
[ 1190.469496]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1190.469889] RIP: 0033:0x7ff349defb19
[ 1190.470163] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1190.471432] RSP: 002b:00007ff347365188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1190.471978] RAX: ffffffffffffffda RBX: 00007ff349f02f60 RCX: 00007ff349defb19
[ 1190.472485] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1190.472996] RBP: 00007ff3473651d0 R08: 0000000020000240 R09: 0000000000000000
[ 1190.473505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1190.474015] R13: 00007fffc306ac3f R14: 00007ff347365300 R15: 0000000000022000
[ 1190.474547]  </TASK>
05:09:22 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) (fail_nth: 23)

05:09:22 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x1000000000000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:09:22 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 70)

05:09:22 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x2010000000000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:09:22 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 74)

05:09:22 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 56)

05:09:22 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xf6ffffff00000000, 0x0)

05:09:22 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 83)

[ 1202.536997] 9pnet_virtio: no channels available for device ./file0
05:09:22 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 75)

05:09:22 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xffffffff00000000, 0x0)

[ 1202.559985] FAULT_INJECTION: forcing a failure.
[ 1202.559985] name failslab, interval 1, probability 0, space 0, times 0
[ 1202.561649] CPU: 1 PID: 7632 Comm: syz-executor.5 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1202.562732] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1202.563808] Call Trace:
[ 1202.564164]  <TASK>
[ 1202.564484]  dump_stack_lvl+0xc1/0xf0
[ 1202.565034]  should_fail_ex+0x4b4/0x5b0
[ 1202.565615]  ? __kernfs_new_node+0xd4/0x870
[ 1202.566211]  should_failslab+0x9/0x20
[ 1202.566751]  kmem_cache_alloc+0x5a/0x390
[ 1202.567333]  __kernfs_new_node+0xd4/0x870
[ 1202.567916]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1202.568580]  ? down_write+0x11a/0x1f0
[ 1202.569127]  ? up_write+0x196/0x510
[ 1202.569681]  kernfs_new_node+0x97/0x120
[ 1202.570249]  __kernfs_create_file+0x55/0x350
[ 1202.570877]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1202.571531]  ? __pfx_slab_attr_store+0x10/0x10
[ 1202.572181]  internal_create_group+0x322/0xb90
[ 1202.572819]  ? __pfx_internal_create_group+0x10/0x10
[ 1202.573523]  ? up_write+0x196/0x510
[ 1202.574072]  sysfs_slab_add+0x18e/0x220
[ 1202.574629]  __kmem_cache_create+0x1fe/0x610
[ 1202.575254]  kmem_cache_create_usercopy+0x218/0x340
[ 1202.575991]  p9_client_create+0xd0b/0x1260
[ 1202.576610]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1202.577356]  ? __pfx_p9_client_create+0x10/0x10
[ 1202.578061]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1202.578769]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1202.579448]  ? __kasan_kmalloc+0x7f/0x90
[ 1202.580054]  ? __raw_spin_lock_init+0x3a/0x110
[ 1202.580727]  v9fs_session_init+0x1e0/0x17b0
[ 1202.581367]  ? __pfx_lock_release+0x10/0x10
[ 1202.581990]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1202.582692]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1202.583462]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1202.584174]  ? v9fs_mount+0x9e/0xbd0
[ 1202.584757]  v9fs_mount+0xbd/0xbd0
[ 1202.585298]  ? legacy_init_fs_context+0x44/0xe0
[ 1202.585971]  ? __pfx_v9fs_mount+0x10/0x10
[ 1202.586579]  ? cap_capable+0x1be/0x220
[ 1202.587179]  ? __pfx_v9fs_mount+0x10/0x10
[ 1202.587810]  legacy_get_tree+0x109/0x220
[ 1202.588433]  vfs_get_tree+0x92/0x360
[ 1202.589007]  path_mount+0x133c/0x1e50
[ 1202.589601]  ? kasan_quarantine_put+0x81/0x1d0
[ 1202.590287]  ? __pfx_path_mount+0x10/0x10
[ 1202.590911]  ? putname+0x102/0x140
[ 1202.591437]  ? kmem_cache_free+0xff/0x4a0
[ 1202.592052]  ? putname+0x102/0x140
[ 1202.592594]  __x64_sys_mount+0x286/0x310
[ 1202.593182]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1202.593847]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1202.594600]  do_syscall_64+0x3f/0x90
[ 1202.595159]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1202.595920] RIP: 0033:0x7f05858feb19
[ 1202.596450] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1202.598950] RSP: 002b:00007f0582e74188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1202.600021] RAX: ffffffffffffffda RBX: 00007f0585a11f60 RCX: 00007f05858feb19
[ 1202.601019] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1202.602013] RBP: 00007f0582e741d0 R08: 0000000020000240 R09: 0000000000000000
[ 1202.602975] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1202.603957] R13: 00007ffd3f25a19f R14: 00007f0582e74300 R15: 0000000000022000
[ 1202.604968]  </TASK>
05:09:22 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 71)

[ 1202.623832] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1202.624644] CPU: 0 PID: 7632 Comm: syz-executor.5 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1202.625214] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1202.625799] Call Trace:
[ 1202.625988]  <TASK>
[ 1202.626159]  dump_stack_lvl+0xc1/0xf0
[ 1202.626459]  kmem_cache_create_usercopy+0x12b/0x340
[ 1202.626837]  p9_client_create+0xd0b/0x1260
[ 1202.627160]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1202.627539]  ? __pfx_p9_client_create+0x10/0x10
[ 1202.627882]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1202.628243]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1202.628588]  ? __kasan_kmalloc+0x7f/0x90
[ 1202.628896]  ? __raw_spin_lock_init+0x3a/0x110
[ 1202.629240]  v9fs_session_init+0x1e0/0x17b0
[ 1202.629578]  ? __pfx_lock_release+0x10/0x10
[ 1202.629892]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1202.630243]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1202.630625]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1202.630974]  ? v9fs_mount+0x9e/0xbd0
[ 1202.631271]  v9fs_mount+0xbd/0xbd0
[ 1202.631540]  ? legacy_init_fs_context+0x44/0xe0
[ 1202.631877]  ? __pfx_v9fs_mount+0x10/0x10
[ 1202.632183]  ? cap_capable+0x1be/0x220
[ 1202.632489]  ? __pfx_v9fs_mount+0x10/0x10
[ 1202.632795]  legacy_get_tree+0x109/0x220
[ 1202.633102]  vfs_get_tree+0x92/0x360
[ 1202.633384]  path_mount+0x133c/0x1e50
[ 1202.633688]  ? kasan_quarantine_put+0x81/0x1d0
[ 1202.634027]  ? __pfx_path_mount+0x10/0x10
[ 1202.634335]  ? putname+0x102/0x140
[ 1202.634605]  ? kmem_cache_free+0xff/0x4a0
[ 1202.634916]  ? putname+0x102/0x140
[ 1202.635194]  __x64_sys_mount+0x286/0x310
[ 1202.635487]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1202.635818]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1202.636199]  do_syscall_64+0x3f/0x90
[ 1202.636482]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1202.636859] RIP: 0033:0x7f05858feb19
[ 1202.637123] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1202.638354] RSP: 002b:00007f0582e74188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1202.638877] RAX: ffffffffffffffda RBX: 00007f0585a11f60 RCX: 00007f05858feb19
[ 1202.639366] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1202.639889] RBP: 00007f0582e741d0 R08: 0000000020000240 R09: 0000000000000000
[ 1202.640379] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1202.640864] R13: 00007ffd3f25a19f R14: 00007f0582e74300 R15: 0000000000022000
[ 1202.641384]  </TASK>
05:09:22 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 57)

05:09:22 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x2000000000000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:09:22 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x8cffffff00000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:09:22 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0) (fail_nth: 24)

[ 1202.673849] FAULT_INJECTION: forcing a failure.
[ 1202.673849] name failslab, interval 1, probability 0, space 0, times 0
[ 1202.675521] CPU: 1 PID: 7640 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1202.676635] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1202.677756] Call Trace:
[ 1202.678119]  <TASK>
[ 1202.678445]  dump_stack_lvl+0xc1/0xf0
[ 1202.679007]  should_fail_ex+0x4b4/0x5b0
[ 1202.679608]  ? __kernfs_new_node+0xd4/0x870
[ 1202.680229]  should_failslab+0x9/0x20
[ 1202.680792]  kmem_cache_alloc+0x5a/0x390
[ 1202.681417]  __kernfs_new_node+0xd4/0x870
[ 1202.682026]  ? wake_up_q+0x8f/0xf0
[ 1202.682558]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1202.683245]  ? rwsem_wake.isra.0+0xc3/0x110
[ 1202.683876]  ? down_write+0x1c3/0x1f0
[ 1202.684431]  ? up_write+0x207/0x510
[ 1202.684979]  kernfs_new_node+0x97/0x120
[ 1202.685587]  __kernfs_create_file+0x55/0x350
[ 1202.686237]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1202.686898]  ? __pfx_slab_attr_store+0x10/0x10
[ 1202.687571]  internal_create_group+0x322/0xb90
[ 1202.688242]  ? __pfx_internal_create_group+0x10/0x10
[ 1202.688963]  ? up_write+0x207/0x510
[ 1202.689501]  sysfs_slab_add+0x18e/0x220
[ 1202.690098]  __kmem_cache_create+0x1fe/0x610
[ 1202.690751]  kmem_cache_create_usercopy+0x218/0x340
[ 1202.691475]  p9_client_create+0xd0b/0x1260
[ 1202.692110]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1202.692860]  ? __pfx_p9_client_create+0x10/0x10
[ 1202.693535]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1202.694247]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1202.694916]  ? __kasan_kmalloc+0x7f/0x90
[ 1202.695523]  ? __raw_spin_lock_init+0x3a/0x110
[ 1202.696198]  v9fs_session_init+0x1e0/0x17b0
[ 1202.696842]  ? __pfx_lock_release+0x10/0x10
[ 1202.697461]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1202.698169]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1202.698919]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1202.699597]  ? v9fs_mount+0x9e/0xbd0
[ 1202.700135]  v9fs_mount+0xbd/0xbd0
[ 1202.700635]  ? legacy_init_fs_context+0x44/0xe0
[ 1202.701254]  ? __pfx_v9fs_mount+0x10/0x10
[ 1202.701853]  ? cap_capable+0x1be/0x220
[ 1202.702408]  ? __pfx_v9fs_mount+0x10/0x10
[ 1202.702977]  legacy_get_tree+0x109/0x220
[ 1202.703542]  vfs_get_tree+0x92/0x360
[ 1202.704068]  path_mount+0x133c/0x1e50
[ 1202.704612]  ? kasan_quarantine_put+0x81/0x1d0
[ 1202.705240]  ? __pfx_path_mount+0x10/0x10
[ 1202.705809]  ? putname+0x102/0x140
[ 1202.706307]  ? kmem_cache_free+0xff/0x4a0
[ 1202.706876]  ? putname+0x102/0x140
[ 1202.707385]  __x64_sys_mount+0x286/0x310
[ 1202.707926]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1202.708554]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1202.709197] 9pnet_virtio: no channels available for device ./file0
[ 1202.709268]  do_syscall_64+0x3f/0x90
[ 1202.709817] FAULT_INJECTION: forcing a failure.
[ 1202.709817] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1202.710174]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1202.711629] RIP: 0033:0x7fcf62391b19
[ 1202.712135] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1202.714448] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1202.715443] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1202.716364] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1202.717288] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1202.718213] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1202.719132] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1202.720073]  </TASK>
[ 1202.720402] CPU: 0 PID: 7646 Comm: syz-executor.4 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1202.720967] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1202.721530] Call Trace:
[ 1202.721731]  <TASK>
[ 1202.721904]  dump_stack_lvl+0xc1/0xf0
[ 1202.722201]  should_fail_ex+0x4b4/0x5b0
[ 1202.722520]  _copy_to_user+0x30/0xc0
[ 1202.722804]  simple_read_from_buffer+0xd0/0x170
[ 1202.723162]  proc_fail_nth_read+0x19c/0x230
[ 1202.723483]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1202.723831]  ? security_file_permission+0xb5/0xe0
[ 1202.724201]  vfs_read+0x1e4/0x8b0
[ 1202.724466]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1202.724814]  ? __pfx_vfs_read+0x10/0x10
[ 1202.725120]  ? __fget_files+0x270/0x480
[ 1202.725435]  ksys_read+0x12b/0x260
[ 1202.725716]  ? __pfx_ksys_read+0x10/0x10
[ 1202.726014]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1202.726403]  do_syscall_64+0x3f/0x90
[ 1202.726693]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1202.727077] RIP: 0033:0x7f7b9f6fb69c
[ 1202.727344] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 1202.728575] RSP: 002b:00007f7b9ccbe170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1202.729110] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 00007f7b9f6fb69c
[ 1202.729614] RDX: 000000000000000f RSI: 00007f7b9ccbe1e0 RDI: 0000000000000004
[ 1202.730103] RBP: 00007f7b9ccbe1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1202.730595] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1202.731086] R13: 00007ffc06d11d1f R14: 00007f7b9ccbe300 R15: 0000000000022000
[ 1202.731631]  </TASK>
05:09:22 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xfffffffffffff000, 0x0)

[ 1202.834174] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1202.834994] FAULT_INJECTION: forcing a failure.
[ 1202.834994] name failslab, interval 1, probability 0, space 0, times 0
[ 1202.835313] CPU: 1 PID: 7640 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1202.837023] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1202.838143] Call Trace:
[ 1202.838503]  <TASK>
[ 1202.838829]  dump_stack_lvl+0xc1/0xf0
[ 1202.839393]  kmem_cache_create_usercopy+0x12b/0x340
[ 1202.840110]  p9_client_create+0xd0b/0x1260
[ 1202.840728]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1202.841466]  ? __pfx_p9_client_create+0x10/0x10
[ 1202.842183]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1202.842940]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1202.843658]  ? __kasan_kmalloc+0x7f/0x90
[ 1202.844301]  ? __raw_spin_lock_init+0x3a/0x110
[ 1202.844995]  v9fs_session_init+0x1e0/0x17b0
[ 1202.845686]  ? __pfx_lock_release+0x10/0x10
[ 1202.846359]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1202.847097]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1202.847882]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1202.848619]  ? v9fs_mount+0x9e/0xbd0
[ 1202.849224]  v9fs_mount+0xbd/0xbd0
[ 1202.849789]  ? legacy_init_fs_context+0x44/0xe0
[ 1202.850484]  ? __pfx_v9fs_mount+0x10/0x10
[ 1202.851140]  ? cap_capable+0x1be/0x220
[ 1202.851747]  ? __pfx_v9fs_mount+0x10/0x10
[ 1202.852400]  legacy_get_tree+0x109/0x220
[ 1202.853032]  vfs_get_tree+0x92/0x360
[ 1202.853627]  path_mount+0x133c/0x1e50
[ 1202.854231]  ? kasan_quarantine_put+0x81/0x1d0
[ 1202.854945]  ? __pfx_path_mount+0x10/0x10
[ 1202.855578]  ? putname+0x102/0x140
[ 1202.856121]  ? kmem_cache_free+0xff/0x4a0
[ 1202.856751]  ? putname+0x102/0x140
[ 1202.857323]  __x64_sys_mount+0x286/0x310
[ 1202.857941]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1202.858637]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1202.859427]  do_syscall_64+0x3f/0x90
[ 1202.859996]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1202.860776] RIP: 0033:0x7fcf62391b19
[ 1202.861337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1202.863959] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1202.865068] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1202.866120] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1202.867178] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1202.868217] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1202.869256] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1202.870348]  </TASK>
[ 1202.870708] CPU: 0 PID: 7648 Comm: syz-executor.3 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1202.871339] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1202.871915] Call Trace:
[ 1202.872112]  <TASK>
[ 1202.872289]  dump_stack_lvl+0xc1/0xf0
[ 1202.872583]  should_fail_ex+0x4b4/0x5b0
[ 1202.872899]  ? __kernfs_new_node+0xd4/0x870
[ 1202.873213]  should_failslab+0x9/0x20
[ 1202.873504]  kmem_cache_alloc+0x5a/0x390
[ 1202.873850]  __kernfs_new_node+0xd4/0x870
[ 1202.874170]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1202.874534]  ? down_write+0x11a/0x1f0
[ 1202.874830]  ? up_write+0x196/0x510
[ 1202.875123]  kernfs_new_node+0x97/0x120
[ 1202.875428]  __kernfs_create_file+0x55/0x350
[ 1202.875773]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1202.876117]  ? __pfx_slab_attr_store+0x10/0x10
[ 1202.876468]  internal_create_group+0x322/0xb90
[ 1202.876826]  ? __pfx_internal_create_group+0x10/0x10
[ 1202.877201]  ? up_write+0x196/0x510
[ 1202.877500]  sysfs_slab_add+0x18e/0x220
[ 1202.877810]  __kmem_cache_create+0x1fe/0x610
[ 1202.878152]  kmem_cache_create_usercopy+0x218/0x340
[ 1202.878535]  p9_client_create+0xd0b/0x1260
[ 1202.878867]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1202.879248]  ? __pfx_p9_client_create+0x10/0x10
[ 1202.879600]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1202.879987]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1202.880344]  ? __kasan_kmalloc+0x7f/0x90
[ 1202.880661]  ? __raw_spin_lock_init+0x3a/0x110
[ 1202.881012]  v9fs_session_init+0x1e0/0x17b0
[ 1202.881347]  ? __pfx_lock_release+0x10/0x10
[ 1202.881697]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1202.882061]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1202.882448]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1202.882814]  ? v9fs_mount+0x9e/0xbd0
[ 1202.883120]  v9fs_mount+0xbd/0xbd0
[ 1202.883392]  ? legacy_init_fs_context+0x44/0xe0
[ 1202.883738]  ? __pfx_v9fs_mount+0x10/0x10
[ 1202.884051]  ? cap_capable+0x1be/0x220
[ 1202.884359]  ? __pfx_v9fs_mount+0x10/0x10
[ 1202.884674]  legacy_get_tree+0x109/0x220
[ 1202.884993]  vfs_get_tree+0x92/0x360
[ 1202.885282]  path_mount+0x133c/0x1e50
[ 1202.885590]  ? kasan_quarantine_put+0x81/0x1d0
[ 1202.885945]  ? __pfx_path_mount+0x10/0x10
[ 1202.886258]  ? putname+0x102/0x140
[ 1202.886534]  ? kmem_cache_free+0xff/0x4a0
[ 1202.886850]  ? putname+0x102/0x140
[ 1202.887133]  __x64_sys_mount+0x286/0x310
[ 1202.887432]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1202.887778]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1202.888172]  do_syscall_64+0x3f/0x90
[ 1202.888456]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1202.888838] RIP: 0033:0x7ff349defb19
[ 1202.889105] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1202.890359] RSP: 002b:00007ff347365188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1202.890905] RAX: ffffffffffffffda RBX: 00007ff349f02f60 RCX: 00007ff349defb19
[ 1202.891417] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1202.891915] RBP: 00007ff3473651d0 R08: 0000000020000240 R09: 0000000000000000
[ 1202.892420] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1202.892927] R13: 00007fffc306ac3f R14: 00007ff347365300 R15: 0000000000022000
[ 1202.893459]  </TASK>
[ 1202.934480] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1202.934994] CPU: 0 PID: 7648 Comm: syz-executor.3 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1202.935542] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1202.936092] Call Trace:
[ 1202.936280]  <TASK>
[ 1202.936446]  dump_stack_lvl+0xc1/0xf0
[ 1202.936729]  kmem_cache_create_usercopy+0x12b/0x340
[ 1202.937106]  p9_client_create+0xd0b/0x1260
[ 1202.937423]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1202.937793]  ? __pfx_p9_client_create+0x10/0x10
[ 1202.938126]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1202.938468]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1202.938793]  ? __kasan_kmalloc+0x7f/0x90
[ 1202.939099]  ? __raw_spin_lock_init+0x3a/0x110
[ 1202.939427]  v9fs_session_init+0x1e0/0x17b0
[ 1202.939758]  ? __pfx_lock_release+0x10/0x10
[ 1202.940067]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1202.940407]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1202.940783]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1202.941130]  ? v9fs_mount+0x9e/0xbd0
[ 1202.941421]  v9fs_mount+0xbd/0xbd0
[ 1202.941693]  ? legacy_init_fs_context+0x44/0xe0
[ 1202.942018]  ? __pfx_v9fs_mount+0x10/0x10
[ 1202.942324]  ? cap_capable+0x1be/0x220
[ 1202.942623]  ? __pfx_v9fs_mount+0x10/0x10
[ 1202.942928]  legacy_get_tree+0x109/0x220
[ 1202.943242]  vfs_get_tree+0x92/0x360
[ 1202.943532]  path_mount+0x133c/0x1e50
[ 1202.943833]  ? kasan_quarantine_put+0x81/0x1d0
[ 1202.944177]  ? __pfx_path_mount+0x10/0x10
[ 1202.944493]  ? putname+0x102/0x140
[ 1202.944773]  ? kmem_cache_free+0xff/0x4a0
[ 1202.945088]  ? putname+0x102/0x140
[ 1202.945374]  __x64_sys_mount+0x286/0x310
[ 1202.945691]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1202.946037]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1202.946429]  do_syscall_64+0x3f/0x90
[ 1202.946719]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1202.947108] RIP: 0033:0x7ff349defb19
[ 1202.947378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1202.948622] RSP: 002b:00007ff347365188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1202.949153] RAX: ffffffffffffffda RBX: 00007ff349f02f60 RCX: 00007ff349defb19
[ 1202.949661] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1202.950171] RBP: 00007ff3473651d0 R08: 0000000020000240 R09: 0000000000000000
[ 1202.950684] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1202.951198] R13: 00007fffc306ac3f R14: 00007ff347365300 R15: 0000000000022000
[ 1202.951731]  </TASK>
05:09:34 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 72)

05:09:34 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x2010000000000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:09:34 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:09:34 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
setxattr$security_evm(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000140)=@sha1={0x1, "8a74c544d3056b8dff46998b0682b27cf31d37b3"}, 0x15, 0x1)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:09:34 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0xf6ffffff00000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:09:34 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 84)

05:09:34 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 76)

05:09:34 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 58)

[ 1214.177877] 9pnet_virtio: no channels available for device ./file0
05:09:34 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x3f00000000000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:09:34 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xa000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:09:34 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0xfeffffff00000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:09:34 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 77)

05:09:34 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 59)

05:09:34 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 85)

05:09:34 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 73)

05:09:34 executing program 1:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = accept$inet(0xffffffffffffffff, &(0x7f0000000280)={0x2, 0x0, @local}, &(0x7f00000002c0)=0x10)
getresuid(&(0x7f0000000300)=<r2=>0x0, &(0x7f0000000340), &(0x7f0000000380))
stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
setresuid(0x0, r3, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000003c0)={{0x1, 0x1, 0x18, r0, {<r4=>0xffffffffffffffff}}, './file0\x00'})
mount$9p_fd(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240), 0x2200000, &(0x7f00000005c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="c881e1ef7611f9d929ec6555c29ce2248e4e3cc0ffa1f32c616669643d3078303030303030303030", @ANYRESHEX=0x0, @ANYBLOB=',euid<', @ANYRESDEC=r2, @ANYBLOB=',pcr=00000000000000000023,euid=', @ANYRESDEC=r3, @ANYBLOB=',rootcontext=user_u,defcontext=sysadm_u,dont_measure,smackfshat=]&-,fowner>', @ANYRESDEC=r4, @ANYBLOB=',measure,\x00'])
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x1, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0xa)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000400)='./file0/file0\x00', 0x2000, 0x10)
fsetxattr$security_evm(r1, &(0x7f0000000540), &(0x7f0000000580)=@md5={0x1, "a2d8749116978598ba43c26b13b9c3b1"}, 0x11, 0x2)
mount(&(0x7f0000000040)=@sg0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='efs\x00', 0x8000, &(0x7f0000000180)='9p\x00')

[ 1214.411034] FAULT_INJECTION: forcing a failure.
[ 1214.411034] name failslab, interval 1, probability 0, space 0, times 0
[ 1214.412612] CPU: 0 PID: 7687 Comm: syz-executor.6 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1214.413605] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1214.414638] Call Trace:
[ 1214.414973]  <TASK>
[ 1214.415282]  dump_stack_lvl+0xc1/0xf0
[ 1214.415805]  should_fail_ex+0x4b4/0x5b0
[ 1214.416353]  ? __kernfs_new_node+0xd4/0x870
[ 1214.416903]  should_failslab+0x9/0x20
[ 1214.417408]  kmem_cache_alloc+0x5a/0x390
[ 1214.417989]  __kernfs_new_node+0xd4/0x870
[ 1214.418545]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1214.419183]  ? down_write+0x11a/0x1f0
[ 1214.419722]  ? up_write+0x196/0x510
[ 1214.420258]  kernfs_new_node+0x97/0x120
[ 1214.420799]  __kernfs_create_file+0x55/0x350
[ 1214.421416]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1214.422061]  ? __pfx_slab_attr_store+0x10/0x10
[ 1214.422713]  internal_create_group+0x322/0xb90
[ 1214.423352]  ? __pfx_internal_create_group+0x10/0x10
[ 1214.424038]  ? up_write+0x196/0x510
[ 1214.424573]  sysfs_slab_add+0x18e/0x220
[ 1214.425124]  __kmem_cache_create+0x1fe/0x610
[ 1214.425761]  kmem_cache_create_usercopy+0x218/0x340
[ 1214.426458]  p9_client_create+0xd0b/0x1260
[ 1214.427017]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1214.427720]  ? __pfx_p9_client_create+0x10/0x10
[ 1214.428353]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1214.429032]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1214.429664]  ? __kasan_kmalloc+0x7f/0x90
[ 1214.430219]  ? __raw_spin_lock_init+0x3a/0x110
[ 1214.430868]  v9fs_session_init+0x1e0/0x17b0
[ 1214.431470]  ? __pfx_lock_release+0x10/0x10
[ 1214.432058]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1214.432707]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1214.433408]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1214.434069]  ? v9fs_mount+0x9e/0xbd0
[ 1214.434620]  v9fs_mount+0xbd/0xbd0
[ 1214.435127]  ? legacy_init_fs_context+0x44/0xe0
[ 1214.435757]  ? __pfx_v9fs_mount+0x10/0x10
[ 1214.436332]  ? cap_capable+0x1be/0x220
[ 1214.436889]  ? __pfx_v9fs_mount+0x10/0x10
[ 1214.437464]  legacy_get_tree+0x109/0x220
[ 1214.438027]  vfs_get_tree+0x92/0x360
[ 1214.438574]  path_mount+0x133c/0x1e50
[ 1214.439128]  ? kasan_quarantine_put+0x81/0x1d0
[ 1214.439754]  ? __pfx_path_mount+0x10/0x10
[ 1214.440324]  ? putname+0x102/0x140
[ 1214.440829]  ? kmem_cache_free+0xff/0x4a0
[ 1214.441401]  ? putname+0x102/0x140
[ 1214.441930]  __x64_sys_mount+0x286/0x310
[ 1214.442477]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1214.443099]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1214.443813]  do_syscall_64+0x3f/0x90
[ 1214.444338]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1214.445049] RIP: 0033:0x7fdb13b24b19
[ 1214.445549] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1214.447717] RSP: 002b:00007fdb1109a188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1214.448699] RAX: ffffffffffffffda RBX: 00007fdb13c37f60 RCX: 00007fdb13b24b19
[ 1214.449618] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1214.450540] RBP: 00007fdb1109a1d0 R08: 0000000020000240 R09: 0000000000000000
[ 1214.451456] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1214.452378] R13: 00007fff73fffccf R14: 00007fdb1109a300 R15: 0000000000022000
[ 1214.453350]  </TASK>
05:09:34 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0xffff000000000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1214.483455] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1214.483830] FAULT_INJECTION: forcing a failure.
[ 1214.483830] name failslab, interval 1, probability 0, space 0, times 0
[ 1214.484396] CPU: 0 PID: 7687 Comm: syz-executor.6 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1214.486625] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1214.487613] Call Trace:
[ 1214.487948]  <TASK>
[ 1214.488252]  dump_stack_lvl+0xc1/0xf0
[ 1214.488767]  kmem_cache_create_usercopy+0x12b/0x340
[ 1214.489438]  p9_client_create+0xd0b/0x1260
[ 1214.490029]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1214.490692]  ? __pfx_p9_client_create+0x10/0x10
[ 1214.491294]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1214.491936]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1214.492538]  ? __kasan_kmalloc+0x7f/0x90
[ 1214.493088]  ? __raw_spin_lock_init+0x3a/0x110
[ 1214.493703]  v9fs_session_init+0x1e0/0x17b0
[ 1214.494304]  ? __pfx_lock_release+0x10/0x10
[ 1214.494887]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1214.495540]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1214.496237]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1214.496889]  ? v9fs_mount+0x9e/0xbd0
[ 1214.497439]  v9fs_mount+0xbd/0xbd0
[ 1214.497952]  ? legacy_init_fs_context+0x44/0xe0
[ 1214.498568]  ? __pfx_v9fs_mount+0x10/0x10
[ 1214.499135]  ? cap_capable+0x1be/0x220
[ 1214.499693]  ? __pfx_v9fs_mount+0x10/0x10
[ 1214.500260]  legacy_get_tree+0x109/0x220
[ 1214.500833]  vfs_get_tree+0x92/0x360
[ 1214.501356]  path_mount+0x133c/0x1e50
[ 1214.501902]  ? kasan_quarantine_put+0x81/0x1d0
[ 1214.502522]  ? __pfx_path_mount+0x10/0x10
[ 1214.503090]  ? putname+0x102/0x140
[ 1214.503583]  ? kmem_cache_free+0xff/0x4a0
[ 1214.504152]  ? putname+0x102/0x140
[ 1214.504662]  __x64_sys_mount+0x286/0x310
[ 1214.505200]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1214.505827]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1214.506535]  do_syscall_64+0x3f/0x90
[ 1214.507048]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1214.507731] RIP: 0033:0x7fdb13b24b19
[ 1214.508215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1214.510448] RSP: 002b:00007fdb1109a188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1214.511411] RAX: ffffffffffffffda RBX: 00007fdb13c37f60 RCX: 00007fdb13b24b19
[ 1214.512304] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1214.513209] RBP: 00007fdb1109a1d0 R08: 0000000020000240 R09: 0000000000000000
[ 1214.514108] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1214.515006] R13: 00007fff73fffccf R14: 00007fdb1109a300 R15: 0000000000022000
[ 1214.515960]  </TASK>
[ 1214.516279] CPU: 1 PID: 7690 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1214.517337] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1214.518390] Call Trace:
[ 1214.518730]  <TASK>
[ 1214.519037]  dump_stack_lvl+0xc1/0xf0
[ 1214.519565]  should_fail_ex+0x4b4/0x5b0
[ 1214.520118]  ? __kernfs_new_node+0xd4/0x870
[ 1214.520697]  should_failslab+0x9/0x20
[ 1214.521212]  kmem_cache_alloc+0x5a/0x390
[ 1214.521768]  __kernfs_new_node+0xd4/0x870
[ 1214.522340]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1214.522969]  ? down_write+0x11a/0x1f0
[ 1214.523490]  ? up_write+0x196/0x510
[ 1214.523990]  kernfs_new_node+0x97/0x120
[ 1214.524525]  __kernfs_create_file+0x55/0x350
[ 1214.525169]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1214.525805]  ? __pfx_slab_attr_store+0x10/0x10
[ 1214.526442]  internal_create_group+0x322/0xb90
[ 1214.527067]  ? __pfx_internal_create_group+0x10/0x10
[ 1214.527739]  ? up_write+0x196/0x510
[ 1214.528255]  sysfs_slab_add+0x18e/0x220
[ 1214.528789]  __kmem_cache_create+0x1fe/0x610
[ 1214.529415]  kmem_cache_create_usercopy+0x218/0x340
[ 1214.530115]  p9_client_create+0xd0b/0x1260
[ 1214.530681]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1214.531367]  ? __pfx_p9_client_create+0x10/0x10
[ 1214.532004]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1214.532650]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1214.533290]  ? __kasan_kmalloc+0x7f/0x90
[ 1214.533866]  ? __raw_spin_lock_init+0x3a/0x110
[ 1214.534489]  v9fs_session_init+0x1e0/0x17b0
[ 1214.535078]  ? __pfx_lock_release+0x10/0x10
[ 1214.535635]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1214.536255]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1214.536933]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1214.537562]  ? v9fs_mount+0x9e/0xbd0
[ 1214.538099]  v9fs_mount+0xbd/0xbd0
[ 1214.538589]  ? legacy_init_fs_context+0x44/0xe0
[ 1214.539194]  ? __pfx_v9fs_mount+0x10/0x10
[ 1214.539752]  ? cap_capable+0x1be/0x220
[ 1214.540287]  ? __pfx_v9fs_mount+0x10/0x10
[ 1214.540844]  legacy_get_tree+0x109/0x220
[ 1214.541395]  vfs_get_tree+0x92/0x360
[ 1214.541935]  path_mount+0x133c/0x1e50
[ 1214.542466]  ? kasan_quarantine_put+0x81/0x1d0
[ 1214.543080]  ? __pfx_path_mount+0x10/0x10
[ 1214.543634]  ? putname+0x102/0x140
[ 1214.544117]  ? kmem_cache_free+0xff/0x4a0
[ 1214.544666]  ? putname+0x102/0x140
[ 1214.545157]  __x64_sys_mount+0x286/0x310
[ 1214.545691]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1214.546313]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1214.546988]  do_syscall_64+0x3f/0x90
[ 1214.547490]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1214.548159] RIP: 0033:0x7fcf62391b19
[ 1214.548638] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1214.550848] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1214.551785] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1214.552676] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1214.553555] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1214.554440] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1214.555314] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1214.556228]  </TASK>
05:09:34 executing program 1:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000100000018004000", @ANYRES32=<r1=>r0, @ANYBLOB="ff030000000000002e2f66696c653000"])
accept4(r1, &(0x7f0000000140)=@caif, &(0x7f00000001c0)=0x80, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}, 0x0, 0x0, 0x3, 0x0, 0x0, 0x3f}, 0x0, 0x0, 0xffffffffffffffff, 0xb)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f0000000040))
r3 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f00000000c0)=0x13)
r4 = openat$random(0xffffffffffffff9c, &(0x7f0000000200), 0x40, 0x0)
dup2(r3, r4)
mkdirat(r0, &(0x7f0000000040)='./file0\x00', 0x82)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:09:34 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x8cffffff00000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:09:34 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000002, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

[ 1214.616095] 9pnet_virtio: no channels available for device file0
[ 1214.625005] 9pnet_virtio: no channels available for device file0
05:09:34 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 78)

05:09:34 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000003, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:09:34 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0xffffffff00000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1214.725632] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1214.726707] CPU: 1 PID: 7690 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1214.727691] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1214.728672] Call Trace:
[ 1214.728995]  <TASK>
[ 1214.729286]  dump_stack_lvl+0xc1/0xf0
[ 1214.729812]  kmem_cache_create_usercopy+0x12b/0x340
[ 1214.730483]  p9_client_create+0xd0b/0x1260
[ 1214.731045]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1214.731706]  ? __pfx_p9_client_create+0x10/0x10
[ 1214.732309]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1214.732954]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1214.733557]  ? __kasan_kmalloc+0x7f/0x90
[ 1214.734138]  ? __raw_spin_lock_init+0x3a/0x110
[ 1214.734750]  v9fs_session_init+0x1e0/0x17b0
[ 1214.735325]  ? __pfx_lock_release+0x10/0x10
[ 1214.735898]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1214.736514]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1214.737212]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1214.737896]  ? v9fs_mount+0x9e/0xbd0
[ 1214.738455]  v9fs_mount+0xbd/0xbd0
[ 1214.738951]  ? legacy_init_fs_context+0x44/0xe0
[ 1214.739574]  ? __pfx_v9fs_mount+0x10/0x10
[ 1214.740133]  ? cap_capable+0x1be/0x220
[ 1214.740687]  ? __pfx_v9fs_mount+0x10/0x10
[ 1214.741250]  legacy_get_tree+0x109/0x220
[ 1214.741828]  vfs_get_tree+0x92/0x360
[ 1214.742347]  path_mount+0x133c/0x1e50
[ 1214.742875]  ? kasan_quarantine_put+0x81/0x1d0
[ 1214.743494]  ? __pfx_path_mount+0x10/0x10
[ 1214.744037]  ? putname+0x102/0x140
[ 1214.744535]  ? kmem_cache_free+0xff/0x4a0
[ 1214.745070]  ? putname+0x102/0x140
[ 1214.745565]  __x64_sys_mount+0x286/0x310
[ 1214.746091]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1214.746699]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1214.747390]  do_syscall_64+0x3f/0x90
[ 1214.747899]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1214.748588] RIP: 0033:0x7fcf62391b19
[ 1214.749076] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1214.751369] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1214.752343] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1214.753253] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1214.754160] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1214.755059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1214.755957] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1214.756888]  </TASK>
[ 1214.758129] FAULT_INJECTION: forcing a failure.
[ 1214.758129] name failslab, interval 1, probability 0, space 0, times 0
[ 1214.759734] CPU: 1 PID: 7692 Comm: syz-executor.3 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1214.760594] 9pnet_virtio: no channels available for device ile0
[ 1214.760766] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1214.762599] Call Trace:
[ 1214.762949]  <TASK>
[ 1214.763264]  dump_stack_lvl+0xc1/0xf0
[ 1214.763808]  should_fail_ex+0x4b4/0x5b0
[ 1214.764384]  ? __kernfs_new_node+0xd4/0x870
[ 1214.764969]  should_failslab+0x9/0x20
[ 1214.765504]  kmem_cache_alloc+0x5a/0x390
[ 1214.766093]  __kernfs_new_node+0xd4/0x870
[ 1214.766675]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1214.767338]  ? down_write+0x11a/0x1f0
[ 1214.767894]  ? up_write+0x196/0x510
[ 1214.768425]  kernfs_new_node+0x97/0x120
[ 1214.768996]  __kernfs_create_file+0x55/0x350
[ 1214.769634]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1214.770265]  ? __pfx_slab_attr_store+0x10/0x10
[ 1214.770911]  internal_create_group+0x322/0xb90
[ 1214.771561]  ? __pfx_internal_create_group+0x10/0x10
[ 1214.772248]  ? up_write+0x196/0x510
[ 1214.772793]  sysfs_slab_add+0x18e/0x220
[ 1214.773348]  __kmem_cache_create+0x1fe/0x610
[ 1214.773971]  kmem_cache_create_usercopy+0x218/0x340
[ 1214.774673]  p9_client_create+0xd0b/0x1260
[ 1214.775274]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1214.775969]  ? __pfx_p9_client_create+0x10/0x10
[ 1214.776609]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1214.777280]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1214.777929]  ? __kasan_kmalloc+0x7f/0x90
[ 1214.778510]  ? __raw_spin_lock_init+0x3a/0x110
[ 1214.779156]  v9fs_session_init+0x1e0/0x17b0
[ 1214.779218] 9pnet_virtio: no channels available for device ile0
[ 1214.779742]  ? __pfx_lock_release+0x10/0x10
[ 1214.781057]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1214.781707]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1214.782438]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1214.783095]  ? v9fs_mount+0x9e/0xbd0
[ 1214.783644]  v9fs_mount+0xbd/0xbd0
[ 1214.784141]  ? legacy_init_fs_context+0x44/0xe0
[ 1214.784753]  ? __pfx_v9fs_mount+0x10/0x10
[ 1214.785324]  ? cap_capable+0x1be/0x220
[ 1214.785896]  ? __pfx_v9fs_mount+0x10/0x10
[ 1214.786462]  legacy_get_tree+0x109/0x220
[ 1214.787029]  vfs_get_tree+0x92/0x360
[ 1214.787559]  path_mount+0x133c/0x1e50
[ 1214.788107]  ? kasan_quarantine_put+0x81/0x1d0
[ 1214.788728]  ? __pfx_path_mount+0x10/0x10
[ 1214.789296]  ? putname+0x102/0x140
[ 1214.789791]  ? kmem_cache_free+0xff/0x4a0
[ 1214.790362]  ? putname+0x102/0x140
[ 1214.790874]  __x64_sys_mount+0x286/0x310
[ 1214.791420]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1214.792026]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1214.792721]  do_syscall_64+0x3f/0x90
[ 1214.793235]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1214.793935] RIP: 0033:0x7ff349defb19
[ 1214.794426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1214.796634] RSP: 002b:00007ff347365188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1214.797588] RAX: ffffffffffffffda RBX: 00007ff349f02f60 RCX: 00007ff349defb19
[ 1214.798491] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1214.799381] RBP: 00007ff3473651d0 R08: 0000000020000240 R09: 0000000000000000
[ 1214.800268] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1214.801151] R13: 00007fffc306ac3f R14: 00007ff347365300 R15: 0000000000022000
[ 1214.802116]  </TASK>
05:09:34 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0xf6ffffff00000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:09:34 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000004, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:09:34 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x2, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1214.858562] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1214.859523] CPU: 1 PID: 7692 Comm: syz-executor.3 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1214.860508] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1214.861495] Call Trace:
[ 1214.861837]  <TASK>
[ 1214.862142]  dump_stack_lvl+0xc1/0xf0
[ 1214.862656]  kmem_cache_create_usercopy+0x12b/0x340
[ 1214.863313]  p9_client_create+0xd0b/0x1260
[ 1214.863874]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1214.864533]  ? __pfx_p9_client_create+0x10/0x10
[ 1214.865130]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1214.865771]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1214.866379]  ? __kasan_kmalloc+0x7f/0x90
[ 1214.866923]  ? __raw_spin_lock_init+0x3a/0x110
[ 1214.867557]  v9fs_session_init+0x1e0/0x17b0
[ 1214.868159]  ? __pfx_lock_release+0x10/0x10
[ 1214.868741]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1214.869383]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1214.870091]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1214.870740]  ? v9fs_mount+0x9e/0xbd0
[ 1214.871286]  v9fs_mount+0xbd/0xbd0
[ 1214.871780]  ? legacy_init_fs_context+0x44/0xe0
[ 1214.872393]  ? __pfx_v9fs_mount+0x10/0x10
[ 1214.872953]  ? cap_capable+0x1be/0x220
[ 1214.873505]  ? __pfx_v9fs_mount+0x10/0x10
[ 1214.874057]  legacy_get_tree+0x109/0x220
[ 1214.874622]  vfs_get_tree+0x92/0x360
[ 1214.875145]  path_mount+0x133c/0x1e50
[ 1214.875689]  ? kasan_quarantine_put+0x81/0x1d0
[ 1214.876299]  ? __pfx_path_mount+0x10/0x10
[ 1214.876855]  ? putname+0x102/0x140
[ 1214.877345]  ? kmem_cache_free+0xff/0x4a0
[ 1214.877918]  ? putname+0x102/0x140
[ 1214.878433]  __x64_sys_mount+0x286/0x310
[ 1214.878964]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1214.879573]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1214.880260]  do_syscall_64+0x3f/0x90
[ 1214.880778]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1214.881452] RIP: 0033:0x7ff349defb19
[ 1214.881962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1214.884187] RSP: 002b:00007ff347365188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1214.885139] RAX: ffffffffffffffda RBX: 00007ff349f02f60 RCX: 00007ff349defb19
[ 1214.886035] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1214.886928] RBP: 00007ff3473651d0 R08: 0000000020000240 R09: 0000000000000000
[ 1214.887813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1214.888699] R13: 00007fffc306ac3f R14: 00007ff347365300 R15: 0000000000022000
[ 1214.889646]  </TASK>
05:09:34 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0xfeffffff00000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:09:35 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 79)

[ 1215.003087] 9pnet_virtio: no channels available for device le0
[ 1215.012058] 9pnet_virtio: no channels available for device le0
05:09:50 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 80)

05:09:50 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 60)

05:09:50 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0xffff000000000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:09:50 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0xfe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x8}, 0x0, 0xf, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r1 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="04000000646f7366d8a02b00080101000440002000f801", 0x17}, {0x0, 0x0, 0x2840}], 0x0, &(0x7f0000000140)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
openat(r2, &(0x7f0000000040)='./file1\x00', 0x101100, 0x11e)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="010000000000000000007e00000008000300", @ANYRES32=0x0, @ANYBLOB="b57c37859133283d0019914ffb8e8e356447c46d02abae1b9e6ce50db8895bedc54ae652f5bc6a56e1eb15471c915f0bab0f985a9e97b90418aa834618a8c4871c46bfcb550ad6c409902a29fb61892d440e207d6611683900a1120b10ce3fb215cf474a15b09940b94cf12ea77bf24cf189e6d107492b501f34d67dd420131fdb829bb965dce38fec0c671cb38836050970c1bc5910ce53f1d9f269b56f02a78b9144ec8dab54e54c8ef2163299ab4e41dcbb3e2fbdfcba7b6c89d501443bf5aeb6f301e4b00f6056a9"], 0x1c}}, 0x0)
dup3(r1, r4, 0x0)
write$binfmt_aout(r3, &(0x7f0000001180)=ANY=[], 0x220)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='net\x00')
sendmsg$NL80211_CMD_SET_TID_CONFIG(r5, &(0x7f0000000900)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000300)={&(0x7f00000009c0)=ANY=[@ANYBLOB="5c05fb39", @ANYRES16=0x0, @ANYBLOB="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"], 0x55c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2}, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000940)={0x5, 0x80, 0x0, 0x5, 0x80, 0x0, 0x0, 0x3b54, 0x82010, 0xa, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, @perf_config_ext={0x200, 0x7}, 0x18002, 0x8000, 0xd70, 0xe, 0x40, 0x101, 0x3, 0x0, 0x3, 0x0, 0x7}, 0x0, 0x3, 0xffffffffffffffff, 0xb)
sendfile(r3, r2, 0x0, 0xfffffdef)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r6=>r0, {0x100}}, './file0\x00'})
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000040)='$@\x00', &(0x7f00000000c0)='./file1\x00', r6)

05:09:50 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000005, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:09:50 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 74)

05:09:50 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 86)

05:09:50 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x7, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1230.407086] 9pnet_virtio: no channels available for device e0
05:09:50 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x8, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1230.426504] 9pnet_virtio: no channels available for device e0
05:09:50 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 75)

05:09:50 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0xffffff7f00000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:10:04 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 81)

05:10:04 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 87)

05:10:04 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x5, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_IOC_ASKUMOUNT(r0, 0x80049370, &(0x7f0000000040))
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r1, 0x40045431, &(0x7f0000000040))
r2 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f00000000c0)=0x13)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r3, 0x40045431, &(0x7f0000000040))
r4 = ioctl$TIOCGPTPEER(r3, 0x5441, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f00000000c0)=0x13)
fcntl$dupfd(0xffffffffffffffff, 0x0, r4)

05:10:04 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0xffffffff00000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:10:04 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 61)

05:10:04 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000006, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:10:04 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 76)

05:10:04 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x9, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1244.310142] FAULT_INJECTION: forcing a failure.
[ 1244.310142] name failslab, interval 1, probability 0, space 0, times 0
[ 1244.310948] CPU: 0 PID: 7772 Comm: syz-executor.6 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1244.311496] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1244.312052] Call Trace:
[ 1244.312240]  <TASK>
[ 1244.312407]  dump_stack_lvl+0xc1/0xf0
[ 1244.312701]  should_fail_ex+0x4b4/0x5b0
[ 1244.313006]  ? __kernfs_new_node+0xd4/0x870
[ 1244.313318]  should_failslab+0x9/0x20
[ 1244.313594]  kmem_cache_alloc+0x5a/0x390
[ 1244.313903]  __kernfs_new_node+0xd4/0x870
[ 1244.314217]  ? wake_up_q+0x8f/0xf0
[ 1244.314476]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1244.314817]  ? rwsem_wake.isra.0+0xc3/0x110
[ 1244.315143]  ? down_write+0x1c3/0x1f0
[ 1244.315432]  ? up_write+0x207/0x510
[ 1244.315714]  kernfs_new_node+0x97/0x120
[ 1244.316015]  __kernfs_create_file+0x55/0x350
[ 1244.316349]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1244.316683]  ? __pfx_slab_attr_store+0x10/0x10
[ 1244.317022]  internal_create_group+0x322/0xb90
[ 1244.317360]  ? __pfx_internal_create_group+0x10/0x10
[ 1244.317721]  ? up_write+0x207/0x510
[ 1244.318006]  sysfs_slab_add+0x18e/0x220
[ 1244.318306]  __kmem_cache_create+0x1fe/0x610
[ 1244.318631]  kmem_cache_create_usercopy+0x218/0x340
[ 1244.319000]  p9_client_create+0xd0b/0x1260
[ 1244.319315]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1244.319681]  ? __pfx_p9_client_create+0x10/0x10
[ 1244.320017]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1244.320386]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1244.320745]  ? __kasan_kmalloc+0x7f/0x90
[ 1244.321063]  ? __raw_spin_lock_init+0x3a/0x110
[ 1244.321413]  v9fs_session_init+0x1e0/0x17b0
[ 1244.321749]  ? __pfx_lock_release+0x10/0x10
[ 1244.322060]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1244.322431]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1244.322822]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1244.323183]  ? v9fs_mount+0x9e/0xbd0
[ 1244.323491]  v9fs_mount+0xbd/0xbd0
[ 1244.323767]  ? legacy_init_fs_context+0x44/0xe0
[ 1244.324122]  ? __pfx_v9fs_mount+0x10/0x10
[ 1244.324422]  ? cap_capable+0x1be/0x220
[ 1244.324735]  ? __pfx_v9fs_mount+0x10/0x10
[ 1244.325038]  legacy_get_tree+0x109/0x220
[ 1244.325357]  vfs_get_tree+0x92/0x360
[ 1244.325653]  path_mount+0x133c/0x1e50
[ 1244.325938]  ? kasan_quarantine_put+0x81/0x1d0
[ 1244.326295]  ? __pfx_path_mount+0x10/0x10
[ 1244.326603]  ? putname+0x102/0x140
[ 1244.326867]  ? kmem_cache_free+0xff/0x4a0
[ 1244.327185]  ? putname+0x102/0x140
[ 1244.327459]  __x64_sys_mount+0x286/0x310
[ 1244.327759]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1244.328081]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1244.328470]  do_syscall_64+0x3f/0x90
[ 1244.328747]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1244.329136] RIP: 0033:0x7fdb13b24b19
[ 1244.329393] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1244.330642] RSP: 002b:00007fdb1109a188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1244.331178] RAX: ffffffffffffffda RBX: 00007fdb13c37f60 RCX: 00007fdb13b24b19
[ 1244.331673] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1244.332173] RBP: 00007fdb1109a1d0 R08: 0000000020000240 R09: 0000000000000000
[ 1244.332676] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1244.333170] R13: 00007fff73fffccf R14: 00007fdb1109a300 R15: 0000000000022000
[ 1244.333696]  </TASK>
[ 1244.341945] 9pnet_virtio: no channels available for device 0
[ 1244.348276] 9pnet_virtio: no channels available for device 0
05:10:04 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xa, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1244.375619] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1244.376135] CPU: 0 PID: 7772 Comm: syz-executor.6 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1244.376683] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1244.377234] Call Trace:
[ 1244.377418]  <TASK>
[ 1244.377585]  dump_stack_lvl+0xc1/0xf0
[ 1244.377877]  kmem_cache_create_usercopy+0x12b/0x340
[ 1244.378253]  p9_client_create+0xd0b/0x1260
[ 1244.378569]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1244.378941]  ? __pfx_p9_client_create+0x10/0x10
[ 1244.379278]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1244.379630]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1244.379961]  ? __kasan_kmalloc+0x7f/0x90
[ 1244.380264]  ? __raw_spin_lock_init+0x3a/0x110
[ 1244.380599]  v9fs_session_init+0x1e0/0x17b0
[ 1244.380927]  ? __pfx_lock_release+0x10/0x10
[ 1244.381238]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1244.381580]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1244.381950]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1244.382296]  ? v9fs_mount+0x9e/0xbd0
[ 1244.382596]  v9fs_mount+0xbd/0xbd0
[ 1244.382861]  ? legacy_init_fs_context+0x44/0xe0
[ 1244.383206]  ? __pfx_v9fs_mount+0x10/0x10
[ 1244.383524]  ? cap_capable+0x1be/0x220
[ 1244.383833]  ? __pfx_v9fs_mount+0x10/0x10
[ 1244.384154]  legacy_get_tree+0x109/0x220
[ 1244.384470]  vfs_get_tree+0x92/0x360
[ 1244.384761]  path_mount+0x133c/0x1e50
[ 1244.385067]  ? kasan_quarantine_put+0x81/0x1d0
[ 1244.385399]  ? __pfx_path_mount+0x10/0x10
[ 1244.385714]  ? putname+0x102/0x140
[ 1244.385970]  ? kmem_cache_free+0xff/0x4a0
[ 1244.386307]  ? putname+0x102/0x140
[ 1244.386591]  __x64_sys_mount+0x286/0x310
[ 1244.386895]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1244.387239]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1244.387631]  do_syscall_64+0x3f/0x90
[ 1244.387921]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1244.388309] RIP: 0033:0x7fdb13b24b19
[ 1244.388583] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1244.389830] RSP: 002b:00007fdb1109a188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1244.390345] RAX: ffffffffffffffda RBX: 00007fdb13c37f60 RCX: 00007fdb13b24b19
[ 1244.390847] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1244.391349] RBP: 00007fdb1109a1d0 R08: 0000000020000240 R09: 0000000000000000
[ 1244.391850] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1244.392356] R13: 00007fff73fffccf R14: 00007fdb1109a300 R15: 0000000000022000
[ 1244.392888]  </TASK>
[ 1244.394151] FAULT_INJECTION: forcing a failure.
[ 1244.394151] name failslab, interval 1, probability 0, space 0, times 0
[ 1244.395792] CPU: 1 PID: 7776 Comm: syz-executor.5 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1244.396910] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1244.398018] Call Trace:
[ 1244.398400]  <TASK>
[ 1244.398730]  dump_stack_lvl+0xc1/0xf0
[ 1244.399287]  should_fail_ex+0x4b4/0x5b0
[ 1244.399876]  ? __kernfs_new_node+0xd4/0x870
[ 1244.400488]  should_failslab+0x9/0x20
[ 1244.401039]  kmem_cache_alloc+0x5a/0x390
[ 1244.401634]  __kernfs_new_node+0xd4/0x870
[ 1244.402233]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1244.402920]  ? down_write+0x11a/0x1f0
[ 1244.403482]  ? up_write+0x196/0x510
[ 1244.404017]  kernfs_new_node+0x97/0x120
[ 1244.404597]  __kernfs_create_file+0x55/0x350
[ 1244.405249]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1244.405922]  ? __pfx_slab_attr_store+0x10/0x10
[ 1244.406614]  internal_create_group+0x322/0xb90
05:10:04 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 77)

[ 1244.407278]  ? __pfx_internal_create_group+0x10/0x10
[ 1244.408095]  ? up_write+0x196/0x510
[ 1244.408640]  sysfs_slab_add+0x18e/0x220
[ 1244.409204]  __kmem_cache_create+0x1fe/0x610
[ 1244.409844]  kmem_cache_create_usercopy+0x218/0x340
[ 1244.410568]  p9_client_create+0xd0b/0x1260
[ 1244.411170]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1244.411899]  ? __pfx_p9_client_create+0x10/0x10
[ 1244.412555]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1244.413258]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1244.413920]  ? __kasan_kmalloc+0x7f/0x90
[ 1244.414504]  ? __raw_spin_lock_init+0x3a/0x110
[ 1244.415163]  v9fs_session_init+0x1e0/0x17b0
[ 1244.415794]  ? __pfx_lock_release+0x10/0x10
[ 1244.416401]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1244.417077]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1244.417811]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1244.418517]  ? v9fs_mount+0x9e/0xbd0
[ 1244.419086]  v9fs_mount+0xbd/0xbd0
[ 1244.419611]  ? legacy_init_fs_context+0x44/0xe0
[ 1244.420244]  ? __pfx_v9fs_mount+0x10/0x10
[ 1244.420842]  ? cap_capable+0x1be/0x220
[ 1244.421425]  ? __pfx_v9fs_mount+0x10/0x10
[ 1244.422026]  legacy_get_tree+0x109/0x220
[ 1244.422635]  vfs_get_tree+0x92/0x360
[ 1244.423178]  path_mount+0x133c/0x1e50
[ 1244.423739]  ? kasan_quarantine_put+0x81/0x1d0
[ 1244.424398]  ? __pfx_path_mount+0x10/0x10
[ 1244.424992]  ? putname+0x102/0x140
[ 1244.425495]  ? kmem_cache_free+0xff/0x4a0
[ 1244.426089]  ? putname+0x102/0x140
[ 1244.426640]  __x64_sys_mount+0x286/0x310
[ 1244.427215]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1244.427850]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1244.428584]  do_syscall_64+0x3f/0x90
[ 1244.429132]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1244.429859] RIP: 0033:0x7f05858feb19
[ 1244.430388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1244.432796] RSP: 002b:00007f0582e74188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1244.433818] RAX: ffffffffffffffda RBX: 00007f0585a11f60 RCX: 00007f05858feb19
[ 1244.434774] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1244.435733] RBP: 00007f0582e741d0 R08: 0000000020000240 R09: 0000000000000000
[ 1244.436692] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1244.437651] R13: 00007ffd3f25a19f R14: 00007f0582e74300 R15: 0000000000022000
[ 1244.438662]  </TASK>
[ 1244.466832] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1244.467414] CPU: 0 PID: 7776 Comm: syz-executor.5 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1244.467994] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1244.468548] Call Trace:
[ 1244.468733]  <TASK>
[ 1244.468897]  dump_stack_lvl+0xc1/0xf0
[ 1244.469181]  kmem_cache_create_usercopy+0x12b/0x340
[ 1244.469548]  p9_client_create+0xd0b/0x1260
[ 1244.469864]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1244.470234]  ? __pfx_p9_client_create+0x10/0x10
[ 1244.470576]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1244.470924]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1244.471254]  ? __kasan_kmalloc+0x7f/0x90
[ 1244.471560]  ? __raw_spin_lock_init+0x3a/0x110
[ 1244.471895]  v9fs_session_init+0x1e0/0x17b0
[ 1244.472209]  ? __pfx_lock_release+0x10/0x10
[ 1244.472522]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1244.472866]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1244.473242]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1244.473588]  ? v9fs_mount+0x9e/0xbd0
[ 1244.473883]  v9fs_mount+0xbd/0xbd0
[ 1244.474163]  ? legacy_init_fs_context+0x44/0xe0
[ 1244.474489]  ? __pfx_v9fs_mount+0x10/0x10
[ 1244.474792]  ? cap_capable+0x1be/0x220
[ 1244.475093]  ? __pfx_v9fs_mount+0x10/0x10
[ 1244.475393]  legacy_get_tree+0x109/0x220
[ 1244.475695]  vfs_get_tree+0x92/0x360
[ 1244.475966]  path_mount+0x133c/0x1e50
[ 1244.476249]  ? kasan_quarantine_put+0x81/0x1d0
[ 1244.476584]  ? __pfx_path_mount+0x10/0x10
[ 1244.476876]  ? putname+0x102/0x140
[ 1244.477135]  ? kmem_cache_free+0xff/0x4a0
[ 1244.477438]  ? putname+0x102/0x140
[ 1244.477711]  __x64_sys_mount+0x286/0x310
[ 1244.477996]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1244.478331]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1244.478709]  do_syscall_64+0x3f/0x90
[ 1244.478985]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1244.479360] RIP: 0033:0x7f05858feb19
[ 1244.479638] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1244.480919] RSP: 002b:00007f0582e74188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1244.481477] RAX: ffffffffffffffda RBX: 00007f0585a11f60 RCX: 00007f05858feb19
[ 1244.481989] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1244.482511] RBP: 00007f0582e741d0 R08: 0000000020000240 R09: 0000000000000000
[ 1244.483033] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1244.483538] R13: 00007ffd3f25a19f R14: 00007f0582e74300 R15: 0000000000022000
[ 1244.484092]  </TASK>
[ 1244.488634] FAULT_INJECTION: forcing a failure.
[ 1244.488634] name failslab, interval 1, probability 0, space 0, times 0
[ 1244.489488] CPU: 0 PID: 7784 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1244.490085] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1244.490707] Call Trace:
[ 1244.490906]  <TASK>
[ 1244.491083]  dump_stack_lvl+0xc1/0xf0
[ 1244.491393]  should_fail_ex+0x4b4/0x5b0
[ 1244.491724]  ? __kernfs_new_node+0xd4/0x870
[ 1244.492054]  should_failslab+0x9/0x20
[ 1244.492352]  kmem_cache_alloc+0x5a/0x390
[ 1244.492679]  __kernfs_new_node+0xd4/0x870
[ 1244.493012]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1244.493398]  ? down_write+0x11a/0x1f0
[ 1244.493703]  ? up_write+0x196/0x510
[ 1244.494002]  kernfs_new_node+0x97/0x120
[ 1244.494343]  __kernfs_create_file+0x55/0x350
[ 1244.494708]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1244.495071]  ? __pfx_slab_attr_store+0x10/0x10
[ 1244.495440]  internal_create_group+0x322/0xb90
[ 1244.495807]  ? __pfx_internal_create_group+0x10/0x10
[ 1244.496198]  ? up_write+0x196/0x510
[ 1244.496500]  sysfs_slab_add+0x18e/0x220
[ 1244.496807]  __kmem_cache_create+0x1fe/0x610
[ 1244.497160]  kmem_cache_create_usercopy+0x218/0x340
[ 1244.497556]  p9_client_create+0xd0b/0x1260
[ 1244.497889]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1244.498292]  ? __pfx_p9_client_create+0x10/0x10
[ 1244.498652]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1244.499031]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1244.499386]  ? __kasan_kmalloc+0x7f/0x90
[ 1244.499708]  ? __raw_spin_lock_init+0x3a/0x110
[ 1244.500068]  v9fs_session_init+0x1e0/0x17b0
[ 1244.500419]  ? __pfx_lock_release+0x10/0x10
[ 1244.500755]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1244.501123]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1244.501534]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1244.501900]  ? v9fs_mount+0x9e/0xbd0
[ 1244.502224]  v9fs_mount+0xbd/0xbd0
[ 1244.502505]  ? legacy_init_fs_context+0x44/0xe0
[ 1244.502858]  ? __pfx_v9fs_mount+0x10/0x10
[ 1244.503177]  ? cap_capable+0x1be/0x220
[ 1244.503497]  ? __pfx_v9fs_mount+0x10/0x10
[ 1244.503817]  legacy_get_tree+0x109/0x220
[ 1244.504141]  vfs_get_tree+0x92/0x360
[ 1244.504440]  path_mount+0x133c/0x1e50
[ 1244.504744]  ? kasan_quarantine_put+0x81/0x1d0
[ 1244.505091]  ? __pfx_path_mount+0x10/0x10
[ 1244.505414]  ? putname+0x102/0x140
[ 1244.505687]  ? kmem_cache_free+0xff/0x4a0
[ 1244.506008]  ? putname+0x102/0x140
[ 1244.506311]  __x64_sys_mount+0x286/0x310
[ 1244.506626]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1244.506975]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1244.507376]  do_syscall_64+0x3f/0x90
[ 1244.507676]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1244.508058] RIP: 0033:0x7fcf62391b19
[ 1244.508335] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1244.509618] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1244.510165] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1244.510680] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1244.511190] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1244.511708] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1244.512224] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1244.512766]  </TASK>
05:10:04 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x2, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1244.556982] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1244.557598] CPU: 0 PID: 7784 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1244.558233] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1244.558827] Call Trace:
[ 1244.559024]  <TASK>
[ 1244.559201]  dump_stack_lvl+0xc1/0xf0
[ 1244.559502]  kmem_cache_create_usercopy+0x12b/0x340
[ 1244.559893]  p9_client_create+0xd0b/0x1260
[ 1244.560232]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1244.560631]  ? __pfx_p9_client_create+0x10/0x10
[ 1244.560991]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1244.561370]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1244.561729]  ? __kasan_kmalloc+0x7f/0x90
[ 1244.562049]  ? __raw_spin_lock_init+0x3a/0x110
[ 1244.562415]  v9fs_session_init+0x1e0/0x17b0
[ 1244.562756]  ? __pfx_lock_release+0x10/0x10
[ 1244.563094]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1244.563465]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1244.563864]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1244.564238]  ? v9fs_mount+0x9e/0xbd0
[ 1244.564550]  v9fs_mount+0xbd/0xbd0
[ 1244.564835]  ? legacy_init_fs_context+0x44/0xe0
[ 1244.565189]  ? __pfx_v9fs_mount+0x10/0x10
[ 1244.565512]  ? cap_capable+0x1be/0x220
[ 1244.565828]  ? __pfx_v9fs_mount+0x10/0x10
[ 1244.566156]  legacy_get_tree+0x109/0x220
[ 1244.566480]  vfs_get_tree+0x92/0x360
[ 1244.566779]  path_mount+0x133c/0x1e50
[ 1244.567086]  ? kasan_quarantine_put+0x81/0x1d0
[ 1244.567450]  ? __pfx_path_mount+0x10/0x10
[ 1244.567774]  ? putname+0x102/0x140
[ 1244.568052]  ? kmem_cache_free+0xff/0x4a0
[ 1244.568371]  ? putname+0x102/0x140
[ 1244.568662]  __x64_sys_mount+0x286/0x310
[ 1244.568974]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1244.569326]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1244.569718]  do_syscall_64+0x3f/0x90
[ 1244.570009]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1244.570407] RIP: 0033:0x7fcf62391b19
[ 1244.570682] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1244.571970] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1244.572526] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1244.573045] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1244.573573] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1244.574080] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1244.574624] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1244.575176]  </TASK>
05:10:16 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 62)

05:10:16 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x7, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:10:16 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000007, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:10:16 executing program 1:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x7, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x7fff}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x2002402, 0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000040), 0x6a4040, 0x0)
renameat(r1, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000000140)='./file1\x00')

05:10:16 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 82)

05:10:16 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 78)

05:10:16 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xb, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:10:16 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 88)

[ 1255.973968] FAULT_INJECTION: forcing a failure.
[ 1255.973968] name failslab, interval 1, probability 0, space 0, times 0
[ 1255.974819] CPU: 1 PID: 7807 Comm: syz-executor.5 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1255.975352] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1255.975900] Call Trace:
[ 1255.976076]  <TASK>
[ 1255.976235]  dump_stack_lvl+0xc1/0xf0
[ 1255.976514]  should_fail_ex+0x4b4/0x5b0
[ 1255.976801]  ? __kernfs_new_node+0xd4/0x870
[ 1255.977104]  should_failslab+0x9/0x20
[ 1255.977375]  kmem_cache_alloc+0x5a/0x390
[ 1255.977663]  __kernfs_new_node+0xd4/0x870
[ 1255.977949]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1255.978288]  ? down_write+0x11a/0x1f0
[ 1255.978568]  ? up_write+0x196/0x510
[ 1255.978831]  kernfs_new_node+0x97/0x120
[ 1255.979122]  __kernfs_create_file+0x55/0x350
[ 1255.979437]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1255.979753]  ? __pfx_slab_attr_store+0x10/0x10
[ 1255.980076]  internal_create_group+0x322/0xb90
[ 1255.980398]  ? __pfx_internal_create_group+0x10/0x10
[ 1255.980745]  ? up_write+0x196/0x510
[ 1255.981011]  sysfs_slab_add+0x18e/0x220
[ 1255.981291]  __kmem_cache_create+0x1fe/0x610
[ 1255.981602]  kmem_cache_create_usercopy+0x218/0x340
[ 1255.981951]  p9_client_create+0xd0b/0x1260
[ 1255.982262]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1255.982617]  ? __pfx_p9_client_create+0x10/0x10
[ 1255.982947]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1255.983316]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1255.983680]  ? __kasan_kmalloc+0x7f/0x90
[ 1255.983991]  ? __raw_spin_lock_init+0x3a/0x110
[ 1255.984336]  v9fs_session_init+0x1e0/0x17b0
[ 1255.984667]  ? __pfx_lock_release+0x10/0x10
[ 1255.984987]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1255.985321]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1255.985710]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1255.986048]  ? v9fs_mount+0x9e/0xbd0
[ 1255.986353]  v9fs_mount+0xbd/0xbd0
[ 1255.986615]  ? legacy_init_fs_context+0x44/0xe0
[ 1255.986964]  ? __pfx_v9fs_mount+0x10/0x10
[ 1255.987257]  ? cap_capable+0x1be/0x220
[ 1255.987560]  ? __pfx_v9fs_mount+0x10/0x10
[ 1255.987852]  legacy_get_tree+0x109/0x220
[ 1255.988165]  vfs_get_tree+0x92/0x360
[ 1255.988436]  path_mount+0x133c/0x1e50
[ 1255.988736]  ? kasan_quarantine_put+0x81/0x1d0
[ 1255.989057]  ? __pfx_path_mount+0x10/0x10
[ 1255.989372]  ? putname+0x102/0x140
[ 1255.989626]  ? kmem_cache_free+0xff/0x4a0
[ 1255.989937]  ? putname+0x102/0x140
[ 1255.990196]  __x64_sys_mount+0x286/0x310
[ 1255.990514]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1255.990829]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1255.991217]  do_syscall_64+0x3f/0x90
[ 1255.991485]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1255.991875] RIP: 0033:0x7f05858feb19
[ 1255.992127] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1255.993405] RSP: 002b:00007f0582e74188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1255.993908] RAX: ffffffffffffffda RBX: 00007f0585a11f60 RCX: 00007f05858feb19
[ 1255.994423] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1255.994937] RBP: 00007f0582e741d0 R08: 0000000020000240 R09: 0000000000000000
[ 1255.995448] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1255.995959] R13: 00007ffd3f25a19f R14: 00007f0582e74300 R15: 0000000000022000
[ 1255.996484]  </TASK>
[ 1256.004985] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1256.005621] CPU: 1 PID: 7807 Comm: syz-executor.5 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1256.006212] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1256.006804] Call Trace:
[ 1256.006994]  <TASK>
[ 1256.007167]  dump_stack_lvl+0xc1/0xf0
[ 1256.007455]  kmem_cache_create_usercopy+0x12b/0x340
[ 1256.007825]  p9_client_create+0xd0b/0x1260
[ 1256.008127]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1256.008508]  ? __pfx_p9_client_create+0x10/0x10
[ 1256.008827]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1256.009196]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1256.009522]  ? __kasan_kmalloc+0x7f/0x90
[ 1256.009828]  ? __raw_spin_lock_init+0x3a/0x110
[ 1256.010154]  v9fs_session_init+0x1e0/0x17b0
[ 1256.010491]  ? __pfx_lock_release+0x10/0x10
[ 1256.010789]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1256.011148]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1256.011506]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1256.011869]  ? v9fs_mount+0x9e/0xbd0
[ 1256.012146]  v9fs_mount+0xbd/0xbd0
[ 1256.012419]  ? legacy_init_fs_context+0x44/0xe0
[ 1256.012736]  ? __pfx_v9fs_mount+0x10/0x10
[ 1256.013052]  ? cap_capable+0x1be/0x220
[ 1256.013333]  ? __pfx_v9fs_mount+0x10/0x10
[ 1256.013640]  legacy_get_tree+0x109/0x220
[ 1256.013928]  vfs_get_tree+0x92/0x360
[ 1256.014215]  path_mount+0x133c/0x1e50
[ 1256.014512]  ? kasan_quarantine_put+0x81/0x1d0
[ 1256.014855]  ? __pfx_path_mount+0x10/0x10
[ 1256.015147]  ? putname+0x102/0x140
[ 1256.015417]  ? kmem_cache_free+0xff/0x4a0
[ 1256.015710]  ? putname+0x102/0x140
[ 1256.015984]  __x64_sys_mount+0x286/0x310
[ 1256.016262]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1256.016599]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1256.016951]  do_syscall_64+0x3f/0x90
[ 1256.017239]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1256.017619] RIP: 0033:0x7f05858feb19
[ 1256.017893] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1256.019159] RSP: 002b:00007f0582e74188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1256.019696] RAX: ffffffffffffffda RBX: 00007f0585a11f60 RCX: 00007f05858feb19
[ 1256.020191] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1256.020686] RBP: 00007f0582e741d0 R08: 0000000020000240 R09: 0000000000000000
[ 1256.021188] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1256.021682] R13: 00007ffd3f25a19f R14: 00007f0582e74300 R15: 0000000000022000
[ 1256.022188]  </TASK>
[ 1256.050523] 9pnet_virtio: no channels available for device 
05:10:16 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x8, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1256.063307] 9pnet_virtio: no channels available for device 
05:10:16 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 79)

05:10:16 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 63)

05:10:16 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 89)

05:10:16 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x10, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:10:16 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x9, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:10:16 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000008, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

[ 1256.194191] FAULT_INJECTION: forcing a failure.
[ 1256.194191] name failslab, interval 1, probability 0, space 0, times 0
[ 1256.195009] CPU: 1 PID: 7829 Comm: syz-executor.3 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1256.195552] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1256.196099] Call Trace:
[ 1256.196287]  <TASK>
[ 1256.196455]  dump_stack_lvl+0xc1/0xf0
[ 1256.196742]  should_fail_ex+0x4b4/0x5b0
[ 1256.197044]  ? __kernfs_new_node+0xd4/0x870
[ 1256.197347]  should_failslab+0x9/0x20
[ 1256.197632]  kmem_cache_alloc+0x5a/0x390
[ 1256.197938]  __kernfs_new_node+0xd4/0x870
[ 1256.198241]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1256.198605]  ? down_write+0x11a/0x1f0
[ 1256.198894]  ? up_write+0x196/0x510
[ 1256.199172]  kernfs_new_node+0x97/0x120
[ 1256.199477]  __kernfs_create_file+0x55/0x350
[ 1256.199804]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1256.200137]  ? __pfx_slab_attr_store+0x10/0x10
[ 1256.200473]  internal_create_group+0x322/0xb90
[ 1256.200808]  ? __pfx_internal_create_group+0x10/0x10
[ 1256.201159]  ? up_write+0x196/0x510
[ 1256.201443]  sysfs_slab_add+0x18e/0x220
[ 1256.201731]  __kmem_cache_create+0x1fe/0x610
[ 1256.202054]  kmem_cache_create_usercopy+0x218/0x340
[ 1256.202445]  p9_client_create+0xd0b/0x1260
[ 1256.202756]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1256.203123]  ? __pfx_p9_client_create+0x10/0x10
[ 1256.203451]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1256.203802]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1256.204137]  ? __kasan_kmalloc+0x7f/0x90
[ 1256.204449]  ? __raw_spin_lock_init+0x3a/0x110
[ 1256.204798]  v9fs_session_init+0x1e0/0x17b0
[ 1256.205118]  ? __pfx_lock_release+0x10/0x10
[ 1256.205448]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1256.205808]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1256.206186]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1256.206589]  ? v9fs_mount+0x9e/0xbd0
[ 1256.206900]  v9fs_mount+0xbd/0xbd0
[ 1256.207173]  ? legacy_init_fs_context+0x44/0xe0
[ 1256.207518]  ? __pfx_v9fs_mount+0x10/0x10
[ 1256.207830]  ? cap_capable+0x1be/0x220
[ 1256.208393]  ? __pfx_v9fs_mount+0x10/0x10
[ 1256.208831]  legacy_get_tree+0x109/0x220
[ 1256.209176]  vfs_get_tree+0x92/0x360
[ 1256.209540]  path_mount+0x133c/0x1e50
05:10:16 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getpeername(r0, &(0x7f0000000140)=@qipcrtr, &(0x7f0000000040)=0x80)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={0x3c, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_FRAME={0x1f, 0x33, @action={@wo_ht={{}, {}, @device_b}, @ntf_ch_w}}]}, 0x3c}}, 0x0)
[ 1256.209854]  ? kasan_quarantine_put+0x81/0x1d0
[ 1256.210338]  ? __pfx_path_mount+0x10/0x10
[ 1256.210655]  ? putname+0x102/0x140
[ 1256.210933]  ? kmem_cache_free+0xff/0x4a0
[ 1256.211250]  ? putname+0x102/0x140
[ 1256.211538]  __x64_sys_mount+0x286/0x310
[ 1256.211840]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1256.212186]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1256.212567]  do_syscall_64+0x3f/0x90
[ 1256.212853]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1256.213216] RIP: 0033:0x7ff349defb19
[ 1256.213495] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1256.214684] RSP: 002b:00007ff347365188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1256.215223] RAX: ffffffffffffffda RBX: 00007ff349f02f60 RCX: 00007ff349defb19
[ 1256.215723] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1256.216224] RBP: 00007ff3473651d0 R08: 0000000020000240 R09: 0000000000000000
[ 1256.216731] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1256.217231] R13: 00007fffc306ac3f R14: 00007ff347365300 R15: 0000000000022000
[ 1256.217769]  </TASK>
sendmmsg$sock(r1, &(0x7f0000004600)=[{{&(0x7f00000001c0)=@generic={0xf, "a0596f00d17a899fc9db613cc1efb0c7c52076a450750e6be7953082b211daba3091e2c1bacfb46a275145c46cd3a3e2d4c12742d05f3b226ae3b291c2def76f097146b79763c62016658edad476c875b50e41d34c20981ca683550979bd5da284c21bcbf6fd07ea3b3f45259be830b791d7d1eee4ef50e41b130620b186"}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000240)="94bb386216b0cc57983853cbae1be7e4b72e59cad900a61aa22615a9dfc34eb3488351b0b10eaf58598f64c13a10c86c0e7f4a666a3d243f89d894be307c4b6d51dc0ca882e4dcbb712b9d3f7f20a21ebb8d258e2d73bcf9181b0ba68fd5f83f5d531efd6745364aba5824e0aa6d80135883", 0x72}, {&(0x7f00000002c0)="e6a139c2035f8b30e53790d656d164574cbc0d73e268afd6defca6d60dc78b1c5414b8324c1aa60640f658f6466a87bde31ff5538532e90f24c2c8a5aeb55deb7e528854287b00ab946aa0477e0b1c144519e95d274a441aeeafd387007fcf8e86bfc548ab38b586b23522163652879d51e6db1b9e7e6ad9c150de4300cc7a68", 0x80}], 0x2, &(0x7f0000000340)=[@mark={{0x14, 0x1, 0x24, 0xcd18}}], 0x18}}, {{0x0, 0x0, &(0x7f0000001600)=[{&(0x7f0000000380)="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", 0x1000}, {&(0x7f0000001380)="689e011483340b92c04072f5288a1c4c6c9385f24c5a5e5e657eeda4b88f24355c46f33a5a7e3ab569318bcb3232c6f2fcc8391b96e9812570f2328ce82d767dfdd525756e8beb9017c69b9928a40ddf10ed178519e84d0eb4c092af804c061f2f921fc1bb78fc2fe0947e2dc4882503f2acda", 0x73}, {&(0x7f0000001400)="27e31b5b36f3c470837b4556a36b8fdc6565ecad64ed7e7fe1c7d60b1e0b5ae47e4c9e54f836b1a210c4c0a0d5ada6104da5301ddbcb02a5888240d2a5f3842a934f5754ff829b6901ac04cd516fd01bbc483230faa00193203ceb2454358b855a197892dfe28162e4af16b8e5eb22a8cf87212debb7301e2e2efde9f3ab715fa1c523d9aeab478a5efcd0f2918b1128a48b99b994c9e844", 0x98}, {&(0x7f00000014c0)="833791c2d282c56beb9f616d2f41c81609c270336b0d44ce99091b96d3bfef55cd62b88e520855d746b57459ae89af9aff77a2b9a7da4a00a2213e0208710d52cb12ecbb6b166ddd1863d5056bb63004349caf82e40754219d13f71085d670206f6150d0a7030cfbfe0402f05ee309b091a6f48c4da50cfa44971a82aedc21583ba7ff427c3cac1df0537848101486567bfff601ad28fa03277d631b4f8f4660310f1731", 0xa4}, {&(0x7f0000001580)="2ebe90b8394438dda1a2e5d586c84e25e96300482413891235f8b7f3d270fb5e46f480e76d56a5f61e12ebba6bc9be06821a53c71972bc5b80e34920e9ff17b9fb", 0x41}, {&(0x7f00000018c0)="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", 0x1000}], 0x6, &(0x7f0000001680)=[@timestamping={{0x14, 0x1, 0x25, 0x8}}, @mark={{0x14, 0x1, 0x24, 0x1f}}, @timestamping={{0x14, 0x1, 0x25, 0x53}}, @txtime={{0x18, 0x1, 0x3d, 0x7f}}], 0x60}}, {{0x0, 0x0, &(0x7f0000002bc0)=[{&(0x7f0000001700)="538ba9e5aef3db8564e9e748ab0335d485ad153633fc2e8098bc8a6a28c067f742a173732d92ba2bb673553f90ea815522a39d5dd3d385652916335b62e7ab95fb08da2913d4a4", 0x47}, {&(0x7f0000001780)="5a74c9e62bc05651e7557bc047b7b61a3f03b0075e77f72a3b222dc9af5f7135d4677aa668779df937c1e07dea22cb5fb3f594ee2047aeecb5ce945ebe77589da6e34ae00af4cbdf2e61a2ed6df69b88b93cd4241ac5ae8fda314b1e8ce05ca23162ad45c32fee7f7ff7a5437b591b65388584b53a76d45247992f0508a38f7b2688c366455ef693e1824d05f896b2626217445f22565eedf272ed6f1784ef27b7e4348350d1bbab4fcc46922a", 0xad}, {&(0x7f00000028c0)="c06bf54225442f0467dabf375b86faea15231f9da3ec937569904f7e3667421a5a6e38134196dd5db0699f5f938a1380ba2051a08fefef7b1312bbce", 0x3c}, {&(0x7f0000002900)="a0ae39461384298dfe4e826e5d0779bcb9cc3dc9040492fe9350394644ba039150a0776310b4ae02f0ea731fe07dc8b0f8c89eff8b93d62c7a8fffe1a4b575d5b6e76ee1e9f363200cc143974b9b5af667057c318c2202f4a82ac1e719c8c0f6e0b5fde7cf335d255c429ea2e53e77282c56ed152a403863bd57551ea1e5ac7e90599d438dc2b41b51d6f85a86ab0817652d7e58696a744444bf00f1c9bdc75de95236c97c69e2bd9c6b6ab213fd336f64bc24a5434ed260f2b6d4b30a94aed03468eca73813ad1a012c1cf0ffe436f080424bfd9dd652c1da6850dd12ff06b2f2984b91b783f60bae52ca4eec42", 0xee}, {&(0x7f0000002a00)="0f9a5c528b6f0ed1bffafbb1222e9798a377e95e72cabc34980e1ab340ea94b2cddf5e2d55b3cfbf839f47b1657f446156c5d7764c581ea879ff2c22c91fec79984c7b98e53a5c18271d704d6115853b63f15f6783d5779feebc919bcf6be82bf57758633f1606be699517", 0x6b}, {&(0x7f0000002a80)="7029c36864dc211e0acfd23d958b7f056d51547fe3138f8aaf0cb2bd5eea9df491683007f573a137629fe0851fce0156e253f8d443ac055fae5213b77544a87668cb5ac16d79b01961f913545fb041166404cd9c16d47034c2ecfe0d581f0a99bb29a19149bf08fd613a2402f23feaf051019716316a67012d9af9d25f6c58ff9c2806c6013814aba508749856e5b68e82d97b5cb2d6167a89ec30a0d04783f514d88253f97fa9ea5c0143ad6a133511554e7dd8fb39302e760b00dfa0455a4e27541dc3", 0xc4}, {&(0x7f0000002b80)}], 0x7, &(0x7f0000002c40)=[@txtime={{0x18, 0x1, 0x3d, 0x9}}], 0x18}}, {{&(0x7f0000002c80)=@llc={0x1a, 0x101, 0x1, 0x9, 0x80, 0x5, @random="7d03d874963f"}, 0x80, &(0x7f00000041c0)=[{&(0x7f0000002d00)="72508ab1a98ba235bd0c97643c8add8dcc145541d7f21e966d7e3d678c6d686f20b15b081982508e11550ec9b78f97c2927a9980d29edcb24eed5a063092884acdb2f19ec229d443d70cc9c1d9be3710256b7096ab03", 0x56}, {&(0x7f0000002d80)="de6e478b4d907ba5c28bbbfa6e277037f61a01b46b49319591048ba0f3969632c51217b7bb89f86cbbb89043a3d7ec6981aa9fdaa3f41f8253049253580b756f64c9a65f306bac58f06409666213ac1378d40f45d91bb9d417f457e3b4cd7af259d1fd2896485109dc13d6f6b7fec20645be3b24100ee64a30a227f1de847c4acf69a01b61f8d5335f20877756d6aaea5202a5162ee7716e8d205288b4c116", 0x9f}, {&(0x7f0000002e40)="e14424eb2b3e9456077d789f326f0d39b7441304b812a7e999cc5dcc8dca6fda76c269df905c8b98f58989589ddacfd5033e03b9c08ec92a5a353c4b6f7b8aee5a445074d11eaaa2", 0x48}, {&(0x7f0000002ec0)="00f23889514b6597165ec16da1ae305ef83f2c020240193dfd4d16e3d505ad", 0x1f}, {&(0x7f0000002f00)="10c9a2d6ab686fae857494c95086ee2cde884a99e4c8fbd3e0a243c2ea8b918b289bf6190c2b5cc15a0c9b3eaf11a42ecebc797fe287a853cdd566bb08980182dd3bbf8b13d8e0840e5203b86816a32a111745712519494f7bc01502af02be67361bfb6246e89f46b3440115c936a2ef1308dcd46d8f771013e42975875d36841872d530a15375a47a3bd3b8de5d0c652cc3cd5e57ed4561fb5bbec023cf37b62bd7f99bdbc4ced58840d8047190aeb188be8a11b27d43332e1da7c83912b71bb41e8d9d9846db64479325dccc2cc1b80734544c66", 0xd5}, {&(0x7f0000003000)="8e1602f2d899c557a9c272bfb9008037682b2c6a35f5f8758877e505dd54ed89ae4b1f4a39d294b64cc4663fcbf6caca626c25adf8cc5e23544d302f4314d8905fe07dad4ba015ff82ec5102287c8a8e4e7a231660c63edf7982a126ac95752a744caa5d6783557b3b977d533d1a97cebf3d6b11bf1837a1614b824bd8a35385469a0dfe269087db202b18fadd6e4adfe1804bb6f54699f1", 0x98}, {&(0x7f00000030c0)="b21dd0e00b016cd444b9a1220b70bea7b77861aefa6318777cce93d2a6e8e21934600d00ce94de453a1af20a1fdd01d21238", 0x32}, {&(0x7f0000003100)="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", 0x1000}, {&(0x7f0000004100)="1c383d9b71203967655d244ddc40a4163d3892f8153c257c021bd848d81a0616400dc8cafe1b5c2556264b18d82f39b064f243577665a6ab276c3c8812013e55adb541720a99a7ce5de01c1b6b51bc25d269012045e5976de6f0a01ce462090d8caf0127b554a07d02fe82c6f5c417f5dceb1ff20f3e8b466b0efe7b447cedb5ce8b274c937969a5f51eb49311839ee1c46bb275680371b44677a222568a84a536753c68968724f7b0", 0xa9}], 0x9, &(0x7f0000004280)=[@timestamping={{0x14, 0x1, 0x25, 0x7fff}}, @txtime={{0x18, 0x1, 0x3d, 0x8}}, @timestamping={{0x14, 0x1, 0x25, 0x6}}, @txtime={{0x18, 0x1, 0x3d, 0x3}}, @timestamping={{0x14, 0x1, 0x25, 0x36}}], 0x78}}, {{0x0, 0x0, &(0x7f0000004540)=[{&(0x7f0000004300)="7b6a5fc7059f30e8c7f77feacc9505f121b1d16100bb5281a709adbe9b6697fe2a67cae011242260b4093f851e7d249dee", 0x31}, {&(0x7f0000004340)="6fbdc0ab2adf6926efaf52e11fd55337541f07b33fc6fe12d26bb6ae5a84caaf5976c9cdf9fae7e4c662cc5e634c7f3c6115a93f921f90d5b03e668933", 0x3d}, {&(0x7f0000004380)="2ba8cddd18c1aa372b0af946e1c8ba67493aa3b89ba8979d074bdf9ec2f1cbf1b077874304f13d1951ac1177c4580fc8f7a79d7bf1555554e7936268f8af55c53e9f000633e88b9adbe65f11955fd8f4a9ce3e2624b6013f4d14a9c24fd2991556c999d3cc31b79c5ce651fbe78375a185b8049bdb5f40bb4dae9d52e97c8c50a8083d729735d2414b6e2ffe1d199a6b40c2fe778c66f75adc73fe9362b9e9d1a099200b373cf384dd0a739746962d6997c35af6e1e582c05d1ae5e829000874d0ef8b856bd5f6a79d01452f11ece331ddb1f091aa0377ebb412d1e4e488576e8051879289becdef126bb97c0da8cf5e9174f2505aee56f9bf01b48f", 0xfc}, {&(0x7f0000004480)="aed57eac79fb6681df7102b9768d9d30b2d33db7dfc7ec8cefb497bea262190555d96a730b1ef8cce57a48eff5dbfa83c407ec9d044620c986f16cb327b7d120d9c71203c3d118a06d2c17cc13cceaf2ad3ba446ab2da02413acdd25b4bf4ba04bff42760d8405d21caa9ed0cf95b8d4ba5a3b6106babdd2d480bff05e8897859d56da58819edae107b012c5932fd59b7f5fe69484dea6344e86c85be4cca941e6ffba2ca36daa1b8a6b6011e058cd6b5e3aa30ad451aede16da67", 0xbb}], 0x4, &(0x7f0000004580)=[@txtime={{0x18, 0x1, 0x3d, 0x80}}, @mark={{0x14, 0x1, 0x24, 0x93d}}, @timestamping={{0x14, 0x1, 0x25, 0x43}}, @mark={{0x14, 0x1, 0x24, 0x7fffffff}}, @txtime={{0x18, 0x1, 0x3d, 0x9a4}}], 0x78}}], 0x5, 0x800)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

[ 1256.257291] 9pnet_virtio: no channels available for device 
05:10:16 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xa, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1256.273200] 9pnet_virtio: no channels available for device 
05:10:16 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 83)

05:10:16 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x700, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1256.298407] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1256.298905] CPU: 1 PID: 7829 Comm: syz-executor.3 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1256.299437] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1256.299977] Call Trace:
[ 1256.300158]  <TASK>
[ 1256.300323]  dump_stack_lvl+0xc1/0xf0
[ 1256.300612]  kmem_cache_create_usercopy+0x12b/0x340
[ 1256.300975]  p9_client_create+0xd0b/0x1260
[ 1256.301284]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1256.301649]  ? __pfx_p9_client_create+0x10/0x10
[ 1256.301979]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1256.302341]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1256.302677]  ? __kasan_kmalloc+0x7f/0x90
[ 1256.302977]  ? __raw_spin_lock_init+0x3a/0x110
[ 1256.303309]  v9fs_session_init+0x1e0/0x17b0
[ 1256.303636]  ? __pfx_lock_release+0x10/0x10
[ 1256.303944]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1256.304285]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1256.304658]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1256.305004]  ? v9fs_mount+0x9e/0xbd0
[ 1256.305292]  v9fs_mount+0xbd/0xbd0
[ 1256.305562]  ? legacy_init_fs_context+0x44/0xe0
[ 1256.305885]  ? __pfx_v9fs_mount+0x10/0x10
[ 1256.306183]  ? cap_capable+0x1be/0x220
[ 1256.306488]  ? __pfx_v9fs_mount+0x10/0x10
[ 1256.306786]  legacy_get_tree+0x109/0x220
[ 1256.307086]  vfs_get_tree+0x92/0x360
[ 1256.307365]  path_mount+0x133c/0x1e50
[ 1256.307659]  ? kasan_quarantine_put+0x81/0x1d0
[ 1256.308006]  ? __pfx_path_mount+0x10/0x10
[ 1256.308314]  ? putname+0x102/0x140
[ 1256.308597]  ? kmem_cache_free+0xff/0x4a0
[ 1256.308914]  ? putname+0x102/0x140
[ 1256.309190]  __x64_sys_mount+0x286/0x310
[ 1256.309492]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1256.309831]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1256.310217]  do_syscall_64+0x3f/0x90
[ 1256.310509]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1256.310893] RIP: 0033:0x7ff349defb19
[ 1256.311168] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1256.312416] RSP: 002b:00007ff347365188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1256.312956] RAX: ffffffffffffffda RBX: 00007ff349f02f60 RCX: 00007ff349defb19
[ 1256.313464] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1256.313977] RBP: 00007ff3473651d0 R08: 0000000020000240 R09: 0000000000000000
[ 1256.314492] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1256.314993] R13: 00007fffc306ac3f R14: 00007ff347365300 R15: 0000000000022000
[ 1256.315528]  </TASK>
[ 1256.316284] FAULT_INJECTION: forcing a failure.
[ 1256.316284] name failslab, interval 1, probability 0, space 0, times 0
[ 1256.317091] CPU: 1 PID: 7832 Comm: syz-executor.5 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1256.317661] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1256.318231] Call Trace:
[ 1256.318427]  <TASK>
[ 1256.318597]  dump_stack_lvl+0xc1/0xf0
[ 1256.318882]  should_fail_ex+0x4b4/0x5b0
[ 1256.319189]  ? __kernfs_new_node+0xd4/0x870
[ 1256.319508]  should_failslab+0x9/0x20
[ 1256.319791]  kmem_cache_alloc+0x5a/0x390
[ 1256.320096]  __kernfs_new_node+0xd4/0x870
[ 1256.320402]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1256.320760]  ? down_write+0x11a/0x1f0
[ 1256.321054]  ? up_write+0x196/0x510
[ 1256.321330]  kernfs_new_node+0x97/0x120
[ 1256.321623]  __kernfs_create_file+0x55/0x350
[ 1256.321959]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1256.322298]  ? __pfx_slab_attr_store+0x10/0x10
[ 1256.322642]  internal_create_group+0x322/0xb90
[ 1256.322969]  ? __pfx_internal_create_group+0x10/0x10
[ 1256.323349]  ? up_write+0x196/0x510
[ 1256.323619]  sysfs_slab_add+0x18e/0x220
[ 1256.323916]  __kmem_cache_create+0x1fe/0x610
[ 1256.324234]  kmem_cache_create_usercopy+0x218/0x340
[ 1256.324605]  p9_client_create+0xd0b/0x1260
[ 1256.324917]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1256.325296]  ? __pfx_p9_client_create+0x10/0x10
[ 1256.325623]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1256.325982]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1256.326315]  ? __kasan_kmalloc+0x7f/0x90
[ 1256.326620]  ? __raw_spin_lock_init+0x3a/0x110
[ 1256.326961]  v9fs_session_init+0x1e0/0x17b0
[ 1256.327284]  ? __pfx_lock_release+0x10/0x10
[ 1256.327589]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1256.327939]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1256.328309]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1256.328672]  ? v9fs_mount+0x9e/0xbd0
[ 1256.328951]  v9fs_mount+0xbd/0xbd0
[ 1256.329221]  ? legacy_init_fs_context+0x44/0xe0
[ 1256.329554]  ? __pfx_v9fs_mount+0x10/0x10
[ 1256.329868]  ? cap_capable+0x1be/0x220
[ 1256.330154]  ? __pfx_v9fs_mount+0x10/0x10
[ 1256.330489]  legacy_get_tree+0x109/0x220
[ 1256.330789]  vfs_get_tree+0x92/0x360
[ 1256.331074]  path_mount+0x133c/0x1e50
[ 1256.331358]  ? kasan_quarantine_put+0x81/0x1d0
[ 1256.331696]  ? __pfx_path_mount+0x10/0x10
[ 1256.331994]  ? putname+0x102/0x140
[ 1256.332264]  ? kmem_cache_free+0xff/0x4a0
[ 1256.332557]  ? putname+0x102/0x140
[ 1256.332832]  __x64_sys_mount+0x286/0x310
[ 1256.333114]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1256.333455]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1256.333816]  do_syscall_64+0x3f/0x90
[ 1256.334097]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1256.334468] RIP: 0033:0x7f05858feb19
[ 1256.334738] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1256.335897] RSP: 002b:00007f0582e74188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1256.336435] RAX: ffffffffffffffda RBX: 00007f0585a11f60 RCX: 00007f05858feb19
[ 1256.336935] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1256.337431] RBP: 00007f0582e741d0 R08: 0000000020000240 R09: 0000000000000000
[ 1256.337941] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1256.338446] R13: 00007ffd3f25a19f R14: 00007f0582e74300 R15: 0000000000022000
[ 1256.338958]  </TASK>
[ 1256.354624] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1256.355153] CPU: 1 PID: 7832 Comm: syz-executor.5 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1256.355708] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1256.356283] Call Trace:
[ 1256.356466]  <TASK>
[ 1256.356634]  dump_stack_lvl+0xc1/0xf0
[ 1256.356905]  kmem_cache_create_usercopy+0x12b/0x340
[ 1256.357281]  p9_client_create+0xd0b/0x1260
[ 1256.357578]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1256.357958]  ? __pfx_p9_client_create+0x10/0x10
[ 1256.358290]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1256.358656]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1256.358984]  ? __kasan_kmalloc+0x7f/0x90
[ 1256.359293]  ? __raw_spin_lock_init+0x3a/0x110
[ 1256.359618]  v9fs_session_init+0x1e0/0x17b0
[ 1256.359947]  ? __pfx_lock_release+0x10/0x10
[ 1256.360244]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1256.360594]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1256.360952]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1256.361319]  ? v9fs_mount+0x9e/0xbd0
[ 1256.361596]  v9fs_mount+0xbd/0xbd0
[ 1256.361872]  ? legacy_init_fs_context+0x44/0xe0
[ 1256.362192]  ? __pfx_v9fs_mount+0x10/0x10
[ 1256.362519]  ? cap_capable+0x1be/0x220
[ 1256.362804]  ? __pfx_v9fs_mount+0x10/0x10
[ 1256.363119]  legacy_get_tree+0x109/0x220
[ 1256.363408]  vfs_get_tree+0x92/0x360
[ 1256.363698]  path_mount+0x133c/0x1e50
[ 1256.363972]  ? kasan_quarantine_put+0x81/0x1d0
[ 1256.364316]  ? __pfx_path_mount+0x10/0x10
[ 1256.364881]  ? putname+0x102/0x140
[ 1256.365587]  ? kmem_cache_free+0xff/0x4a0
[ 1256.366286]  ? putname+0x102/0x140
[ 1256.366884]  __x64_sys_mount+0x286/0x310
[ 1256.367539]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1256.368254]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1256.369098]  do_syscall_64+0x3f/0x90
[ 1256.369701]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1256.370537] RIP: 0033:0x7f05858feb19
[ 1256.371137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1256.373880] RSP: 002b:00007f0582e74188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1256.375028] RAX: ffffffffffffffda RBX: 00007f0585a11f60 RCX: 00007f05858feb19
[ 1256.375921] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1256.376826] RBP: 00007f0582e741d0 R08: 0000000020000240 R09: 0000000000000000
[ 1256.377724] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1256.378638] R13: 00007ffd3f25a19f R14: 00007f0582e74300 R15: 0000000000022000
[ 1256.379581]  </TASK>
[ 1256.382668] FAULT_INJECTION: forcing a failure.
[ 1256.382668] name failslab, interval 1, probability 0, space 0, times 0
[ 1256.384121] CPU: 1 PID: 7850 Comm: syz-executor.6 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1256.385166] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1256.386206] Call Trace:
[ 1256.386565]  <TASK>
[ 1256.386880]  dump_stack_lvl+0xc1/0xf0
[ 1256.387414]  should_fail_ex+0x4b4/0x5b0
[ 1256.387977]  ? __kernfs_new_node+0xd4/0x870
[ 1256.388561]  should_failslab+0x9/0x20
[ 1256.389090]  kmem_cache_alloc+0x5a/0x390
[ 1256.389659]  __kernfs_new_node+0xd4/0x870
[ 1256.390203]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1256.390864]  ? down_write+0x1c3/0x1f0
[ 1256.391402]  ? up_write+0x196/0x510
[ 1256.391902]  kernfs_new_node+0x97/0x120
[ 1256.392450]  __kernfs_create_file+0x55/0x350
[ 1256.393061]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1256.393684]  ? __pfx_slab_attr_store+0x10/0x10
[ 1256.394347]  internal_create_group+0x322/0xb90
[ 1256.394968]  ? __pfx_internal_create_group+0x10/0x10
[ 1256.395616]  ? up_write+0x207/0x510
[ 1256.396133]  sysfs_slab_add+0x18e/0x220
[ 1256.396682]  __kmem_cache_create+0x1fe/0x610
[ 1256.397288]  kmem_cache_create_usercopy+0x218/0x340
[ 1256.397964]  p9_client_create+0xd0b/0x1260
[ 1256.398557]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1256.399242]  ? __pfx_p9_client_create+0x10/0x10
[ 1256.399844]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1256.400504]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1256.401138]  ? __kasan_kmalloc+0x7f/0x90
[ 1256.401686]  ? __raw_spin_lock_init+0x3a/0x110
[ 1256.402322]  v9fs_session_init+0x1e0/0x17b0
[ 1256.402915]  ? __pfx_lock_release+0x10/0x10
[ 1256.403495]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1256.404143]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1256.404813]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1256.405468]  ? v9fs_mount+0x9e/0xbd0
[ 1256.405981]  v9fs_mount+0xbd/0xbd0
[ 1256.406510]  ? legacy_init_fs_context+0x44/0xe0
[ 1256.407101]  ? __pfx_v9fs_mount+0x10/0x10
[ 1256.407662]  ? cap_capable+0x1be/0x220
[ 1256.408197]  ? __pfx_v9fs_mount+0x10/0x10
[ 1256.408774]  legacy_get_tree+0x109/0x220
[ 1256.409340]  vfs_get_tree+0x92/0x360
[ 1256.409863]  path_mount+0x133c/0x1e50
[ 1256.410437]  ? kasan_quarantine_put+0x81/0x1d0
[ 1256.411043]  ? __pfx_path_mount+0x10/0x10
[ 1256.411595]  ? putname+0x102/0x140
[ 1256.412078]  ? kmem_cache_free+0xff/0x4a0
[ 1256.412632]  ? putname+0x102/0x140
[ 1256.413121]  __x64_sys_mount+0x286/0x310
[ 1256.413643]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1256.414235]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1256.414946]  do_syscall_64+0x3f/0x90
[ 1256.415460]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1256.416134] RIP: 0033:0x7fdb13b24b19
[ 1256.416625] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1256.418780] RSP: 002b:00007fdb1109a188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1256.419727] RAX: ffffffffffffffda RBX: 00007fdb13c37f60 RCX: 00007fdb13b24b19
[ 1256.420579] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1256.421429] RBP: 00007fdb1109a1d0 R08: 0000000020000240 R09: 0000000000000000
[ 1256.422299] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1256.423158] R13: 00007fff73fffccf R14: 00007fdb1109a300 R15: 0000000000022000
[ 1256.424053]  </TASK>
05:10:16 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x200000f0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:10:16 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r0=>0x0}, 0x0)
mount$9p_unix(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140), 0x2, &(0x7f0000000240)={'trans=unix,', {[{@cachetag={'cachetag', 0x3d, '9p\x00'}}, {@nodevmap}, {@posixacl}, {@cache_fscache}, {@noextend}], [{@measure}, {@fowner_eq={'fowner', 0x3d, r0}}, {@permit_directio}, {@subj_type={'subj_type', 0x3d, '9p\x00'}}]}})
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:10:16 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 80)

05:10:16 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xb, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1256.492658] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1256.493649] CPU: 1 PID: 7850 Comm: syz-executor.6 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1256.494642] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1256.495630] Call Trace:
[ 1256.495959]  <TASK>
[ 1256.496252]  dump_stack_lvl+0xc1/0xf0
[ 1256.496761]  kmem_cache_create_usercopy+0x12b/0x340
[ 1256.497435]  p9_client_create+0xd0b/0x1260
[ 1256.498018]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1256.498708]  ? __pfx_p9_client_create+0x10/0x10
[ 1256.499318]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1256.499970]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1256.500566]  ? __kasan_kmalloc+0x7f/0x90
[ 1256.501104]  ? __raw_spin_lock_init+0x3a/0x110
[ 1256.501739]  v9fs_session_init+0x1e0/0x17b0
[ 1256.502352]  ? __pfx_lock_release+0x10/0x10
[ 1256.502916]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1256.503530]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1256.504184]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1256.504805]  ? v9fs_mount+0x9e/0xbd0
[ 1256.505312]  v9fs_mount+0xbd/0xbd0
[ 1256.505776]  ? legacy_init_fs_context+0x44/0xe0
[ 1256.506368]  ? __pfx_v9fs_mount+0x10/0x10
[ 1256.506902]  ? cap_capable+0x1be/0x220
[ 1256.507422]  ? __pfx_v9fs_mount+0x10/0x10
[ 1256.507961]  legacy_get_tree+0x109/0x220
[ 1256.508492]  vfs_get_tree+0x92/0x360
[ 1256.508991]  path_mount+0x133c/0x1e50
[ 1256.509496]  ? kasan_quarantine_put+0x81/0x1d0
[ 1256.510079]  ? __pfx_path_mount+0x10/0x10
[ 1256.510613]  ? putname+0x102/0x140
[ 1256.511077]  ? kmem_cache_free+0xff/0x4a0
[ 1256.511587]  ? putname+0x102/0x140
[ 1256.512069]  __x64_sys_mount+0x286/0x310
[ 1256.512575]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1256.513143]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1256.513795]  do_syscall_64+0x3f/0x90
[ 1256.514311]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1256.514981] RIP: 0033:0x7fdb13b24b19
[ 1256.515469] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1256.517682] RSP: 002b:00007fdb1109a188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1256.518638] RAX: ffffffffffffffda RBX: 00007fdb13c37f60 RCX: 00007fdb13b24b19
[ 1256.519527] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1256.520412] RBP: 00007fdb1109a1d0 R08: 0000000020000240 R09: 0000000000000000
[ 1256.521300] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1256.522204] R13: 00007fff73fffccf R14: 00007fdb1109a300 R15: 0000000000022000
[ 1256.523161]  </TASK>
[ 1256.528006] 9pnet_virtio: no channels available for device 
[ 1256.538242] 9pnet_virtio: no channels available for device 
[ 1256.560278] 9pnet_fd: p9_fd_create_unix (7857): problem connecting socket: ./file0: -111
[ 1256.593514] 9pnet_virtio: no channels available for device ./file0
05:10:32 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 64)

05:10:32 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 81)

05:10:32 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 84)

05:10:32 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 90)

05:10:32 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x900, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:10:32 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000300, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:10:32 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x300c3d, 0x0)

05:10:32 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x10, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1272.225093] 9pnet_virtio: no channels available for device 
[ 1272.246801] 9pnet_virtio: no channels available for device 
[ 1272.252966] FAULT_INJECTION: forcing a failure.
[ 1272.252966] name failslab, interval 1, probability 0, space 0, times 0
[ 1272.254465] CPU: 0 PID: 7885 Comm: syz-executor.5 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1272.255456] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1272.256433] Call Trace:
[ 1272.256775]  <TASK>
[ 1272.257077]  dump_stack_lvl+0xc1/0xf0
[ 1272.257599]  should_fail_ex+0x4b4/0x5b0
[ 1272.258132]  ? __kernfs_new_node+0xd4/0x870
[ 1272.258700]  should_failslab+0x9/0x20
[ 1272.259199]  kmem_cache_alloc+0x5a/0x390
[ 1272.259749]  __kernfs_new_node+0xd4/0x870
[ 1272.260291]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1272.260918]  ? down_write+0x11a/0x1f0
[ 1272.261432]  ? up_write+0x196/0x510
[ 1272.261934]  kernfs_new_node+0x97/0x120
[ 1272.262499]  __kernfs_create_file+0x55/0x350
[ 1272.263095]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1272.263691]  ? __pfx_slab_attr_store+0x10/0x10
[ 1272.264301]  internal_create_group+0x322/0xb90
[ 1272.264909]  ? __pfx_internal_create_group+0x10/0x10
[ 1272.265551]  ? up_write+0x196/0x510
[ 1272.266059]  sysfs_slab_add+0x18e/0x220
[ 1272.266587]  __kmem_cache_create+0x1fe/0x610
[ 1272.267178]  kmem_cache_create_usercopy+0x218/0x340
[ 1272.267836]  p9_client_create+0xd0b/0x1260
[ 1272.268402]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1272.269056]  ? __pfx_p9_client_create+0x10/0x10
[ 1272.269657]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1272.270286]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1272.270889]  ? __kasan_kmalloc+0x7f/0x90
[ 1272.271430]  ? __raw_spin_lock_init+0x3a/0x110
[ 1272.272030]  v9fs_session_init+0x1e0/0x17b0
[ 1272.272636]  ? __pfx_lock_release+0x10/0x10
[ 1272.273217]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1272.273861]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1272.274588]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1272.275236]  ? v9fs_mount+0x9e/0xbd0
[ 1272.275796]  v9fs_mount+0xbd/0xbd0
[ 1272.276288]  ? legacy_init_fs_context+0x44/0xe0
[ 1272.276910]  ? __pfx_v9fs_mount+0x10/0x10
[ 1272.277485]  ? cap_capable+0x1be/0x220
[ 1272.278042]  ? __pfx_v9fs_mount+0x10/0x10
[ 1272.278617]  legacy_get_tree+0x109/0x220
[ 1272.279185]  vfs_get_tree+0x92/0x360
[ 1272.279721]  path_mount+0x133c/0x1e50
[ 1272.280265]  ? kasan_quarantine_put+0x81/0x1d0
[ 1272.280889]  ? __pfx_path_mount+0x10/0x10
[ 1272.281431]  ? putname+0x102/0x140
[ 1272.281941]  ? kmem_cache_free+0xff/0x4a0
[ 1272.282525]  ? putname+0x102/0x140
[ 1272.283046]  __x64_sys_mount+0x286/0x310
[ 1272.283598]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1272.284212]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1272.284911]  do_syscall_64+0x3f/0x90
[ 1272.285428]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1272.286120] RIP: 0033:0x7f05858feb19
[ 1272.286639] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1272.288882] RSP: 002b:00007f0582e74188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1272.289852] RAX: ffffffffffffffda RBX: 00007f0585a11f60 RCX: 00007f05858feb19
[ 1272.290770] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1272.291674] RBP: 00007f0582e741d0 R08: 0000000020000240 R09: 0000000000000000
[ 1272.292577] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1272.293471] R13: 00007ffd3f25a19f R14: 00007f0582e74300 R15: 0000000000022000
[ 1272.294431]  </TASK>
05:10:32 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x700, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:10:32 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x40, 0x100)

05:10:32 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xa00, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1272.310825] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1272.311827] CPU: 0 PID: 7885 Comm: syz-executor.5 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1272.312864] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1272.313855] Call Trace:
[ 1272.314187]  <TASK>
[ 1272.314498]  dump_stack_lvl+0xc1/0xf0
[ 1272.315008]  kmem_cache_create_usercopy+0x12b/0x340
[ 1272.315667]  p9_client_create+0xd0b/0x1260
[ 1272.316233]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1272.316902]  ? __pfx_p9_client_create+0x10/0x10
[ 1272.317504]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1272.318144]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1272.318756]  ? __kasan_kmalloc+0x7f/0x90
[ 1272.319296]  ? __raw_spin_lock_init+0x3a/0x110
[ 1272.319900]  v9fs_session_init+0x1e0/0x17b0
[ 1272.320485]  ? __pfx_lock_release+0x10/0x10
[ 1272.321043]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1272.321661]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1272.322380]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1272.323028]  ? v9fs_mount+0x9e/0xbd0
[ 1272.323582]  v9fs_mount+0xbd/0xbd0
[ 1272.324073]  ? legacy_init_fs_context+0x44/0xe0
[ 1272.324697]  ? __pfx_v9fs_mount+0x10/0x10
[ 1272.325247]  ? cap_capable+0x1be/0x220
[ 1272.325809]  ? __pfx_v9fs_mount+0x10/0x10
[ 1272.326355]  legacy_get_tree+0x109/0x220
[ 1272.326935]  vfs_get_tree+0x92/0x360
[ 1272.327439]  path_mount+0x133c/0x1e50
[ 1272.327988]  ? kasan_quarantine_put+0x81/0x1d0
[ 1272.328587]  ? __pfx_path_mount+0x10/0x10
[ 1272.329152]  ? putname+0x102/0x140
[ 1272.329626]  ? kmem_cache_free+0xff/0x4a0
[ 1272.330199]  ? putname+0x102/0x140
[ 1272.330716]  __x64_sys_mount+0x286/0x310
[ 1272.331271]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1272.331869]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1272.332593]  do_syscall_64+0x3f/0x90
[ 1272.333086]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1272.333773] RIP: 0033:0x7f05858feb19
[ 1272.334250] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1272.336519] RSP: 002b:00007f0582e74188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1272.337456] RAX: ffffffffffffffda RBX: 00007f0585a11f60 RCX: 00007f05858feb19
[ 1272.338388] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1272.339286] RBP: 00007f0582e741d0 R08: 0000000020000240 R09: 0000000000000000
[ 1272.340158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1272.341035] R13: 00007ffd3f25a19f R14: 00007f0582e74300 R15: 0000000000022000
[ 1272.341961]  </TASK>
[ 1272.344694] FAULT_INJECTION: forcing a failure.
[ 1272.344694] name failslab, interval 1, probability 0, space 0, times 0
[ 1272.346113] CPU: 0 PID: 7884 Comm: syz-executor.3 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1272.347120] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1272.348110] Call Trace:
[ 1272.348454]  <TASK>
[ 1272.348764]  dump_stack_lvl+0xc1/0xf0
[ 1272.349279]  should_fail_ex+0x4b4/0x5b0
[ 1272.349836]  ? __kernfs_new_node+0xd4/0x870
[ 1272.350391]  should_failslab+0x9/0x20
[ 1272.350928]  kmem_cache_alloc+0x5a/0x390
[ 1272.351478]  __kernfs_new_node+0xd4/0x870
[ 1272.352025]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1272.352655]  ? down_write+0x11a/0x1f0
[ 1272.353180]  ? up_write+0x196/0x510
[ 1272.353686]  kernfs_new_node+0x97/0x120
[ 1272.354222]  __kernfs_create_file+0x55/0x350
[ 1272.354843]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1272.355457]  ? __pfx_slab_attr_store+0x10/0x10
[ 1272.356083]  internal_create_group+0x322/0xb90
[ 1272.356701]  ? __pfx_internal_create_group+0x10/0x10
[ 1272.357354]  ? up_write+0x196/0x510
[ 1272.357875]  sysfs_slab_add+0x18e/0x220
[ 1272.358408]  __kmem_cache_create+0x1fe/0x610
[ 1272.359024]  kmem_cache_create_usercopy+0x218/0x340
[ 1272.359688]  p9_client_create+0xd0b/0x1260
[ 1272.360251]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1272.360917]  ? __pfx_p9_client_create+0x10/0x10
[ 1272.361528]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1272.362167]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1272.362779]  ? __kasan_kmalloc+0x7f/0x90
[ 1272.363321]  ? __raw_spin_lock_init+0x3a/0x110
[ 1272.363929]  v9fs_session_init+0x1e0/0x17b0
[ 1272.364519]  ? __pfx_lock_release+0x10/0x10
[ 1272.365086]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1272.365709]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1272.366381]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1272.367034]  ? v9fs_mount+0x9e/0xbd0
[ 1272.367572]  v9fs_mount+0xbd/0xbd0
[ 1272.368053]  ? legacy_init_fs_context+0x44/0xe0
[ 1272.368646]  ? __pfx_v9fs_mount+0x10/0x10
[ 1272.369200]  ? cap_capable+0x1be/0x220
[ 1272.369748]  ? __pfx_v9fs_mount+0x10/0x10
[ 1272.370305]  legacy_get_tree+0x109/0x220
[ 1272.370878]  vfs_get_tree+0x92/0x360
[ 1272.371391]  path_mount+0x133c/0x1e50
[ 1272.371914]  ? kasan_quarantine_put+0x81/0x1d0
[ 1272.372517]  ? __pfx_path_mount+0x10/0x10
[ 1272.373062]  ? putname+0x102/0x140
[ 1272.373538]  ? kmem_cache_free+0xff/0x4a0
[ 1272.374089]  ? putname+0x102/0x140
[ 1272.374601]  __x64_sys_mount+0x286/0x310
[ 1272.375125]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1272.375718]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1272.376396]  do_syscall_64+0x3f/0x90
[ 1272.376896]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1272.377563] RIP: 0033:0x7ff349defb19
[ 1272.378035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1272.380196] RSP: 002b:00007ff347365188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1272.381114] RAX: ffffffffffffffda RBX: 00007ff349f02f60 RCX: 00007ff349defb19
[ 1272.381994] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1272.382891] RBP: 00007ff3473651d0 R08: 0000000020000240 R09: 0000000000000000
[ 1272.383746] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1272.384612] R13: 00007fffc306ac3f R14: 00007ff347365300 R15: 0000000000022000
[ 1272.385518]  </TASK>
05:10:32 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 85)

[ 1272.389566] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1272.390683] CPU: 0 PID: 7884 Comm: syz-executor.3 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1272.391678] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1272.392669] Call Trace:
[ 1272.393000]  <TASK>
[ 1272.393307]  dump_stack_lvl+0xc1/0xf0
[ 1272.393814]  kmem_cache_create_usercopy+0x12b/0x340
[ 1272.394495]  p9_client_create+0xd0b/0x1260
[ 1272.395063]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1272.395732]  ? __pfx_p9_client_create+0x10/0x10
[ 1272.396347]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1272.396990]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1272.397594]  ? __kasan_kmalloc+0x7f/0x90
[ 1272.398147]  ? __raw_spin_lock_init+0x3a/0x110
[ 1272.398780]  v9fs_session_init+0x1e0/0x17b0
[ 1272.399383]  ? __pfx_lock_release+0x10/0x10
[ 1272.399942]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1272.400576]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1272.401248]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1272.401892]  ? v9fs_mount+0x9e/0xbd0
[ 1272.402437]  v9fs_mount+0xbd/0xbd0
[ 1272.402940]  ? legacy_init_fs_context+0x44/0xe0
[ 1272.403550]  ? __pfx_v9fs_mount+0x10/0x10
[ 1272.404108]  ? cap_capable+0x1be/0x220
[ 1272.404656]  ? __pfx_v9fs_mount+0x10/0x10
[ 1272.405210]  legacy_get_tree+0x109/0x220
[ 1272.405775]  vfs_get_tree+0x92/0x360
[ 1272.406293]  path_mount+0x133c/0x1e50
[ 1272.406824]  ? kasan_quarantine_put+0x81/0x1d0
[ 1272.407437]  ? __pfx_path_mount+0x10/0x10
[ 1272.407984]  ? putname+0x102/0x140
[ 1272.408468]  ? kmem_cache_free+0xff/0x4a0
[ 1272.409017]  ? putname+0x102/0x140
[ 1272.409533]  __x64_sys_mount+0x286/0x310
[ 1272.410051]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1272.410675]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1272.411343]  do_syscall_64+0x3f/0x90
[ 1272.411852]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1272.412510] RIP: 0033:0x7ff349defb19
[ 1272.412998] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1272.415132] RSP: 002b:00007ff347365188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1272.416089] RAX: ffffffffffffffda RBX: 00007ff349f02f60 RCX: 00007ff349defb19
[ 1272.416969] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1272.417851] RBP: 00007ff3473651d0 R08: 0000000020000240 R09: 0000000000000000
[ 1272.418753] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1272.419660] R13: 00007fffc306ac3f R14: 00007ff347365300 R15: 0000000000022000
[ 1272.420595]  </TASK>
05:10:32 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000500, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

[ 1272.490931] FAULT_INJECTION: forcing a failure.
[ 1272.490931] name failslab, interval 1, probability 0, space 0, times 0
[ 1272.492388] CPU: 1 PID: 7898 Comm: syz-executor.6 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1272.493373] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1272.494349] Call Trace:
[ 1272.494663]  <TASK>
[ 1272.494940]  dump_stack_lvl+0xc1/0xf0
[ 1272.495426]  should_fail_ex+0x4b4/0x5b0
[ 1272.495929]  ? __kernfs_new_node+0xd4/0x870
[ 1272.496558]  should_failslab+0x9/0x20
[ 1272.497172]  kmem_cache_alloc+0x5a/0x390
[ 1272.497782]  __kernfs_new_node+0xd4/0x870
05:10:32 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 65)

[ 1272.498599]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1272.499263]  ? down_write+0x11a/0x1f0
[ 1272.499764]  ? up_write+0x196/0x510
[ 1272.500285]  kernfs_new_node+0x97/0x120
[ 1272.500800]  __kernfs_create_file+0x55/0x350
[ 1272.501406]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1272.502133]  ? __pfx_slab_attr_store+0x10/0x10
[ 1272.502817]  internal_create_group+0x322/0xb90
[ 1272.503521]  ? __pfx_internal_create_group+0x10/0x10
[ 1272.504283]  ? up_write+0x196/0x510
[ 1272.504855]  sysfs_slab_add+0x18e/0x220
[ 1272.505377]  __kmem_cache_create+0x1fe/0x610
[ 1272.505971]  kmem_cache_create_usercopy+0x218/0x340
[ 1272.506583]  p9_client_create+0xd0b/0x1260
[ 1272.507094]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1272.507747]  ? __pfx_p9_client_create+0x10/0x10
[ 1272.508351]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1272.508986]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1272.509606]  ? __kasan_kmalloc+0x7f/0x90
[ 1272.510144]  ? __raw_spin_lock_init+0x3a/0x110
[ 1272.510773]  v9fs_session_init+0x1e0/0x17b0
[ 1272.511351]  ? __pfx_lock_release+0x10/0x10
[ 1272.511905]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1272.512504]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1272.513176]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1272.513813]  ? v9fs_mount+0x9e/0xbd0
[ 1272.514338]  v9fs_mount+0xbd/0xbd0
[ 1272.514810]  ? legacy_init_fs_context+0x44/0xe0
[ 1272.515401]  ? __pfx_v9fs_mount+0x10/0x10
[ 1272.515951]  ? cap_capable+0x1be/0x220
[ 1272.516477]  ? __pfx_v9fs_mount+0x10/0x10
[ 1272.517023]  legacy_get_tree+0x109/0x220
[ 1272.517571]  vfs_get_tree+0x92/0x360
[ 1272.518058]  path_mount+0x133c/0x1e50
[ 1272.518593]  ? kasan_quarantine_put+0x81/0x1d0
[ 1272.519200]  ? __pfx_path_mount+0x10/0x10
[ 1272.519759]  ? putname+0x102/0x140
[ 1272.520249]  ? kmem_cache_free+0xff/0x4a0
[ 1272.520818]  ? putname+0x102/0x140
[ 1272.521308]  __x64_sys_mount+0x286/0x310
[ 1272.521840]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1272.522426]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1272.523099]  do_syscall_64+0x3f/0x90
[ 1272.523595]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1272.524270] RIP: 0033:0x7fdb13b24b19
[ 1272.524743] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1272.526966] RSP: 002b:00007fdb1109a188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1272.527920] RAX: ffffffffffffffda RBX: 00007fdb13c37f60 RCX: 00007fdb13b24b19
[ 1272.528808] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1272.529697] RBP: 00007fdb1109a1d0 R08: 0000000020000240 R09: 0000000000000000
[ 1272.530585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1272.531466] R13: 00007fff73fffccf R14: 00007fdb1109a300 R15: 0000000000022000
[ 1272.532373]  </TASK>
[ 1272.587454] 9pnet_virtio: no channels available for device 
[ 1272.602611] 9pnet_virtio: no channels available for device 
[ 1272.607545] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1272.608505] CPU: 0 PID: 7898 Comm: syz-executor.6 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1272.609527] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1272.610564] Call Trace:
[ 1272.610909]  <TASK>
[ 1272.611223]  dump_stack_lvl+0xc1/0xf0
[ 1272.611757]  kmem_cache_create_usercopy+0x12b/0x340
[ 1272.612441]  p9_client_create+0xd0b/0x1260
[ 1272.613017]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1272.613705]  ? __pfx_p9_client_create+0x10/0x10
[ 1272.614329]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1272.615082]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1272.615722]  ? __kasan_kmalloc+0x7f/0x90
[ 1272.616282]  ? __raw_spin_lock_init+0x3a/0x110
[ 1272.616922]  v9fs_session_init+0x1e0/0x17b0
[ 1272.617524]  ? __pfx_lock_release+0x10/0x10
[ 1272.618107]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1272.618763]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1272.619468]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1272.620126]  ? v9fs_mount+0x9e/0xbd0
[ 1272.620680]  v9fs_mount+0xbd/0xbd0
[ 1272.621183]  ? legacy_init_fs_context+0x44/0xe0
[ 1272.621800]  ? __pfx_v9fs_mount+0x10/0x10
[ 1272.622369]  ? cap_capable+0x1be/0x220
[ 1272.622938]  ? __pfx_v9fs_mount+0x10/0x10
[ 1272.623503]  legacy_get_tree+0x109/0x220
[ 1272.624069]  vfs_get_tree+0x92/0x360
[ 1272.624596]  path_mount+0x133c/0x1e50
[ 1272.625142]  ? kasan_quarantine_put+0x81/0x1d0
[ 1272.625768]  ? __pfx_path_mount+0x10/0x10
[ 1272.626334]  ? putname+0x102/0x140
[ 1272.626842]  ? kmem_cache_free+0xff/0x4a0
[ 1272.627408]  ? putname+0x102/0x140
[ 1272.627925]  __x64_sys_mount+0x286/0x310
[ 1272.628473]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1272.629080]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1272.629788]  do_syscall_64+0x3f/0x90
[ 1272.630302]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1272.630996] RIP: 0033:0x7fdb13b24b19
[ 1272.631481] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1272.633704] RSP: 002b:00007fdb1109a188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1272.634686] RAX: ffffffffffffffda RBX: 00007fdb13c37f60 RCX: 00007fdb13b24b19
[ 1272.635594] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1272.636506] RBP: 00007fdb1109a1d0 R08: 0000000020000240 R09: 0000000000000000
[ 1272.637405] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1272.638300] R13: 00007fff73fffccf R14: 00007fdb1109a300 R15: 0000000000022000
[ 1272.639261]  </TASK>
05:10:48 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 91)

05:10:48 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xb00, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:10:48 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 86)

05:10:48 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 66)

05:10:48 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x900, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:10:48 executing program 1:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
ioctl$FITRIM(r1, 0xc0185879, &(0x7f00000001c0)={0xaa, 0x4, 0x2})
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
ioctl$AUTOFS_IOC_PROTOVER(r0, 0x80049363, &(0x7f0000000040))
perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x1, 0x89, 0x40, 0x3f, 0x0, 0x9, 0x8048, 0x16, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, @perf_config_ext={0xfffffffffffffffa, 0x100000000}, 0x3219, 0x400, 0x5, 0x7, 0x286e7f6e, 0x37a5c820, 0x6, 0x0, 0x80, 0x0, 0x9}, 0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0xb)

05:10:48 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 82)

05:10:48 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000600, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

[ 1288.690904] 9pnet_virtio: no channels available for device 
[ 1288.697018] 9pnet_virtio: no channels available for device 
[ 1288.738850] FAULT_INJECTION: forcing a failure.
[ 1288.738850] name failslab, interval 1, probability 0, space 0, times 0
[ 1288.740488] CPU: 1 PID: 7916 Comm: syz-executor.5 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1288.741828] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1288.743148] Call Trace:
[ 1288.743583]  <TASK>
[ 1288.744007]  dump_stack_lvl+0xc1/0xf0
[ 1288.744709]  should_fail_ex+0x4b4/0x5b0
[ 1288.745440]  ? __kernfs_new_node+0xd4/0x870
[ 1288.746199]  should_failslab+0x9/0x20
[ 1288.746933]  kmem_cache_alloc+0x5a/0x390
05:10:48 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000700, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

[ 1288.747672]  __kernfs_new_node+0xd4/0x870
[ 1288.748651]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1288.749490]  ? down_write+0x11a/0x1f0
[ 1288.750178]  ? up_write+0x196/0x510
[ 1288.750813]  kernfs_new_node+0x97/0x120
[ 1288.751479]  __kernfs_create_file+0x55/0x350
[ 1288.752212]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1288.752952]  ? __pfx_slab_attr_store+0x10/0x10
[ 1288.753707]  internal_create_group+0x322/0xb90
[ 1288.754452]  ? __pfx_internal_create_group+0x10/0x10
[ 1288.755292]  ? up_write+0x196/0x510
[ 1288.755920]  sysfs_slab_add+0x18e/0x220
[ 1288.756559]  __kmem_cache_create+0x1fe/0x610
[ 1288.757280]  kmem_cache_create_usercopy+0x218/0x340
[ 1288.758100]  p9_client_create+0xd0b/0x1260
[ 1288.758804]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1288.759634]  ? __pfx_p9_client_create+0x10/0x10
[ 1288.760377]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1288.761155]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1288.761940]  ? __kasan_kmalloc+0x7f/0x90
[ 1288.762624]  ? __raw_spin_lock_init+0x3a/0x110
[ 1288.763389]  v9fs_session_init+0x1e0/0x17b0
[ 1288.764089]  ? __pfx_lock_release+0x10/0x10
[ 1288.764782]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1288.765558]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1288.766395]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1288.767170]  ? v9fs_mount+0x9e/0xbd0
[ 1288.767753]  v9fs_mount+0xbd/0xbd0
[ 1288.768270]  ? legacy_init_fs_context+0x44/0xe0
[ 1288.768905]  ? __pfx_v9fs_mount+0x10/0x10
[ 1288.769496]  ? cap_capable+0x1be/0x220
[ 1288.770066]  ? __pfx_v9fs_mount+0x10/0x10
[ 1288.770641]  legacy_get_tree+0x109/0x220
[ 1288.771242]  vfs_get_tree+0x92/0x360
[ 1288.771797]  path_mount+0x133c/0x1e50
[ 1288.772347]  ? kasan_quarantine_put+0x81/0x1d0
[ 1288.772974]  ? __pfx_path_mount+0x10/0x10
[ 1288.773563]  ? putname+0x102/0x140
[ 1288.774070]  ? kmem_cache_free+0xff/0x4a0
[ 1288.774646]  ? putname+0x102/0x140
[ 1288.775210]  __x64_sys_mount+0x286/0x310
[ 1288.775797]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1288.776450]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1288.777172]  do_syscall_64+0x3f/0x90
[ 1288.777740]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1288.778454] RIP: 0033:0x7f05858feb19
[ 1288.778985] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1288.781317] RSP: 002b:00007f0582e74188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1288.782356] RAX: ffffffffffffffda RBX: 00007f0585a11f60 RCX: 00007f05858feb19
[ 1288.783294] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1288.784265] RBP: 00007f0582e741d0 R08: 0000000020000240 R09: 0000000000000000
[ 1288.785209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1288.786182] R13: 00007ffd3f25a19f R14: 00007f0582e74300 R15: 0000000000022000
[ 1288.787205]  </TASK>
[ 1288.879925] 9pnet_virtio: no channels available for device 
[ 1288.886086] 9pnet_virtio: no channels available for device 
[ 1288.898140] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1288.899225] CPU: 1 PID: 7916 Comm: syz-executor.5 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1288.900319] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1288.901414] Call Trace:
[ 1288.901775]  <TASK>
[ 1288.902099]  dump_stack_lvl+0xc1/0xf0
[ 1288.902659]  kmem_cache_create_usercopy+0x12b/0x340
[ 1288.903400]  p9_client_create+0xd0b/0x1260
[ 1288.904004]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1288.904715]  ? __pfx_p9_client_create+0x10/0x10
[ 1288.905382]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1288.906068]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1288.906745]  ? __kasan_kmalloc+0x7f/0x90
[ 1288.907328]  ? __raw_spin_lock_init+0x3a/0x110
[ 1288.907986]  v9fs_session_init+0x1e0/0x17b0
[ 1288.908600]  ? __pfx_lock_release+0x10/0x10
[ 1288.909214]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1288.909878]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1288.910617]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1288.911315]  ? v9fs_mount+0x9e/0xbd0
[ 1288.911884]  v9fs_mount+0xbd/0xbd0
[ 1288.912406]  ? legacy_init_fs_context+0x44/0xe0
[ 1288.913055]  ? __pfx_v9fs_mount+0x10/0x10
[ 1288.913639]  ? cap_capable+0x1be/0x220
[ 1288.914220]  ? __pfx_v9fs_mount+0x10/0x10
[ 1288.914836]  legacy_get_tree+0x109/0x220
[ 1288.915421]  vfs_get_tree+0x92/0x360
[ 1288.915970]  path_mount+0x133c/0x1e50
[ 1288.916526]  ? kasan_quarantine_put+0x81/0x1d0
[ 1288.917189]  ? __pfx_path_mount+0x10/0x10
[ 1288.917777]  ? putname+0x102/0x140
[ 1288.918295]  ? kmem_cache_free+0xff/0x4a0
[ 1288.918886]  ? putname+0x102/0x140
[ 1288.919419]  __x64_sys_mount+0x286/0x310
[ 1288.919977]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1288.920628]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1288.921349]  do_syscall_64+0x3f/0x90
[ 1288.921898]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1288.922616] RIP: 0033:0x7f05858feb19
[ 1288.923152] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1288.925524] RSP: 002b:00007f0582e74188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1288.926558] RAX: ffffffffffffffda RBX: 00007f0585a11f60 RCX: 00007f05858feb19
[ 1288.927516] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1288.928489] RBP: 00007f0582e741d0 R08: 0000000020000240 R09: 0000000000000000
[ 1288.929460] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1288.930423] R13: 00007ffd3f25a19f R14: 00007f0582e74300 R15: 0000000000022000
[ 1288.931436]  </TASK>
[ 1288.935114] FAULT_INJECTION: forcing a failure.
[ 1288.935114] name failslab, interval 1, probability 0, space 0, times 0
[ 1288.937096] CPU: 0 PID: 7928 Comm: syz-executor.6 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1288.938292] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1288.939449] Call Trace:
[ 1288.939852]  <TASK>
[ 1288.940207]  dump_stack_lvl+0xc1/0xf0
[ 1288.940822]  should_fail_ex+0x4b4/0x5b0
[ 1288.941410]  ? __kernfs_new_node+0xd4/0x870
[ 1288.941981]  should_failslab+0x9/0x20
[ 1288.942577]  kmem_cache_alloc+0x5a/0x390
[ 1288.943259]  __kernfs_new_node+0xd4/0x870
[ 1288.943914]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1288.944629]  ? down_write+0x11a/0x1f0
[ 1288.945221]  ? up_write+0x196/0x510
[ 1288.945730]  kernfs_new_node+0x97/0x120
[ 1288.946325]  __kernfs_create_file+0x55/0x350
[ 1288.947024]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1288.947749]  ? __pfx_slab_attr_store+0x10/0x10
[ 1288.948448]  internal_create_group+0x322/0xb90
[ 1288.949150]  ? __pfx_internal_create_group+0x10/0x10
[ 1288.949922]  ? up_write+0x196/0x510
[ 1288.950452]  sysfs_slab_add+0x18e/0x220
[ 1288.950992]  __kmem_cache_create+0x1fe/0x610
[ 1288.951668]  kmem_cache_create_usercopy+0x218/0x340
[ 1288.952446]  p9_client_create+0xd0b/0x1260
[ 1288.953108]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1288.953927]  ? __pfx_p9_client_create+0x10/0x10
[ 1288.954547]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1288.955252]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1288.955986]  ? __kasan_kmalloc+0x7f/0x90
[ 1288.956619]  ? __raw_spin_lock_init+0x3a/0x110
[ 1288.957352]  v9fs_session_init+0x1e0/0x17b0
[ 1288.958057]  ? __pfx_lock_release+0x10/0x10
[ 1288.958734]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1288.959516]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1288.960337]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1288.961112]  ? v9fs_mount+0x9e/0xbd0
[ 1288.961759]  v9fs_mount+0xbd/0xbd0
[ 1288.962306]  ? legacy_init_fs_context+0x44/0xe0
[ 1288.962925]  ? __pfx_v9fs_mount+0x10/0x10
[ 1288.963574]  ? cap_capable+0x1be/0x220
[ 1288.964220]  ? __pfx_v9fs_mount+0x10/0x10
[ 1288.964911]  legacy_get_tree+0x109/0x220
[ 1288.965493]  vfs_get_tree+0x92/0x360
[ 1288.966014]  path_mount+0x133c/0x1e50
[ 1288.966543]  ? kasan_quarantine_put+0x81/0x1d0
[ 1288.967188]  ? __pfx_path_mount+0x10/0x10
[ 1288.967725]  ? putname+0x102/0x140
[ 1288.968213]  ? kmem_cache_free+0xff/0x4a0
[ 1288.968759]  ? putname+0x102/0x140
[ 1288.969266]  __x64_sys_mount+0x286/0x310
[ 1288.969801]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1288.970424]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1288.971134]  do_syscall_64+0x3f/0x90
[ 1288.971657]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1288.972353] RIP: 0033:0x7fdb13b24b19
[ 1288.972862] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1288.975147] RSP: 002b:00007fdb1109a188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1288.976126] RAX: ffffffffffffffda RBX: 00007fdb13c37f60 RCX: 00007fdb13b24b19
[ 1288.977048] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1288.977959] RBP: 00007fdb1109a1d0 R08: 0000000020000240 R09: 0000000000000000
[ 1288.978878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1288.979792] R13: 00007fff73fffccf R14: 00007fdb1109a300 R15: 0000000000022000
[ 1288.980769]  </TASK>
[ 1289.053300] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1289.054252] CPU: 0 PID: 7928 Comm: syz-executor.6 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1289.055255] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1289.056254] Call Trace:
[ 1289.056600]  <TASK>
[ 1289.056907]  dump_stack_lvl+0xc1/0xf0
[ 1289.057422]  kmem_cache_create_usercopy+0x12b/0x340
[ 1289.058085]  p9_client_create+0xd0b/0x1260
[ 1289.058676]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1289.059366]  ? __pfx_p9_client_create+0x10/0x10
[ 1289.060072]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1289.060816]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1289.061494]  ? __kasan_kmalloc+0x7f/0x90
[ 1289.062040]  ? __raw_spin_lock_init+0x3a/0x110
[ 1289.062655]  v9fs_session_init+0x1e0/0x17b0
[ 1289.063264]  ? __pfx_lock_release+0x10/0x10
[ 1289.063922]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1289.064632]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1289.065341]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1289.065992]  ? v9fs_mount+0x9e/0xbd0
[ 1289.066548]  v9fs_mount+0xbd/0xbd0
[ 1289.067054]  ? legacy_init_fs_context+0x44/0xe0
[ 1289.067692]  ? __pfx_v9fs_mount+0x10/0x10
[ 1289.068267]  ? cap_capable+0x1be/0x220
[ 1289.068823]  ? __pfx_v9fs_mount+0x10/0x10
[ 1289.069370]  legacy_get_tree+0x109/0x220
[ 1289.069946]  vfs_get_tree+0x92/0x360
[ 1289.070466]  path_mount+0x133c/0x1e50
[ 1289.071017]  ? kasan_quarantine_put+0x81/0x1d0
[ 1289.071632]  ? __pfx_path_mount+0x10/0x10
[ 1289.072187]  ? putname+0x102/0x140
[ 1289.072685]  ? kmem_cache_free+0xff/0x4a0
[ 1289.073249]  ? putname+0x102/0x140
[ 1289.073764]  __x64_sys_mount+0x286/0x310
[ 1289.074294]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1289.074930]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1289.075627]  do_syscall_64+0x3f/0x90
[ 1289.076141]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1289.076828] RIP: 0033:0x7fdb13b24b19
[ 1289.077314] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1289.079579] RSP: 002b:00007fdb1109a188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1289.080545] RAX: ffffffffffffffda RBX: 00007fdb13c37f60 RCX: 00007fdb13b24b19
[ 1289.081448] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1289.082347] RBP: 00007fdb1109a1d0 R08: 0000000020000240 R09: 0000000000000000
[ 1289.083265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1289.084161] R13: 00007fff73fffccf R14: 00007fdb1109a300 R15: 0000000000022000
[ 1289.085113]  </TASK>
05:11:02 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xa00, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:11:02 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 87)

05:11:02 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 92)

05:11:02 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = getgid()
r1 = getgid()
r2 = getgid()
setresgid(r0, r1, r2)
chown(&(0x7f0000000040)='./file0\x00', 0xee00, r1)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:11:02 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x1020, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:11:02 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000fe0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:11:02 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 67)

05:11:02 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 83)

[ 1302.214152] FAULT_INJECTION: forcing a failure.
[ 1302.214152] name failslab, interval 1, probability 0, space 0, times 0
[ 1302.215024] CPU: 1 PID: 7940 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1302.215558] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1302.216092] Call Trace:
[ 1302.216272]  <TASK>
[ 1302.216434]  dump_stack_lvl+0xc1/0xf0
[ 1302.216714]  should_fail_ex+0x4b4/0x5b0
[ 1302.216999]  ? __kernfs_new_node+0xd4/0x870
[ 1302.217294]  should_failslab+0x9/0x20
[ 1302.217559]  kmem_cache_alloc+0x5a/0x390
[ 1302.217847]  __kernfs_new_node+0xd4/0x870
[ 1302.218147]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1302.218475]  ? down_write+0x11a/0x1f0
[ 1302.218753]  ? up_write+0x196/0x510
[ 1302.219027]  kernfs_new_node+0x97/0x120
[ 1302.219313]  __kernfs_create_file+0x55/0x350
[ 1302.219630]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1302.219947]  ? __pfx_slab_attr_store+0x10/0x10
[ 1302.220266]  internal_create_group+0x322/0xb90
[ 1302.220586]  ? __pfx_internal_create_group+0x10/0x10
[ 1302.220928]  ? up_write+0x196/0x510
[ 1302.221190]  sysfs_slab_add+0x18e/0x220
[ 1302.221463]  __kmem_cache_create+0x1fe/0x610
[ 1302.221775]  kmem_cache_create_usercopy+0x218/0x340
[ 1302.222125]  p9_client_create+0xd0b/0x1260
[ 1302.222418]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1302.222775]  ? __pfx_p9_client_create+0x10/0x10
[ 1302.223107]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1302.223464]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1302.223808]  ? __kasan_kmalloc+0x7f/0x90
[ 1302.224114]  ? __raw_spin_lock_init+0x3a/0x110
[ 1302.224458]  v9fs_session_init+0x1e0/0x17b0
[ 1302.224777]  ? __pfx_lock_release+0x10/0x10
[ 1302.225093]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1302.225447]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1302.225828]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1302.226191]  ? v9fs_mount+0x9e/0xbd0
[ 1302.226488]  v9fs_mount+0xbd/0xbd0
[ 1302.226754]  ? legacy_init_fs_context+0x44/0xe0
[ 1302.227100]  ? __pfx_v9fs_mount+0x10/0x10
[ 1302.227415]  ? cap_capable+0x1be/0x220
[ 1302.227723]  ? __pfx_v9fs_mount+0x10/0x10
[ 1302.228033]  legacy_get_tree+0x109/0x220
[ 1302.228341]  vfs_get_tree+0x92/0x360
[ 1302.228632]  path_mount+0x133c/0x1e50
[ 1302.228927]  ? kasan_quarantine_put+0x81/0x1d0
[ 1302.229271]  ? __pfx_path_mount+0x10/0x10
[ 1302.229581]  ? putname+0x102/0x140
[ 1302.229855]  ? kmem_cache_free+0xff/0x4a0
[ 1302.230163]  ? putname+0x102/0x140
[ 1302.230443]  __x64_sys_mount+0x286/0x310
[ 1302.230739]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1302.231080]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1302.231465]  do_syscall_64+0x3f/0x90
[ 1302.231749]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1302.232124] RIP: 0033:0x7fcf62391b19
[ 1302.232398] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1302.233665] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1302.234209] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1302.234711] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1302.235213] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1302.235723] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1302.236220] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1302.236739]  </TASK>
[ 1302.270601] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1302.271113] CPU: 1 PID: 7940 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1302.271656] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1302.272194] Call Trace:
[ 1302.272371]  <TASK>
[ 1302.272531]  dump_stack_lvl+0xc1/0xf0
[ 1302.272802]  kmem_cache_create_usercopy+0x12b/0x340
[ 1302.273146]  p9_client_create+0xd0b/0x1260
[ 1302.273439]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1302.273791]  ? __pfx_p9_client_create+0x10/0x10
[ 1302.274118]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1302.274453]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1302.274771]  ? __kasan_kmalloc+0x7f/0x90
[ 1302.275084]  ? __raw_spin_lock_init+0x3a/0x110
[ 1302.275400]  v9fs_session_init+0x1e0/0x17b0
[ 1302.275709]  ? __pfx_lock_release+0x10/0x10
[ 1302.276010]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1302.276338]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1302.276687]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1302.277021]  ? v9fs_mount+0x9e/0xbd0
[ 1302.277294]  v9fs_mount+0xbd/0xbd0
[ 1302.277545]  ? legacy_init_fs_context+0x44/0xe0
[ 1302.277858]  ? __pfx_v9fs_mount+0x10/0x10
[ 1302.278148]  ? cap_capable+0x1be/0x220
[ 1302.278429]  ? __pfx_v9fs_mount+0x10/0x10
[ 1302.278719]  legacy_get_tree+0x109/0x220
[ 1302.279014]  vfs_get_tree+0x92/0x360
[ 1302.279290]  path_mount+0x133c/0x1e50
[ 1302.279588]  ? kasan_quarantine_put+0x81/0x1d0
[ 1302.279932]  ? __pfx_path_mount+0x10/0x10
[ 1302.280235]  ? putname+0x102/0x140
[ 1302.280500]  ? kmem_cache_free+0xff/0x4a0
[ 1302.280811]  ? putname+0x102/0x140
[ 1302.281086]  __x64_sys_mount+0x286/0x310
[ 1302.281367]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1302.281711]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1302.282098]  do_syscall_64+0x3f/0x90
[ 1302.282377]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1302.282731] RIP: 0033:0x7fcf62391b19
[ 1302.283004] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1302.284265] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1302.284795] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1302.285301] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1302.285797] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1302.286297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1302.286809] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1302.287343]  </TASK>
[ 1302.288391] FAULT_INJECTION: forcing a failure.
[ 1302.288391] name failslab, interval 1, probability 0, space 0, times 0
[ 1302.289927] CPU: 0 PID: 7946 Comm: syz-executor.3 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1302.290992] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1302.292049] Call Trace:
[ 1302.292409]  <TASK>
[ 1302.292737]  dump_stack_lvl+0xc1/0xf0
[ 1302.293290]  should_fail_ex+0x4b4/0x5b0
[ 1302.293877]  ? __kernfs_new_node+0xd4/0x870
[ 1302.294478]  should_failslab+0x9/0x20
[ 1302.295045]  kmem_cache_alloc+0x5a/0x390
[ 1302.295635]  __kernfs_new_node+0xd4/0x870
[ 1302.296227]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1302.296902]  ? down_write+0x11a/0x1f0
[ 1302.297452]  ? up_write+0x196/0x510
[ 1302.297990]  kernfs_new_node+0x97/0x120
[ 1302.298568]  __kernfs_create_file+0x55/0x350
[ 1302.299215]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1302.299857]  ? __pfx_slab_attr_store+0x10/0x10
[ 1302.300501]  internal_create_group+0x322/0xb90
[ 1302.301158]  ? __pfx_internal_create_group+0x10/0x10
[ 1302.301863]  ? up_write+0x196/0x510
[ 1302.302423]  sysfs_slab_add+0x18e/0x220
[ 1302.302992]  __kmem_cache_create+0x1fe/0x610
[ 1302.303625]  kmem_cache_create_usercopy+0x218/0x340
[ 1302.304326]  p9_client_create+0xd0b/0x1260
[ 1302.304935]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1302.305631]  ? __pfx_p9_client_create+0x10/0x10
[ 1302.306268]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1302.306958]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1302.307597]  ? __kasan_kmalloc+0x7f/0x90
[ 1302.308187]  ? __raw_spin_lock_init+0x3a/0x110
[ 1302.308843]  v9fs_session_init+0x1e0/0x17b0
[ 1302.309471]  ? __pfx_lock_release+0x10/0x10
[ 1302.310074]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1302.310742]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1302.311454]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1302.312138]  ? v9fs_mount+0x9e/0xbd0
[ 1302.312713]  v9fs_mount+0xbd/0xbd0
[ 1302.313229]  ? legacy_init_fs_context+0x44/0xe0
[ 1302.313870]  ? __pfx_v9fs_mount+0x10/0x10
[ 1302.314468]  ? cap_capable+0x1be/0x220
[ 1302.315055]  ? __pfx_v9fs_mount+0x10/0x10
[ 1302.315646]  legacy_get_tree+0x109/0x220
[ 1302.316233]  vfs_get_tree+0x92/0x360
[ 1302.316778]  path_mount+0x133c/0x1e50
[ 1302.317346]  ? kasan_quarantine_put+0x81/0x1d0
[ 1302.317988]  ? __pfx_path_mount+0x10/0x10
[ 1302.318567]  ? putname+0x102/0x140
[ 1302.319097]  ? kmem_cache_free+0xff/0x4a0
[ 1302.319685]  ? putname+0x102/0x140
[ 1302.320218]  __x64_sys_mount+0x286/0x310
[ 1302.320781]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1302.321418]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1302.322148]  do_syscall_64+0x3f/0x90
[ 1302.322688]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1302.323389] RIP: 0033:0x7ff349defb19
[ 1302.323899] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1302.326184] RSP: 002b:00007ff347365188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1302.327189] RAX: ffffffffffffffda RBX: 00007ff349f02f60 RCX: 00007ff349defb19
[ 1302.328106] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1302.329037] RBP: 00007ff3473651d0 R08: 0000000020000240 R09: 0000000000000000
[ 1302.329961] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1302.330899] R13: 00007fffc306ac3f R14: 00007ff347365300 R15: 0000000000022000
[ 1302.331879]  </TASK>
[ 1302.345179] 9pnet_virtio: no channels available for device 
[ 1302.355033] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1302.356116] CPU: 0 PID: 7946 Comm: syz-executor.3 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1302.357192] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1302.358272] Call Trace:
[ 1302.358631]  <TASK>
[ 1302.358967]  dump_stack_lvl+0xc1/0xf0
[ 1302.359527]  kmem_cache_create_usercopy+0x12b/0x340
[ 1302.360241]  p9_client_create+0xd0b/0x1260
[ 1302.360847]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1302.361575]  ? __pfx_p9_client_create+0x10/0x10
[ 1302.362235]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1302.362939]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1302.363585]  ? __kasan_kmalloc+0x7f/0x90
[ 1302.364175]  ? __raw_spin_lock_init+0x3a/0x110
[ 1302.364815]  v9fs_session_init+0x1e0/0x17b0
[ 1302.365448]  ? __pfx_lock_release+0x10/0x10
[ 1302.366060]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1302.366733]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1302.367447]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1302.368116]  ? v9fs_mount+0x9e/0xbd0
[ 1302.368684]  v9fs_mount+0xbd/0xbd0
[ 1302.369190]  ? legacy_init_fs_context+0x44/0xe0
[ 1302.369816]  ? __pfx_v9fs_mount+0x10/0x10
[ 1302.370388]  ? cap_capable+0x1be/0x220
[ 1302.370976]  ? __pfx_v9fs_mount+0x10/0x10
[ 1302.371557]  legacy_get_tree+0x109/0x220
[ 1302.372137]  vfs_get_tree+0x92/0x360
[ 1302.372672]  path_mount+0x133c/0x1e50
[ 1302.373226]  ? kasan_quarantine_put+0x81/0x1d0
[ 1302.373856]  ? __pfx_path_mount+0x10/0x10
[ 1302.374423]  ? putname+0x102/0x140
[ 1302.374944]  ? kmem_cache_free+0xff/0x4a0
[ 1302.375526]  ? putname+0x102/0x140
[ 1302.376048]  __x64_sys_mount+0x286/0x310
[ 1302.376603]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1302.377238]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1302.377965]  do_syscall_64+0x3f/0x90
[ 1302.378510]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1302.379240] RIP: 0033:0x7ff349defb19
[ 1302.379755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1302.382070] RSP: 002b:00007ff347365188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1302.383087] RAX: ffffffffffffffda RBX: 00007ff349f02f60 RCX: 00007ff349defb19
[ 1302.384004] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1302.384927] RBP: 00007ff3473651d0 R08: 0000000020000240 R09: 0000000000000000
[ 1302.385853] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1302.386798] R13: 00007fffc306ac3f R14: 00007ff347365300 R15: 0000000000022000
[ 1302.387796]  </TASK>
[ 1302.396557] 9pnet_virtio: no channels available for device 
[ 1302.402697] FAULT_INJECTION: forcing a failure.
[ 1302.402697] name failslab, interval 1, probability 0, space 0, times 0
[ 1302.404170] CPU: 0 PID: 7958 Comm: syz-executor.6 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1302.405227] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1302.406255] Call Trace:
[ 1302.406612]  <TASK>
[ 1302.406951]  dump_stack_lvl+0xc1/0xf0
05:11:02 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 68)

[ 1302.407503]  should_fail_ex+0x4b4/0x5b0
[ 1302.408239]  ? __kernfs_new_node+0xd4/0x870
[ 1302.408835]  should_failslab+0x9/0x20
[ 1302.409357]  kmem_cache_alloc+0x5a/0x390
[ 1302.409941]  __kernfs_new_node+0xd4/0x870
[ 1302.410508]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1302.411183]  ? down_write+0x11a/0x1f0
[ 1302.411719]  ? up_write+0x196/0x510
[ 1302.412247]  kernfs_new_node+0x97/0x120
[ 1302.412795]  __kernfs_create_file+0x55/0x350
[ 1302.413432]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1302.414053]  ? __pfx_slab_attr_store+0x10/0x10
[ 1302.414708]  internal_create_group+0x322/0xb90
[ 1302.415338]  ? __pfx_internal_create_group+0x10/0x10
[ 1302.416024]  ? up_write+0x196/0x510
[ 1302.416555]  sysfs_slab_add+0x18e/0x220
[ 1302.417110]  __kmem_cache_create+0x1fe/0x610
[ 1302.417722]  kmem_cache_create_usercopy+0x218/0x340
[ 1302.418413]  p9_client_create+0xd0b/0x1260
[ 1302.419015]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1302.419730]  ? __pfx_p9_client_create+0x10/0x10
[ 1302.420378]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1302.421060]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1302.421708]  ? __kasan_kmalloc+0x7f/0x90
[ 1302.422288]  ? __raw_spin_lock_init+0x3a/0x110
[ 1302.422939]  v9fs_session_init+0x1e0/0x17b0
[ 1302.423554]  ? __pfx_lock_release+0x10/0x10
[ 1302.424148]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1302.424813]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1302.425531]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1302.426201]  ? v9fs_mount+0x9e/0xbd0
[ 1302.426755]  v9fs_mount+0xbd/0xbd0
[ 1302.427269]  ? legacy_init_fs_context+0x44/0xe0
[ 1302.427895]  ? __pfx_v9fs_mount+0x10/0x10
[ 1302.428483]  ? cap_capable+0x1be/0x220
[ 1302.429040]  ? __pfx_v9fs_mount+0x10/0x10
[ 1302.429627]  legacy_get_tree+0x109/0x220
[ 1302.430208]  vfs_get_tree+0x92/0x360
[ 1302.430747]  path_mount+0x133c/0x1e50
[ 1302.431320]  ? kasan_quarantine_put+0x81/0x1d0
[ 1302.431957]  ? __pfx_path_mount+0x10/0x10
[ 1302.432543]  ? putname+0x102/0x140
[ 1302.433049]  ? kmem_cache_free+0xff/0x4a0
[ 1302.433637]  ? putname+0x102/0x140
[ 1302.434161]  __x64_sys_mount+0x286/0x310
[ 1302.434719]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1302.435363]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1302.436085]  do_syscall_64+0x3f/0x90
[ 1302.436626]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1302.437345] RIP: 0033:0x7fdb13b24b19
[ 1302.437862] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1302.440213] RSP: 002b:00007fdb11079188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1302.441215] RAX: ffffffffffffffda RBX: 00007fdb13c38020 RCX: 00007fdb13b24b19
[ 1302.442160] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1302.443099] RBP: 00007fdb110791d0 R08: 0000000020000240 R09: 0000000000000000
[ 1302.444035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1302.444969] R13: 00007fff73fffccf R14: 00007fdb11079300 R15: 0000000000022000
[ 1302.445946]  </TASK>
05:11:02 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext3\x00', &(0x7f00000002c0)='./file0\x00', 0xfffffffffffffffa, 0x1, &(0x7f0000000340)=[{&(0x7f0000000300), 0x0, 0x2}], 0x100080, &(0x7f0000000380)={[{@data_ordered}, {@noload}, {@nodiscard}, {@lazytime}, {@nodelalloc}, {@abort}], [{@fowner_gt={'fowner>', 0xffffffffffffffff}}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@smackfsroot={'smackfsroot', 0x3d, '%*'}}, {@obj_role={'obj_role', 0x3d, '*$\\#*'}}, {@smackfsfloor={'smackfsfloor', 0x3d, 'unconfined_u'}}, {@subj_role={'subj_role', 0x3d, '-'}}]})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r0, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0xb}}, 0x41130000)
ioctl$TCSETAW(r0, 0x5407, &(0x7f0000000300)={0xffe0, 0xff, 0x4, 0x1, 0x9, "4ad55f7dfcd11ca7"})
r1 = getuid()
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), 0x2025002, &(0x7f0000000180)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@msize={'msize', 0x3d, 0xc6e4}}], [{@smackfsroot={'smackfsroot', 0x3d, '9p\x00'}}, {@obj_type={'obj_type', 0x3d, '[^'}}, {@audit}, {@func={'func', 0x3d, 'MMAP_CHECK'}}, {@smackfsroot}, {@dont_measure}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}, {@dont_hash}, {@fowner_eq={'fowner', 0x3d, r1}}, {@measure}]}})

05:11:02 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x2000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:11:02 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20001000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:11:02 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xb00, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:11:02 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 84)

05:11:02 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000040)=<r0=>0x0)
perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x8, 0xaa, 0x81, 0x9, 0x0, 0x8, 0x4ee, 0x8, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, @perf_config_ext={0x0, 0x5}, 0x50, 0x1, 0x9b9c, 0x4, 0x0, 0x800, 0x40, 0x0, 0x0, 0x0, 0x1f}, r0, 0xf, 0xffffffffffffffff, 0x9)

[ 1302.580009] 9pnet_virtio: no channels available for device 
[ 1302.591793] 9pnet_virtio: no channels available for device 
[ 1302.613722] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1302.614724] CPU: 0 PID: 7958 Comm: syz-executor.6 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1302.615772] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1302.616817] Call Trace:
[ 1302.617167]  <TASK>
[ 1302.617481]  dump_stack_lvl+0xc1/0xf0
[ 1302.618017]  kmem_cache_create_usercopy+0x12b/0x340
[ 1302.618703]  p9_client_create+0xd0b/0x1260
[ 1302.619296]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1302.620004]  ? __pfx_p9_client_create+0x10/0x10
[ 1302.620637]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1302.621309]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1302.621954]  ? __kasan_kmalloc+0x7f/0x90
[ 1302.622554]  ? __raw_spin_lock_init+0x3a/0x110
[ 1302.623224]  v9fs_session_init+0x1e0/0x17b0
[ 1302.623856]  ? __pfx_lock_release+0x10/0x10
[ 1302.624446]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1302.625123]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1302.625826]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1302.626511]  ? v9fs_mount+0x9e/0xbd0
[ 1302.627083]  v9fs_mount+0xbd/0xbd0
[ 1302.627604]  ? legacy_init_fs_context+0x44/0xe0
[ 1302.628251]  ? __pfx_v9fs_mount+0x10/0x10
[ 1302.628844]  ? cap_capable+0x1be/0x220
[ 1302.629420]  ? __pfx_v9fs_mount+0x10/0x10
[ 1302.630017]  legacy_get_tree+0x109/0x220
[ 1302.630606]  vfs_get_tree+0x92/0x360
[ 1302.631169]  path_mount+0x133c/0x1e50
[ 1302.631730]  ? kasan_quarantine_put+0x81/0x1d0
[ 1302.632384]  ? __pfx_path_mount+0x10/0x10
[ 1302.632988]  ? putname+0x102/0x140
[ 1302.633509]  ? kmem_cache_free+0xff/0x4a0
[ 1302.634133]  ? putname+0x102/0x140
[ 1302.634671]  __x64_sys_mount+0x286/0x310
[ 1302.635279]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1302.635929]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1302.636689]  do_syscall_64+0x3f/0x90
[ 1302.637240]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1302.637990] RIP: 0033:0x7fdb13b24b19
[ 1302.638515] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1302.640967] RSP: 002b:00007fdb11079188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1302.641951] RAX: ffffffffffffffda RBX: 00007fdb13c38020 RCX: 00007fdb13b24b19
[ 1302.642914] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1302.643835] RBP: 00007fdb110791d0 R08: 0000000020000240 R09: 0000000000000000
[ 1302.644786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1302.645717] R13: 00007fff73fffccf R14: 00007fdb11079300 R15: 0000000000022000
[ 1302.646694]  </TASK>
05:11:14 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x2010, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:11:14 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 88)

05:11:14 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 85)

05:11:14 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 93)

05:11:14 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20001020, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:11:14 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 69)

05:11:14 executing program 1:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5410, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x101, 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
mount(&(0x7f0000000140)=@filename='./file0\x00', &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='nfs4\x00', 0x88, 0x0)
r2 = openat(r0, &(0x7f0000000040)='./file0\x00', 0x100, 0xa)
fsconfig$FSCONFIG_SET_FD(r2, 0x5, &(0x7f00000000c0)='\x00', 0x0, r0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
mmap$perf(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x200000e, 0x10010, r1, 0x10000)

05:11:14 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x1020, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1314.837040] 9pnet_virtio: no channels available for device 
[ 1314.847876] 9pnet_virtio: no channels available for device 
[ 1314.858981] FAULT_INJECTION: forcing a failure.
[ 1314.858981] name failslab, interval 1, probability 0, space 0, times 0
[ 1314.860460] CPU: 1 PID: 7987 Comm: syz-executor.3 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1314.861452] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
05:11:14 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xedc0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1314.862443] Call Trace:
[ 1314.863127]  <TASK>
[ 1314.863450]  dump_stack_lvl+0xc1/0xf0
[ 1314.863973]  should_fail_ex+0x4b4/0x5b0
[ 1314.864514]  ? __kernfs_new_node+0xd4/0x870
[ 1314.865065]  should_failslab+0x9/0x20
[ 1314.865568]  kmem_cache_alloc+0x5a/0x390
[ 1314.866134]  __kernfs_new_node+0xd4/0x870
[ 1314.866683]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1314.867321]  ? down_write+0x11a/0x1f0
[ 1314.867834]  ? up_write+0x196/0x510
[ 1314.868343]  kernfs_new_node+0x97/0x120
[ 1314.868878]  __kernfs_create_file+0x55/0x350
[ 1314.869469]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1314.870080]  ? __pfx_slab_attr_store+0x10/0x10
[ 1314.870683]  internal_create_group+0x322/0xb90
05:11:14 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20002000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

[ 1314.871314]  ? __pfx_internal_create_group+0x10/0x10
[ 1314.872080]  ? up_write+0x196/0x510
[ 1314.872619]  sysfs_slab_add+0x18e/0x220
[ 1314.873189]  __kmem_cache_create+0x1fe/0x610
[ 1314.873805]  kmem_cache_create_usercopy+0x218/0x340
[ 1314.874487]  p9_client_create+0xd0b/0x1260
[ 1314.875084]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1314.875774]  ? __pfx_p9_client_create+0x10/0x10
[ 1314.876405]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1314.877075]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1314.877708]  ? __kasan_kmalloc+0x7f/0x90
[ 1314.878274]  ? __raw_spin_lock_init+0x3a/0x110
[ 1314.878906]  v9fs_session_init+0x1e0/0x17b0
[ 1314.879539]  ? __pfx_lock_release+0x10/0x10
[ 1314.880123]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1314.880772]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1314.881474]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1314.882134]  ? v9fs_mount+0x9e/0xbd0
[ 1314.882695]  v9fs_mount+0xbd/0xbd0
[ 1314.883205]  ? legacy_init_fs_context+0x44/0xe0
[ 1314.883837]  ? __pfx_v9fs_mount+0x10/0x10
[ 1314.884433]  ? cap_capable+0x1be/0x220
[ 1314.884993]  ? __pfx_v9fs_mount+0x10/0x10
[ 1314.885560]  legacy_get_tree+0x109/0x220
[ 1314.886131]  vfs_get_tree+0x92/0x360
[ 1314.886667]  path_mount+0x133c/0x1e50
[ 1314.887233]  ? kasan_quarantine_put+0x81/0x1d0
[ 1314.887856]  ? __pfx_path_mount+0x10/0x10
[ 1314.888420]  ? putname+0x102/0x140
[ 1314.888913]  ? kmem_cache_free+0xff/0x4a0
[ 1314.889485]  ? putname+0x102/0x140
[ 1314.890009]  __x64_sys_mount+0x286/0x310
[ 1314.890546]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1314.891171]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1314.891870]  do_syscall_64+0x3f/0x90
[ 1314.892387]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1314.893085] RIP: 0033:0x7ff349defb19
[ 1314.893587] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1314.895857] RSP: 002b:00007ff347365188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1314.896840] RAX: ffffffffffffffda RBX: 00007ff349f02f60 RCX: 00007ff349defb19
[ 1314.897752] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1314.898672] RBP: 00007ff3473651d0 R08: 0000000020000240 R09: 0000000000000000
[ 1314.899602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1314.900206] 9pnet_virtio: no channels available for device 
[ 1314.900498] R13: 00007fffc306ac3f R14: 00007ff347365300 R15: 0000000000022000
[ 1314.900579]  </TASK>
[ 1314.907839] 9pnet_virtio: no channels available for device 
05:11:14 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x80000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1314.946231] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1314.947281] CPU: 1 PID: 7987 Comm: syz-executor.3 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1314.948315] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1314.949365] Call Trace:
[ 1314.949718]  <TASK>
[ 1314.950031]  dump_stack_lvl+0xc1/0xf0
[ 1314.950574]  kmem_cache_create_usercopy+0x12b/0x340
[ 1314.951277]  p9_client_create+0xd0b/0x1260
[ 1314.951866]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1314.952560]  ? __pfx_p9_client_create+0x10/0x10
[ 1314.953192]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1314.953859]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1314.954497]  ? __kasan_kmalloc+0x7f/0x90
[ 1314.955078]  ? __raw_spin_lock_init+0x3a/0x110
[ 1314.955706]  v9fs_session_init+0x1e0/0x17b0
[ 1314.956311]  ? __pfx_lock_release+0x10/0x10
[ 1314.956896]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1314.957547]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1314.958256]  ? __kmem_cache_alloc_node+0x1bc/0x310
05:11:15 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20002010, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

[ 1314.958979]  ? v9fs_mount+0x9e/0xbd0
[ 1314.959565]  v9fs_mount+0xbd/0xbd0
[ 1314.960057]  ? legacy_init_fs_context+0x44/0xe0
[ 1314.960678]  ? __pfx_v9fs_mount+0x10/0x10
[ 1314.961251]  ? cap_capable+0x1be/0x220
[ 1314.961809]  ? __pfx_v9fs_mount+0x10/0x10
[ 1314.962381]  legacy_get_tree+0x109/0x220
[ 1314.962950]  vfs_get_tree+0x92/0x360
[ 1314.963495]  path_mount+0x133c/0x1e50
[ 1314.964045]  ? kasan_quarantine_put+0x81/0x1d0
[ 1314.964676]  ? __pfx_path_mount+0x10/0x10
[ 1314.965239]  ? putname+0x102/0x140
[ 1314.965740]  ? kmem_cache_free+0xff/0x4a0
[ 1314.966317]  ? putname+0x102/0x140
[ 1314.966844]  __x64_sys_mount+0x286/0x310
[ 1314.967407]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1314.968028]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1314.968732]  do_syscall_64+0x3f/0x90
[ 1314.969253]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1314.969944] RIP: 0033:0x7ff349defb19
[ 1314.970439] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
05:11:15 executing program 1:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000600)='./file0/file0\x00', &(0x7f0000000080), 0x82801, 0x0)
mount$9p_rdma(&(0x7f0000000480), &(0x7f00000004c0)='./file1\x00', &(0x7f0000000500), 0x944800, &(0x7f0000000540)={'trans=rdma,', {'port', 0x3d, 0x4e22}, 0x2c, {[{@common=@privport}], [{@smackfsfloor={'smackfsfloor', 0x3d, 'cache=fscache'}}, {@smackfsroot={'smackfsroot', 0x3d, 'fsuuid'}}, {@mask={'mask', 0x3d, '^MAY_APPEND'}}, {@rootcontext={'rootcontext', 0x3d, 'user_u'}}, {@smackfstransmute={'smackfstransmute', 0x3d, '$'}}, {@hash}, {@pcr={'pcr', 0x3d, 0x9}}]}})
lsetxattr$security_selinux(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), &(0x7f00000001c0)='system_u:object_r:crack_exec_t:s0\x00', 0x22, 0x1304f16851161bdb)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r1, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0xb}}, 0x41130000)
r2 = openat(r1, &(0x7f0000000040)='./file0/file0\x00', 0x80000, 0x51)
newfstatat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, <r3=>0x0}, 0x2000)
mount$9p_fd(0x0, &(0x7f0000000200)='./file0/file0\x00', &(0x7f0000000240), 0x2, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@noextend}, {}, {@debug}, {@version_L}, {@access_client}, {@mmap}, {@dfltuid={'dfltuid', 0x3d, r3}}, {@access_client}, {@cache_fscache}], [{@smackfstransmute={'smackfstransmute', 0x3d, 'security.selinux\x00'}}, {@context={'context', 0x3d, 'root'}}, {@measure}, {@fsuuid={'fsuuid', 0x3d, {[0x64, 0x36, 0x65, 0x35, 0x38, 0x0, 0x30, 0x63], 0x2d, [0x30, 0x62, 0x32, 0x37], 0x2d, [0x34, 0xc, 0x66, 0x39], 0x2d, [0x38, 0x34, 0x61, 0x38], 0x2d, [0x33, 0x32, 0x32, 0x39, 0x37, 0x37, 0x0, 0x34]}}}, {@subj_role={'subj_role', 0x3d, '9p\x00'}}]}})

[ 1314.972725] RSP: 002b:00007ff347365188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1314.973824] RAX: ffffffffffffffda RBX: 00007ff349f02f60 RCX: 00007ff349defb19
[ 1314.974740] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1314.975669] RBP: 00007ff3473651d0 R08: 0000000020000240 R09: 0000000000000000
[ 1314.976573] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1314.977484] R13: 00007fffc306ac3f R14: 00007ff347365300 R15: 0000000000022000
[ 1314.978452]  </TASK>
05:11:15 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x2000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1314.988246] FAULT_INJECTION: forcing a failure.
[ 1314.988246] name failslab, interval 1, probability 0, space 0, times 0
[ 1314.989663] CPU: 1 PID: 8008 Comm: syz-executor.5 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1314.990693] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1314.991742] Call Trace:
[ 1314.992085]  <TASK>
[ 1314.992390]  dump_stack_lvl+0xc1/0xf0
[ 1314.992912]  should_fail_ex+0x4b4/0x5b0
[ 1314.993464]  ? __kernfs_new_node+0xd4/0x870
[ 1314.994043]  should_failslab+0x9/0x20
[ 1314.994555]  kmem_cache_alloc+0x5a/0x390
[ 1314.995124]  __kernfs_new_node+0xd4/0x870
[ 1314.995685]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1314.996332]  ? down_write+0x11a/0x1f0
[ 1314.996864]  ? up_write+0x196/0x510
[ 1314.997374]  kernfs_new_node+0x97/0x120
[ 1314.997922]  __kernfs_create_file+0x55/0x350
[ 1314.998527]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1314.999177]  ? __pfx_slab_attr_store+0x10/0x10
[ 1314.999805]  internal_create_group+0x322/0xb90
[ 1315.000417]  ? __pfx_internal_create_group+0x10/0x10
[ 1315.001086]  ? up_write+0x196/0x510
[ 1315.001597]  sysfs_slab_add+0x18e/0x220
[ 1315.002134]  __kmem_cache_create+0x1fe/0x610
[ 1315.002739]  kmem_cache_create_usercopy+0x218/0x340
[ 1315.003414]  p9_client_create+0xd0b/0x1260
[ 1315.003770]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1315.004171]  ? __pfx_p9_client_create+0x10/0x10
[ 1315.004531]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1315.004920]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1315.005290]  ? __kasan_kmalloc+0x7f/0x90
[ 1315.005616]  ? __raw_spin_lock_init+0x3a/0x110
[ 1315.005976]  v9fs_session_init+0x1e0/0x17b0
[ 1315.006320]  ? __pfx_lock_release+0x10/0x10
[ 1315.006654]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1315.007053]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1315.007463]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1315.007848]  ? v9fs_mount+0x9e/0xbd0
[ 1315.008164]  v9fs_mount+0xbd/0xbd0
[ 1315.008454]  ? legacy_init_fs_context+0x44/0xe0
[ 1315.008822]  ? __pfx_v9fs_mount+0x10/0x10
[ 1315.009160]  ? cap_capable+0x1be/0x220
[ 1315.009488]  ? __pfx_v9fs_mount+0x10/0x10
[ 1315.009815]  legacy_get_tree+0x109/0x220
[ 1315.010146]  vfs_get_tree+0x92/0x360
[ 1315.010441]  path_mount+0x133c/0x1e50
[ 1315.010748]  ? kasan_quarantine_put+0x81/0x1d0
[ 1315.011118]  ? __pfx_path_mount+0x10/0x10
[ 1315.011446]  ? putname+0x102/0x140
[ 1315.011734]  ? kmem_cache_free+0xff/0x4a0
[ 1315.012067]  ? putname+0x102/0x140
[ 1315.012361]  __x64_sys_mount+0x286/0x310
[ 1315.012673]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1315.013027]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1315.013437]  do_syscall_64+0x3f/0x90
[ 1315.013737]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1315.014137] RIP: 0033:0x7f05858feb19
[ 1315.014423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1315.015440] 9pnet_virtio: no channels available for device 
[ 1315.015758] RSP: 002b:00007f0582e74188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1315.015779] RAX: ffffffffffffffda RBX: 00007f0585a11f60 RCX: 00007f05858feb19
[ 1315.015792] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1315.017803] RBP: 00007f0582e741d0 R08: 0000000020000240 R09: 0000000000000000
[ 1315.018325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1315.018847] R13: 00007ffd3f25a19f R14: 00007f0582e74300 R15: 0000000000022000
[ 1315.019408]  </TASK>
[ 1315.024525] 9pnet_virtio: no channels available for device 
05:11:15 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x1000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:11:15 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x80000, 0x8)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:11:15 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x2000373b, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

[ 1315.075226] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1315.075841] CPU: 1 PID: 8008 Comm: syz-executor.5 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1315.076436] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1315.077034] Call Trace:
[ 1315.077234]  <TASK>
[ 1315.077416]  dump_stack_lvl+0xc1/0xf0
[ 1315.077724]  kmem_cache_create_usercopy+0x12b/0x340
[ 1315.078118]  p9_client_create+0xd0b/0x1260
[ 1315.078447]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1315.078844]  ? __pfx_p9_client_create+0x10/0x10
[ 1315.079212]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1315.079595]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1315.079947]  ? __kasan_kmalloc+0x7f/0x90
[ 1315.080267]  ? __raw_spin_lock_init+0x3a/0x110
[ 1315.080617]  v9fs_session_init+0x1e0/0x17b0
[ 1315.080952]  ? __pfx_lock_release+0x10/0x10
[ 1315.081281]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1315.081646]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1315.082037]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1315.082411]  ? v9fs_mount+0x9e/0xbd0
[ 1315.082714]  v9fs_mount+0xbd/0xbd0
[ 1315.082989]  ? legacy_init_fs_context+0x44/0xe0
[ 1315.083361]  ? __pfx_v9fs_mount+0x10/0x10
[ 1315.083678]  ? cap_capable+0x1be/0x220
[ 1315.083990]  ? __pfx_v9fs_mount+0x10/0x10
[ 1315.084313]  legacy_get_tree+0x109/0x220
[ 1315.084633]  vfs_get_tree+0x92/0x360
[ 1315.084925]  path_mount+0x133c/0x1e50
[ 1315.085230]  ? kasan_quarantine_put+0x81/0x1d0
[ 1315.085592]  ? __pfx_path_mount+0x10/0x10
[ 1315.085911]  ? putname+0x102/0x140
[ 1315.086190]  ? kmem_cache_free+0xff/0x4a0
[ 1315.086513]  ? putname+0x102/0x140
[ 1315.086797]  __x64_sys_mount+0x286/0x310
[ 1315.087115]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1315.087465]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1315.087867]  do_syscall_64+0x3f/0x90
[ 1315.088164]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1315.088592] RIP: 0033:0x7f05858feb19
[ 1315.088888] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1315.090215] RSP: 002b:00007f0582e74188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1315.090772] RAX: ffffffffffffffda RBX: 00007f0585a11f60 RCX: 00007f05858feb19
[ 1315.091295] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1315.091816] RBP: 00007f0582e741d0 R08: 0000000020000240 R09: 0000000000000000
[ 1315.092338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1315.092864] R13: 00007ffd3f25a19f R14: 00007f0582e74300 R15: 0000000000022000
[ 1315.093400]  </TASK>
[ 1315.093984] FAULT_INJECTION: forcing a failure.
[ 1315.093984] name failslab, interval 1, probability 0, space 0, times 0
[ 1315.094899] CPU: 1 PID: 8009 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1315.095511] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1315.096102] Call Trace:
[ 1315.096294]  <TASK>
[ 1315.096469]  dump_stack_lvl+0xc1/0xf0
[ 1315.096765]  should_fail_ex+0x4b4/0x5b0
[ 1315.097080]  ? __kernfs_new_node+0xd4/0x870
[ 1315.097406]  should_failslab+0x9/0x20
[ 1315.097701]  kmem_cache_alloc+0x5a/0x390
[ 1315.098019]  __kernfs_new_node+0xd4/0x870
[ 1315.098334]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1315.098719]  ? down_write+0x11a/0x1f0
[ 1315.099040]  ? up_write+0x196/0x510
[ 1315.099338]  kernfs_new_node+0x97/0x120
[ 1315.099666]  __kernfs_create_file+0x55/0x350
[ 1315.100017]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1315.100373]  ? __pfx_slab_attr_store+0x10/0x10
[ 1315.100735]  internal_create_group+0x322/0xb90
[ 1315.101086]  ? __pfx_internal_create_group+0x10/0x10
[ 1315.101473]  ? up_write+0x196/0x510
[ 1315.101769]  sysfs_slab_add+0x18e/0x220
[ 1315.102078]  __kmem_cache_create+0x1fe/0x610
[ 1315.102423]  kmem_cache_create_usercopy+0x218/0x340
[ 1315.102811]  p9_client_create+0xd0b/0x1260
[ 1315.103154]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1315.103549]  ? __pfx_p9_client_create+0x10/0x10
[ 1315.103898]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1315.104282]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1315.104638]  ? __kasan_kmalloc+0x7f/0x90
[ 1315.104972]  ? __raw_spin_lock_init+0x3a/0x110
[ 1315.105340]  v9fs_session_init+0x1e0/0x17b0
[ 1315.105686]  ? __pfx_lock_release+0x10/0x10
[ 1315.106018]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1315.106377]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1315.106772]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1315.107154]  ? v9fs_mount+0x9e/0xbd0
[ 1315.107456]  v9fs_mount+0xbd/0xbd0
[ 1315.107738]  ? legacy_init_fs_context+0x44/0xe0
[ 1315.108083]  ? __pfx_v9fs_mount+0x10/0x10
[ 1315.108399]  ? cap_capable+0x1be/0x220
[ 1315.108708]  ? __pfx_v9fs_mount+0x10/0x10
[ 1315.109018]  legacy_get_tree+0x109/0x220
[ 1315.109338]  vfs_get_tree+0x92/0x360
[ 1315.109621]  path_mount+0x133c/0x1e50
[ 1315.109927]  ? kasan_quarantine_put+0x81/0x1d0
[ 1315.110290]  ? __pfx_path_mount+0x10/0x10
[ 1315.110622]  ? putname+0x102/0x140
[ 1315.110764] 9pnet_virtio: no channels available for device 
[ 1315.110896]  ? kmem_cache_free+0xff/0x4a0
[ 1315.111603]  ? putname+0x102/0x140
[ 1315.111877]  __x64_sys_mount+0x286/0x310
[ 1315.112164]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1315.112499]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1315.112881]  do_syscall_64+0x3f/0x90
[ 1315.113163]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1315.113536] RIP: 0033:0x7fcf62391b19
[ 1315.113807] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1315.115044] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1315.115431] 9pnet_virtio: no channels available for device 
[ 1315.115568] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1315.115582] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1315.116916] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1315.117407] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1315.117899] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1315.118418]  </TASK>
[ 1315.151292] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1315.151847] CPU: 1 PID: 8009 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1315.152399] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1315.152956] Call Trace:
[ 1315.153146]  <TASK>
[ 1315.153312]  dump_stack_lvl+0xc1/0xf0
[ 1315.153598]  kmem_cache_create_usercopy+0x12b/0x340
[ 1315.153958]  p9_client_create+0xd0b/0x1260
[ 1315.154259]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1315.154628]  ? __pfx_p9_client_create+0x10/0x10
[ 1315.154960]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1315.155318]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1315.155659]  ? __kasan_kmalloc+0x7f/0x90
[ 1315.155961]  ? __raw_spin_lock_init+0x3a/0x110
[ 1315.156283]  v9fs_session_init+0x1e0/0x17b0
[ 1315.156593]  ? __pfx_lock_release+0x10/0x10
[ 1315.156889]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1315.157224]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1315.157595]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1315.157941]  ? v9fs_mount+0x9e/0xbd0
[ 1315.158223]  v9fs_mount+0xbd/0xbd0
[ 1315.158494]  ? legacy_init_fs_context+0x44/0xe0
[ 1315.158818]  ? __pfx_v9fs_mount+0x10/0x10
[ 1315.159132]  ? cap_capable+0x1be/0x220
[ 1315.159418]  ? __pfx_v9fs_mount+0x10/0x10
[ 1315.159720]  legacy_get_tree+0x109/0x220
[ 1315.160012]  vfs_get_tree+0x92/0x360
[ 1315.160279]  path_mount+0x133c/0x1e50
[ 1315.160558]  ? kasan_quarantine_put+0x81/0x1d0
[ 1315.160902]  ? __pfx_path_mount+0x10/0x10
[ 1315.161218]  ? putname+0x102/0x140
[ 1315.161492]  ? kmem_cache_free+0xff/0x4a0
[ 1315.161808]  ? putname+0x102/0x140
[ 1315.162092]  __x64_sys_mount+0x286/0x310
[ 1315.162371]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1315.162715]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1315.163082]  do_syscall_64+0x3f/0x90
[ 1315.163376]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1315.163767] RIP: 0033:0x7fcf62391b19
[ 1315.164043] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1315.165323] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1315.165869] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1315.166385] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1315.166895] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1315.167426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1315.167937] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1315.168465]  </TASK>
05:11:28 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x2010, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:11:28 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 94)

05:11:28 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20003b37, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:11:28 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x2000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:11:28 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
r1 = getpid()
pidfd_open(r1, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3, 0x3, 0x9, 0x81, 0x0, 0x6, 0x22, 0x8, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x4, @perf_bp={&(0x7f0000000040), 0x2}, 0x8088, 0x1ff, 0xfffffff7, 0xf, 0x5, 0x7e26b6d0, 0x7, 0x0, 0x5, 0x0, 0x2}, r1, 0xe, r0, 0x3)

05:11:28 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 86)

05:11:28 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 89)

05:11:28 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 70)

[ 1328.220842] FAULT_INJECTION: forcing a failure.
[ 1328.220842] name failslab, interval 1, probability 0, space 0, times 0
[ 1328.221724] CPU: 1 PID: 8045 Comm: syz-executor.6 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1328.222295] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1328.222888] Call Trace:
[ 1328.223086]  <TASK>
[ 1328.223260]  dump_stack_lvl+0xc1/0xf0
[ 1328.223564]  should_fail_ex+0x4b4/0x5b0
[ 1328.223860]  ? __kernfs_new_node+0xd4/0x870
[ 1328.224186]  should_failslab+0x9/0x20
[ 1328.224470]  kmem_cache_alloc+0x5a/0x390
[ 1328.224767]  __kernfs_new_node+0xd4/0x870
[ 1328.225074]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1328.225434]  ? down_write+0x11a/0x1f0
[ 1328.225721]  ? up_write+0x196/0x510
[ 1328.226026]  kernfs_new_node+0x97/0x120
[ 1328.226318]  __kernfs_create_file+0x55/0x350
[ 1328.226641]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1328.226996]  ? __pfx_slab_attr_store+0x10/0x10
[ 1328.227347]  internal_create_group+0x322/0xb90
[ 1328.227698]  ? __pfx_internal_create_group+0x10/0x10
[ 1328.228104]  ? up_write+0x196/0x510
[ 1328.228382]  sysfs_slab_add+0x18e/0x220
[ 1328.228667]  __kmem_cache_create+0x1fe/0x610
[ 1328.228988]  kmem_cache_create_usercopy+0x218/0x340
[ 1328.229359]  p9_client_create+0xd0b/0x1260
[ 1328.229664]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1328.230048]  ? __pfx_p9_client_create+0x10/0x10
[ 1328.230421]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1328.230809]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1328.231208]  ? __kasan_kmalloc+0x7f/0x90
[ 1328.231529]  ? __raw_spin_lock_init+0x3a/0x110
[ 1328.231874]  v9fs_session_init+0x1e0/0x17b0
[ 1328.232221]  ? __pfx_lock_release+0x10/0x10
[ 1328.232560]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1328.232941]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1328.233354]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1328.233736]  ? v9fs_mount+0x9e/0xbd0
[ 1328.234033]  v9fs_mount+0xbd/0xbd0
[ 1328.234328]  ? legacy_init_fs_context+0x44/0xe0
[ 1328.234671]  ? __pfx_v9fs_mount+0x10/0x10
[ 1328.235002]  ? cap_capable+0x1be/0x220
[ 1328.235321]  ? __pfx_v9fs_mount+0x10/0x10
[ 1328.235621]  legacy_get_tree+0x109/0x220
[ 1328.235924]  vfs_get_tree+0x92/0x360
[ 1328.236231]  path_mount+0x133c/0x1e50
[ 1328.236550]  ? kasan_quarantine_put+0x81/0x1d0
[ 1328.236922]  ? __pfx_path_mount+0x10/0x10
[ 1328.237250]  ? putname+0x102/0x140
[ 1328.237525]  ? kmem_cache_free+0xff/0x4a0
[ 1328.237824]  ? putname+0x102/0x140
[ 1328.238104]  __x64_sys_mount+0x286/0x310
[ 1328.238423]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1328.238785]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1328.239212]  do_syscall_64+0x3f/0x90
[ 1328.239508]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1328.239919] RIP: 0033:0x7fdb13b24b19
[ 1328.240199] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1328.241519] RSP: 002b:00007fdb1109a188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1328.242032] RAX: ffffffffffffffda RBX: 00007fdb13c37f60 RCX: 00007fdb13b24b19
[ 1328.242594] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1328.243097] RBP: 00007fdb1109a1d0 R08: 0000000020000240 R09: 0000000000000000
[ 1328.243634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1328.244187] R13: 00007fff73fffccf R14: 00007fdb1109a300 R15: 0000000000022000
[ 1328.244700]  </TASK>
[ 1328.249434] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1328.249962] CPU: 1 PID: 8045 Comm: syz-executor.6 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1328.250548] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1328.251144] Call Trace:
[ 1328.251368]  <TASK>
[ 1328.251546]  dump_stack_lvl+0xc1/0xf0
[ 1328.251866]  kmem_cache_create_usercopy+0x12b/0x340
[ 1328.252265]  p9_client_create+0xd0b/0x1260
[ 1328.252603]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1328.253016]  ? __pfx_p9_client_create+0x10/0x10
[ 1328.253375]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1328.253770]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1328.254108]  ? __kasan_kmalloc+0x7f/0x90
[ 1328.254430]  ? __raw_spin_lock_init+0x3a/0x110
[ 1328.254805]  v9fs_session_init+0x1e0/0x17b0
[ 1328.255143]  ? __pfx_lock_release+0x10/0x10
[ 1328.255501]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1328.255841]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1328.256244]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1328.256626]  ? v9fs_mount+0x9e/0xbd0
[ 1328.256928]  v9fs_mount+0xbd/0xbd0
[ 1328.257190]  ? legacy_init_fs_context+0x44/0xe0
[ 1328.257531]  ? __pfx_v9fs_mount+0x10/0x10
[ 1328.257867]  ? cap_capable+0x1be/0x220
[ 1328.258194]  ? __pfx_v9fs_mount+0x10/0x10
[ 1328.258498]  legacy_get_tree+0x109/0x220
[ 1328.258809]  vfs_get_tree+0x92/0x360
[ 1328.259106]  path_mount+0x133c/0x1e50
[ 1328.259444]  ? kasan_quarantine_put+0x81/0x1d0
[ 1328.259794]  ? __pfx_path_mount+0x10/0x10
[ 1328.260107]  ? putname+0x102/0x140
[ 1328.260399]  ? kmem_cache_free+0xff/0x4a0
[ 1328.260716]  ? putname+0x102/0x140
[ 1328.261016]  __x64_sys_mount+0x286/0x310
[ 1328.261343]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1328.261688]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1328.262069]  do_syscall_64+0x3f/0x90
[ 1328.262378]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1328.262796] RIP: 0033:0x7fdb13b24b19
[ 1328.263099] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1328.264393] RSP: 002b:00007fdb1109a188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1328.264943] RAX: ffffffffffffffda RBX: 00007fdb13c37f60 RCX: 00007fdb13b24b19
[ 1328.265475] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1328.266019] RBP: 00007fdb1109a1d0 R08: 0000000020000240 R09: 0000000000000000
[ 1328.266450] 9pnet_virtio: no channels available for device 
[ 1328.266563] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1328.266576] R13: 00007fff73fffccf R14: 00007fdb1109a300 R15: 0000000000022000
[ 1328.268495]  </TASK>
05:11:28 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x3f00, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:11:28 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 95)

05:11:28 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 87)

[ 1328.301186] 9pnet_virtio: no channels available for device 
05:11:28 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x7000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1328.372725] FAULT_INJECTION: forcing a failure.
[ 1328.372725] name failslab, interval 1, probability 0, space 0, times 0
[ 1328.373584] CPU: 1 PID: 8063 Comm: syz-executor.3 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1328.374165] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1328.374741] Call Trace:
[ 1328.374944]  <TASK>
[ 1328.375118]  dump_stack_lvl+0xc1/0xf0
[ 1328.375454]  should_fail_ex+0x4b4/0x5b0
[ 1328.375770]  ? __kernfs_new_node+0xd4/0x870
[ 1328.376093]  should_failslab+0x9/0x20
[ 1328.376384]  kmem_cache_alloc+0x5a/0x390
[ 1328.376700]  __kernfs_new_node+0xd4/0x870
[ 1328.377018]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1328.377396]  ? down_write+0x11a/0x1f0
[ 1328.377701]  ? up_write+0x196/0x510
[ 1328.377999]  kernfs_new_node+0x97/0x120
[ 1328.378312]  __kernfs_create_file+0x55/0x350
[ 1328.378662]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1328.379012]  ? __pfx_slab_attr_store+0x10/0x10
[ 1328.379379]  internal_create_group+0x322/0xb90
[ 1328.379733]  ? __pfx_internal_create_group+0x10/0x10
[ 1328.380112]  ? up_write+0x196/0x510
[ 1328.380409]  sysfs_slab_add+0x18e/0x220
[ 1328.380711]  __kmem_cache_create+0x1fe/0x610
[ 1328.381054]  kmem_cache_create_usercopy+0x218/0x340
[ 1328.381435]  p9_client_create+0xd0b/0x1260
[ 1328.381760]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1328.382137]  ? __pfx_p9_client_create+0x10/0x10
[ 1328.382487]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1328.382853]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1328.383211]  ? __kasan_kmalloc+0x7f/0x90
[ 1328.383521]  ? __raw_spin_lock_init+0x3a/0x110
[ 1328.383875]  v9fs_session_init+0x1e0/0x17b0
[ 1328.384211]  ? __pfx_lock_release+0x10/0x10
[ 1328.384538]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1328.384897]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1328.385279]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1328.385651]  ? v9fs_mount+0x9e/0xbd0
[ 1328.385954]  v9fs_mount+0xbd/0xbd0
[ 1328.386231]  ? legacy_init_fs_context+0x44/0xe0
[ 1328.386570]  ? __pfx_v9fs_mount+0x10/0x10
[ 1328.386883]  ? cap_capable+0x1be/0x220
[ 1328.387205]  ? __pfx_v9fs_mount+0x10/0x10
[ 1328.387523]  legacy_get_tree+0x109/0x220
[ 1328.387838]  vfs_get_tree+0x92/0x360
[ 1328.388145]  path_mount+0x133c/0x1e50
[ 1328.388452]  ? kasan_quarantine_put+0x81/0x1d0
[ 1328.388805]  ? __pfx_path_mount+0x10/0x10
[ 1328.389118]  ? putname+0x102/0x140
[ 1328.389388]  ? kmem_cache_free+0xff/0x4a0
[ 1328.389707]  ? putname+0x102/0x140
[ 1328.389991]  __x64_sys_mount+0x286/0x310
[ 1328.390287]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1328.390624]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1328.391007]  do_syscall_64+0x3f/0x90
[ 1328.391306]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1328.391695] RIP: 0033:0x7ff349defb19
[ 1328.391976] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1328.393222] RSP: 002b:00007ff347365188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1328.393750] RAX: ffffffffffffffda RBX: 00007ff349f02f60 RCX: 00007ff349defb19
[ 1328.394241] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1328.394744] RBP: 00007ff3473651d0 R08: 0000000020000240 R09: 0000000000000000
[ 1328.395250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1328.395746] R13: 00007fffc306ac3f R14: 00007ff347365300 R15: 0000000000022000
[ 1328.396278]  </TASK>
05:11:28 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x2000f000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:11:28 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 71)

05:11:28 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xedc0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:11:28 executing program 1:
stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setresuid(0x0, r0, 0x0)
stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
setresuid(0x0, r1, 0x0)
syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', 0x3, 0x4, &(0x7f0000000440)=[{&(0x7f00000001c0)="8d0e994228c5e11a64d42b28d3182603a849040968075c2fe3a28bfe30651075c43f0da99062a194ccfd5e3c59187d35a99587215807a7c262fbfce7cc0890aa48b9ae825441af68571acd59fbda9f357b9355eaf5c2367538e271514ed012cdab0ecb8e2bd5e02ffeb71d204d726b36615efd32daa06bd1cb59c6ec45df072d029a272709202312cd17eb3b47a8e0705c6c603b17f2c5c464cd0903bb56d0078761c8a4a6df2ccd14901843dc9401fea432409530d085d243d0199a4786492da8e05161", 0xc4, 0x7}, {&(0x7f00000002c0)="f6615aac6ba1846987b0aa59ae0f28459149075ab2cf9655d6837603d2cf047f7da25b747b976c85f34ddbbedb3d0e9c7a84fdd5f68fc302aec23af039dd776c692f5826c673e63e46aac5310a0401dc8d0dd42e4d97ee6f0265a4c3dbdd83d3d7582ab56f52068f7ce8e79346", 0x6d, 0x2}, {&(0x7f0000000340)="1e65afdc0ff7b9e137071fb4cdf217ba2005858cc3556bf3487a765a052dba3ec1fb236b650c86438ca32023fa1d4ba9256cf9ec2af8cb5cee2d6abd77f5a04d6107df46f6f2a83ebb30b96ffb0509ff5c191ece4afb7d4251eaf36c6f10aee62340ec586b7134be8f6678d7508699dc1130ac7bc4a9449eb95dea8abc264168307a4ae6be37377cdcdb8c8d36f8f127f7f393a7afd7a71cb73aedd051", 0x9d, 0x1ff}, {&(0x7f0000000400)="29ad15e47f83b749e02dc342a034435df5f13131", 0x14, 0x1}], 0x10008a0, &(0x7f0000000580)=ANY=[@ANYBLOB='iocharset=cp874,map=normal,map=off,fowner>', @ANYRESDEC=r0, @ANYBLOB="2c4b97f8970145765437663d", @ANYRESDEC=r1, @ANYBLOB=',dont_hash,euid=', @ANYRESDEC, @ANYBLOB=',defcontext=system_u,\x00'])
r2 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
renameat(r2, &(0x7f0000000040)='./file0\x00', r2, &(0x7f00000000c0)='./file0\x00')
r3 = perf_event_open(&(0x7f0000001840)={0x1, 0x80, 0x81, 0x2, 0x0, 0x0, 0x0, 0x2, 0x4b580, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc924, 0x0, @perf_bp={0x0}, 0x0, 0x93, 0x0, 0x8, 0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x1, 0xffffffffffffffff, 0xa)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
preadv2(r3, &(0x7f0000000540)=[{&(0x7f00000004c0)=""/120, 0x78}, {&(0x7f0000000640)=""/215, 0xd7}, {&(0x7f0000000740)=""/4096, 0x1000}], 0x3, 0x2, 0x46d77eaf, 0xa)

[ 1328.443850] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1328.444891] CPU: 0 PID: 8063 Comm: syz-executor.3 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1328.445960] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1328.447034] Call Trace:
[ 1328.447413]  <TASK>
[ 1328.447748]  dump_stack_lvl+0xc1/0xf0
[ 1328.448306]  kmem_cache_create_usercopy+0x12b/0x340
[ 1328.449028]  p9_client_create+0xd0b/0x1260
[ 1328.449646]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1328.450364]  ? __pfx_p9_client_create+0x10/0x10
[ 1328.451017]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1328.451737]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1328.452393]  ? __kasan_kmalloc+0x7f/0x90
[ 1328.452982]  ? __raw_spin_lock_init+0x3a/0x110
[ 1328.453641]  v9fs_session_init+0x1e0/0x17b0
[ 1328.454274]  ? __pfx_lock_release+0x10/0x10
[ 1328.454883]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1328.455569]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1328.456300]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1328.456981]  ? v9fs_mount+0x9e/0xbd0
[ 1328.457187] 9pnet_virtio: no channels available for device 
[ 1328.457544]  v9fs_mount+0xbd/0xbd0
[ 1328.458464]  ? legacy_init_fs_context+0x44/0xe0
[ 1328.459119]  ? __pfx_v9fs_mount+0x10/0x10
[ 1328.459740]  ? cap_capable+0x1be/0x220
[ 1328.460326]  ? __pfx_v9fs_mount+0x10/0x10
[ 1328.460928]  legacy_get_tree+0x109/0x220
[ 1328.461534]  vfs_get_tree+0x92/0x360
[ 1328.462085]  path_mount+0x133c/0x1e50
[ 1328.462658]  ? kasan_quarantine_put+0x81/0x1d0
[ 1328.463324]  ? __pfx_path_mount+0x10/0x10
[ 1328.463799] 9pnet_virtio: no channels available for device 
[ 1328.463901]  ? putname+0x102/0x140
[ 1328.464800]  ? kmem_cache_free+0xff/0x4a0
[ 1328.465403]  ? putname+0x102/0x140
[ 1328.465952]  __x64_sys_mount+0x286/0x310
[ 1328.466524]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1328.467185]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1328.467943]  do_syscall_64+0x3f/0x90
[ 1328.468489]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1328.469225] RIP: 0033:0x7ff349defb19
[ 1328.469747] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1328.472141] RSP: 002b:00007ff347365188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1328.473166] RAX: ffffffffffffffda RBX: 00007ff349f02f60 RCX: 00007ff349defb19
[ 1328.474120] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1328.475078] RBP: 00007ff3473651d0 R08: 0000000020000240 R09: 0000000000000000
[ 1328.476053] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1328.477013] R13: 00007fffc306ac3f R14: 00007ff347365300 R15: 0000000000022000
[ 1328.478029]  </TASK>
[ 1328.487516] FAULT_INJECTION: forcing a failure.
[ 1328.487516] name failslab, interval 1, probability 0, space 0, times 0
[ 1328.489158] CPU: 0 PID: 8062 Comm: syz-executor.5 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1328.490268] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1328.491401] Call Trace:
[ 1328.491777]  <TASK>
[ 1328.492117]  dump_stack_lvl+0xc1/0xf0
[ 1328.492695]  should_fail_ex+0x4b4/0x5b0
[ 1328.493301]  ? __kernfs_new_node+0xd4/0x870
[ 1328.493928]  should_failslab+0x9/0x20
[ 1328.494497]  kmem_cache_alloc+0x5a/0x390
[ 1328.495124]  __kernfs_new_node+0xd4/0x870
[ 1328.495760]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1328.496479]  ? down_write+0x11a/0x1f0
[ 1328.497063]  ? up_write+0x196/0x510
[ 1328.497634]  kernfs_new_node+0x97/0x120
[ 1328.498242]  __kernfs_create_file+0x55/0x350
[ 1328.498919]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1328.499618]  ? __pfx_slab_attr_store+0x10/0x10
[ 1328.500310]  internal_create_group+0x322/0xb90
[ 1328.501001]  ? __pfx_internal_create_group+0x10/0x10
[ 1328.501742]  ? up_write+0x196/0x510
[ 1328.502331]  sysfs_slab_add+0x18e/0x220
[ 1328.502929]  __kmem_cache_create+0x1fe/0x610
[ 1328.503619]  kmem_cache_create_usercopy+0x218/0x340
[ 1328.504370]  p9_client_create+0xd0b/0x1260
[ 1328.505014]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1328.505774]  ? __pfx_p9_client_create+0x10/0x10
[ 1328.506465]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1328.507198]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1328.507889]  ? __kasan_kmalloc+0x7f/0x90
[ 1328.508509]  ? __raw_spin_lock_init+0x3a/0x110
[ 1328.509203]  v9fs_session_init+0x1e0/0x17b0
[ 1328.509879]  ? __pfx_lock_release+0x10/0x10
[ 1328.510526]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1328.511249]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1328.512025]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1328.512746]  ? v9fs_mount+0x9e/0xbd0
[ 1328.513355]  v9fs_mount+0xbd/0xbd0
[ 1328.513904]  ? legacy_init_fs_context+0x44/0xe0
[ 1328.514591]  ? __pfx_v9fs_mount+0x10/0x10
[ 1328.515235]  ? cap_capable+0x1be/0x220
[ 1328.515857]  ? __pfx_v9fs_mount+0x10/0x10
[ 1328.516489]  legacy_get_tree+0x109/0x220
[ 1328.517121]  vfs_get_tree+0x92/0x360
[ 1328.517700]  path_mount+0x133c/0x1e50
[ 1328.518309]  ? kasan_quarantine_put+0x81/0x1d0
[ 1328.518997]  ? __pfx_path_mount+0x10/0x10
[ 1328.519635]  ? putname+0x102/0x140
[ 1328.520183]  ? kmem_cache_free+0xff/0x4a0
[ 1328.520826]  ? putname+0x102/0x140
[ 1328.521400]  __x64_sys_mount+0x286/0x310
[ 1328.522002]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1328.522690]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1328.523487]  do_syscall_64+0x3f/0x90
[ 1328.524058]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1328.524817] RIP: 0033:0x7f05858feb19
[ 1328.525362] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1328.527875] RSP: 002b:00007f0582e74188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1328.528955] RAX: ffffffffffffffda RBX: 00007f0585a11f60 RCX: 00007f05858feb19
[ 1328.529955] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1328.530896] RBP: 00007f0582e741d0 R08: 0000000020000240 R09: 0000000000000000
[ 1328.531851] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1328.532786] R13: 00007ffd3f25a19f R14: 00007f0582e74300 R15: 0000000000022000
[ 1328.533783]  </TASK>
[ 1328.589947] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1328.590608] CPU: 1 PID: 8062 Comm: syz-executor.5 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1328.591232] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1328.591858] Call Trace:
[ 1328.592052]  <TASK>
[ 1328.592229]  dump_stack_lvl+0xc1/0xf0
[ 1328.592528]  kmem_cache_create_usercopy+0x12b/0x340
[ 1328.592905]  p9_client_create+0xd0b/0x1260
[ 1328.593237]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1328.593633]  ? __pfx_p9_client_create+0x10/0x10
[ 1328.594005]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1328.594383]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1328.594750]  ? __kasan_kmalloc+0x7f/0x90
[ 1328.595073]  ? __raw_spin_lock_init+0x3a/0x110
[ 1328.595441]  v9fs_session_init+0x1e0/0x17b0
[ 1328.595794]  ? __pfx_lock_release+0x10/0x10
[ 1328.596129]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1328.596496]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1328.596864]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1328.597229]  ? v9fs_mount+0x9e/0xbd0
[ 1328.597542]  v9fs_mount+0xbd/0xbd0
[ 1328.597835]  ? legacy_init_fs_context+0x44/0xe0
[ 1328.598187]  ? __pfx_v9fs_mount+0x10/0x10
[ 1328.598519]  ? cap_capable+0x1be/0x220
[ 1328.598837]  ? __pfx_v9fs_mount+0x10/0x10
[ 1328.599156]  legacy_get_tree+0x109/0x220
[ 1328.599491]  vfs_get_tree+0x92/0x360
[ 1328.599791]  path_mount+0x133c/0x1e50
[ 1328.600068]  ? kasan_quarantine_put+0x81/0x1d0
[ 1328.600432]  ? __pfx_path_mount+0x10/0x10
[ 1328.600767]  ? putname+0x102/0x140
[ 1328.601048]  ? kmem_cache_free+0xff/0x4a0
[ 1328.601372]  ? putname+0x102/0x140
[ 1328.601652]  __x64_sys_mount+0x286/0x310
[ 1328.601956]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1328.602298]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1328.602702]  do_syscall_64+0x3f/0x90
[ 1328.602996]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1328.603421] RIP: 0033:0x7f05858feb19
[ 1328.603697] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1328.604994] RSP: 002b:00007f0582e74188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1328.605552] RAX: ffffffffffffffda RBX: 00007f0585a11f60 RCX: 00007f05858feb19
[ 1328.606061] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1328.606574] RBP: 00007f0582e741d0 R08: 0000000020000240 R09: 0000000000000000
[ 1328.607103] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1328.607638] R13: 00007ffd3f25a19f R14: 00007f0582e74300 R15: 0000000000022000
[ 1328.608162]  </TASK>
05:11:42 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 96)

05:11:42 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 72)

05:11:42 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x25000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:11:42 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 90)

05:11:42 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x80000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:11:42 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 88)

05:11:42 executing program 1:
ftruncate(0xffffffffffffffff, 0x8)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x1000000000, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x3, 0x80, 0x81, 0x0, 0x3, 0x0, 0x0, 0x0, 0x32000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_config_ext={0x7, 0x4804c9b7}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setxattr$security_evm(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000140)=@md5={0x1, "afd78b34c4ebea2f7d1cc76b6e7d4fe5"}, 0x11, 0x2)
r0 = getpid()
pidfd_open(r0, 0x0)
perf_event_open(&(0x7f00000001c0)={0x0, 0x80, 0xaa, 0x0, 0xe0, 0x3, 0x0, 0x7, 0x10003, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000180)}, 0x401a, 0x800, 0x8, 0x7, 0x3a74, 0x80, 0x9e6, 0x0, 0x2, 0x0, 0x2}, r0, 0x4, 0xffffffffffffffff, 0x1)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:11:42 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x8000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:11:42 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x1000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:11:42 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x7ffffffff000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:11:42 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 97)

05:11:42 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 91)

05:11:42 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 73)

05:11:42 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x2, 0x0)

05:11:42 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x2000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1342.220143] FAULT_INJECTION: forcing a failure.
[ 1342.220143] name failslab, interval 1, probability 0, space 0, times 0
[ 1342.221092] CPU: 1 PID: 8112 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1342.221635] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1342.222181] Call Trace:
[ 1342.222362]  <TASK>
[ 1342.222523]  dump_stack_lvl+0xc1/0xf0
[ 1342.222801]  should_fail_ex+0x4b4/0x5b0
[ 1342.223100]  ? __kernfs_new_node+0xd4/0x870
[ 1342.223417]  should_failslab+0x9/0x20
[ 1342.223689]  kmem_cache_alloc+0x5a/0x390
[ 1342.223980]  __kernfs_new_node+0xd4/0x870
[ 1342.224268]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1342.224610]  ? down_write+0x11a/0x1f0
[ 1342.224888]  ? up_write+0x196/0x510
[ 1342.225154]  kernfs_new_node+0x97/0x120
[ 1342.225443]  __kernfs_create_file+0x55/0x350
[ 1342.225764]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1342.226091]  ? __pfx_slab_attr_store+0x10/0x10
[ 1342.226419]  internal_create_group+0x322/0xb90
[ 1342.226740]  ? __pfx_internal_create_group+0x10/0x10
[ 1342.227091]  ? up_write+0x196/0x510
[ 1342.227362]  sysfs_slab_add+0x18e/0x220
[ 1342.227649]  __kmem_cache_create+0x1fe/0x610
[ 1342.227964]  kmem_cache_create_usercopy+0x218/0x340
[ 1342.228317]  p9_client_create+0xd0b/0x1260
[ 1342.228620]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1342.228984]  ? __pfx_p9_client_create+0x10/0x10
[ 1342.229308]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1342.229652]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1342.229974]  ? __kasan_kmalloc+0x7f/0x90
[ 1342.230264]  ? __raw_spin_lock_init+0x3a/0x110
[ 1342.230596]  v9fs_session_init+0x1e0/0x17b0
[ 1342.230909]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1342.231288]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1342.231691]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1342.232038]  ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 1342.232400]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1342.232763]  ? v9fs_mount+0x9e/0xbd0
[ 1342.233059]  v9fs_mount+0xbd/0xbd0
[ 1342.233332]  ? legacy_init_fs_context+0x44/0xe0
[ 1342.233668]  ? __pfx_v9fs_mount+0x10/0x10
[ 1342.233975]  ? cap_capable+0x1be/0x220
[ 1342.234266]  ? __pfx_v9fs_mount+0x10/0x10
[ 1342.234570]  legacy_get_tree+0x109/0x220
[ 1342.234872]  vfs_get_tree+0x92/0x360
[ 1342.235147]  path_mount+0x133c/0x1e50
[ 1342.235452]  ? kasan_quarantine_put+0x81/0x1d0
[ 1342.235786]  ? __pfx_path_mount+0x10/0x10
[ 1342.236094]  ? putname+0x102/0x140
[ 1342.236358]  ? kmem_cache_free+0xff/0x4a0
[ 1342.236661]  ? putname+0x102/0x140
[ 1342.236936]  __x64_sys_mount+0x286/0x310
[ 1342.237224]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1342.237541]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1342.237924]  do_syscall_64+0x3f/0x90
[ 1342.238196]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1342.238565] RIP: 0033:0x7fcf62391b19
[ 1342.238822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1342.240038] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1342.240543] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1342.241024] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1342.241502] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1342.241992] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1342.242474] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1342.242963]  </TASK>
05:11:42 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x9000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:11:42 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 89)

[ 1342.276602] 9pnet_virtio: no channels available for device ./file0
[ 1342.279919] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1342.280691] CPU: 0 PID: 8112 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1342.281401] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1342.282095] Call Trace:
[ 1342.282335]  <TASK>
[ 1342.282560]  dump_stack_lvl+0xc1/0xf0
[ 1342.282938]  kmem_cache_create_usercopy+0x12b/0x340
[ 1342.283439]  p9_client_create+0xd0b/0x1260
[ 1342.283847]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1342.283948] 9pnet_virtio: no channels available for device ./file0
[ 1342.284308]  ? __pfx_p9_client_create+0x10/0x10
[ 1342.285154]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1342.285629]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1342.286061]  ? __kasan_kmalloc+0x7f/0x90
[ 1342.286465]  ? __raw_spin_lock_init+0x3a/0x110
[ 1342.286906]  v9fs_session_init+0x1e0/0x17b0
[ 1342.287317]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1342.287886]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1342.288413]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1342.288863]  ? _raw_spin_unlock_irqrestore+0x2c/0x50
[ 1342.289339]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1342.289797]  ? v9fs_mount+0x9e/0xbd0
[ 1342.290180]  v9fs_mount+0xbd/0xbd0
[ 1342.290531]  ? legacy_init_fs_context+0x44/0xe0
[ 1342.290953]  ? __pfx_v9fs_mount+0x10/0x10
[ 1342.291356]  ? cap_capable+0x1be/0x220
[ 1342.291769]  ? __pfx_v9fs_mount+0x10/0x10
[ 1342.292166]  legacy_get_tree+0x109/0x220
[ 1342.292572]  vfs_get_tree+0x92/0x360
[ 1342.292936]  path_mount+0x133c/0x1e50
[ 1342.293336]  ? kasan_quarantine_put+0x81/0x1d0
[ 1342.293787]  ? __pfx_path_mount+0x10/0x10
[ 1342.294176]  ? putname+0x102/0x140
[ 1342.294531]  ? kmem_cache_free+0xff/0x4a0
[ 1342.294928]  ? putname+0x102/0x140
[ 1342.295312]  __x64_sys_mount+0x286/0x310
[ 1342.295724]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1342.296146]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1342.296708]  do_syscall_64+0x3f/0x90
[ 1342.297069]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1342.297554] RIP: 0033:0x7fcf62391b19
[ 1342.297891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1342.299432] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1342.300094] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1342.300732] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1342.301364] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1342.302011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1342.302623] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1342.303274]  </TASK>
[ 1342.325694] FAULT_INJECTION: forcing a failure.
[ 1342.325694] name failslab, interval 1, probability 0, space 0, times 0
[ 1342.326599] CPU: 1 PID: 8123 Comm: syz-executor.3 Not tainted 6.4.0-rc3-next-20230525 #1
05:11:42 executing program 1:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = getpid()
pidfd_open(r1, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x18001, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000080)}, 0x0, 0x81, 0x0, 0x7, 0x8, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x7ffff}, r1, 0x0, 0xffffffffffffffff, 0x8)
renameat(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000000140)='./file0\x00')
setxattr$security_evm(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040), &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x2, 0x5)

[ 1342.327142] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1342.327902] Call Trace:
[ 1342.328090]  <TASK>
[ 1342.328268]  dump_stack_lvl+0xc1/0xf0
[ 1342.328560]  should_fail_ex+0x4b4/0x5b0
[ 1342.328866]  ? __kernfs_new_node+0xd4/0x870
[ 1342.329182]  should_failslab+0x9/0x20
[ 1342.329463]  kmem_cache_alloc+0x5a/0x390
[ 1342.329775]  __kernfs_new_node+0xd4/0x870
[ 1342.330079]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1342.330426]  ? down_write+0x11a/0x1f0
[ 1342.330720]  ? up_write+0x196/0x510
[ 1342.331000]  kernfs_new_node+0x97/0x120
[ 1342.331297]  __kernfs_create_file+0x55/0x350
[ 1342.331642]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1342.331977]  ? __pfx_slab_attr_store+0x10/0x10
[ 1342.332316]  internal_create_group+0x322/0xb90
[ 1342.332651]  ? __pfx_internal_create_group+0x10/0x10
[ 1342.333008]  ? up_write+0x196/0x510
[ 1342.333290]  sysfs_slab_add+0x18e/0x220
[ 1342.333580]  __kmem_cache_create+0x1fe/0x610
[ 1342.333909]  kmem_cache_create_usercopy+0x218/0x340
[ 1342.334276]  p9_client_create+0xd0b/0x1260
[ 1342.334589]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1342.334958]  ? __pfx_p9_client_create+0x10/0x10
[ 1342.335291]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1342.335651]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1342.335985]  ? __kasan_kmalloc+0x7f/0x90
[ 1342.336289]  ? __raw_spin_lock_init+0x3a/0x110
[ 1342.336623]  v9fs_session_init+0x1e0/0x17b0
[ 1342.336952]  ? __pfx_lock_release+0x10/0x10
[ 1342.337262]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1342.337605]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1342.337989]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1342.338336]  ? v9fs_mount+0x9e/0xbd0
[ 1342.338640]  v9fs_mount+0xbd/0xbd0
[ 1342.338902]  ? legacy_init_fs_context+0x44/0xe0
[ 1342.339241]  ? __pfx_v9fs_mount+0x10/0x10
[ 1342.339554]  ? cap_capable+0x1be/0x220
[ 1342.339860]  ? __pfx_v9fs_mount+0x10/0x10
05:11:42 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x7000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1342.340169]  legacy_get_tree+0x109/0x220
[ 1342.340625]  vfs_get_tree+0x92/0x360
[ 1342.340908]  path_mount+0x133c/0x1e50
[ 1342.341203]  ? kasan_quarantine_put+0x81/0x1d0
[ 1342.341532]  ? __pfx_path_mount+0x10/0x10
[ 1342.341838]  ? putname+0x102/0x140
[ 1342.342100]  ? kmem_cache_free+0xff/0x4a0
[ 1342.342404]  ? putname+0x102/0x140
[ 1342.342680]  __x64_sys_mount+0x286/0x310
[ 1342.342974]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1342.343303]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1342.343693]  do_syscall_64+0x3f/0x90
05:11:42 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x3, 0x0)

[ 1342.343973]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1342.344473] RIP: 0033:0x7ff349defb19
[ 1342.344760] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1342.346014] RSP: 002b:00007ff347365188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1342.346549] RAX: ffffffffffffffda RBX: 00007ff349f02f60 RCX: 00007ff349defb19
[ 1342.347051] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1342.347569] RBP: 00007ff3473651d0 R08: 0000000020000240 R09: 0000000000000000
[ 1342.348071] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1342.348572] R13: 00007fffc306ac3f R14: 00007ff347365300 R15: 0000000000022000
[ 1342.349108]  </TASK>
[ 1342.378921] 9pnet_virtio: no channels available for device ./file0
[ 1342.383623] 9pnet_virtio: no channels available for device ./file0
05:11:42 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x4, 0x0)

[ 1342.410863] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1342.411544] CPU: 1 PID: 8123 Comm: syz-executor.3 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1342.412117] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1342.412692] Call Trace:
[ 1342.412886]  <TASK>
[ 1342.413059]  dump_stack_lvl+0xc1/0xf0
[ 1342.413362]  kmem_cache_create_usercopy+0x12b/0x340
[ 1342.413747]  p9_client_create+0xd0b/0x1260
[ 1342.414075]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1342.414454]  ? __pfx_p9_client_create+0x10/0x10
[ 1342.414800]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1342.415178]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1342.415516]  ? __kasan_kmalloc+0x7f/0x90
[ 1342.415829]  ? __raw_spin_lock_init+0x3a/0x110
[ 1342.416183]  v9fs_session_init+0x1e0/0x17b0
[ 1342.416518]  ? __pfx_lock_release+0x10/0x10
[ 1342.416839]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1342.417199]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1342.417590]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1342.417943]  ? v9fs_mount+0x9e/0xbd0
[ 1342.418251]  v9fs_mount+0xbd/0xbd0
[ 1342.418523]  ? legacy_init_fs_context+0x44/0xe0
[ 1342.418852]  ? __pfx_v9fs_mount+0x10/0x10
[ 1342.419171]  ? cap_capable+0x1be/0x220
[ 1342.419483]  ? __pfx_v9fs_mount+0x10/0x10
[ 1342.419795]  legacy_get_tree+0x109/0x220
[ 1342.420100]  vfs_get_tree+0x92/0x360
[ 1342.420386]  path_mount+0x133c/0x1e50
[ 1342.420677]  ? kasan_quarantine_put+0x81/0x1d0
[ 1342.421025]  ? __pfx_path_mount+0x10/0x10
[ 1342.421318]  ? putname+0x102/0x140
[ 1342.421591]  ? kmem_cache_free+0xff/0x4a0
[ 1342.421890]  ? putname+0x102/0x140
[ 1342.422176]  __x64_sys_mount+0x286/0x310
[ 1342.422461]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1342.422805]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1342.423175]  do_syscall_64+0x3f/0x90
[ 1342.423471]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1342.423860] RIP: 0033:0x7ff349defb19
[ 1342.424137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1342.425394] RSP: 002b:00007ff347365188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1342.425929] RAX: ffffffffffffffda RBX: 00007ff349f02f60 RCX: 00007ff349defb19
[ 1342.426433] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1342.426937] RBP: 00007ff3473651d0 R08: 0000000020000240 R09: 0000000000000000
[ 1342.427454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1342.427958] R13: 00007fffc306ac3f R14: 00007ff347365300 R15: 0000000000022000
[ 1342.428486]  </TASK>
05:11:42 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x8000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1342.466987] 9pnet_virtio: no channels available for device ./file0
[ 1342.472932] 9pnet_virtio: no channels available for device ./file0
05:11:42 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat$zero(0xffffffffffffff9c, &(0x7f00000000c0), 0x3, 0x0)
symlinkat(&(0x7f0000000040)='./file1\x00', r0, &(0x7f0000000140)='./file0\x00')
r1 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x81, 0xff, 0x7f, 0x1, 0x0, 0x6, 0x50000, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x56a, 0x2, @perf_config_ext={0x2, 0x7}, 0x400, 0x5, 0x6, 0x4, 0x4, 0x553, 0x9, 0x0, 0x1ff, 0x0, 0x3ff}, 0x0, 0x10, r1, 0x1)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:11:42 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 98)

05:11:42 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 92)

05:11:42 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x5, 0x0)

05:11:42 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x9000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:11:42 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xa000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1342.574840] FAULT_INJECTION: forcing a failure.
[ 1342.574840] name failslab, interval 1, probability 0, space 0, times 0
[ 1342.575750] CPU: 1 PID: 8145 Comm: syz-executor.6 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1342.576319] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1342.576890] Call Trace:
[ 1342.577081]  <TASK>
[ 1342.577251]  dump_stack_lvl+0xc1/0xf0
[ 1342.577543]  should_fail_ex+0x4b4/0x5b0
[ 1342.577845]  ? __kernfs_new_node+0xd4/0x870
[ 1342.578154]  should_failslab+0x9/0x20
[ 1342.578444]  kmem_cache_alloc+0x5a/0x390
[ 1342.578751]  __kernfs_new_node+0xd4/0x870
[ 1342.579061]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1342.579416]  ? down_write+0x11a/0x1f0
[ 1342.579708]  ? up_write+0x196/0x510
[ 1342.579988]  kernfs_new_node+0x97/0x120
[ 1342.580292]  __kernfs_create_file+0x55/0x350
[ 1342.580622]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1342.580960]  ? __pfx_slab_attr_store+0x10/0x10
[ 1342.581300]  internal_create_group+0x322/0xb90
[ 1342.581647]  ? __pfx_internal_create_group+0x10/0x10
[ 1342.582018]  ? up_write+0x196/0x510
[ 1342.582302]  sysfs_slab_add+0x18e/0x220
[ 1342.582580]  __kmem_cache_create+0x1fe/0x610
[ 1342.582916]  kmem_cache_create_usercopy+0x218/0x340
[ 1342.583262]  p9_client_create+0xd0b/0x1260
[ 1342.583591]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1342.583966]  ? __pfx_p9_client_create+0x10/0x10
[ 1342.584303]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1342.584663]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1342.585002]  ? __kasan_kmalloc+0x7f/0x90
[ 1342.585315]  ? __raw_spin_lock_init+0x3a/0x110
[ 1342.585656]  v9fs_session_init+0x1e0/0x17b0
[ 1342.585984]  ? __pfx_lock_release+0x10/0x10
[ 1342.586276]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1342.586631]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1342.587008]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1342.587346]  ? v9fs_mount+0x9e/0xbd0
[ 1342.587649]  v9fs_mount+0xbd/0xbd0
[ 1342.587920]  ? legacy_init_fs_context+0x44/0xe0
[ 1342.588249]  ? __pfx_v9fs_mount+0x10/0x10
[ 1342.588560]  ? cap_capable+0x1be/0x220
[ 1342.588848]  ? __pfx_v9fs_mount+0x10/0x10
[ 1342.589153]  legacy_get_tree+0x109/0x220
[ 1342.589451]  vfs_get_tree+0x92/0x360
[ 1342.589736]  path_mount+0x133c/0x1e50
[ 1342.590021]  ? kasan_quarantine_put+0x81/0x1d0
[ 1342.590367]  ? __pfx_path_mount+0x10/0x10
[ 1342.590662]  ? putname+0x102/0x140
[ 1342.590929]  ? kmem_cache_free+0xff/0x4a0
[ 1342.591227]  ? putname+0x102/0x140
[ 1342.591519]  __x64_sys_mount+0x286/0x310
[ 1342.591814]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1342.592145]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1342.592514]  do_syscall_64+0x3f/0x90
[ 1342.592779]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1342.593156] RIP: 0033:0x7fdb13b24b19
[ 1342.593414] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1342.594647] RSP: 002b:00007fdb1109a188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1342.595153] RAX: ffffffffffffffda RBX: 00007fdb13c37f60 RCX: 00007fdb13b24b19
[ 1342.595672] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1342.596170] RBP: 00007fdb1109a1d0 R08: 0000000020000240 R09: 0000000000000000
[ 1342.596667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1342.597160] R13: 00007fff73fffccf R14: 00007fdb1109a300 R15: 0000000000022000
[ 1342.597668]  </TASK>
[ 1342.606971] 9pnet_virtio: no channels available for device ./file0
[ 1342.611831] 9pnet_virtio: no channels available for device ./file0
[ 1342.640138] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1342.640933] CPU: 1 PID: 8145 Comm: syz-executor.6 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1342.641505] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1342.642081] Call Trace:
[ 1342.642271]  <TASK>
[ 1342.642447]  dump_stack_lvl+0xc1/0xf0
[ 1342.642734]  kmem_cache_create_usercopy+0x12b/0x340
[ 1342.643108]  p9_client_create+0xd0b/0x1260
[ 1342.643425]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1342.643807]  ? __pfx_p9_client_create+0x10/0x10
[ 1342.644140]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1342.644489]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1342.644829]  ? __kasan_kmalloc+0x7f/0x90
[ 1342.645120]  ? __raw_spin_lock_init+0x3a/0x110
[ 1342.645458]  v9fs_session_init+0x1e0/0x17b0
[ 1342.645784]  ? __pfx_lock_release+0x10/0x10
[ 1342.646081]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1342.646432]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1342.646793]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1342.647153]  ? v9fs_mount+0x9e/0xbd0
[ 1342.647443]  v9fs_mount+0xbd/0xbd0
[ 1342.647709]  ? legacy_init_fs_context+0x44/0xe0
[ 1342.648031]  ? __pfx_v9fs_mount+0x10/0x10
[ 1342.648339]  ? cap_capable+0x1be/0x220
[ 1342.648626]  ? __pfx_v9fs_mount+0x10/0x10
[ 1342.648934]  legacy_get_tree+0x109/0x220
[ 1342.649229]  vfs_get_tree+0x92/0x360
[ 1342.649515]  path_mount+0x133c/0x1e50
[ 1342.649798]  ? kasan_quarantine_put+0x81/0x1d0
[ 1342.650138]  ? __pfx_path_mount+0x10/0x10
[ 1342.650431]  ? putname+0x102/0x140
[ 1342.650696]  ? kmem_cache_free+0xff/0x4a0
[ 1342.650987]  ? putname+0x102/0x140
[ 1342.651260]  __x64_sys_mount+0x286/0x310
[ 1342.651557]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1342.651889]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1342.652246]  do_syscall_64+0x3f/0x90
[ 1342.652527]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1342.652896] RIP: 0033:0x7fdb13b24b19
[ 1342.653165] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1342.654340] RSP: 002b:00007fdb1109a188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1342.654869] RAX: ffffffffffffffda RBX: 00007fdb13c37f60 RCX: 00007fdb13b24b19
[ 1342.655373] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1342.655867] RBP: 00007fdb1109a1d0 R08: 0000000020000240 R09: 0000000000000000
[ 1342.656365] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1342.656864] R13: 00007fff73fffccf R14: 00007fdb1109a300 R15: 0000000000022000
[ 1342.657370]  </TASK>
05:11:54 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 99)

05:11:54 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 74)

05:11:54 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xb000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:11:54 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 90)

05:11:54 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x6, 0x0)

05:11:54 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xa000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:11:54 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 93)

05:11:54 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
setxattr$security_evm(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000140)=@v2={0x5, 0x3, 0x6, 0x8, 0x8c, "0a55b36396d993e5bc82091ea8ab7a2ec59a1c6c0bc7f3e1a8415bcca6ebb1853d84a530a268f449fd38a71ed7db2dacee3735d2da73da2ebe8c41ef48c75553f428d081da59988aad026366eba2ca15855facf7687a79ed072392d5c4ddbd46d191c3d6c760a42e0bfeb06bb123bc5831ed5ec237a9d9602deb4d59476155d62b022ecf650af2042a18b9f2"}, 0x95, 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x20000, 0x15b)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

[ 1353.979805] FAULT_INJECTION: forcing a failure.
[ 1353.979805] name failslab, interval 1, probability 0, space 0, times 0
[ 1353.981568] CPU: 0 PID: 8163 Comm: syz-executor.5 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1353.982912] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1353.984267] Call Trace:
[ 1353.984726]  <TASK>
[ 1353.985135]  dump_stack_lvl+0xc1/0xf0
[ 1353.985835]  should_fail_ex+0x4b4/0x5b0
[ 1353.986566]  ? __kernfs_new_node+0xd4/0x870
[ 1353.987314]  should_failslab+0x9/0x20
[ 1353.988011]  kmem_cache_alloc+0x5a/0x390
[ 1353.988759]  __kernfs_new_node+0xd4/0x870
[ 1353.989514]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1353.990352]  ? down_write+0x11a/0x1f0
[ 1353.991062]  ? up_write+0x196/0x510
[ 1353.991751]  kernfs_new_node+0x97/0x120
[ 1353.992477]  __kernfs_create_file+0x55/0x350
[ 1353.993267]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1353.994076]  ? __pfx_slab_attr_store+0x10/0x10
[ 1353.994909]  internal_create_group+0x322/0xb90
[ 1353.995759]  ? __pfx_internal_create_group+0x10/0x10
[ 1353.996649]  ? up_write+0x196/0x510
[ 1353.997333]  sysfs_slab_add+0x18e/0x220
[ 1353.998024]  __kmem_cache_create+0x1fe/0x610
[ 1353.998816]  kmem_cache_create_usercopy+0x218/0x340
[ 1353.998939] 9pnet_virtio: no channels available for device ./file0
[ 1353.999689]  p9_client_create+0xd0b/0x1260
[ 1354.000809]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1354.001691]  ? __pfx_p9_client_create+0x10/0x10
[ 1354.002513]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1354.003368]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1354.004209]  ? __kasan_kmalloc+0x7f/0x90
[ 1354.004947]  ? __raw_spin_lock_init+0x3a/0x110
[ 1354.005776]  v9fs_session_init+0x1e0/0x17b0
[ 1354.006557]  ? __pfx_lock_release+0x10/0x10
[ 1354.007288]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1354.008010]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1354.008924]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1354.009769]  ? v9fs_mount+0x9e/0xbd0
[ 1354.010496]  v9fs_mount+0xbd/0xbd0
[ 1354.011138]  ? legacy_init_fs_context+0x44/0xe0
[ 1354.011905] 9pnet_virtio: no channels available for device ./file0
[ 1354.012942]  ? __pfx_v9fs_mount+0x10/0x10
[ 1354.013681]  ? cap_capable+0x1be/0x220
[ 1354.014400]  ? __pfx_v9fs_mount+0x10/0x10
[ 1354.015010]  legacy_get_tree+0x109/0x220
[ 1354.015778]  vfs_get_tree+0x92/0x360
[ 1354.016463]  path_mount+0x133c/0x1e50
[ 1354.017179]  ? kasan_quarantine_put+0x81/0x1d0
[ 1354.017981]  ? __pfx_path_mount+0x10/0x10
[ 1354.018713]  ? putname+0x102/0x140
[ 1354.019352]  ? kmem_cache_free+0xff/0x4a0
[ 1354.020097]  ? putname+0x102/0x140
[ 1354.020771]  __x64_sys_mount+0x286/0x310
[ 1354.021467]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1354.022116]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1354.023037]  do_syscall_64+0x3f/0x90
[ 1354.023737]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1354.024643] RIP: 0033:0x7f05858feb19
[ 1354.025289] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1354.028238] RSP: 002b:00007f0582e74188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1354.029495] RAX: ffffffffffffffda RBX: 00007f0585a11f60 RCX: 00007f05858feb19
[ 1354.030677] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1354.031887] RBP: 00007f0582e741d0 R08: 0000000020000240 R09: 0000000000000000
[ 1354.033043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1354.034227] R13: 00007ffd3f25a19f R14: 00007f0582e74300 R15: 0000000000022000
[ 1354.035477]  </TASK>
[ 1354.048802] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1354.049277] CPU: 1 PID: 8163 Comm: syz-executor.5 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1354.049763] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1354.050251] Call Trace:
[ 1354.050416]  <TASK>
[ 1354.050586]  dump_stack_lvl+0xc1/0xf0
[ 1354.050847]  kmem_cache_create_usercopy+0x12b/0x340
[ 1354.051169]  p9_client_create+0xd0b/0x1260
[ 1354.051443]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1354.051816]  ? __pfx_p9_client_create+0x10/0x10
[ 1354.052116]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1354.052428]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1354.052725]  ? __kasan_kmalloc+0x7f/0x90
[ 1354.052990]  ? __raw_spin_lock_init+0x3a/0x110
[ 1354.053284]  v9fs_session_init+0x1e0/0x17b0
[ 1354.053566]  ? __pfx_lock_release+0x10/0x10
[ 1354.053839]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1354.054142]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1354.054469]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1354.054816]  ? v9fs_mount+0x9e/0xbd0
[ 1354.055076]  v9fs_mount+0xbd/0xbd0
[ 1354.055330]  ? legacy_init_fs_context+0x44/0xe0
[ 1354.055631]  ? __pfx_v9fs_mount+0x10/0x10
[ 1354.055900]  ? cap_capable+0x1be/0x220
[ 1354.056162]  ? __pfx_v9fs_mount+0x10/0x10
[ 1354.056430]  legacy_get_tree+0x109/0x220
[ 1354.056699]  vfs_get_tree+0x92/0x360
[ 1354.056948]  path_mount+0x133c/0x1e50
[ 1354.057205]  ? kasan_quarantine_put+0x81/0x1d0
[ 1354.057499]  ? __pfx_path_mount+0x10/0x10
[ 1354.057793]  ? putname+0x102/0x140
[ 1354.058037]  ? kmem_cache_free+0xff/0x4a0
[ 1354.058305]  ? putname+0x102/0x140
[ 1354.058545]  __x64_sys_mount+0x286/0x310
[ 1354.058799]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1354.059087]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1354.059450]  do_syscall_64+0x3f/0x90
[ 1354.059710]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1354.060038] RIP: 0033:0x7f05858feb19
[ 1354.060272] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1354.061330] RSP: 002b:00007f0582e74188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1354.061788] RAX: ffffffffffffffda RBX: 00007f0585a11f60 RCX: 00007f05858feb19
[ 1354.062218] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1354.062646] RBP: 00007f0582e741d0 R08: 0000000020000240 R09: 0000000000000000
[ 1354.063073] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1354.063507] R13: 00007ffd3f25a19f R14: 00007f0582e74300 R15: 0000000000022000
[ 1354.063949]  </TASK>
05:11:54 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x10000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:11:54 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x7, 0x0)

05:11:54 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
r1 = getpid()
pidfd_open(r1, 0x0)
perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0x80, 0xba, 0x20, 0x8, 0x0, 0x9, 0x40020, 0x2, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x90, 0x4, @perf_config_ext={0xc07, 0x1000}, 0x0, 0x9fd6, 0x6, 0x9, 0x0, 0x5, 0x759, 0x0, 0x8}, r1, 0xa, r0, 0x0)

[ 1354.105004] FAULT_INJECTION: forcing a failure.
[ 1354.105004] name failslab, interval 1, probability 0, space 0, times 0
[ 1354.106649] CPU: 0 PID: 8177 Comm: syz-executor.6 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1354.107731] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1354.108811] Call Trace:
[ 1354.109180]  <TASK>
[ 1354.109512]  dump_stack_lvl+0xc1/0xf0
[ 1354.110072]  should_fail_ex+0x4b4/0x5b0
[ 1354.110665]  ? __kernfs_new_node+0xd4/0x870
[ 1354.111265]  should_failslab+0x9/0x20
[ 1354.111808] 9pnet_virtio: no channels available for device ./file0
[ 1354.112627]  kmem_cache_alloc+0x5a/0x390
[ 1354.113224]  __kernfs_new_node+0xd4/0x870
[ 1354.113816]  ? wake_up_q+0x8f/0xf0
[ 1354.114329]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1354.114983]  ? rwsem_wake.isra.0+0xc3/0x110
[ 1354.115640]  ? down_write+0x1c3/0x1f0
[ 1354.116229]  ? up_write+0x207/0x510
[ 1354.116433] 9pnet_virtio: no channels available for device ./file0
[ 1354.116773]  kernfs_new_node+0x97/0x120
[ 1354.117801]  __kernfs_create_file+0x55/0x350
[ 1354.118471]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1354.119154]  ? __pfx_slab_attr_store+0x10/0x10
[ 1354.119872]  internal_create_group+0x322/0xb90
[ 1354.120564]  ? __pfx_internal_create_group+0x10/0x10
[ 1354.121299]  ? up_write+0x207/0x510
[ 1354.121883]  sysfs_slab_add+0x18e/0x220
[ 1354.122473]  __kmem_cache_create+0x1fe/0x610
[ 1354.123132]  kmem_cache_create_usercopy+0x218/0x340
[ 1354.123889]  p9_client_create+0xd0b/0x1260
[ 1354.124528]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1354.125267]  ? __pfx_p9_client_create+0x10/0x10
[ 1354.125952]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1354.126671]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1354.127355]  ? __kasan_kmalloc+0x7f/0x90
[ 1354.127982]  ? __raw_spin_lock_init+0x3a/0x110
[ 1354.128662]  v9fs_session_init+0x1e0/0x17b0
[ 1354.129320]  ? __pfx_lock_release+0x10/0x10
[ 1354.129957]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1354.130664]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1354.131428]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1354.132165]  ? v9fs_mount+0x9e/0xbd0
[ 1354.132772]  v9fs_mount+0xbd/0xbd0
[ 1354.133311]  ? legacy_init_fs_context+0x44/0xe0
[ 1354.133988]  ? __pfx_v9fs_mount+0x10/0x10
[ 1354.134608]  ? cap_capable+0x1be/0x220
[ 1354.135218]  ? __pfx_v9fs_mount+0x10/0x10
[ 1354.135849]  legacy_get_tree+0x109/0x220
[ 1354.136476]  vfs_get_tree+0x92/0x360
[ 1354.137052]  path_mount+0x133c/0x1e50
[ 1354.137635]  ? kasan_quarantine_put+0x81/0x1d0
[ 1354.138303]  ? __pfx_path_mount+0x10/0x10
[ 1354.138922]  ? putname+0x102/0x140
[ 1354.139458]  ? kmem_cache_free+0xff/0x4a0
[ 1354.140103]  ? putname+0x102/0x140
[ 1354.140664]  __x64_sys_mount+0x286/0x310
[ 1354.141256]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1354.141933]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1354.142693]  do_syscall_64+0x3f/0x90
[ 1354.143252]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1354.144002] RIP: 0033:0x7fdb13b24b19
[ 1354.144540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1354.146975] RSP: 002b:00007fdb1109a188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1354.148030] RAX: ffffffffffffffda RBX: 00007fdb13c37f60 RCX: 00007fdb13b24b19
[ 1354.149010] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1354.149985] RBP: 00007fdb1109a1d0 R08: 0000000020000240 R09: 0000000000000000
[ 1354.150967] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1354.151964] R13: 00007fff73fffccf R14: 00007fdb1109a300 R15: 0000000000022000
[ 1354.153001]  </TASK>
05:11:54 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x20000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1354.195716] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1354.196936] CPU: 0 PID: 8177 Comm: syz-executor.6 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1354.198011] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1354.199078] Call Trace:
[ 1354.199442]  <TASK>
[ 1354.199785]  dump_stack_lvl+0xc1/0xf0
05:11:54 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x100000001, 0x100000001}, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000040))
r1 = ioctl$TIOCGPTPEER(r0, 0x5441, 0x0)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f00000000c0)=0x13)
ioctl$F2FS_IOC_FLUSH_DEVICE(r1, 0x4008f50a, &(0x7f0000000040)={0x0, 0x5})

05:11:54 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xb000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1354.200345]  kmem_cache_create_usercopy+0x12b/0x340
[ 1354.201229]  p9_client_create+0xd0b/0x1260
[ 1354.201986]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1354.202704]  ? __pfx_p9_client_create+0x10/0x10
[ 1354.203355]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1354.204073]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1354.204732]  ? __kasan_kmalloc+0x7f/0x90
[ 1354.205318]  ? __raw_spin_lock_init+0x3a/0x110
[ 1354.205971]  v9fs_session_init+0x1e0/0x17b0
[ 1354.206599]  ? __pfx_lock_release+0x10/0x10
[ 1354.207200]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1354.207886]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1354.208613]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1354.209288]  ? v9fs_mount+0x9e/0xbd0
[ 1354.209870]  v9fs_mount+0xbd/0xbd0
[ 1354.210388]  ? legacy_init_fs_context+0x44/0xe0
[ 1354.211026]  ? __pfx_v9fs_mount+0x10/0x10
[ 1354.211624]  ? cap_capable+0x1be/0x220
[ 1354.212342]  ? __pfx_v9fs_mount+0x10/0x10
[ 1354.212932]  legacy_get_tree+0x109/0x220
[ 1354.213665]  vfs_get_tree+0x92/0x360
[ 1354.214343]  path_mount+0x133c/0x1e50
[ 1354.215043]  ? kasan_quarantine_put+0x81/0x1d0
[ 1354.215846]  ? __pfx_path_mount+0x10/0x10
[ 1354.216588]  ? putname+0x102/0x140
[ 1354.217226]  ? kmem_cache_free+0xff/0x4a0
[ 1354.217864]  ? putname+0x102/0x140
[ 1354.218377]  __x64_sys_mount+0x286/0x310
[ 1354.218909]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1354.219556]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1354.220259]  do_syscall_64+0x3f/0x90
[ 1354.220783]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1354.221453] RIP: 0033:0x7fdb13b24b19
[ 1354.221947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1354.224108] RSP: 002b:00007fdb1109a188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1354.225062] RAX: ffffffffffffffda RBX: 00007fdb13c37f60 RCX: 00007fdb13b24b19
[ 1354.225950] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1354.226833] RBP: 00007fdb1109a1d0 R08: 0000000020000240 R09: 0000000000000000
[ 1354.227830] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1354.228789] R13: 00007fff73fffccf R14: 00007fdb1109a300 R15: 0000000000022000
[ 1354.229805]  </TASK>
[ 1354.230265] 9pnet_virtio: no channels available for device ./file0
05:11:54 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x8, 0x0)

[ 1354.240538] 9pnet_virtio: no channels available for device ./file0
05:12:05 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 100)

05:12:05 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 94)

05:12:05 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x20100000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:12:05 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 91)

05:12:05 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xf0, 0x0)

05:12:05 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000040))
r1 = ioctl$TIOCGPTPEER(r0, 0x5441, 0x0)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f00000000c0)=0x13)
ioctl$EXT4_IOC_MIGRATE(r1, 0x6609)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:12:05 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 75)

05:12:05 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x10000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1365.689911] FAULT_INJECTION: forcing a failure.
[ 1365.689911] name failslab, interval 1, probability 0, space 0, times 0
[ 1365.691672] CPU: 0 PID: 8218 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1365.692784] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1365.693904] Call Trace:
[ 1365.694356]  <TASK>
[ 1365.694702]  dump_stack_lvl+0xc1/0xf0
[ 1365.695416]  should_fail_ex+0x4b4/0x5b0
[ 1365.696099]  ? __kernfs_new_node+0xd4/0x870
[ 1365.696747]  should_failslab+0x9/0x20
[ 1365.697476]  kmem_cache_alloc+0x5a/0x390
[ 1365.698105]  __kernfs_new_node+0xd4/0x870
[ 1365.698861]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1365.699582]  ? down_write+0x11a/0x1f0
[ 1365.700295]  ? up_write+0x196/0x510
[ 1365.700870]  kernfs_new_node+0x97/0x120
[ 1365.701611]  __kernfs_create_file+0x55/0x350
[ 1365.702360]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1365.702996]  ? __pfx_slab_attr_store+0x10/0x10
[ 1365.703852]  internal_create_group+0x322/0xb90
[ 1365.704683]  ? __pfx_internal_create_group+0x10/0x10
[ 1365.705528]  ? up_write+0x207/0x510
[ 1365.706202]  sysfs_slab_add+0x18e/0x220
[ 1365.706743]  __kmem_cache_create+0x1fe/0x610
[ 1365.707570]  kmem_cache_create_usercopy+0x218/0x340
[ 1365.708266]  p9_client_create+0xd0b/0x1260
[ 1365.708887]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1365.709583]  ? __pfx_p9_client_create+0x10/0x10
[ 1365.710303]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1365.710991]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1365.711618]  ? __kasan_kmalloc+0x7f/0x90
[ 1365.712294]  ? __raw_spin_lock_init+0x3a/0x110
[ 1365.712947]  v9fs_session_init+0x1e0/0x17b0
[ 1365.713793]  ? __pfx_lock_release+0x10/0x10
[ 1365.714432]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1365.715175]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1365.716042]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1365.716898]  ? v9fs_mount+0x9e/0xbd0
[ 1365.717510]  v9fs_mount+0xbd/0xbd0
[ 1365.718046]  ? legacy_init_fs_context+0x44/0xe0
[ 1365.718899]  ? __pfx_v9fs_mount+0x10/0x10
[ 1365.719510]  ? cap_capable+0x1be/0x220
[ 1365.720302]  ? __pfx_v9fs_mount+0x10/0x10
[ 1365.720934]  legacy_get_tree+0x109/0x220
[ 1365.721628]  vfs_get_tree+0x92/0x360
[ 1365.722340]  path_mount+0x133c/0x1e50
[ 1365.722889]  ? kasan_quarantine_put+0x81/0x1d0
[ 1365.723719]  ? __pfx_path_mount+0x10/0x10
[ 1365.724471]  ? putname+0x102/0x140
[ 1365.724969]  ? kmem_cache_free+0xff/0x4a0
[ 1365.725721]  ? putname+0x102/0x140
[ 1365.726280]  __x64_sys_mount+0x286/0x310
[ 1365.727006]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1365.727726]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1365.728668]  do_syscall_64+0x3f/0x90
[ 1365.729354]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1365.730139] RIP: 0033:0x7fcf62391b19
[ 1365.730788] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1365.733070] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1365.734258] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1365.735226] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1365.736204] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1365.737340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1365.738351] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1365.739507]  </TASK>
05:12:05 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x20000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:12:05 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x6}, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

[ 1365.830557] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1365.831763] CPU: 0 PID: 8218 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1365.832083] FAULT_INJECTION: forcing a failure.
[ 1365.832083] name failslab, interval 1, probability 0, space 0, times 0
[ 1365.832821] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1365.832844] Call Trace:
[ 1365.832854]  <TASK>
[ 1365.832870]  dump_stack_lvl+0xc1/0xf0
[ 1365.835751]  kmem_cache_create_usercopy+0x12b/0x340
[ 1365.836440]  p9_client_create+0xd0b/0x1260
[ 1365.837027]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1365.837726]  ? __pfx_p9_client_create+0x10/0x10
[ 1365.838359]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1365.839034]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1365.839673]  ? __kasan_kmalloc+0x7f/0x90
[ 1365.840249]  ? __raw_spin_lock_init+0x3a/0x110
[ 1365.840893]  v9fs_session_init+0x1e0/0x17b0
[ 1365.841509]  ? __pfx_lock_release+0x10/0x10
[ 1365.842102]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1365.842748]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1365.843463]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1365.844129]  ? v9fs_mount+0x9e/0xbd0
[ 1365.844688]  v9fs_mount+0xbd/0xbd0
[ 1365.845188]  ? legacy_init_fs_context+0x44/0xe0
[ 1365.845814]  ? __pfx_v9fs_mount+0x10/0x10
[ 1365.846392]  ? cap_capable+0x1be/0x220
[ 1365.846951]  ? __pfx_v9fs_mount+0x10/0x10
[ 1365.847530]  legacy_get_tree+0x109/0x220
[ 1365.848132]  vfs_get_tree+0x92/0x360
[ 1365.848669]  path_mount+0x133c/0x1e50
[ 1365.849212]  ? kasan_quarantine_put+0x81/0x1d0
[ 1365.849838]  ? __pfx_path_mount+0x10/0x10
[ 1365.850406]  ? putname+0x102/0x140
[ 1365.850906]  ? kmem_cache_free+0xff/0x4a0
[ 1365.851490]  ? putname+0x102/0x140
[ 1365.852018]  __x64_sys_mount+0x286/0x310
[ 1365.852573]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1365.853185]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1365.853893]  do_syscall_64+0x3f/0x90
[ 1365.854403]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1365.855101] RIP: 0033:0x7fcf62391b19
[ 1365.855591] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1365.857866] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1365.858807] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1365.859727] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1365.860643] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1365.861556] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1365.862456] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1365.863409]  </TASK>
[ 1365.863746] CPU: 1 PID: 8225 Comm: syz-executor.3 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1365.864439] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1365.864947] Call Trace:
[ 1365.865174]  <TASK>
[ 1365.865338]  dump_stack_lvl+0xc1/0xf0
[ 1365.865684]  should_fail_ex+0x4b4/0x5b0
[ 1365.865974]  ? __kernfs_new_node+0xd4/0x870
[ 1365.866356]  should_failslab+0x9/0x20
[ 1365.866628]  kmem_cache_alloc+0x5a/0x390
[ 1365.866995]  __kernfs_new_node+0xd4/0x870
[ 1365.867289]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1365.867725]  ? down_write+0x11a/0x1f0
[ 1365.868004]  ? up_write+0x196/0x510
[ 1365.868346]  kernfs_new_node+0x97/0x120
[ 1365.868630]  __kernfs_create_file+0x55/0x350
[ 1365.869021]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1365.869336]  ? __pfx_slab_attr_store+0x10/0x10
[ 1365.869754]  internal_create_group+0x322/0xb90
[ 1365.870074]  ? __pfx_internal_create_group+0x10/0x10
[ 1365.870515]  ? up_write+0x196/0x510
[ 1365.870854]  sysfs_slab_add+0x18e/0x220
[ 1365.871211]  __kmem_cache_create+0x1fe/0x610
[ 1365.871520]  kmem_cache_create_usercopy+0x218/0x340
[ 1365.871977]  p9_client_create+0xd0b/0x1260
[ 1365.872354]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1365.872815]  ? __pfx_p9_client_create+0x10/0x10
[ 1365.873131]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1365.873553]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1365.873961]  ? __kasan_kmalloc+0x7f/0x90
[ 1365.874333]  ? __raw_spin_lock_init+0x3a/0x110
[ 1365.874653]  v9fs_session_init+0x1e0/0x17b0
[ 1365.875044]  ? __pfx_lock_release+0x10/0x10
[ 1365.875334]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1365.875752]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1365.876103]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1365.876493]  ? v9fs_mount+0x9e/0xbd0
[ 1365.876853]  v9fs_mount+0xbd/0xbd0
[ 1365.877178]  ? legacy_init_fs_context+0x44/0xe0
[ 1365.877565]  ? __pfx_v9fs_mount+0x10/0x10
[ 1365.877917]  ? cap_capable+0x1be/0x220
[ 1365.878268]  ? __pfx_v9fs_mount+0x10/0x10
[ 1365.878626]  legacy_get_tree+0x109/0x220
[ 1365.878997]  vfs_get_tree+0x92/0x360
[ 1365.879344]  path_mount+0x133c/0x1e50
[ 1365.879703]  ? kasan_quarantine_put+0x81/0x1d0
[ 1365.880106]  ? __pfx_path_mount+0x10/0x10
[ 1365.880461]  ? putname+0x102/0x140
[ 1365.880770]  ? kmem_cache_free+0xff/0x4a0
[ 1365.881125]  ? putname+0x102/0x140
[ 1365.881445]  __x64_sys_mount+0x286/0x310
[ 1365.881777]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1365.882159]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1365.882590]  do_syscall_64+0x3f/0x90
[ 1365.882913]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1365.883338] RIP: 0033:0x7ff349defb19
[ 1365.883640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1365.885022] RSP: 002b:00007ff347365188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1365.885610] RAX: ffffffffffffffda RBX: 00007ff349f02f60 RCX: 00007ff349defb19
[ 1365.886181] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1365.886733] RBP: 00007ff3473651d0 R08: 0000000020000240 R09: 0000000000000000
[ 1365.887294] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1365.887864] R13: 00007fffc306ac3f R14: 00007ff347365300 R15: 0000000000022000
[ 1365.888473]  </TASK>
[ 1365.903171] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1365.903851] CPU: 1 PID: 8225 Comm: syz-executor.3 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1365.904468] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1365.905080] Call Trace:
[ 1365.905289]  <TASK>
[ 1365.905482]  dump_stack_lvl+0xc1/0xf0
[ 1365.905806]  kmem_cache_create_usercopy+0x12b/0x340
[ 1365.906219]  p9_client_create+0xd0b/0x1260
[ 1365.906575]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1365.906989]  ? __pfx_p9_client_create+0x10/0x10
[ 1365.907374]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1365.907807]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1365.908197]  ? __kasan_kmalloc+0x7f/0x90
[ 1365.908551]  ? __raw_spin_lock_init+0x3a/0x110
[ 1365.908956]  v9fs_session_init+0x1e0/0x17b0
[ 1365.909342]  ? __pfx_lock_release+0x10/0x10
[ 1365.909711]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1365.910124]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1365.910556]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1365.910969]  ? v9fs_mount+0x9e/0xbd0
[ 1365.911326]  v9fs_mount+0xbd/0xbd0
[ 1365.911633]  ? legacy_init_fs_context+0x44/0xe0
[ 1365.912028]  ? __pfx_v9fs_mount+0x10/0x10
[ 1365.912385]  ? cap_capable+0x1be/0x220
[ 1365.912752]  ? __pfx_v9fs_mount+0x10/0x10
[ 1365.913107]  legacy_get_tree+0x109/0x220
[ 1365.913458]  vfs_get_tree+0x92/0x360
[ 1365.913785]  path_mount+0x133c/0x1e50
[ 1365.914136]  ? kasan_quarantine_put+0x81/0x1d0
[ 1365.914536]  ? __pfx_path_mount+0x10/0x10
[ 1365.914885]  ? putname+0x102/0x140
[ 1365.915190]  ? kmem_cache_free+0xff/0x4a0
[ 1365.915564]  ? putname+0x102/0x140
[ 1365.915903]  __x64_sys_mount+0x286/0x310
[ 1365.916241]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1365.916627]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1365.917062]  do_syscall_64+0x3f/0x90
[ 1365.917389]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1365.917822] RIP: 0033:0x7ff349defb19
[ 1365.918069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1365.919153] RSP: 002b:00007ff347365188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1365.919625] RAX: ffffffffffffffda RBX: 00007ff349f02f60 RCX: 00007ff349defb19
[ 1365.920084] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1365.920523] RBP: 00007ff3473651d0 R08: 0000000020000240 R09: 0000000000000000
[ 1365.920964] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1365.921406] R13: 00007fffc306ac3f R14: 00007ff347365300 R15: 0000000000022000
[ 1365.921877]  </TASK>
05:12:21 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 95)

05:12:21 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 92)

05:12:21 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 76)

05:12:21 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x20100000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:12:21 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x300, 0x0)

05:12:21 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x8cffffff, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:12:21 executing program 1:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY_ALL_USERS(r0, 0xc0406619, &(0x7f0000000040)={@id={0x2, 0x0, @c}})
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:12:21 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1381.397167] FAULT_INJECTION: forcing a failure.
[ 1381.397167] name failslab, interval 1, probability 0, space 0, times 0
[ 1381.398157] CPU: 1 PID: 8241 Comm: syz-executor.6 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1381.398777] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1381.399394] Call Trace:
[ 1381.399592]  <TASK>
[ 1381.399773]  dump_stack_lvl+0xc1/0xf0
[ 1381.400096]  should_fail_ex+0x4b4/0x5b0
[ 1381.400424]  ? __kernfs_new_node+0xd4/0x870
[ 1381.400758]  should_failslab+0x9/0x20
[ 1381.401065]  kmem_cache_alloc+0x5a/0x390
[ 1381.401399]  __kernfs_new_node+0xd4/0x870
[ 1381.401724]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1381.402137]  ? down_write+0x11a/0x1f0
[ 1381.402514]  ? up_write+0x196/0x510
[ 1381.402822]  kernfs_new_node+0x97/0x120
[ 1381.403129]  __kernfs_create_file+0x55/0x350
[ 1381.403495]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1381.403840]  ? __pfx_slab_attr_store+0x10/0x10
[ 1381.404208]  internal_create_group+0x322/0xb90
[ 1381.404569]  ? __pfx_internal_create_group+0x10/0x10
[ 1381.404953]  ? up_write+0x196/0x510
[ 1381.405237]  sysfs_slab_add+0x18e/0x220
[ 1381.405550]  __kmem_cache_create+0x1fe/0x610
[ 1381.405906]  kmem_cache_create_usercopy+0x218/0x340
[ 1381.406303]  p9_client_create+0xd0b/0x1260
[ 1381.406644]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1381.407050]  ? __pfx_p9_client_create+0x10/0x10
[ 1381.407415]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1381.407804]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1381.408196]  ? __kasan_kmalloc+0x7f/0x90
[ 1381.408521]  ? __raw_spin_lock_init+0x3a/0x110
[ 1381.408876]  v9fs_session_init+0x1e0/0x17b0
[ 1381.409223]  ? __pfx_lock_release+0x10/0x10
[ 1381.409556]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1381.409927]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1381.410304]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1381.410681]  ? v9fs_mount+0x9e/0xbd0
[ 1381.411000]  v9fs_mount+0xbd/0xbd0
[ 1381.411285]  ? legacy_init_fs_context+0x44/0xe0
[ 1381.411646]  ? __pfx_v9fs_mount+0x10/0x10
[ 1381.411994]  ? cap_capable+0x1be/0x220
[ 1381.412314]  ? __pfx_v9fs_mount+0x10/0x10
[ 1381.412641]  legacy_get_tree+0x109/0x220
[ 1381.412964]  vfs_get_tree+0x92/0x360
[ 1381.413273]  path_mount+0x133c/0x1e50
[ 1381.413579]  ? kasan_quarantine_put+0x81/0x1d0
[ 1381.413938]  ? __pfx_path_mount+0x10/0x10
[ 1381.414265]  ? putname+0x102/0x140
[ 1381.414556]  ? kmem_cache_free+0xff/0x4a0
[ 1381.414885]  ? putname+0x102/0x140
[ 1381.415157]  __x64_sys_mount+0x286/0x310
[ 1381.415470]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1381.415801]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1381.416199]  do_syscall_64+0x3f/0x90
[ 1381.416502]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1381.416908] RIP: 0033:0x7fdb13b24b19
[ 1381.417192] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1381.418493] RSP: 002b:00007fdb1109a188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1381.419060] RAX: ffffffffffffffda RBX: 00007fdb13c37f60 RCX: 00007fdb13b24b19
[ 1381.419576] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1381.420113] RBP: 00007fdb1109a1d0 R08: 0000000020000240 R09: 0000000000000000
[ 1381.420643] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1381.421174] R13: 00007fff73fffccf R14: 00007fdb1109a300 R15: 0000000000022000
[ 1381.421724]  </TASK>
[ 1381.425112] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1381.425713] CPU: 1 PID: 8241 Comm: syz-executor.6 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1381.426310] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1381.426914] Call Trace:
[ 1381.426902] 9pnet_virtio: no channels available for device ./file0
[ 1381.427109]  <TASK>
[ 1381.427117]  dump_stack_lvl+0xc1/0xf0
[ 1381.428408]  kmem_cache_create_usercopy+0x12b/0x340
[ 1381.428794]  p9_client_create+0xd0b/0x1260
[ 1381.429122]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1381.429517]  ? __pfx_p9_client_create+0x10/0x10
[ 1381.429879]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1381.430255]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1381.430633]  ? __kasan_kmalloc+0x7f/0x90
[ 1381.430959]  ? __raw_spin_lock_init+0x3a/0x110
[ 1381.431320]  v9fs_session_init+0x1e0/0x17b0
[ 1381.431663]  ? __pfx_lock_release+0x10/0x10
[ 1381.432003]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1381.432376]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1381.432784]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1381.433158]  ? v9fs_mount+0x9e/0xbd0
[ 1381.433460]  v9fs_mount+0xbd/0xbd0
[ 1381.433749]  ? legacy_init_fs_context+0x44/0xe0
[ 1381.434095]  ? __pfx_v9fs_mount+0x10/0x10
[ 1381.434421]  ? cap_capable+0x1be/0x220
[ 1381.434758]  ? __pfx_v9fs_mount+0x10/0x10
[ 1381.435083]  legacy_get_tree+0x109/0x220
[ 1381.435406]  vfs_get_tree+0x92/0x360
[ 1381.435703]  path_mount+0x133c/0x1e50
[ 1381.436028]  ? kasan_quarantine_put+0x81/0x1d0
[ 1381.436391]  ? __pfx_path_mount+0x10/0x10
[ 1381.436716]  ? putname+0x102/0x140
[ 1381.436989]  ? kmem_cache_free+0xff/0x4a0
[ 1381.437309]  ? putname+0x102/0x140
[ 1381.437592]  __x64_sys_mount+0x286/0x310
[ 1381.437903]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1381.438236]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1381.438641]  do_syscall_64+0x3f/0x90
[ 1381.438942]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1381.439341] RIP: 0033:0x7fdb13b24b19
[ 1381.439622] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1381.440954] RSP: 002b:00007fdb1109a188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1381.441537] RAX: ffffffffffffffda RBX: 00007fdb13c37f60 RCX: 00007fdb13b24b19
[ 1381.442077] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1381.442603] RBP: 00007fdb1109a1d0 R08: 0000000020000240 R09: 0000000000000000
[ 1381.443134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1381.443669] R13: 00007fff73fffccf R14: 00007fdb1109a300 R15: 0000000000022000
[ 1381.444217]  </TASK>
[ 1381.452779] 9pnet_virtio: no channels available for device ./file0
05:12:21 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x500, 0x0)

05:12:21 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000040)='\xed-*}[#@\x00', &(0x7f00000000c0)='./file0\x00', 0xffffffffffffff9c)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:12:21 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 96)

05:12:21 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xc0ed0000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:12:21 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 93)

05:12:21 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x3f000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1381.569308] 9pnet_virtio: no channels available for device ./file0
05:12:21 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 77)

[ 1381.601951] 9pnet_virtio: no channels available for device ./file0
[ 1381.701032] FAULT_INJECTION: forcing a failure.
[ 1381.701032] name failslab, interval 1, probability 0, space 0, times 0
[ 1381.702855] CPU: 0 PID: 8279 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1381.703888] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1381.704896] Call Trace:
[ 1381.705313]  <TASK>
[ 1381.705625]  dump_stack_lvl+0xc1/0xf0
[ 1381.706262]  should_fail_ex+0x4b4/0x5b0
[ 1381.706826]  ? __kernfs_new_node+0xd4/0x870
[ 1381.707497]  should_failslab+0x9/0x20
[ 1381.708029]  kmem_cache_alloc+0x5a/0x390
[ 1381.708687]  __kernfs_new_node+0xd4/0x870
[ 1381.709253]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1381.710061]  ? down_write+0x11a/0x1f0
[ 1381.710602]  ? up_write+0x196/0x510
[ 1381.711122]  kernfs_new_node+0x97/0x120
[ 1381.711798]  __kernfs_create_file+0x55/0x350
[ 1381.712442]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1381.713081]  ? __pfx_slab_attr_store+0x10/0x10
[ 1381.713721]  internal_create_group+0x322/0xb90
[ 1381.714367]  ? __pfx_internal_create_group+0x10/0x10
[ 1381.715048]  ? up_write+0x196/0x510
[ 1381.715594]  sysfs_slab_add+0x18e/0x220
[ 1381.716153]  __kmem_cache_create+0x1fe/0x610
[ 1381.716780]  kmem_cache_create_usercopy+0x218/0x340
[ 1381.717460]  p9_client_create+0xd0b/0x1260
[ 1381.718053]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1381.718747]  ? __pfx_p9_client_create+0x10/0x10
[ 1381.719371]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1381.720052]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1381.720690]  ? __kasan_kmalloc+0x7f/0x90
[ 1381.721346]  ? __raw_spin_lock_init+0x3a/0x110
[ 1381.721993]  v9fs_session_init+0x1e0/0x17b0
[ 1381.722616]  ? __pfx_lock_release+0x10/0x10
[ 1381.723293]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1381.723974]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1381.724665]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1381.725463]  ? v9fs_mount+0x9e/0xbd0
[ 1381.726030]  v9fs_mount+0xbd/0xbd0
[ 1381.726532]  ? legacy_init_fs_context+0x44/0xe0
[ 1381.727147]  ? __pfx_v9fs_mount+0x10/0x10
[ 1381.727717]  ? cap_capable+0x1be/0x220
[ 1381.728300]  ? __pfx_v9fs_mount+0x10/0x10
[ 1381.728877]  legacy_get_tree+0x109/0x220
[ 1381.729456]  vfs_get_tree+0x92/0x360
[ 1381.729989]  path_mount+0x133c/0x1e50
[ 1381.730545]  ? kasan_quarantine_put+0x81/0x1d0
[ 1381.731162]  ? __pfx_path_mount+0x10/0x10
[ 1381.731840]  ? putname+0x102/0x140
[ 1381.732371]  ? kmem_cache_free+0xff/0x4a0
[ 1381.732953]  ? putname+0x102/0x140
[ 1381.733552]  __x64_sys_mount+0x286/0x310
[ 1381.734112]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1381.734736]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1381.735578]  do_syscall_64+0x3f/0x90
[ 1381.736117]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1381.736809] RIP: 0033:0x7fcf62391b19
[ 1381.737401] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1381.739631] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1381.740806] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1381.741721] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1381.742616] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1381.743744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1381.744647] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1381.745563]  </TASK>
[ 1381.759956] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1381.760905] CPU: 0 PID: 8279 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1381.761898] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1381.762905] Call Trace:
[ 1381.763239]  <TASK>
[ 1381.763540]  dump_stack_lvl+0xc1/0xf0
[ 1381.764069]  kmem_cache_create_usercopy+0x12b/0x340
[ 1381.764737]  p9_client_create+0xd0b/0x1260
[ 1381.765298]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1381.765960]  ? __pfx_p9_client_create+0x10/0x10
[ 1381.766569]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1381.767210]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1381.767816]  ? __kasan_kmalloc+0x7f/0x90
[ 1381.768381]  ? __raw_spin_lock_init+0x3a/0x110
[ 1381.768988]  v9fs_session_init+0x1e0/0x17b0
[ 1381.769581]  ? __pfx_lock_release+0x10/0x10
[ 1381.770122]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1381.770745]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1381.771428]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1381.772084]  ? v9fs_mount+0x9e/0xbd0
[ 1381.772614]  v9fs_mount+0xbd/0xbd0
[ 1381.773090]  ? legacy_init_fs_context+0x44/0xe0
[ 1381.773680]  ? __pfx_v9fs_mount+0x10/0x10
[ 1381.774225]  ? cap_capable+0x1be/0x220
[ 1381.774761]  ? __pfx_v9fs_mount+0x10/0x10
[ 1381.775309]  legacy_get_tree+0x109/0x220
[ 1381.775864]  vfs_get_tree+0x92/0x360
[ 1381.776371]  path_mount+0x133c/0x1e50
[ 1381.776897]  ? kasan_quarantine_put+0x81/0x1d0
[ 1381.777507]  ? __pfx_path_mount+0x10/0x10
[ 1381.778060]  ? putname+0x102/0x140
[ 1381.778551]  ? kmem_cache_free+0xff/0x4a0
[ 1381.779120]  ? putname+0x102/0x140
[ 1381.779630]  __x64_sys_mount+0x286/0x310
[ 1381.780182]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1381.780793]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1381.781496]  do_syscall_64+0x3f/0x90
[ 1381.782015]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1381.782699] RIP: 0033:0x7fcf62391b19
[ 1381.783195] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1381.785445] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1381.786413] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1381.787321] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1381.788227] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1381.789132] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1381.790039] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1381.791002]  </TASK>
05:12:36 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x2, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:12:36 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 78)

05:12:36 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 97)

05:12:36 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 94)

05:12:36 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x83, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x400, 0x4}, 0x60, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x2000000010000002}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x1)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x2, 0xc)

05:12:36 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xf6ffffff, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:12:36 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x600, 0x0)

05:12:36 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x8cffffff, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1396.885685] 9pnet_virtio: no channels available for device ./file0
[ 1396.888610] FAULT_INJECTION: forcing a failure.
[ 1396.888610] name failslab, interval 1, probability 0, space 0, times 0
[ 1396.890349] CPU: 1 PID: 8287 Comm: syz-executor.6 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1396.891519] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1396.892682] Call Trace:
[ 1396.893066]  <TASK>
[ 1396.893407]  dump_stack_lvl+0xc1/0xf0
[ 1396.893998]  should_fail_ex+0x4b4/0x5b0
[ 1396.894226] 9pnet_virtio: no channels available for device ./file0
[ 1396.894605]  ? __kernfs_new_node+0xd4/0x870
[ 1396.895663]  should_failslab+0x9/0x20
[ 1396.896254]  kmem_cache_alloc+0x5a/0x390
05:12:36 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 95)

[ 1396.896883]  __kernfs_new_node+0xd4/0x870
[ 1396.897652]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1396.898367]  ? down_write+0x11a/0x1f0
[ 1396.898955]  ? up_write+0x196/0x510
[ 1396.899523]  kernfs_new_node+0x97/0x120
[ 1396.900143]  __kernfs_create_file+0x55/0x350
[ 1396.900826]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1396.901553]  ? __pfx_slab_attr_store+0x10/0x10
[ 1396.902290]  internal_create_group+0x322/0xb90
[ 1396.903022]  ? __pfx_internal_create_group+0x10/0x10
[ 1396.903817]  ? up_write+0x196/0x510
[ 1396.904395]  sysfs_slab_add+0x18e/0x220
[ 1396.904992]  __kmem_cache_create+0x1fe/0x610
[ 1396.905665]  kmem_cache_create_usercopy+0x218/0x340
[ 1396.906461]  p9_client_create+0xd0b/0x1260
[ 1396.907141]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1396.907940]  ? __pfx_p9_client_create+0x10/0x10
[ 1396.908686]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1396.909435]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1396.910171]  ? __kasan_kmalloc+0x7f/0x90
[ 1396.910828]  ? __raw_spin_lock_init+0x3a/0x110
[ 1396.911507]  v9fs_session_init+0x1e0/0x17b0
[ 1396.912196]  ? __pfx_lock_release+0x10/0x10
[ 1396.912857]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1396.913597]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1396.914416]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1396.915185]  ? v9fs_mount+0x9e/0xbd0
05:12:36 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x700, 0x0)

[ 1396.915795]  v9fs_mount+0xbd/0xbd0
[ 1396.916466]  ? legacy_init_fs_context+0x44/0xe0
[ 1396.917145]  ? __pfx_v9fs_mount+0x10/0x10
[ 1396.917772]  ? cap_capable+0x1be/0x220
[ 1396.918378]  ? __pfx_v9fs_mount+0x10/0x10
[ 1396.919003]  legacy_get_tree+0x109/0x220
[ 1396.919623]  vfs_get_tree+0x92/0x360
[ 1396.920360]  path_mount+0x133c/0x1e50
[ 1396.921163]  ? kasan_quarantine_put+0x81/0x1d0
[ 1396.922075]  ? __pfx_path_mount+0x10/0x10
[ 1396.922885]  ? putname+0x102/0x140
[ 1396.923587]  ? kmem_cache_free+0xff/0x4a0
[ 1396.924410]  ? putname+0x102/0x140
[ 1396.925138]  __x64_sys_mount+0x286/0x310
[ 1396.925863]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1396.926665]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1396.927500]  do_syscall_64+0x3f/0x90
[ 1396.928163]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1396.929075] RIP: 0033:0x7fdb13b24b19
[ 1396.929644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1396.932298] RSP: 002b:00007fdb1109a188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1396.933424] RAX: ffffffffffffffda RBX: 00007fdb13c37f60 RCX: 00007fdb13b24b19
[ 1396.934483] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1396.935525] RBP: 00007fdb1109a1d0 R08: 0000000020000240 R09: 0000000000000000
[ 1396.936566] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1396.937603] R13: 00007fff73fffccf R14: 00007fdb1109a300 R15: 0000000000022000
[ 1396.938666]  </TASK>
05:12:37 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xc0ed0000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1396.967173] 9pnet_virtio: no channels available for device ./file0
[ 1396.980680] 9pnet_virtio: no channels available for device ./file0
05:12:37 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x3, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:12:37 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x1020, 0x0)

05:12:37 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xfeffffff, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:12:37 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xf6ffffff, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:12:37 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000040))
r1 = ioctl$TIOCGPTPEER(r0, 0x5441, 0x0)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f00000000c0)=0x13)
ioctl$FITRIM(r1, 0xc0185879, &(0x7f0000000040)={0x8, 0x3f, 0x1})

05:12:37 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x4, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1397.102635] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1397.103766] CPU: 1 PID: 8287 Comm: syz-executor.6 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1397.104869] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1397.104984] FAULT_INJECTION: forcing a failure.
[ 1397.104984] name failslab, interval 1, probability 0, space 0, times 0
[ 1397.105968] Call Trace:
[ 1397.105981]  <TASK>
[ 1397.105992]  dump_stack_lvl+0xc1/0xf0
[ 1397.107936]  kmem_cache_create_usercopy+0x12b/0x340
[ 1397.108656]  p9_client_create+0xd0b/0x1260
[ 1397.109268]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1397.109992]  ? __pfx_p9_client_create+0x10/0x10
[ 1397.110639]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1397.111334]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1397.111999]  ? __kasan_kmalloc+0x7f/0x90
[ 1397.112618]  ? __raw_spin_lock_init+0x3a/0x110
[ 1397.113278]  v9fs_session_init+0x1e0/0x17b0
[ 1397.113899]  ? __pfx_lock_release+0x10/0x10
[ 1397.114510]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1397.115181]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1397.115916]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1397.116625]  ? v9fs_mount+0x9e/0xbd0
[ 1397.117196]  v9fs_mount+0xbd/0xbd0
[ 1397.117722]  ? legacy_init_fs_context+0x44/0xe0
[ 1397.118349]  ? __pfx_v9fs_mount+0x10/0x10
[ 1397.118944]  ? cap_capable+0x1be/0x220
[ 1397.119520]  ? __pfx_v9fs_mount+0x10/0x10
[ 1397.120127]  legacy_get_tree+0x109/0x220
[ 1397.120722]  vfs_get_tree+0x92/0x360
[ 1397.121272]  path_mount+0x133c/0x1e50
[ 1397.121839]  ? kasan_quarantine_put+0x81/0x1d0
[ 1397.122488]  ? __pfx_path_mount+0x10/0x10
[ 1397.123085]  ? putname+0x102/0x140
[ 1397.123606]  ? kmem_cache_free+0xff/0x4a0
[ 1397.124218]  ? putname+0x102/0x140
[ 1397.124745]  __x64_sys_mount+0x286/0x310
[ 1397.125336]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1397.125973]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1397.126713]  do_syscall_64+0x3f/0x90
[ 1397.127256]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1397.128002] RIP: 0033:0x7fdb13b24b19
[ 1397.128525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1397.130900] RSP: 002b:00007fdb1109a188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1397.131924] RAX: ffffffffffffffda RBX: 00007fdb13c37f60 RCX: 00007fdb13b24b19
[ 1397.132892] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1397.133845] RBP: 00007fdb1109a1d0 R08: 0000000020000240 R09: 0000000000000000
[ 1397.134811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1397.135767] R13: 00007fff73fffccf R14: 00007fdb1109a300 R15: 0000000000022000
[ 1397.136767]  </TASK>
[ 1397.137102] CPU: 0 PID: 8301 Comm: syz-executor.3 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1397.137674] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1397.138231] Call Trace:
[ 1397.138421]  <TASK>
[ 1397.138591]  dump_stack_lvl+0xc1/0xf0
[ 1397.138885]  should_fail_ex+0x4b4/0x5b0
[ 1397.139202]  ? __kernfs_new_node+0xd4/0x870
[ 1397.139506]  should_failslab+0x9/0x20
[ 1397.139792]  kmem_cache_alloc+0x5a/0x390
[ 1397.140099]  __kernfs_new_node+0xd4/0x870
[ 1397.140410]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1397.140763]  ? down_write+0x11a/0x1f0
[ 1397.141058]  ? up_write+0x196/0x510
[ 1397.141344]  kernfs_new_node+0x97/0x120
[ 1397.141648]  __kernfs_create_file+0x55/0x350
[ 1397.141982]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1397.142328]  ? __pfx_slab_attr_store+0x10/0x10
[ 1397.142675]  internal_create_group+0x322/0xb90
[ 1397.143015]  ? __pfx_internal_create_group+0x10/0x10
[ 1397.143382]  ? up_write+0x196/0x510
[ 1397.143662]  sysfs_slab_add+0x18e/0x220
[ 1397.143959]  __kmem_cache_create+0x1fe/0x610
[ 1397.144291]  kmem_cache_create_usercopy+0x218/0x340
[ 1397.144659]  p9_client_create+0xd0b/0x1260
[ 1397.144979]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1397.145350]  ? __pfx_p9_client_create+0x10/0x10
[ 1397.145693]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1397.146050]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1397.146393]  ? __kasan_kmalloc+0x7f/0x90
[ 1397.146701]  ? __raw_spin_lock_init+0x3a/0x110
[ 1397.147025]  v9fs_session_init+0x1e0/0x17b0
[ 1397.147357]  ? __pfx_lock_release+0x10/0x10
[ 1397.147669]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1397.148022]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1397.148418]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1397.148772]  ? v9fs_mount+0x9e/0xbd0
[ 1397.149072]  v9fs_mount+0xbd/0xbd0
[ 1397.149341]  ? legacy_init_fs_context+0x44/0xe0
[ 1397.149676]  ? __pfx_v9fs_mount+0x10/0x10
[ 1397.149986]  ? cap_capable+0x1be/0x220
[ 1397.150292]  ? __pfx_v9fs_mount+0x10/0x10
[ 1397.150605]  legacy_get_tree+0x109/0x220
[ 1397.150917]  vfs_get_tree+0x92/0x360
[ 1397.151203]  path_mount+0x133c/0x1e50
[ 1397.151499]  ? kasan_quarantine_put+0x81/0x1d0
[ 1397.151822]  ? __pfx_path_mount+0x10/0x10
[ 1397.152140]  ? putname+0x102/0x140
[ 1397.152411]  ? kmem_cache_free+0xff/0x4a0
[ 1397.152718]  ? putname+0x102/0x140
[ 1397.152998]  __x64_sys_mount+0x286/0x310
[ 1397.153291]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1397.153629]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1397.154007]  do_syscall_64+0x3f/0x90
[ 1397.154289]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1397.154665] RIP: 0033:0x7ff349defb19
[ 1397.154929] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1397.156151] RSP: 002b:00007ff347365188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1397.156673] RAX: ffffffffffffffda RBX: 00007ff349f02f60 RCX: 00007ff349defb19
[ 1397.157159] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1397.157649] RBP: 00007ff3473651d0 R08: 0000000020000240 R09: 0000000000000000
[ 1397.158139] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1397.158638] R13: 00007fffc306ac3f R14: 00007ff347365300 R15: 0000000000022000
[ 1397.159160]  </TASK>
[ 1397.221113] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1397.221832] CPU: 0 PID: 8301 Comm: syz-executor.3 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1397.222391] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1397.222957] Call Trace:
[ 1397.223150]  <TASK>
[ 1397.223325]  dump_stack_lvl+0xc1/0xf0
[ 1397.223619]  kmem_cache_create_usercopy+0x12b/0x340
[ 1397.223987]  p9_client_create+0xd0b/0x1260
[ 1397.224322]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1397.224699]  ? __pfx_p9_client_create+0x10/0x10
[ 1397.225043]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1397.225407]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1397.225747]  ? __kasan_kmalloc+0x7f/0x90
[ 1397.226053]  ? __raw_spin_lock_init+0x3a/0x110
[ 1397.226401]  v9fs_session_init+0x1e0/0x17b0
[ 1397.226731]  ? __pfx_lock_release+0x10/0x10
[ 1397.227035]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1397.227384]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1397.227764]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1397.228135]  ? v9fs_mount+0x9e/0xbd0
[ 1397.228444]  v9fs_mount+0xbd/0xbd0
[ 1397.228715]  ? legacy_init_fs_context+0x44/0xe0
[ 1397.229056]  ? __pfx_v9fs_mount+0x10/0x10
[ 1397.229363]  ? cap_capable+0x1be/0x220
[ 1397.229667]  ? __pfx_v9fs_mount+0x10/0x10
[ 1397.229976]  legacy_get_tree+0x109/0x220
[ 1397.230289]  vfs_get_tree+0x92/0x360
[ 1397.230573]  path_mount+0x133c/0x1e50
[ 1397.230868]  ? kasan_quarantine_put+0x81/0x1d0
[ 1397.231202]  ? __pfx_path_mount+0x10/0x10
[ 1397.231506]  ? putname+0x102/0x140
[ 1397.231762]  ? kmem_cache_free+0xff/0x4a0
[ 1397.232080]  ? putname+0x102/0x140
[ 1397.232352]  __x64_sys_mount+0x286/0x310
[ 1397.232648]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1397.232982]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1397.233365]  do_syscall_64+0x3f/0x90
[ 1397.233647]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1397.234022] RIP: 0033:0x7ff349defb19
[ 1397.234295] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1397.235520] RSP: 002b:00007ff347365188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1397.236040] RAX: ffffffffffffffda RBX: 00007ff349f02f60 RCX: 00007ff349defb19
[ 1397.236554] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1397.237040] RBP: 00007ff3473651d0 R08: 0000000020000240 R09: 0000000000000000
[ 1397.237535] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1397.238022] R13: 00007fffc306ac3f R14: 00007ff347365300 R15: 0000000000022000
[ 1397.238540]  </TASK>
05:12:37 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 79)

05:12:49 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x2000, 0x0)

05:12:49 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 80)

05:12:49 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x5, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:12:49 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 96)

05:12:49 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 98)

05:12:49 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xffff0000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:12:49 executing program 1:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)=@fuse_with_parent={0x18, 0x82, {{0x2119, 0x8, 0x1000}, {0x32a0dcfe, 0x2c0}}}, &(0x7f0000000140), 0x1400)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:12:49 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xfeffffff, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:01 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 81)

05:13:01 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xffffff8c, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:01 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 97)

05:13:01 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x6, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:01 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xffff0000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:01 executing program 1:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat(r0, &(0x7f0000000040)='./file0\x00', 0x10802, 0x80)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:13:01 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 99)

05:13:01 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x2010, 0x0)

[ 1421.856697] FAULT_INJECTION: forcing a failure.
[ 1421.856697] name failslab, interval 1, probability 0, space 0, times 0
[ 1421.857577] CPU: 1 PID: 8373 Comm: syz-executor.3 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1421.858259] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1421.858928] Call Trace:
[ 1421.859155]  <TASK>
[ 1421.859357]  dump_stack_lvl+0xc1/0xf0
[ 1421.859717]  should_fail_ex+0x4b4/0x5b0
[ 1421.860082]  ? __kernfs_new_node+0xd4/0x870
[ 1421.860476]  should_failslab+0x9/0x20
[ 1421.860809]  kmem_cache_alloc+0x5a/0x390
[ 1421.861187]  __kernfs_new_node+0xd4/0x870
[ 1421.861546]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1421.861964]  ? down_write+0x11a/0x1f0
[ 1421.862315]  ? up_write+0x196/0x510
[ 1421.862651]  kernfs_new_node+0x97/0x120
[ 1421.862931]  __kernfs_create_file+0x55/0x350
[ 1421.863328]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1421.863747]  ? __pfx_slab_attr_store+0x10/0x10
[ 1421.864158]  internal_create_group+0x322/0xb90
[ 1421.864574]  ? __pfx_internal_create_group+0x10/0x10
[ 1421.865014]  ? up_write+0x196/0x510
[ 1421.865357]  sysfs_slab_add+0x18e/0x220
[ 1421.865712]  __kmem_cache_create+0x1fe/0x610
[ 1421.866101]  kmem_cache_create_usercopy+0x218/0x340
[ 1421.866549]  p9_client_create+0xd0b/0x1260
[ 1421.866845]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1421.867281]  ? __pfx_p9_client_create+0x10/0x10
[ 1421.867690]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1421.868116]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1421.868534]  ? __kasan_kmalloc+0x7f/0x90
[ 1421.868897]  ? __raw_spin_lock_init+0x3a/0x110
[ 1421.869310]  v9fs_session_init+0x1e0/0x17b0
[ 1421.869708]  ? __pfx_lock_release+0x10/0x10
[ 1421.870082]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1421.870505]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1421.870856]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1421.871269]  ? v9fs_mount+0x9e/0xbd0
[ 1421.871626]  v9fs_mount+0xbd/0xbd0
[ 1421.871949]  ? legacy_init_fs_context+0x44/0xe0
[ 1421.872344]  ? __pfx_v9fs_mount+0x10/0x10
[ 1421.872643]  ? cap_capable+0x1be/0x220
[ 1421.873007]  ? __pfx_v9fs_mount+0x10/0x10
[ 1421.873378]  legacy_get_tree+0x109/0x220
[ 1421.873750]  vfs_get_tree+0x92/0x360
[ 1421.874096]  path_mount+0x133c/0x1e50
[ 1421.874442]  ? kasan_quarantine_put+0x81/0x1d0
[ 1421.874856]  ? __pfx_path_mount+0x10/0x10
[ 1421.875218]  ? putname+0x102/0x140
[ 1421.875535]  ? kmem_cache_free+0xff/0x4a0
[ 1421.875910]  ? putname+0x102/0x140
[ 1421.876244]  __x64_sys_mount+0x286/0x310
[ 1421.876523]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1421.876921]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1421.877364]  do_syscall_64+0x3f/0x90
[ 1421.877702]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1421.878157] RIP: 0033:0x7ff349defb19
[ 1421.878484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1421.879945] RSP: 002b:00007ff347365188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1421.880563] RAX: ffffffffffffffda RBX: 00007ff349f02f60 RCX: 00007ff349defb19
[ 1421.881157] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1421.881756] RBP: 00007ff3473651d0 R08: 0000000020000240 R09: 0000000000000000
[ 1421.882333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1421.882919] R13: 00007fffc306ac3f R14: 00007ff347365300 R15: 0000000000022000
[ 1421.883450]  </TASK>
05:13:01 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xfffffff6, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:01 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xffffff7f, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:01 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x373b, 0x0)

[ 1421.916954] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1421.917461] CPU: 1 PID: 8373 Comm: syz-executor.3 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1421.918117] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1421.918599] FAULT_INJECTION: forcing a failure.
[ 1421.918599] name failslab, interval 1, probability 0, space 0, times 0
[ 1421.918788] Call Trace:
[ 1421.918797]  <TASK>
[ 1421.920654]  dump_stack_lvl+0xc1/0xf0
[ 1421.921010]  kmem_cache_create_usercopy+0x12b/0x340
[ 1421.921462]  p9_client_create+0xd0b/0x1260
[ 1421.921837]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1421.922293]  ? __pfx_p9_client_create+0x10/0x10
[ 1421.922691]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1421.923132]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1421.923545]  ? __kasan_kmalloc+0x7f/0x90
[ 1421.923904]  ? __raw_spin_lock_init+0x3a/0x110
[ 1421.924317]  v9fs_session_init+0x1e0/0x17b0
[ 1421.924633]  ? __pfx_lock_release+0x10/0x10
[ 1421.925003]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1421.925414]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1421.925875]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1421.926295]  ? v9fs_mount+0x9e/0xbd0
[ 1421.926653]  v9fs_mount+0xbd/0xbd0
[ 1421.926973]  ? legacy_init_fs_context+0x44/0xe0
[ 1421.927379]  ? __pfx_v9fs_mount+0x10/0x10
[ 1421.927749]  ? cap_capable+0x1be/0x220
[ 1421.928101]  ? __pfx_v9fs_mount+0x10/0x10
[ 1421.928388]  legacy_get_tree+0x109/0x220
[ 1421.928759]  vfs_get_tree+0x92/0x360
[ 1421.929102]  path_mount+0x133c/0x1e50
[ 1421.929458]  ? kasan_quarantine_put+0x81/0x1d0
[ 1421.929857]  ? __pfx_path_mount+0x10/0x10
[ 1421.930219]  ? putname+0x102/0x140
[ 1421.930542]  ? kmem_cache_free+0xff/0x4a0
[ 1421.930907]  ? putname+0x102/0x140
[ 1421.931240]  __x64_sys_mount+0x286/0x310
[ 1421.931593]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1421.931993]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1421.932342]  do_syscall_64+0x3f/0x90
[ 1421.932685]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1421.933134] RIP: 0033:0x7ff349defb19
[ 1421.933456] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1421.934928] RSP: 002b:00007ff347365188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1421.935567] RAX: ffffffffffffffda RBX: 00007ff349f02f60 RCX: 00007ff349defb19
[ 1421.936153] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1421.936749] RBP: 00007ff3473651d0 R08: 0000000020000240 R09: 0000000000000000
[ 1421.937334] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1421.937925] R13: 00007fffc306ac3f R14: 00007ff347365300 R15: 0000000000022000
[ 1421.938549]  </TASK>
[ 1421.938761] CPU: 0 PID: 8376 Comm: syz-executor.6 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1421.939879] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1421.940977] Call Trace:
[ 1421.941345]  <TASK>
[ 1421.941684]  dump_stack_lvl+0xc1/0xf0
[ 1421.942250]  should_fail_ex+0x4b4/0x5b0
[ 1421.942854]  ? __kernfs_new_node+0xd4/0x870
[ 1421.943466]  should_failslab+0x9/0x20
[ 1421.944029]  kmem_cache_alloc+0x5a/0x390
[ 1421.944650]  __kernfs_new_node+0xd4/0x870
[ 1421.945262]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1421.945962]  ? down_write+0x11a/0x1f0
[ 1421.946539]  ? up_write+0x196/0x510
[ 1421.947099]  kernfs_new_node+0x97/0x120
[ 1421.947697]  __kernfs_create_file+0x55/0x350
[ 1421.948364]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1421.949057]  ? __pfx_slab_attr_store+0x10/0x10
[ 1421.949734]  internal_create_group+0x322/0xb90
[ 1421.950408]  ? __pfx_internal_create_group+0x10/0x10
[ 1421.951108]  ? up_write+0x196/0x510
[ 1421.951679]  sysfs_slab_add+0x18e/0x220
[ 1421.952263]  __kmem_cache_create+0x1fe/0x610
[ 1421.952934]  kmem_cache_create_usercopy+0x218/0x340
[ 1421.953663]  p9_client_create+0xd0b/0x1260
[ 1421.954290]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1421.955029]  ? __pfx_p9_client_create+0x10/0x10
[ 1421.955696]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1421.956407]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1421.957081]  ? __kasan_kmalloc+0x7f/0x90
[ 1421.957687]  ? __raw_spin_lock_init+0x3a/0x110
[ 1421.958366]  v9fs_session_init+0x1e0/0x17b0
[ 1421.959013]  ? __pfx_lock_release+0x10/0x10
[ 1421.959638]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1421.960346]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1421.961120]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1421.961816]  ? v9fs_mount+0x9e/0xbd0
[ 1421.962404]  v9fs_mount+0xbd/0xbd0
[ 1421.962896]  ? legacy_init_fs_context+0x44/0xe0
[ 1421.963556]  ? __pfx_v9fs_mount+0x10/0x10
[ 1421.964163]  ? cap_capable+0x1be/0x220
[ 1421.964763]  ? __pfx_v9fs_mount+0x10/0x10
[ 1421.965375]  legacy_get_tree+0x109/0x220
[ 1421.965981]  vfs_get_tree+0x92/0x360
[ 1421.966539]  path_mount+0x133c/0x1e50
[ 1421.967120]  ? kasan_quarantine_put+0x81/0x1d0
[ 1421.967781]  ? __pfx_path_mount+0x10/0x10
[ 1421.968338]  ? putname+0x102/0x140
[ 1421.968877]  ? kmem_cache_free+0xff/0x4a0
[ 1421.969486]  ? putname+0x102/0x140
[ 1421.970035]  __x64_sys_mount+0x286/0x310
[ 1421.970615]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1421.971271]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1421.972024]  do_syscall_64+0x3f/0x90
[ 1421.972597]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1421.973331] RIP: 0033:0x7fdb13b24b19
[ 1421.973856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1421.976231] RSP: 002b:00007fdb1109a188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1421.977276] RAX: ffffffffffffffda RBX: 00007fdb13c37f60 RCX: 00007fdb13b24b19
[ 1421.978257] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1421.979221] RBP: 00007fdb1109a1d0 R08: 0000000020000240 R09: 0000000000000000
[ 1421.980183] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1421.981153] R13: 00007fff73fffccf R14: 00007fdb1109a300 R15: 0000000000022000
[ 1421.982169]  </TASK>
05:13:02 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xffffff8c, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:02 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xfffffffe, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1422.010182] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1422.010673] CPU: 1 PID: 8376 Comm: syz-executor.6 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1422.011331] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1422.011996] Call Trace:
[ 1422.012224]  <TASK>
[ 1422.012428]  dump_stack_lvl+0xc1/0xf0
[ 1422.012772]  kmem_cache_create_usercopy+0x12b/0x340
[ 1422.013214]  p9_client_create+0xd0b/0x1260
[ 1422.013590]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1422.014024]  ? __pfx_p9_client_create+0x10/0x10
[ 1422.014427]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1422.014853]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1422.015259]  ? __kasan_kmalloc+0x7f/0x90
[ 1422.015616]  ? __raw_spin_lock_init+0x3a/0x110
[ 1422.016015]  v9fs_session_init+0x1e0/0x17b0
[ 1422.016311]  ? __pfx_lock_release+0x10/0x10
[ 1422.016693]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1422.017007]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1422.017446]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1422.017765]  ? v9fs_mount+0x9e/0xbd0
[ 1422.018109]  v9fs_mount+0xbd/0xbd0
[ 1422.018353]  ? legacy_init_fs_context+0x44/0xe0
[ 1422.018751]  ? __pfx_v9fs_mount+0x10/0x10
[ 1422.019038]  ? cap_capable+0x1be/0x220
[ 1422.019382]  ? __pfx_v9fs_mount+0x10/0x10
[ 1422.019669]  legacy_get_tree+0x109/0x220
[ 1422.020029]  vfs_get_tree+0x92/0x360
[ 1422.020364]  path_mount+0x133c/0x1e50
[ 1422.020715]  ? kasan_quarantine_put+0x81/0x1d0
[ 1422.021115]  ? __pfx_path_mount+0x10/0x10
[ 1422.021478]  ? putname+0x102/0x140
[ 1422.021796]  ? kmem_cache_free+0xff/0x4a0
[ 1422.022156]  ? putname+0x102/0x140
[ 1422.022476]  __x64_sys_mount+0x286/0x310
[ 1422.022825]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1422.023207]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1422.023653]  do_syscall_64+0x3f/0x90
[ 1422.023976]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1422.024425] RIP: 0033:0x7fdb13b24b19
[ 1422.024734] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1422.026205] RSP: 002b:00007fdb1109a188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1422.026834] RAX: ffffffffffffffda RBX: 00007fdb13c37f60 RCX: 00007fdb13b24b19
[ 1422.027410] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1422.027991] RBP: 00007fdb1109a1d0 R08: 0000000020000240 R09: 0000000000000000
[ 1422.028583] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1422.029103] R13: 00007fff73fffccf R14: 00007fdb1109a300 R15: 0000000000022000
[ 1422.029554]  </TASK>
[ 1422.030130] FAULT_INJECTION: forcing a failure.
[ 1422.030130] name failslab, interval 1, probability 0, space 0, times 0
[ 1422.030838] CPU: 1 PID: 8374 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1422.031343] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1422.031859] Call Trace:
[ 1422.032024]  <TASK>
[ 1422.032175]  dump_stack_lvl+0xc1/0xf0
[ 1422.032438]  should_fail_ex+0x4b4/0x5b0
[ 1422.032716]  ? __kernfs_new_node+0xd4/0x870
[ 1422.032994]  should_failslab+0x9/0x20
[ 1422.033252]  kmem_cache_alloc+0x5a/0x390
[ 1422.033525]  __kernfs_new_node+0xd4/0x870
[ 1422.033796]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1422.034112]  ? down_write+0x11a/0x1f0
[ 1422.034372]  ? up_write+0x196/0x510
[ 1422.034621]  kernfs_new_node+0x97/0x120
[ 1422.034887]  __kernfs_create_file+0x55/0x350
[ 1422.035182]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1422.035481]  ? __pfx_slab_attr_store+0x10/0x10
[ 1422.035786]  internal_create_group+0x322/0xb90
[ 1422.036087]  ? __pfx_internal_create_group+0x10/0x10
[ 1422.036421]  ? up_write+0x196/0x510
[ 1422.036672]  sysfs_slab_add+0x18e/0x220
[ 1422.036931]  __kmem_cache_create+0x1fe/0x610
[ 1422.037230]  kmem_cache_create_usercopy+0x218/0x340
[ 1422.037556]  p9_client_create+0xd0b/0x1260
[ 1422.037831]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1422.038159]  ? __pfx_p9_client_create+0x10/0x10
[ 1422.038456]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1422.038773]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1422.039074]  ? __kasan_kmalloc+0x7f/0x90
[ 1422.039343]  ? __raw_spin_lock_init+0x3a/0x110
[ 1422.039643]  v9fs_session_init+0x1e0/0x17b0
[ 1422.039930]  ? __pfx_lock_release+0x10/0x10
[ 1422.040211]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1422.040534]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1422.040867]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1422.041185]  ? v9fs_mount+0x9e/0xbd0
[ 1422.041444]  v9fs_mount+0xbd/0xbd0
[ 1422.041690]  ? legacy_init_fs_context+0x44/0xe0
[ 1422.041989]  ? __pfx_v9fs_mount+0x10/0x10
[ 1422.042266]  ? cap_capable+0x1be/0x220
[ 1422.042536]  ? __pfx_v9fs_mount+0x10/0x10
[ 1422.042810]  legacy_get_tree+0x109/0x220
[ 1422.043083]  vfs_get_tree+0x92/0x360
[ 1422.043340]  path_mount+0x133c/0x1e50
[ 1422.043602]  ? kasan_quarantine_put+0x81/0x1d0
[ 1422.043908]  ? __pfx_path_mount+0x10/0x10
[ 1422.044183]  ? putname+0x102/0x140
[ 1422.044431]  ? kmem_cache_free+0xff/0x4a0
[ 1422.044708]  ? putname+0x102/0x140
[ 1422.044957]  __x64_sys_mount+0x286/0x310
[ 1422.045220]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1422.045516]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1422.045856]  do_syscall_64+0x3f/0x90
[ 1422.046106]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1422.046443] RIP: 0033:0x7fcf62391b19
[ 1422.046681] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1422.047771] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1422.048240] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1422.048679] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1422.049117] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1422.049555] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1422.050000] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1422.050455]  </TASK>
05:13:02 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x7, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:02 executing program 1:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = open_tree(r0, &(0x7f0000000080)='./file0\x00', 0x800)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x82002}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, 0x0)
ioctl$LOOP_SET_DIRECT_IO(r1, 0x4c08, 0xfffffffffffffffa)

05:13:02 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x3b37, 0x0)

[ 1422.119902] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1422.120974] CPU: 1 PID: 8374 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1422.121966] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1422.122950] Call Trace:
[ 1422.123280]  <TASK>
[ 1422.123585]  dump_stack_lvl+0xc1/0xf0
[ 1422.124093]  kmem_cache_create_usercopy+0x12b/0x340
[ 1422.124757]  p9_client_create+0xd0b/0x1260
[ 1422.125313]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1422.125973]  ? __pfx_p9_client_create+0x10/0x10
[ 1422.126569]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1422.127206]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1422.127802]  ? __kasan_kmalloc+0x7f/0x90
[ 1422.128338]  ? __raw_spin_lock_init+0x3a/0x110
[ 1422.128962]  v9fs_session_init+0x1e0/0x17b0
[ 1422.129534]  ? __pfx_lock_release+0x10/0x10
[ 1422.130102]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1422.130721]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1422.131418]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1422.132087]  ? v9fs_mount+0x9e/0xbd0
[ 1422.132634]  v9fs_mount+0xbd/0xbd0
[ 1422.133142]  ? legacy_init_fs_context+0x44/0xe0
[ 1422.133770]  ? __pfx_v9fs_mount+0x10/0x10
[ 1422.134346]  ? cap_capable+0x1be/0x220
[ 1422.134902]  ? __pfx_v9fs_mount+0x10/0x10
[ 1422.135479]  legacy_get_tree+0x109/0x220
[ 1422.136053]  vfs_get_tree+0x92/0x360
[ 1422.136595]  path_mount+0x133c/0x1e50
[ 1422.137148]  ? kasan_quarantine_put+0x81/0x1d0
[ 1422.137776]  ? __pfx_path_mount+0x10/0x10
[ 1422.138352]  ? putname+0x102/0x140
[ 1422.138856]  ? kmem_cache_free+0xff/0x4a0
[ 1422.139429]  ? putname+0x102/0x140
[ 1422.139939]  __x64_sys_mount+0x286/0x310
[ 1422.140514]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1422.141131]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1422.141835]  do_syscall_64+0x3f/0x90
[ 1422.142359]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1422.143065] RIP: 0033:0x7fcf62391b19
[ 1422.143561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1422.145856] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1422.146845] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1422.147772] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1422.148694] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1422.149614] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1422.150528] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1422.151476]  </TASK>
05:13:14 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 100)

05:13:14 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x10000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x2000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x40082406, &(0x7f0000000140)='9p\x001\xe7\x86[\x16\x99\x04;@y\fq\x10Q\x02e\x0f\xc0D,sX\x84\x00g\xa0\xcb\xf1v\xb6\xb9y\xef\x95\xda\x95\xee\xac\xa8\xad\x9fK#\xf5\xde^[.\xf1\x83\xea\xdeF\b\x83\x13\aM\xd3\xfe\xc1>\r\x9e\xb3\x82J\xae\xdf\xf3\xe2ku\x03\xcc\xa0\x91;\x1c\xa6\xe3\xe8\x9f\'\x18\x92zto\xde\xc1(\x9bK\xc5\xd7o\xe2\x8d\x90\xee%\x95\xe3\xc7z\xb4\v\x84mt\xb0Pd.\xcc^L\xd6\xc2\xb9\x17\x8c\x9f\xed\xa4[_3\xb9\x8c#\xed\x95|C;\xe7w\x91\x80\a.`\x8e\x8dg\x8b\xf9\xfc0|\xab,K\x13\xf0\vo\x1a\xa5Y\x91HZ\x9a=\x8d=\xa6\xfbJ\xc4\xcey')

05:13:14 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 82)

05:13:14 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 98)

05:13:14 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xfffffff6, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:14 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xedc000000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:14 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xedc0, 0x0)

05:13:14 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:14 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:14 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 99)

05:13:14 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xfffffffe, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:15 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x1000000000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:15 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 83)

05:13:15 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xf000, 0x0)

05:13:15 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/partitions\x00', 0x0, 0x0)
mknodat$loop(r0, &(0x7f00000000c0)='\x00', 0x6000, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:13:15 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x9, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1435.017830] FAULT_INJECTION: forcing a failure.
[ 1435.017830] name failslab, interval 1, probability 0, space 0, times 0
[ 1435.018776] CPU: 0 PID: 8440 Comm: syz-executor.3 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1435.019319] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1435.019858] Call Trace:
[ 1435.020042]  <TASK>
[ 1435.020212]  dump_stack_lvl+0xc1/0xf0
[ 1435.020500]  should_fail_ex+0x4b4/0x5b0
[ 1435.020817]  ? __kernfs_new_node+0xd4/0x870
[ 1435.021120]  should_failslab+0x9/0x20
[ 1435.021396]  kmem_cache_alloc+0x5a/0x390
[ 1435.021700]  __kernfs_new_node+0xd4/0x870
[ 1435.021999]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1435.022346]  ? down_write+0x11a/0x1f0
[ 1435.022633]  ? up_write+0x196/0x510
[ 1435.022910]  kernfs_new_node+0x97/0x120
[ 1435.023199]  __kernfs_create_file+0x55/0x350
[ 1435.023522]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1435.023847]  ? __pfx_slab_attr_store+0x10/0x10
[ 1435.024183]  internal_create_group+0x322/0xb90
[ 1435.024514]  ? __pfx_internal_create_group+0x10/0x10
[ 1435.024882]  ? up_write+0x196/0x510
[ 1435.025163]  sysfs_slab_add+0x18e/0x220
[ 1435.025456]  __kmem_cache_create+0x1fe/0x610
[ 1435.025777]  kmem_cache_create_usercopy+0x218/0x340
[ 1435.026131]  p9_client_create+0xd0b/0x1260
[ 1435.026441]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1435.026798]  ? __pfx_p9_client_create+0x10/0x10
[ 1435.027127]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1435.027474]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1435.027824]  ? __kasan_kmalloc+0x7f/0x90
[ 1435.028145]  ? __raw_spin_lock_init+0x3a/0x110
[ 1435.028503]  v9fs_session_init+0x1e0/0x17b0
[ 1435.028845]  ? __pfx_lock_release+0x10/0x10
[ 1435.029169]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1435.029528]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1435.029918]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1435.030294]  ? v9fs_mount+0x9e/0xbd0
[ 1435.030606]  v9fs_mount+0xbd/0xbd0
[ 1435.030882]  ? legacy_init_fs_context+0x44/0xe0
[ 1435.031222]  ? __pfx_v9fs_mount+0x10/0x10
[ 1435.031536]  ? cap_capable+0x1be/0x220
[ 1435.031852]  ? __pfx_v9fs_mount+0x10/0x10
[ 1435.032155]  legacy_get_tree+0x109/0x220
[ 1435.032478]  vfs_get_tree+0x92/0x360
[ 1435.032775]  path_mount+0x133c/0x1e50
[ 1435.033086]  ? kasan_quarantine_put+0x81/0x1d0
[ 1435.033427]  ? __pfx_path_mount+0x10/0x10
[ 1435.033735]  ? putname+0x102/0x140
[ 1435.033994]  ? kmem_cache_free+0xff/0x4a0
[ 1435.034311]  ? putname+0x102/0x140
[ 1435.034585]  __x64_sys_mount+0x286/0x310
[ 1435.034888]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1435.035210]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1435.035608]  do_syscall_64+0x3f/0x90
[ 1435.035902]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1435.036266] RIP: 0033:0x7ff349defb19
[ 1435.036551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1435.037813] RSP: 002b:00007ff347365188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1435.038363] RAX: ffffffffffffffda RBX: 00007ff349f02f60 RCX: 00007ff349defb19
[ 1435.038869] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1435.039369] RBP: 00007ff3473651d0 R08: 0000000020000240 R09: 0000000000000000
[ 1435.039874] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1435.040388] R13: 00007fffc306ac3f R14: 00007ff347365300 R15: 0000000000022000
[ 1435.040934]  </TASK>
05:13:15 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xedc000000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1435.099533] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1435.100084] CPU: 0 PID: 8440 Comm: syz-executor.3 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1435.100623] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1435.101158] Call Trace:
[ 1435.101346]  <TASK>
[ 1435.101508]  dump_stack_lvl+0xc1/0xf0
[ 1435.101796]  kmem_cache_create_usercopy+0x12b/0x340
[ 1435.102153]  p9_client_create+0xd0b/0x1260
[ 1435.102458]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1435.102822]  ? __pfx_p9_client_create+0x10/0x10
[ 1435.103151]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1435.103498]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1435.103821]  ? __kasan_kmalloc+0x7f/0x90
[ 1435.104117]  ? __raw_spin_lock_init+0x3a/0x110
[ 1435.104451]  v9fs_session_init+0x1e0/0x17b0
[ 1435.104798]  ? __pfx_lock_release+0x10/0x10
[ 1435.105099]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1435.105434]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1435.105825]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1435.106162]  ? v9fs_mount+0x9e/0xbd0
[ 1435.106452]  v9fs_mount+0xbd/0xbd0
[ 1435.106716]  ? legacy_init_fs_context+0x44/0xe0
[ 1435.107040]  ? __pfx_v9fs_mount+0x10/0x10
[ 1435.107332]  ? cap_capable+0x1be/0x220
[ 1435.107627]  ? __pfx_v9fs_mount+0x10/0x10
[ 1435.107926]  legacy_get_tree+0x109/0x220
[ 1435.108222]  vfs_get_tree+0x92/0x360
[ 1435.108497]  path_mount+0x133c/0x1e50
[ 1435.108793]  ? kasan_quarantine_put+0x81/0x1d0
[ 1435.109122]  ? __pfx_path_mount+0x10/0x10
[ 1435.109411]  ? putname+0x102/0x140
[ 1435.109668]  ? kmem_cache_free+0xff/0x4a0
[ 1435.109994]  ? putname+0x102/0x140
[ 1435.110281]  __x64_sys_mount+0x286/0x310
[ 1435.110583]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1435.110925]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1435.111287]  do_syscall_64+0x3f/0x90
[ 1435.111578]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1435.111963] RIP: 0033:0x7ff349defb19
[ 1435.112219] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1435.113470] RSP: 002b:00007ff347365188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1435.114010] RAX: ffffffffffffffda RBX: 00007ff349f02f60 RCX: 00007ff349defb19
[ 1435.114523] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1435.115028] RBP: 00007ff3473651d0 R08: 0000000020000240 R09: 0000000000000000
[ 1435.115529] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1435.116024] R13: 00007fffc306ac3f R14: 00007ff347365300 R15: 0000000000022000
[ 1435.116586]  </TASK>
[ 1435.117848] FAULT_INJECTION: forcing a failure.
[ 1435.117848] name failslab, interval 1, probability 0, space 0, times 0
[ 1435.119480] CPU: 1 PID: 8453 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1435.120644] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1435.121813] Call Trace:
[ 1435.122195]  <TASK>
[ 1435.122536]  dump_stack_lvl+0xc1/0xf0
[ 1435.123123]  should_fail_ex+0x4b4/0x5b0
[ 1435.123738]  ? __kernfs_new_node+0xd4/0x870
[ 1435.124357]  should_failslab+0x9/0x20
[ 1435.124959]  kmem_cache_alloc+0x5a/0x390
[ 1435.125581]  __kernfs_new_node+0xd4/0x870
[ 1435.126206]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1435.126917]  ? down_write+0x11a/0x1f0
[ 1435.127513]  ? up_write+0x196/0x510
[ 1435.128082]  kernfs_new_node+0x97/0x120
[ 1435.128715]  __kernfs_create_file+0x55/0x350
[ 1435.129395]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1435.130086]  ? __pfx_slab_attr_store+0x10/0x10
[ 1435.130757]  internal_create_group+0x322/0xb90
[ 1435.131447]  ? __pfx_internal_create_group+0x10/0x10
[ 1435.132189]  ? up_write+0x196/0x510
[ 1435.132768]  sysfs_slab_add+0x18e/0x220
[ 1435.133366]  __kmem_cache_create+0x1fe/0x610
[ 1435.134039]  kmem_cache_create_usercopy+0x218/0x340
[ 1435.134782]  p9_client_create+0xd0b/0x1260
[ 1435.135424]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1435.136201]  ? __pfx_p9_client_create+0x10/0x10
[ 1435.136909]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1435.137633]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1435.138335]  ? __kasan_kmalloc+0x7f/0x90
[ 1435.138967]  ? __raw_spin_lock_init+0x3a/0x110
[ 1435.139642]  v9fs_session_init+0x1e0/0x17b0
[ 1435.140306]  ? __pfx_lock_release+0x10/0x10
[ 1435.140960]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1435.141675]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1435.142439]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1435.143168]  ? v9fs_mount+0x9e/0xbd0
[ 1435.143762]  v9fs_mount+0xbd/0xbd0
[ 1435.144310]  ? legacy_init_fs_context+0x44/0xe0
[ 1435.145014]  ? __pfx_v9fs_mount+0x10/0x10
[ 1435.145643]  ? cap_capable+0x1be/0x220
[ 1435.146247]  ? __pfx_v9fs_mount+0x10/0x10
[ 1435.146881]  legacy_get_tree+0x109/0x220
[ 1435.147475]  vfs_get_tree+0x92/0x360
[ 1435.148051]  path_mount+0x133c/0x1e50
[ 1435.148662]  ? kasan_quarantine_put+0x81/0x1d0
[ 1435.149343]  ? __pfx_path_mount+0x10/0x10
[ 1435.149964]  ? putname+0x102/0x140
[ 1435.150512]  ? kmem_cache_free+0xff/0x4a0
[ 1435.151140]  ? putname+0x102/0x140
[ 1435.151695]  __x64_sys_mount+0x286/0x310
[ 1435.152290]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1435.152980]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1435.153748]  do_syscall_64+0x3f/0x90
[ 1435.154324]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1435.155056] RIP: 0033:0x7fcf62391b19
[ 1435.155604] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1435.158107] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1435.159185] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1435.160177] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1435.161209] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1435.162209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1435.163219] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1435.164245]  </TASK>
[ 1435.219973] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1435.221234] CPU: 1 PID: 8453 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1435.222381] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1435.223531] Call Trace:
[ 1435.223917]  <TASK>
[ 1435.224264]  dump_stack_lvl+0xc1/0xf0
[ 1435.224868]  kmem_cache_create_usercopy+0x12b/0x340
[ 1435.225620]  p9_client_create+0xd0b/0x1260
[ 1435.226262]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1435.227030]  ? __pfx_p9_client_create+0x10/0x10
[ 1435.227717]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1435.228452]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1435.229174]  ? __kasan_kmalloc+0x7f/0x90
[ 1435.229797]  ? __raw_spin_lock_init+0x3a/0x110
[ 1435.230498]  v9fs_session_init+0x1e0/0x17b0
[ 1435.231138]  ? __pfx_lock_release+0x10/0x10
[ 1435.231785]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1435.232497]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1435.233288]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1435.234024]  ? v9fs_mount+0x9e/0xbd0
[ 1435.234615]  v9fs_mount+0xbd/0xbd0
[ 1435.235166]  ? legacy_init_fs_context+0x44/0xe0
[ 1435.235849]  ? __pfx_v9fs_mount+0x10/0x10
[ 1435.236478]  ? cap_capable+0x1be/0x220
[ 1435.237114]  ? __pfx_v9fs_mount+0x10/0x10
[ 1435.237744]  legacy_get_tree+0x109/0x220
[ 1435.238374]  vfs_get_tree+0x92/0x360
[ 1435.238952]  path_mount+0x133c/0x1e50
[ 1435.239548]  ? kasan_quarantine_put+0x81/0x1d0
[ 1435.240233]  ? __pfx_path_mount+0x10/0x10
[ 1435.240874]  ? putname+0x102/0x140
[ 1435.241420]  ? kmem_cache_free+0xff/0x4a0
[ 1435.242043]  ? putname+0x102/0x140
[ 1435.242582]  __x64_sys_mount+0x286/0x310
[ 1435.243181]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1435.243857]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1435.244640]  do_syscall_64+0x3f/0x90
[ 1435.245210]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1435.245978] RIP: 0033:0x7fcf62391b19
[ 1435.246524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1435.249050] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1435.250121] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1435.251124] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1435.252129] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1435.253151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1435.254130] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1435.255149]  </TASK>
05:13:28 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 84)

05:13:28 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 100)

05:13:28 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x1000000000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:28 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x80000, 0x0)

05:13:28 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x8000000000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:28 executing program 1:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r1, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0xb}}, 0x41130000)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[], [{@smackfshat={'smackfshat', 0x3d, '.\xe1-(\xcf(.)%%&\xf1(['}}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@seclabel}, {@fscontext={'fscontext', 0x3d, 'staff_u'}}]}})
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:13:28 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x2, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:28 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xa, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1448.647089] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
05:13:28 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x3, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:28 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x8000000000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1448.680075] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
05:13:28 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xf0ffff, 0x0)

05:13:28 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:28 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:28 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x100000000000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:28 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setresuid(0x0, r0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), 0x40040, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="0636000000004600", @ANYRESDEC=0x0, @ANYBLOB=',afid=0x0000000000000006,mask=^MAY_READ,fowner<', @ANYRESDEC=r0, @ANYBLOB=',dont_appraise,rootcontext=system_u,fsmagic=0x0000000000000000,\x00'])
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:13:28 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x10, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:28 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 85)

05:13:28 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x100000000000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:28 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x4, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:28 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x2, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1448.906131] FAULT_INJECTION: forcing a failure.
[ 1448.906131] name failslab, interval 1, probability 0, space 0, times 0
[ 1448.906944] CPU: 1 PID: 8512 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1448.907510] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1448.908079] Call Trace:
[ 1448.908267]  <TASK>
[ 1448.908437]  dump_stack_lvl+0xc1/0xf0
[ 1448.908748]  should_fail_ex+0x4b4/0x5b0
[ 1448.909055]  ? __kernfs_new_node+0xd4/0x870
[ 1448.909372]  should_failslab+0x9/0x20
[ 1448.909663]  kmem_cache_alloc+0x5a/0x390
[ 1448.909971]  __kernfs_new_node+0xd4/0x870
[ 1448.910280]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1448.910635]  ? down_write+0x11a/0x1f0
[ 1448.910924]  ? up_write+0x196/0x510
[ 1448.911204]  kernfs_new_node+0x97/0x120
[ 1448.911490]  __kernfs_create_file+0x55/0x350
[ 1448.911826]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1448.912170]  ? __pfx_slab_attr_store+0x10/0x10
[ 1448.912521]  internal_create_group+0x322/0xb90
[ 1448.912879]  ? __pfx_internal_create_group+0x10/0x10
[ 1448.913250]  ? up_write+0x196/0x510
[ 1448.913532]  sysfs_slab_add+0x18e/0x220
[ 1448.913830]  __kmem_cache_create+0x1fe/0x610
[ 1448.914163]  kmem_cache_create_usercopy+0x218/0x340
[ 1448.914534]  p9_client_create+0xd0b/0x1260
[ 1448.914836]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1448.915219]  ? __pfx_p9_client_create+0x10/0x10
[ 1448.915562]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1448.915924]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1448.916267]  ? __kasan_kmalloc+0x7f/0x90
[ 1448.916575]  ? __raw_spin_lock_init+0x3a/0x110
[ 1448.916927]  v9fs_session_init+0x1e0/0x17b0
[ 1448.917253]  ? __pfx_lock_release+0x10/0x10
[ 1448.917570]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1448.917931]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1448.918293]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1448.918655]  ? v9fs_mount+0x9e/0xbd0
[ 1448.918947]  v9fs_mount+0xbd/0xbd0
[ 1448.919217]  ? legacy_init_fs_context+0x44/0xe0
[ 1448.919539]  ? __pfx_v9fs_mount+0x10/0x10
[ 1448.919851]  ? cap_capable+0x1be/0x220
[ 1448.920138]  ? __pfx_v9fs_mount+0x10/0x10
[ 1448.920455]  legacy_get_tree+0x109/0x220
[ 1448.920760]  vfs_get_tree+0x92/0x360
[ 1448.921046]  path_mount+0x133c/0x1e50
[ 1448.921327]  ? kasan_quarantine_put+0x81/0x1d0
[ 1448.921670]  ? __pfx_path_mount+0x10/0x10
[ 1448.921963]  ? putname+0x102/0x140
[ 1448.922230]  ? kmem_cache_free+0xff/0x4a0
[ 1448.922523]  ? putname+0x102/0x140
[ 1448.922799]  __x64_sys_mount+0x286/0x310
[ 1448.923077]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1448.923411]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1448.923772]  do_syscall_64+0x3f/0x90
[ 1448.924053]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1448.924411] RIP: 0033:0x7fcf62391b19
[ 1448.924681] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1448.925881] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1448.926423] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1448.926924] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1448.927432] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1448.927934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1448.928438] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1448.928962]  </TASK>
05:13:29 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x1000000, 0x0)

[ 1448.987967] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1448.988765] CPU: 1 PID: 8512 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1448.989343] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1448.989925] Call Trace:
[ 1448.990113]  <TASK>
[ 1448.990283]  dump_stack_lvl+0xc1/0xf0
[ 1448.990576]  kmem_cache_create_usercopy+0x12b/0x340
[ 1448.990946]  p9_client_create+0xd0b/0x1260
[ 1448.991264]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1448.991646]  ? __pfx_p9_client_create+0x10/0x10
[ 1448.991996]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1448.992360]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1448.992705]  ? __kasan_kmalloc+0x7f/0x90
[ 1448.993023]  ? __raw_spin_lock_init+0x3a/0x110
[ 1448.993362]  v9fs_session_init+0x1e0/0x17b0
[ 1448.993695]  ? __pfx_lock_release+0x10/0x10
[ 1448.994017]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1448.994371]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1448.994749]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1448.995109]  ? v9fs_mount+0x9e/0xbd0
[ 1448.995400]  v9fs_mount+0xbd/0xbd0
[ 1448.995670]  ? legacy_init_fs_context+0x44/0xe0
[ 1448.996005]  ? __pfx_v9fs_mount+0x10/0x10
[ 1448.996322]  ? cap_capable+0x1be/0x220
[ 1448.996623]  ? __pfx_v9fs_mount+0x10/0x10
[ 1448.996941]  legacy_get_tree+0x109/0x220
[ 1448.997247]  vfs_get_tree+0x92/0x360
[ 1448.997536]  path_mount+0x133c/0x1e50
[ 1448.997830]  ? kasan_quarantine_put+0x81/0x1d0
[ 1448.998170]  ? __pfx_path_mount+0x10/0x10
[ 1448.998479]  ? putname+0x102/0x140
[ 1448.998750]  ? kmem_cache_free+0xff/0x4a0
[ 1448.999060]  ? putname+0x102/0x140
[ 1448.999333]  __x64_sys_mount+0x286/0x310
[ 1448.999633]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1448.999971]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1449.000357]  do_syscall_64+0x3f/0x90
[ 1449.000622]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1449.001018] RIP: 0033:0x7fcf62391b19
[ 1449.001287] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1449.002543] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1449.003076] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1449.003582] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1449.004083] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1449.004581] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1449.005084] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1449.005596]  </TASK>
[ 1449.011520] 9pnet_virtio: no channels available for device ./file0
[ 1449.016074] 9pnet_virtio: no channels available for device ./file0
05:13:41 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 86)

05:13:41 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x200000000000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:41 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x2000000, 0x0)

05:13:41 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x3, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:41 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x200000000000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:41 executing program 1:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mknodat$null(r0, &(0x7f0000000180)='./file0\x00', 0x400, 0x103)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x1000000000, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff}, './file0\x00'})
unlinkat(r1, &(0x7f00000001c0)='./file0\x00', 0x0)
renameat2(r0, &(0x7f0000000040)='./file0\x00', r1, &(0x7f0000000140)='./file0\x00', 0x5)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:13:41 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xef, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:41 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x5, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1461.528591] 9pnet_virtio: no channels available for device ./file0
05:13:41 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x700000000000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:41 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x4, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1461.545141] 9pnet_virtio: no channels available for device ./file0
05:13:41 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 87)

05:13:41 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x6, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:41 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x700000000000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:41 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x3000000, 0x0)

05:13:41 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x5, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:41 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x800}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

[ 1461.680075] FAULT_INJECTION: forcing a failure.
[ 1461.680075] name failslab, interval 1, probability 0, space 0, times 0
[ 1461.681047] CPU: 1 PID: 8557 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1461.681589] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1461.682139] Call Trace:
[ 1461.682318]  <TASK>
[ 1461.682487]  dump_stack_lvl+0xc1/0xf0
[ 1461.682770]  should_fail_ex+0x4b4/0x5b0
[ 1461.683064]  ? __kernfs_new_node+0xd4/0x870
[ 1461.683368]  should_failslab+0x9/0x20
[ 1461.683646]  kmem_cache_alloc+0x5a/0x390
[ 1461.683937]  __kernfs_new_node+0xd4/0x870
[ 1461.684236]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1461.684570]  ? down_write+0x11a/0x1f0
[ 1461.684851]  ? up_write+0x196/0x510
[ 1461.685126]  kernfs_new_node+0x97/0x120
[ 1461.685413]  __kernfs_create_file+0x55/0x350
[ 1461.685736]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1461.686066]  ? __pfx_slab_attr_store+0x10/0x10
[ 1461.686394]  internal_create_group+0x322/0xb90
[ 1461.686715]  ? __pfx_internal_create_group+0x10/0x10
[ 1461.687069]  ? up_write+0x196/0x510
[ 1461.687341]  sysfs_slab_add+0x18e/0x220
[ 1461.687620]  __kmem_cache_create+0x1fe/0x610
[ 1461.687945]  kmem_cache_create_usercopy+0x218/0x340
[ 1461.688297]  p9_client_create+0xd0b/0x1260
[ 1461.688602]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1461.688976]  ? __pfx_p9_client_create+0x10/0x10
[ 1461.689335]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1461.689680]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1461.690012]  ? __kasan_kmalloc+0x7f/0x90
[ 1461.690302]  ? __raw_spin_lock_init+0x3a/0x110
[ 1461.690622]  v9fs_session_init+0x1e0/0x17b0
[ 1461.690931]  ? __pfx_lock_release+0x10/0x10
[ 1461.691230]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1461.691574]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1461.691933]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1461.692278]  ? v9fs_mount+0x9e/0xbd0
[ 1461.692556]  v9fs_mount+0xbd/0xbd0
[ 1461.692826]  ? legacy_init_fs_context+0x44/0xe0
[ 1461.693151]  ? __pfx_v9fs_mount+0x10/0x10
[ 1461.693463]  ? cap_capable+0x1be/0x220
[ 1461.693748]  ? __pfx_v9fs_mount+0x10/0x10
[ 1461.694062]  legacy_get_tree+0x109/0x220
[ 1461.694353]  vfs_get_tree+0x92/0x360
[ 1461.694641]  path_mount+0x133c/0x1e50
[ 1461.694920]  ? kasan_quarantine_put+0x81/0x1d0
[ 1461.695250]  ? __pfx_path_mount+0x10/0x10
[ 1461.695542]  ? putname+0x102/0x140
[ 1461.695800]  ? kmem_cache_free+0xff/0x4a0
[ 1461.696088]  ? putname+0x102/0x140
[ 1461.696357]  __x64_sys_mount+0x286/0x310
[ 1461.696634]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1461.696981]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1461.697341]  do_syscall_64+0x3f/0x90
[ 1461.697624]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1461.697989] RIP: 0033:0x7fcf62391b19
[ 1461.698267] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1461.699431] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1461.699974] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1461.700446] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1461.700992] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1461.701525] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1461.702013] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1461.702531]  </TASK>
[ 1461.746201] 9pnet_virtio: no channels available for device ./file0
[ 1461.751934] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1461.752754] CPU: 1 PID: 8557 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1461.753439] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1461.754125] Call Trace:
[ 1461.754354]  <TASK>
[ 1461.754559]  dump_stack_lvl+0xc1/0xf0
[ 1461.754907]  kmem_cache_create_usercopy+0x12b/0x340
[ 1461.755352]  p9_client_create+0xd0b/0x1260
[ 1461.755649]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1461.756013]  ? __pfx_p9_client_create+0x10/0x10
[ 1461.756333]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1461.756665]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1461.757017]  ? __kasan_kmalloc+0x7f/0x90
[ 1461.757305]  ? __raw_spin_lock_init+0x3a/0x110
[ 1461.757605]  v9fs_session_init+0x1e0/0x17b0
[ 1461.757914]  ? __pfx_lock_release+0x10/0x10
[ 1461.758216]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1461.758550]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1461.758906]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1461.759057] 9pnet_virtio: no channels available for device ./file0
[ 1461.759232]  ? v9fs_mount+0x9e/0xbd0
[ 1461.760318]  v9fs_mount+0xbd/0xbd0
[ 1461.760579]  ? legacy_init_fs_context+0x44/0xe0
[ 1461.760903]  ? __pfx_v9fs_mount+0x10/0x10
[ 1461.761180]  ? cap_capable+0x1be/0x220
[ 1461.761477]  ? __pfx_v9fs_mount+0x10/0x10
[ 1461.761770]  legacy_get_tree+0x109/0x220
[ 1461.762073]  vfs_get_tree+0x92/0x360
[ 1461.762337]  path_mount+0x133c/0x1e50
[ 1461.762614]  ? kasan_quarantine_put+0x81/0x1d0
[ 1461.762942]  ? __pfx_path_mount+0x10/0x10
[ 1461.763251]  ? putname+0x102/0x140
[ 1461.763507]  ? kmem_cache_free+0xff/0x4a0
[ 1461.763802]  ? putname+0x102/0x140
[ 1461.764068]  __x64_sys_mount+0x286/0x310
[ 1461.764349]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1461.764666]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1461.765055]  do_syscall_64+0x3f/0x90
[ 1461.765336]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1461.765717] RIP: 0033:0x7fcf62391b19
[ 1461.765982] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1461.767072] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1461.767606] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1461.768041] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1461.768474] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1461.768927] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1461.769362] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1461.769811]  </TASK>
05:13:54 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x800000000000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:54 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 88)

05:13:54 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x6, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:54 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x1be, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:54 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x7, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:54 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x800000000000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:54 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x825}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

05:13:54 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x4000000, 0x0)

05:13:54 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x900000000000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1474.026650] 9pnet_virtio: no channels available for device ./file0
[ 1474.035653] 9pnet_virtio: no channels available for device ./file0
05:13:54 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 89)

05:13:54 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x900000000000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:54 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r0, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0xb}}, 0x41130000)
openat$cgroup_ro(r0, &(0x7f0000000040)='blkio.bfq.sectors_recursive\x00', 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x8000000000, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:13:54 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x5000000, 0x0)

[ 1474.115594] FAULT_INJECTION: forcing a failure.
[ 1474.115594] name failslab, interval 1, probability 0, space 0, times 0
[ 1474.116540] CPU: 0 PID: 8600 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1474.117114] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1474.117677] Call Trace:
[ 1474.117866]  <TASK>
[ 1474.118034]  dump_stack_lvl+0xc1/0xf0
[ 1474.118329]  should_fail_ex+0x4b4/0x5b0
[ 1474.118643]  ? __kernfs_new_node+0xd4/0x870
[ 1474.118960]  should_failslab+0x9/0x20
[ 1474.119243]  kmem_cache_alloc+0x5a/0x390
[ 1474.119558]  __kernfs_new_node+0xd4/0x870
[ 1474.119871]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1474.120231]  ? down_write+0x11a/0x1f0
[ 1474.120527]  ? up_write+0x196/0x510
[ 1474.120813]  kernfs_new_node+0x97/0x120
[ 1474.121127]  __kernfs_create_file+0x55/0x350
[ 1474.121468]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1474.121813]  ? __pfx_slab_attr_store+0x10/0x10
[ 1474.122160]  internal_create_group+0x322/0xb90
[ 1474.122512]  ? __pfx_internal_create_group+0x10/0x10
[ 1474.122877]  ? up_write+0x196/0x510
[ 1474.123166]  sysfs_slab_add+0x18e/0x220
[ 1474.123463]  __kmem_cache_create+0x1fe/0x610
[ 1474.123798]  kmem_cache_create_usercopy+0x218/0x340
[ 1474.124168]  p9_client_create+0xd0b/0x1260
[ 1474.124491]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1474.124871]  ? __pfx_p9_client_create+0x10/0x10
[ 1474.125206]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1474.125569]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1474.125916]  ? __kasan_kmalloc+0x7f/0x90
[ 1474.126221]  ? __raw_spin_lock_init+0x3a/0x110
[ 1474.126567]  v9fs_session_init+0x1e0/0x17b0
[ 1474.126897]  ? __pfx_lock_release+0x10/0x10
[ 1474.127219]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1474.127576]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1474.127966]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1474.128318]  ? v9fs_mount+0x9e/0xbd0
[ 1474.128606]  v9fs_mount+0xbd/0xbd0
[ 1474.128874]  ? legacy_init_fs_context+0x44/0xe0
[ 1474.129206]  ? __pfx_v9fs_mount+0x10/0x10
[ 1474.129519]  ? cap_capable+0x1be/0x220
[ 1474.129811]  ? __pfx_v9fs_mount+0x10/0x10
[ 1474.130123]  legacy_get_tree+0x109/0x220
[ 1474.130427]  vfs_get_tree+0x92/0x360
[ 1474.130724]  path_mount+0x133c/0x1e50
[ 1474.131008]  ? kasan_quarantine_put+0x81/0x1d0
[ 1474.131346]  ? __pfx_path_mount+0x10/0x10
[ 1474.131640]  ? putname+0x102/0x140
[ 1474.131909]  ? kmem_cache_free+0xff/0x4a0
[ 1474.132205]  ? putname+0x102/0x140
[ 1474.132484]  __x64_sys_mount+0x286/0x310
[ 1474.132771]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1474.133113]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1474.133502]  do_syscall_64+0x3f/0x90
[ 1474.133783]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1474.134160] RIP: 0033:0x7fcf62391b19
[ 1474.134427] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1474.135647] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1474.136168] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1474.136654] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1474.137165] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1474.137655] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1474.138149] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1474.138669]  </TASK>
05:13:54 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x300, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:54 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1474.179817] 9pnet_virtio: no channels available for device ./file0
05:13:54 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x7, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:13:54 executing program 1:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY_ALL_USERS(r0, 0xc0406619, &(0x7f0000000040)={@id={0x2, 0x0, @auto="061e897d79d224b58f45c091aa05a10c"}})
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r1=>r0}, './file0\x00'})
openat(r1, &(0x7f0000000140)='./file0\x00', 0x200600, 0x128)

[ 1474.191150] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1474.192393] CPU: 1 PID: 8600 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1474.193641] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1474.194884] Call Trace:
[ 1474.195293]  <TASK>
[ 1474.195659]  dump_stack_lvl+0xc1/0xf0
[ 1474.196291]  kmem_cache_create_usercopy+0x12b/0x340
[ 1474.197105]  p9_client_create+0xd0b/0x1260
[ 1474.197740]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1474.198510]  ? __pfx_p9_client_create+0x10/0x10
[ 1474.199180]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1474.199880]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1474.200570]  ? __kasan_kmalloc+0x7f/0x90
[ 1474.201165]  ? __raw_spin_lock_init+0x3a/0x110
[ 1474.201839]  v9fs_session_init+0x1e0/0x17b0
[ 1474.202484]  ? __pfx_lock_release+0x10/0x10
[ 1474.203093]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1474.203780]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1474.204534]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1474.205252]  ? v9fs_mount+0x9e/0xbd0
[ 1474.205823]  v9fs_mount+0xbd/0xbd0
[ 1474.206367]  ? legacy_init_fs_context+0x44/0xe0
[ 1474.207177]  ? __pfx_v9fs_mount+0x10/0x10
[ 1474.207761]  ? cap_capable+0x1be/0x220
[ 1474.208473]  ? __pfx_v9fs_mount+0x10/0x10
[ 1474.209067]  legacy_get_tree+0x109/0x220
[ 1474.209645]  vfs_get_tree+0x92/0x360
[ 1474.210316]  path_mount+0x133c/0x1e50
[ 1474.210868]  ? kasan_quarantine_put+0x81/0x1d0
[ 1474.211672]  ? __pfx_path_mount+0x10/0x10
[ 1474.212286]  ? putname+0x102/0x140
[ 1474.212911]  ? kmem_cache_free+0xff/0x4a0
[ 1474.213516]  ? putname+0x102/0x140
[ 1474.214030]  __x64_sys_mount+0x286/0x310
[ 1474.214736]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1474.215364]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1474.216269]  do_syscall_64+0x3f/0x90
[ 1474.216808]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1474.217710] RIP: 0033:0x7fcf62391b19
[ 1474.218250] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1474.221252] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1474.222295] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1474.223478] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1474.224450] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1474.225436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1474.226337] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1474.227553]  </TASK>
[ 1474.228721] 9pnet_virtio: no channels available for device ./file0
05:13:54 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:05 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x9, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:05 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x9, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:05 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xa00000000000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:05 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x500, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:05 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x6000000, 0x0)

05:14:05 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 90)

05:14:05 executing program 1:
stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, <r0=>0x0, <r1=>0x0})
setresuid(0x0, r0, 0x0)
r2 = getgid()
r3 = getgid()
r4 = getgid()
setresgid(r2, r3, r4)
r5 = getegid()
r6 = getgid()
setresgid(r1, r5, r4)
r7 = getgid()
r8 = getgid()
pivot_root(&(0x7f0000000200)='./file0\x00', &(0x7f0000000280)='./file0\x00')
setresgid(r6, r7, r8)
r9 = getgid()
r10 = getgid()
r11 = getgid()
setresgid(r9, r10, r11)
lsetxattr$system_posix_acl(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='system.posix_acl_default\x00', &(0x7f0000000140)=ANY=[@ANYBLOB="02000000010006000000000002000700", @ANYRES32=r0, @ANYBLOB="02000600", @ANYRES32=0xee00, @ANYBLOB="02000300", @ANYRES32=0x0, @ANYBLOB="02000600", @ANYRES32=0xee01, @ANYBLOB="02000200", @ANYRES32, @ANYBLOB="040004000000000008400400", @ANYRES32=r2, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=r5, @ANYBLOB="08000500", @ANYRES32=r7, @ANYBLOB="08000500", @ANYRES32=0xee00, @ANYBLOB="08000400", @ANYRES32=r11, @ANYBLOB="10000400000000002000010000000000"], 0x74, 0x2)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x80000000}, 0x0, 0x3, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:14:05 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xa00000000000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1485.757561] 9pnet_virtio: no channels available for device ./file0
[ 1485.763486] 9pnet_virtio: no channels available for device ./file0
05:14:17 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 91)

05:14:17 executing program 1:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = signalfd(r0, &(0x7f0000000040), 0x8)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000180)={{0x1, 0x1, 0x18, <r2=>r0, {0xfff}}, './file0\x00'})
socket$inet_udplite(0x2, 0x2, 0x88)
r3 = syz_open_dev$vcsn(&(0x7f0000000700), 0x8000, 0x15001)
ioctl$INCFS_IOC_FILL_BLOCKS(r3, 0x80106720, &(0x7f00000006c0)={0x5, &(0x7f0000000600)=[{0x4, 0xaf, &(0x7f00000002c0)="90c9a4d3c16c19160d33c7f3768ffbdad2beab1155e1d0247c866526c5a08d0906cf07995357c4dfb79446ed3ec97d09c4bb043e89f3d4159580630e4aff5fcc2d561b05d9b7c081ed7b996c502bf39a74131a17de0873eee03f14b02be2243b5cfd2b6603ede153bbdb4c4bcfb8de67151d4749207bc3bc95a51e6b24170b526c766f073e34a13579c756e84efac91f1c8f415d6c7d9c76fdea0769257b3972bfe676dba6373087cb06d0b88f6e6f", 0x1}, {0x8, 0xbd, &(0x7f0000000380)="0cced7688fe62e39556d0c3eca00c03537e8305028a66d1fd27f1ce299c9121915e107f959a817258039503d1a8a7ba11a976975e487e2c352e9750e83ca75691f6cee8629daecf7184c3e55f4f5779b9ea8571dbff32e9c93e61d6afc87ffdca975c4bcfaba081eee705e18b76e9ecd34f3719a41dbe2b8f92459d3c8b14e98513c8893c0715a9ba7ddbce459a19a7915179a1294a1efeedc747400ec8b5e6943ace77b9564a20eab3a44d349aa17e3b76734c7e81a6b2f91e19a1881", 0x0, 0x3}, {0x0, 0xbd, &(0x7f0000000440)="99533db38bbc6f3ac45cc570204c0b2294e795f73e465be9761e61935033c60c3a70ef9a56e2d38acee05f6d023d6d9c4ec09f4d30f47a93286282bdec5d025324dfa97fb0ee40dc9d56b549099d0175080ec6bf0a667cc7641b8d8569b3d3d6b03c0fd991ded5b84c0cbe1edab234775414c537d37fdcca83e3f6bdea9db0633a7856b3b1a2236ff1a27d1b533c5c35b27d7465c8bd660a7c3712dac22b218e49339249c2c82c9434ca64a685047b09506d346e6688ce393b72bef69b"}, {0x9, 0x1a, &(0x7f0000000500)="d7f200b95ee2acd3670183192b7f2d7938caec98c17dd11d1100", 0x1}, {0x8b, 0xa4, &(0x7f0000000540)="749b627cb35bc3e78ea88f56a43e5e36fc907677bb53d0d20690b688195b153fb7303a9f3a016dae4e9a1e1754da5aa71b1506038f0c2a984040086a575c5709a7921787325f34a7d020ca58e94dc3bc1592c294df8a62dc0b9c72486f82a774463fc3d64a7588ccdf2f5b954cb0f28cd2824f4cc52624c09fa92b0a198df643411ba58d693344114adc8ab81adfee3bc557d0594ad5d0933ced810ab85e224d95044dd8", 0x0, 0x1}]})
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f00000000c0)='9p\x00', &(0x7f0000000140)='./file0\x00', r2)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = getpgrp(0xffffffffffffffff)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r5, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0xb}}, 0x41130000)
fcntl$getownex(r5, 0x10, &(0x7f0000000280)={0x0, <r6=>0x0})
fcntl$setown(r1, 0x8, r6)
perf_event_open(&(0x7f0000000200)={0x5, 0x80, 0xf5, 0xf8, 0x5, 0x2, 0x0, 0x67f, 0x0, 0x4, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x4, @perf_bp={&(0x7f00000001c0), 0x2}, 0x0, 0xead, 0x6, 0x2, 0x4, 0x7ff, 0x3f, 0x0, 0xfffffffd}, r4, 0x10, r5, 0x9)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
recvmmsg$unix(r1, &(0x7f0000001e00)=[{{&(0x7f0000000740)=@abs, 0x6e, &(0x7f0000001800)=[{&(0x7f00000007c0)=""/4096, 0x1000}, {&(0x7f00000017c0)=""/28, 0x1c}], 0x2, &(0x7f00000018c0)=[@rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x50}}, {{&(0x7f0000001940)=@abs, 0x6e, &(0x7f0000001b00)=[{&(0x7f00000019c0)=""/134, 0x86}, {&(0x7f0000001a80)=""/101, 0x65}], 0x2, &(0x7f0000001b40)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x70}}, {{&(0x7f0000001bc0)=@abs, 0x6e, &(0x7f0000001d40)=[{&(0x7f0000001c40)=""/248, 0xf8}], 0x1, &(0x7f0000001d80)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x80}}], 0x3, 0x40000000, 0x0)

05:14:17 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xa, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:17 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xb00000000000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:17 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xa, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:17 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xb00000000000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:17 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x600, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:17 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x7000000, 0x0)

[ 1497.554125] 9pnet_virtio: no channels available for device ./file0
[ 1497.575900] 9pnet_virtio: no channels available for device ./file0
05:14:17 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 92)

05:14:17 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:17 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:17 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x1000000000000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:17 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x1000000000000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:17 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x700, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:17 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x20000000, 0x0)

05:14:17 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x10, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:17 executing program 1:
getsockopt$IP_VS_SO_GET_SERVICES(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000140)=""/71, &(0x7f0000000040)=0x47)
getsockopt$inet_mreq(0xffffffffffffffff, 0x0, 0x24, &(0x7f00000001c0)={@local, @remote}, &(0x7f0000000200)=0x8)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = shmget$private(0x0, 0x3000, 0x0, &(0x7f0000ff4000/0x3000)=nil)
shmat(r2, &(0x7f0000ff6000/0x1000)=nil, 0x5000)
shmat(r2, &(0x7f0000ffc000/0x2000)=nil, 0x4000)
shmat(r2, &(0x7f0000ff9000/0x1000)=nil, 0x4000)
madvise(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x17)
madvise(&(0x7f0000ffa000/0x2000)=nil, 0x2000, 0x14)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'syz_tun\x00', <r3=>0x0})
bind$packet(r0, &(0x7f0000000000)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @remote}, 0x14)
ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, &(0x7f00000000c0)={@empty, 0x77, r3})

[ 1497.731290] FAULT_INJECTION: forcing a failure.
[ 1497.731290] name failslab, interval 1, probability 0, space 0, times 0
[ 1497.732923] CPU: 0 PID: 8690 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1497.733967] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1497.734984] Call Trace:
[ 1497.735321]  <TASK>
[ 1497.735624]  dump_stack_lvl+0xc1/0xf0
[ 1497.736141]  should_fail_ex+0x4b4/0x5b0
[ 1497.736694]  ? __kernfs_new_node+0xd4/0x870
[ 1497.737253]  should_failslab+0x9/0x20
[ 1497.737769]  kmem_cache_alloc+0x5a/0x390
[ 1497.738323]  __kernfs_new_node+0xd4/0x870
[ 1497.738882]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1497.739526]  ? down_write+0x11a/0x1f0
[ 1497.740056]  ? up_write+0x196/0x510
[ 1497.740578]  kernfs_new_node+0x97/0x120
[ 1497.741127]  __kernfs_create_file+0x55/0x350
[ 1497.741764]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1497.742372]  ? __pfx_slab_attr_store+0x10/0x10
[ 1497.742992]  internal_create_group+0x322/0xb90
[ 1497.743605]  ? __pfx_internal_create_group+0x10/0x10
[ 1497.744256]  ? up_write+0x196/0x510
[ 1497.744781]  sysfs_slab_add+0x18e/0x220
[ 1497.745314]  __kmem_cache_create+0x1fe/0x610
[ 1497.745926]  kmem_cache_create_usercopy+0x218/0x340
05:14:17 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x2000000000000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1497.746597]  p9_client_create+0xd0b/0x1260
[ 1497.747276]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1497.747941]  ? __pfx_p9_client_create+0x10/0x10
[ 1497.748558]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1497.749205]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1497.749835]  ? __kasan_kmalloc+0x7f/0x90
[ 1497.750385]  ? __raw_spin_lock_init+0x3a/0x110
[ 1497.751003]  v9fs_session_init+0x1e0/0x17b0
[ 1497.751594]  ? __pfx_lock_release+0x10/0x10
[ 1497.752163]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1497.752792]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1497.753481]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1497.754115]  ? v9fs_mount+0x9e/0xbd0
[ 1497.754655]  v9fs_mount+0xbd/0xbd0
[ 1497.755138]  ? legacy_init_fs_context+0x44/0xe0
[ 1497.755733]  ? __pfx_v9fs_mount+0x10/0x10
[ 1497.756288]  ? cap_capable+0x1be/0x220
[ 1497.756826]  ? __pfx_v9fs_mount+0x10/0x10
[ 1497.757386]  legacy_get_tree+0x109/0x220
[ 1497.757939]  vfs_get_tree+0x92/0x360
[ 1497.758449]  path_mount+0x133c/0x1e50
[ 1497.758991]  ? kasan_quarantine_put+0x81/0x1d0
[ 1497.759593]  ? __pfx_path_mount+0x10/0x10
[ 1497.760136]  ? putname+0x102/0x140
[ 1497.760609]  ? kmem_cache_free+0xff/0x4a0
[ 1497.761159]  ? putname+0x102/0x140
[ 1497.761680]  __x64_sys_mount+0x286/0x310
[ 1497.762200]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1497.762795]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1497.763471]  do_syscall_64+0x3f/0x90
[ 1497.763976]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1497.764643] RIP: 0033:0x7fcf62391b19
[ 1497.765132] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1497.767258] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1497.768180] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1497.769035] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1497.769908] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1497.770770] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1497.771634] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1497.772557]  </TASK>
05:14:17 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x900, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:17 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x1ea, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:17 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x2000000000000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1497.838707] 9pnet_virtio: no channels available for device ./file0
05:14:17 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x10, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1497.854185] 9pnet_virtio: no channels available for device ./file0
05:14:17 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x2010000000000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:17 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xa00, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1497.935207] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1497.936415] CPU: 0 PID: 8690 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1497.937430] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1497.938429] Call Trace:
[ 1497.938770]  <TASK>
[ 1497.939072]  dump_stack_lvl+0xc1/0xf0
[ 1497.939599]  kmem_cache_create_usercopy+0x12b/0x340
[ 1497.940265]  p9_client_create+0xd0b/0x1260
[ 1497.940835]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1497.941538]  ? __pfx_p9_client_create+0x10/0x10
[ 1497.942151]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1497.942804]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1497.943420]  ? __kasan_kmalloc+0x7f/0x90
[ 1497.943986]  ? __raw_spin_lock_init+0x3a/0x110
[ 1497.944600]  v9fs_session_init+0x1e0/0x17b0
[ 1497.945190]  ? __pfx_lock_release+0x10/0x10
[ 1497.945774]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1497.946414]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1497.947105]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1497.947744]  ? v9fs_mount+0x9e/0xbd0
[ 1497.948290]  v9fs_mount+0xbd/0xbd0
[ 1497.948780]  ? legacy_init_fs_context+0x44/0xe0
[ 1497.949392]  ? __pfx_v9fs_mount+0x10/0x10
[ 1497.949947]  ? cap_capable+0x1be/0x220
[ 1497.950493]  ? __pfx_v9fs_mount+0x10/0x10
[ 1497.951040]  legacy_get_tree+0x109/0x220
[ 1497.951600]  vfs_get_tree+0x92/0x360
[ 1497.952119]  path_mount+0x133c/0x1e50
[ 1497.952642]  ? kasan_quarantine_put+0x81/0x1d0
[ 1497.953252]  ? __pfx_path_mount+0x10/0x10
[ 1497.953820]  ? putname+0x102/0x140
[ 1497.954309]  ? kmem_cache_free+0xff/0x4a0
[ 1497.954901]  ? putname+0x102/0x140
[ 1497.955397]  __x64_sys_mount+0x286/0x310
[ 1497.955924]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1497.956521]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1497.957203]  do_syscall_64+0x3f/0x90
[ 1497.957716]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1497.958387] RIP: 0033:0x7fcf62391b19
[ 1497.958854] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1497.960993] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1497.961927] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1497.962786] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1497.963656] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1497.964518] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1497.965400] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1497.966317]  </TASK>
05:14:31 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 93)

05:14:31 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x20100000, 0x0)

05:14:31 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xa8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:31 executing program 1:
unshare(0x4000000)
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r1=>r0, {0x7}}, './file0\x00'})
readlinkat(r1, &(0x7f0000000240)='./file1\x00', &(0x7f0000000280)=""/20, 0x14)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r2, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0xb}}, 0x41130000)
bind$unix(r2, &(0x7f0000000140)=@file={0x1, './file0\x00'}, 0x6e)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000580)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r2, &(0x7f0000000d00)={&(0x7f0000000540)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000cc0)={&(0x7f00000005c0)={0x6f8, 0x0, 0x100, 0x70bd29, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_NAN_FUNC={0x6dc, 0xf0, 0x0, 0x1, [@NL80211_NAN_FUNC_FOLLOW_UP_REQ_ID={0x5, 0x7, 0x1}, @NL80211_NAN_FUNC_SERVICE_INFO={0xaa, 0xb, "8ef55f0e6c3ee434e4e842b04814a70052c973188802d20fc404406445d3bdefaa80a5498300a6cb6821897510217a822107ddf6f7b00f6f6f8892c01040ffbb8f3cc1c64f6f25010ae6371137e8e2c19d6f37c139df59fe161ed3368c300648bcdaf34407eb2b0f79e4cecf62ded12751e223573e5506b3e82379bd8f5779eed47fb42a2b2ebd6622a01280b5553c78785f25db34d23403ebeeec982191041aae0a64c5f390"}, @NL80211_NAN_FUNC_TX_MATCH_FILTER={0x210, 0xe, 0x0, 0x1, [{0xa7, 0x0, "e9732991490fc4fb878b9d97df8ff9eaad6f99bf9f0efbe28d529907273abee3d3b92a46edeab702abf755df35fef400689edfe69a24a466c3ebfa49f12b0ee9791eefb270d85288b25b86408483a0b4c2aeadb2c6624f7f7a5da659cf3716fad632383d4af53bd5e8519a8d99789af0954c2553b4e8b41d246e69452a4dd5691577c9d479904292c1163d094a4bb905f471ff225fdddf78ea1920c20a5bec2809bc83"}, {0x89, 0x0, "dfcdd98de8a166ff3edfa23385fcc2c25d43ba503a4383ff74cd6b3436c73ef79a62490a99daa724995f0b3e5ca0cf46c028a7a92fd8b9b2d4e2c049aae7dbf7e90777d7cbb9ba660985d3ea37a8ed6749abd7b7f0760b1c388411b0e31924156f03444f5b2e1077691f8c7706f5d59d405b3322e50f08dbe65657b1ab154d856800fc4777"}, {0x79, 0x0, "721a20ecbaafed470267e6cceb0afbed7b94d99b3f7baccd8d38a4633fef646c287b1ed8dee3182e4374e9e2fcc9395fefc087c26a2d242822549e2a893b4947587c448fb1d8e25b7a739d94253f23f04fa8a3bed9343b7774ddfc7fb168e184163b580ce0f0d544589c7b90c259072390a7bc4852"}, {0x5a, 0x0, "df417ee381af4a795e1fa6216914b1c1cf98e97ba73f326ba79e84c4956c08be919f8956bd6378ecd9804a3e9d65ca6b930febc89e1b81121c53987f5630982f3cf0e8fab19071fd0b71364b1dea125d0edcf0a348cb"}]}, @NL80211_NAN_FUNC_SERVICE_ID={0xa, 0x2, "8a26033c2380"}, @NL80211_NAN_FUNC_SUBSCRIBE_ACTIVE={0x4}, @NL80211_NAN_FUNC_RX_MATCH_FILTER={0x404, 0xd, 0x0, 0x1, [{0xf3, 0x0, "4991706e9a5d342aa4f444569ca29f6054d42bd765d5417c42ce239c59f81a654b71edd23ffc208ce3f032f0547fee7c0f169c85f99f8fcfb77c71596a630729628efd728be3d4666eb6c62303e3cda939d21f8ecf83a4f87fbe30498e5d0d5cf5738d4666fb915dd0383baf7292948dde02d7e9cc48259c1f35c065090a692a86d1368714aa94934b5c85dc1f1c448507b4d6570a0bc8ccf69cd7cd8df63b5516baed956e99f48e7303a24a3a6a887fc7cc93e6545bbba832ffb2320b66089ece8738f17c1c120c54db6f15b74d14df399e3ee1f0fccc829977f3a28a2819f2b6348e8137eef61618f678fafe74db"}, {0xad, 0x0, "3fe4bb3e107b98fc3a0e26770a8fb576b3e21ebb728b881604c44f2a4f54cfcd0e6aa3f4524b9d742f56547342151ed5be41cd2b84baa6ee55135e23eb1f5b247a2c636937bba822675f9b260120c67f9f1eb5fed2fccbcd887bdb7049ef050367608014c2a1d9ab320cbeb3009183caa41c080cf97c06a7ae9f6d06d2688dae3221aa7fa4d2a0227c5d9c907b5997b1850cc4d269ad6e65c949facd96af4d5460f38dadc18fd16ebf"}, {0xfb, 0x0, "745e197439edf519f076f71731849c6f3731242072d7eaed773fde5fa9ac70177536a42d8ff71fa7ddaeb2bdcfea22e5c390fe5d0ce851ac77eba57aa61b02c945fa294296c20096cdd2e3090c9aa201adeca0de105f2bc9b84793e8f0836eb456a547c3a850ab18392a9bc365e4db827b8ef6fe20bc213df71c25f08cee46d066ec21a6eafa24ea7ada6418500504b4122947f58cea159617b5ca46b7a7ef0f627c1d5cf924b1f9b133496a9cbfa7410c6ba6c02ef77c5026e9f91a6a2401ba5da0619b8a250906f8754ed26c13882b68e9a0e6994bda1c185fa0c805b877bf3acdaa53ad8e6fd7c3f4a16adaaba717df905015db7c4e"}, {0xd4, 0x0, "725d5c9421d8383459fb6388b3d4518cc4204f048543e1bd6db9ab25637fd4057326f82ab59e2cb67d420f259ce9d173ed88ae4700427ecac9af2ce00ce6b91be756bc596cd73b92f05845d7899608e9ffaed0d8215006f20f8d5ed8635ac81f5e225590971c86956c8362cd14f2b21c68b74f019baa00026bdb4f5e4b4590a461336b1374f8aa090b74979152ae6a3acfc68d84b257e9ed298371178d05037d0b073a92364a183d0ba5e18d91162aa6763991edb8a161d99b09a049f6eb416fe2a64e5cb8c04dc57ca18305662bae49"}, {0x8b, 0x0, "6b0a0590dd70a67a28cca246af28a601272a6d111d05810a6e73feebf0d8d2e4b5fa0ebde54917fa2b543d91dccb6d967eae0613ae781aa99054a540bc4c61988938b8491b9d3d33e5e1103fc4b1d3cf2a60eac96635b1cd111e410b458e86d8e8bfd7352214b04719476e0468e245f8864e439c335c9b46d52fb3e97e060aadcccac840b2e816"}]}]}]}, 0x6f8}, 0x1, 0x0, 0x0, 0x40000c1}, 0x4)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$MON_IOCX_GETX(r2, 0x4018920a, &(0x7f00000001c0)={&(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f00000000c0)=""/57, 0x39})
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
sendmsg$NL80211_CMD_SET_QOS_MAP(r2, &(0x7f0000000480)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000440)={&(0x7f0000000300)={0x138, 0x0, 0x200, 0x70bd2b, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x51, 0x6e}}}}, [@NL80211_ATTR_QOS_MAP={0x2c, 0xc7, {[{0x60, 0x2}, {0xff, 0x3}, {0x8, 0x3}, {0x72, 0x5}, {0xd8, 0x5}, {0x7, 0x5}, {0xff, 0x7}, {0x50, 0x5}, {0x7f, 0x6}, {0x4, 0x7}, {0x3, 0x5}, {0x5, 0x7}, {0x6e, 0x2}, {0x8}, {0x3f, 0x3}, {0x9, 0x6}], "77ca509ca7c1253c"}}, @NL80211_ATTR_QOS_MAP={0x24, 0xc7, {[{0xb1, 0x6}, {0xfb, 0x7}, {0x0, 0x2}, {0x0, 0x4}, {0x9, 0x1}, {0x9, 0x2}, {0x81, 0x4}, {0xe2, 0x5}, {0x5, 0x1}, {0x94, 0x4}, {0x3f}, {0x1, 0x6}], "08fa19306a4e18dd"}}, @NL80211_ATTR_QOS_MAP={0x16, 0xc7, {[{0x1f, 0x2}, {0x9, 0x6}, {0xcb, 0x1}, {0x9, 0x6}, {0x81, 0x1}], "a26dbf51c3590515"}}, @NL80211_ATTR_QOS_MAP={0x20, 0xc7, {[{0x1, 0x1}, {0x9}, {0x5}, {0x2, 0x5}, {0x1, 0x3}, {0x5}, {0x9, 0x3}, {0x0, 0x5}, {0x4, 0x7}, {0x1, 0x2}], "a1938bded6679bb6"}}, @NL80211_ATTR_QOS_MAP={0x28, 0xc7, {[{0x5, 0x6}, {0x9}, {0x7, 0x6}, {0x1, 0x4}, {0xf8, 0x3}, {0x81, 0x4}, {0x6, 0x5}, {0x7f, 0x7}, {0x2, 0x1}, {0x3, 0x1}, {0x3, 0x2}, {0x7f, 0x1}, {0x2f, 0x6}, {0xff, 0x4}], "c99c509df1ac1271"}}, @NL80211_ATTR_QOS_MAP={0x36, 0xc7, {[{0xfa, 0x5}, {0x7f, 0x7}, {0x81, 0x4}, {0x4}, {0x2, 0x3}, {0xc4, 0x1}, {0x1, 0x2}, {0x2}, {0x11, 0x5}, {0xbc}, {0x1f, 0x7}, {0x7f, 0x7}, {}, {0xf7, 0x3}, {0x81, 0x3}, {0x4}, {0x85}, {0x7, 0x2}, {0xc9, 0x6}, {0x9, 0x2}, {0x2, 0x2}], "97bc00dcc77b13b6"}}, @NL80211_ATTR_QOS_MAP={0x28, 0xc7, {[{0x40, 0x7}, {0x81, 0x6}, {0xc4}, {0x4, 0x3}, {0xfe}, {0x0, 0x7}, {0x3, 0x6}, {0x4, 0x1}, {0x2, 0x4}, {0x8, 0x4}, {0x0, 0x4}, {0x8, 0x7}, {0x8, 0x3}, {0x2, 0x1}], "e718eb763e898672"}}]}, 0x138}, 0x1, 0x0, 0x0, 0x8000}, 0x4008000)
connect$unix(r1, &(0x7f00000004c0)=@file={0x1, './file2\x00'}, 0x6e)

05:14:31 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x8cffffff00000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:31 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x239, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:31 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xb00, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:31 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x2010000000000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1511.285092] FAULT_INJECTION: forcing a failure.
[ 1511.285092] name failslab, interval 1, probability 0, space 0, times 0
[ 1511.285993] CPU: 1 PID: 8742 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1511.286524] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1511.287068] Call Trace:
[ 1511.287244]  <TASK>
[ 1511.287411]  dump_stack_lvl+0xc1/0xf0
[ 1511.287704]  should_fail_ex+0x4b4/0x5b0
[ 1511.287998]  ? __kernfs_new_node+0xd4/0x870
[ 1511.288298]  should_failslab+0x9/0x20
[ 1511.288572]  kmem_cache_alloc+0x5a/0x390
[ 1511.288867]  __kernfs_new_node+0xd4/0x870
[ 1511.289164]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1511.289516]  ? down_write+0x11a/0x1f0
[ 1511.289795]  ? up_write+0x196/0x510
[ 1511.290064]  kernfs_new_node+0x97/0x120
[ 1511.290353]  __kernfs_create_file+0x55/0x350
[ 1511.290671]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1511.291002]  ? __pfx_slab_attr_store+0x10/0x10
[ 1511.291332]  internal_create_group+0x322/0xb90
[ 1511.291662]  ? __pfx_internal_create_group+0x10/0x10
[ 1511.292009]  ? up_write+0x196/0x510
[ 1511.292273]  sysfs_slab_add+0x18e/0x220
[ 1511.292550]  __kmem_cache_create+0x1fe/0x610
[ 1511.292867]  kmem_cache_create_usercopy+0x218/0x340
[ 1511.293216]  p9_client_create+0xd0b/0x1260
[ 1511.293534]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1511.293890]  ? __pfx_p9_client_create+0x10/0x10
[ 1511.294210]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1511.294572]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1511.294921]  ? __kasan_kmalloc+0x7f/0x90
[ 1511.295234]  ? __raw_spin_lock_init+0x3a/0x110
[ 1511.295584]  v9fs_session_init+0x1e0/0x17b0
[ 1511.295912]  ? __pfx_lock_release+0x10/0x10
[ 1511.296210]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1511.296569]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1511.296929]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1511.297298]  ? v9fs_mount+0x9e/0xbd0
[ 1511.297585]  v9fs_mount+0xbd/0xbd0
[ 1511.297860]  ? legacy_init_fs_context+0x44/0xe0
[ 1511.298178]  ? __pfx_v9fs_mount+0x10/0x10
[ 1511.298501]  ? cap_capable+0x1be/0x220
[ 1511.298790]  ? __pfx_v9fs_mount+0x10/0x10
[ 1511.299105]  legacy_get_tree+0x109/0x220
[ 1511.299402]  vfs_get_tree+0x92/0x360
[ 1511.299697]  path_mount+0x133c/0x1e50
[ 1511.299978]  ? kasan_quarantine_put+0x81/0x1d0
[ 1511.300323]  ? __pfx_path_mount+0x10/0x10
[ 1511.300613]  ? putname+0x102/0x140
[ 1511.300878]  ? kmem_cache_free+0xff/0x4a0
[ 1511.301169]  ? putname+0x102/0x140
[ 1511.301448]  __x64_sys_mount+0x286/0x310
[ 1511.301742]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1511.302085]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1511.302449]  do_syscall_64+0x3f/0x90
[ 1511.302732]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1511.303110] RIP: 0033:0x7fcf62391b19
[ 1511.303386] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1511.304631] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1511.305170] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1511.305672] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1511.306173] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1511.306662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1511.307165] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1511.307675]  </TASK>
[ 1511.323562] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1511.324591] CPU: 0 PID: 8742 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1511.325645] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1511.326689] Call Trace:
[ 1511.327044]  <TASK>
[ 1511.327365]  dump_stack_lvl+0xc1/0xf0
[ 1511.327913]  kmem_cache_create_usercopy+0x12b/0x340
[ 1511.328615]  p9_client_create+0xd0b/0x1260
[ 1511.329223]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1511.329960]  ? __pfx_p9_client_create+0x10/0x10
[ 1511.330619]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1511.331303]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1511.331954]  ? __kasan_kmalloc+0x7f/0x90
[ 1511.332537]  ? __raw_spin_lock_init+0x3a/0x110
[ 1511.333191]  v9fs_session_init+0x1e0/0x17b0
[ 1511.333842]  ? __pfx_lock_release+0x10/0x10
[ 1511.334446]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1511.335129]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1511.335855]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1511.336550]  ? v9fs_mount+0x9e/0xbd0
[ 1511.337121]  v9fs_mount+0xbd/0xbd0
[ 1511.337655]  ? legacy_init_fs_context+0x44/0xe0
[ 1511.338301]  ? __pfx_v9fs_mount+0x10/0x10
[ 1511.338898]  ? cap_capable+0x1be/0x220
[ 1511.339483]  ? __pfx_v9fs_mount+0x10/0x10
[ 1511.340087]  legacy_get_tree+0x109/0x220
[ 1511.340676]  vfs_get_tree+0x92/0x360
[ 1511.341233]  path_mount+0x133c/0x1e50
[ 1511.341823]  ? kasan_quarantine_put+0x81/0x1d0
[ 1511.342486]  ? __pfx_path_mount+0x10/0x10
[ 1511.343093]  ? putname+0x102/0x140
[ 1511.343613]  ? kmem_cache_free+0xff/0x4a0
[ 1511.344225]  ? putname+0x102/0x140
[ 1511.344778]  __x64_sys_mount+0x286/0x310
[ 1511.345364]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1511.346016]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1511.346796]  do_syscall_64+0x3f/0x90
[ 1511.347371]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1511.348145] RIP: 0033:0x7fcf62391b19
[ 1511.348695] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1511.351213] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1511.352288] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1511.353303] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1511.354318] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1511.355321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1511.356325] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1511.357387]  </TASK>
05:14:31 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xf6ffffff00000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:31 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x300, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:31 executing program 1:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x81, 0x40, 0x81, 0xc, 0x0, 0x4, 0x88581, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x2, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x7, 0x0, @perf_config_ext={0x0, 0x8}, 0x2023, 0x100000001, 0x10001, 0x4, 0x62d23aff, 0x7, 0x8, 0x0, 0x200, 0x0, 0x1}, 0xffffffffffffffff, 0xb, r1, 0x0)
r2 = getpid()
pidfd_open(r2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r3=>r0, {0x5}}, './file0\x00'})
perf_event_open(&(0x7f00000001c0)={0x1, 0x80, 0x7f, 0x1, 0x6, 0x20, 0x0, 0x99b, 0x12010, 0xe, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x7, 0x2, @perf_config_ext={0x7fff, 0x5}, 0x5200, 0x7355, 0x3, 0x8, 0xff, 0x1, 0x4, 0x0, 0x6, 0x0, 0x5}, r2, 0xc, r3, 0x9)

05:14:44 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 94)

05:14:44 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xfeffffff00000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:44 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x171, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:44 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x3f00000000000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:44 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x3b370000, 0x0)

05:14:44 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x1020, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:44 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x500, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:44 executing program 1:
getsockopt$IP_SET_OP_GET_FNAME(0xffffffffffffffff, 0x1, 0x53, &(0x7f0000000240)={0x8, 0x7, 0x0, 'syz2\x00'}, &(0x7f0000000280)=0x2c)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = getpid()
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000940)=ANY=[@ANYBLOB="400300007ed405f3ac393a770d70a6f53eac913cdc1aafae0f3a2c1d241b934cac71117e214c560399bb583af863268286a05949f7e5b33d5d2b97adf37fa6eaa7ed4c84163ef29ccdba13a58657f0408dbc9eeb0930b85384158074a870799d664f42fc25987cd3d7b52d9eb71ae2600cc75d00d0aaf498", @ANYRES16=0x0, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r3, @ANYBLOB="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"], 0x340}}, 0x40050)
r4 = getpid()
pidfd_open(r4, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0}, 0x2000)
setsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000540)={r4, 0xee01, r5}, 0xc)
setxattr$security_evm(&(0x7f00000000c0)='./file0\x00', &(0x7f00000001c0), &(0x7f0000000200)=ANY=[@ANYBLOB="02e5a905244e001033be651821d8"], 0xe, 0x1)
r6 = open(&(0x7f00000003c0)='./file0\x00', 0x80400, 0x29)
connect$unix(r6, &(0x7f0000000400)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
r7 = getpid()
pidfd_open(r7, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000380)=ANY=[@ANYBLOB='\x00'/12, @ANYRES32=<r8=>r0, @ANYBLOB="02000000000000002e2f66696c653000"])
perf_event_open(&(0x7f0000000300)={0x5, 0x80, 0x3, 0x3, 0x3, 0xff, 0x0, 0xe452, 0x8000, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, @perf_bp={&(0x7f00000002c0)}, 0x400, 0x7, 0x56, 0x6, 0x1, 0x1, 0x42e, 0x0, 0x63, 0x0, 0x7}, r7, 0x2, r8, 0x8)
perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0xb, 0xfe, 0x1, 0x3, 0x0, 0x4, 0x90407, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x7, 0x1, @perf_bp={&(0x7f0000000040), 0xd}, 0x100, 0x6, 0x1000, 0x5, 0x7ff, 0x535, 0x1, 0x0, 0x7fff, 0x0, 0x8}, r1, 0x0, r0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:14:44 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x2000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:44 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x300, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:44 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x8cffffff00000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:44 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_FRAME={0x1f, 0x33, @action={@wo_ht={{}, {}, @device_b}, @ntf_ch_w}}]}, 0x3c}}, 0x0)
sendmsg$TIPC_CMD_SHOW_LINK_STATS(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x30, 0x0, 0x8, 0x70bd28, 0x25dfdbfb, {{}, {}, {0x14, 0x14, 'broadcast-link\x00'}}, ["", "", "", ""]}, 0x30}}, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:14:44 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x600, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:44 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xffff000000000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:44 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x8cffffff, 0x0)

05:14:44 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x2010, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:44 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 95)

[ 1524.557711] FAULT_INJECTION: forcing a failure.
[ 1524.557711] name failslab, interval 1, probability 0, space 0, times 0
[ 1524.558611] CPU: 1 PID: 8811 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1524.559183] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1524.559761] Call Trace:
[ 1524.559953]  <TASK>
[ 1524.560124]  dump_stack_lvl+0xc1/0xf0
[ 1524.560429]  should_fail_ex+0x4b4/0x5b0
[ 1524.560736]  ? __kernfs_new_node+0xd4/0x870
[ 1524.561049]  should_failslab+0x9/0x20
[ 1524.561334]  kmem_cache_alloc+0x5a/0x390
[ 1524.561639]  __kernfs_new_node+0xd4/0x870
[ 1524.561952]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1524.562304]  ? down_write+0x11a/0x1f0
[ 1524.562595]  ? up_write+0x196/0x510
[ 1524.562874]  kernfs_new_node+0x97/0x120
[ 1524.563179]  __kernfs_create_file+0x55/0x350
[ 1524.563503]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1524.563847]  ? __pfx_slab_attr_store+0x10/0x10
[ 1524.564193]  internal_create_group+0x322/0xb90
[ 1524.564541]  ? __pfx_internal_create_group+0x10/0x10
[ 1524.564907]  ? up_write+0x196/0x510
[ 1524.565189]  sysfs_slab_add+0x18e/0x220
[ 1524.565484]  __kmem_cache_create+0x1fe/0x610
[ 1524.565832]  kmem_cache_create_usercopy+0x218/0x340
[ 1524.566199]  p9_client_create+0xd0b/0x1260
[ 1524.566511]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1524.566874]  ? __pfx_p9_client_create+0x10/0x10
[ 1524.567212]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1524.567578]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1524.567923]  ? __kasan_kmalloc+0x7f/0x90
[ 1524.568227]  ? __raw_spin_lock_init+0x3a/0x110
[ 1524.568562]  v9fs_session_init+0x1e0/0x17b0
[ 1524.568885]  ? __pfx_lock_release+0x10/0x10
[ 1524.569197]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1524.569547]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1524.569933]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1524.570289]  ? v9fs_mount+0x9e/0xbd0
[ 1524.570579]  v9fs_mount+0xbd/0xbd0
[ 1524.570845]  ? legacy_init_fs_context+0x44/0xe0
[ 1524.571185]  ? __pfx_v9fs_mount+0x10/0x10
[ 1524.571500]  ? cap_capable+0x1be/0x220
[ 1524.571800]  ? __pfx_v9fs_mount+0x10/0x10
[ 1524.572110]  legacy_get_tree+0x109/0x220
[ 1524.572415]  vfs_get_tree+0x92/0x360
[ 1524.572700]  path_mount+0x133c/0x1e50
[ 1524.572980]  ? kasan_quarantine_put+0x81/0x1d0
[ 1524.573316]  ? __pfx_path_mount+0x10/0x10
[ 1524.573610]  ? putname+0x102/0x140
[ 1524.573900]  ? kmem_cache_free+0xff/0x4a0
[ 1524.574205]  ? putname+0x102/0x140
[ 1524.574473]  __x64_sys_mount+0x286/0x310
[ 1524.574770]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1524.575102]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1524.575476]  do_syscall_64+0x3f/0x90
[ 1524.575755]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1524.576135] RIP: 0033:0x7fcf62391b19
[ 1524.576392] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1524.577657] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1524.578199] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1524.578702] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1524.579202] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1524.579708] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1524.580229] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1524.580769]  </TASK>
[ 1524.591270] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1524.592782] CPU: 0 PID: 8811 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1524.593877] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1524.594973] Call Trace:
[ 1524.595339]  <TASK>
[ 1524.595671]  dump_stack_lvl+0xc1/0xf0
[ 1524.596236]  kmem_cache_create_usercopy+0x12b/0x340
[ 1524.596955]  p9_client_create+0xd0b/0x1260
[ 1524.597580]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1524.598318]  ? __pfx_p9_client_create+0x10/0x10
[ 1524.598986]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1524.599700]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1524.600376]  ? __kasan_kmalloc+0x7f/0x90
[ 1524.600986]  ? __raw_spin_lock_init+0x3a/0x110
[ 1524.601669]  v9fs_session_init+0x1e0/0x17b0
[ 1524.602316]  ? __pfx_lock_release+0x10/0x10
[ 1524.602944]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1524.603644]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1524.604407]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1524.605115]  ? v9fs_mount+0x9e/0xbd0
[ 1524.605710]  v9fs_mount+0xbd/0xbd0
[ 1524.606247]  ? legacy_init_fs_context+0x44/0xe0
[ 1524.606911]  ? __pfx_v9fs_mount+0x10/0x10
[ 1524.607523]  ? cap_capable+0x1be/0x220
[ 1524.608117]  ? __pfx_v9fs_mount+0x10/0x10
[ 1524.608705]  legacy_get_tree+0x109/0x220
[ 1524.609317]  vfs_get_tree+0x92/0x360
[ 1524.609883]  path_mount+0x133c/0x1e50
[ 1524.610469]  ? kasan_quarantine_put+0x81/0x1d0
[ 1524.611144]  ? __pfx_path_mount+0x10/0x10
[ 1524.611757]  ? putname+0x102/0x140
[ 1524.612283]  ? kmem_cache_free+0xff/0x4a0
[ 1524.612891]  ? putname+0x102/0x140
[ 1524.613446]  __x64_sys_mount+0x286/0x310
[ 1524.614077]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1524.614753]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1524.615508]  do_syscall_64+0x3f/0x90
[ 1524.616065]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1524.616824] RIP: 0033:0x7fcf62391b19
[ 1524.617367] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1524.619875] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1524.620986] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1524.622008] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1524.623079] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1524.624132] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1524.625178] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1524.626289]  </TASK>
05:14:57 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 96)

05:14:57 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x3eb8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:57 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xffffffff00000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:57 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
sendmsg$BATADV_CMD_SET_HARDIF(r0, &(0x7f00000006c0)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000680)={&(0x7f0000000600)={0x44, 0x0, 0x10, 0x70bd27, 0x25dfdbfd, {}, [@BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0xf55}, @BATADV_ATTR_ORIG_ADDRESS={0xa}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0xfff}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @random="c9128dd2e199"}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}]}, 0x44}, 0x1, 0x0, 0x0, 0x800}, 0x8000)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x0, 0x80, 0x81, 0x0, 0x0, 0xfd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x1, 0x7, &(0x7f0000000500)=[{&(0x7f0000000140)="2880dcd5ce03c96d84812674c133fcbd1916c7162ad9a10edf17f1c09c070766b4dae8ac63530e3166162b0247ca8e18c42ccdc26e1d1d55c05971a404ed7ff07deeefd216378b4483f6a9a9cb8314e6c9aef58504996f8379bc02148196a0564f5a72da0255c988379f94b8c93d176734aa39891b0f72115dba078728c62b24f5704192c107246c925105c91cfbb6c289cb01c154b0b0fbd6193e67d006f54648fca6b516005e1f01a932dfe151de578b2d00e555cca2e8a54e47c3642bb3b1850ff7f4ffbf9b5f2e5a6f7951e52f9879e995a084eb", 0xd6}, {&(0x7f0000000240)="10a86b4a3f8c8305bb4070ae91dae3e231be1bf5a5c63693b84cf69df29a619cfb18b270ca65f8ba1f09a48ccdf1032e902dd65cf177f0a8e460202d7c62b9265c8e05a3a9dc58962adbf9c515b8994ba3786679a9c74f32eb8499f9b127e14a6e296519c510bdf0", 0x68, 0x6}, {&(0x7f00000002c0)="73d1e0c5b33ce3486a227cf2ca9410991126c2e8c3597e4ee83230db86ba574de903cd8b278a8b00a3a961245b793c062c26bfc665906db8d86cf0eb104864c62c79df25bf4744aefc0b01b5cb753d972c2db65512c94443b510789518196e6e873220a7bc64877d7dad7c877675547a4ba84c16dd94ea9efd02e59c5d05464bcc24e86dbe36eb55528c8235968d255a700750d882eb5ed8901c865d77c938f52c29aa6862d3d001323adaf47a80bf2721d23335c077855b9af9c4c90af4515bc4433c3c297bc6fb309e9c07a17455ee", 0xd0, 0x4}, {&(0x7f00000003c0)="d9f3b18dd77bf44c01b6b7cc3d7f62d5b187f2946cfc7138984e2d47bec491df33b4", 0x22}, {&(0x7f0000000400)="dbb21fa45bda2bb9dc659181fc2e9de895fba809458f12b24b34900174f109d2cd0de4dbff8b70a928894110f2777bf355f06982660f37ee53b2dbc73b867b83d1ba3f84f23253dcd6f5c2b14581ed68b3ac6a5c13af195ae5884f85ab741f091b41147f03084f49dd2593f2511a", 0x6e, 0x12}, {&(0x7f0000000480), 0x0, 0xffffffffffff7b6d}, {&(0x7f00000004c0)="81c1171e05ad70134256658d6e12f8", 0xf}], 0x0, &(0x7f00000005c0)={[], [{@appraise_type}, {@appraise_type}, {@subj_role={'subj_role', 0x3d, '/---('}}]})

05:14:57 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x500, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:58 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xf6ffffff00000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:58 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x700, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:58 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xc0ed0000, 0x0)

[ 1537.973001] 9pnet_virtio: no channels available for device ./file0
[ 1538.001680] 9pnet_virtio: no channels available for device ./file0
05:14:58 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xfeffffff00000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:58 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x84, 0x0, 0x0, 0x20, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:14:58 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x900, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:58 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x3f00, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:58 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x22, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:58 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xf6ffffff, 0x0)

05:14:58 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 97)

05:14:58 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x600, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:58 executing program 1:
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000000), 0x2001, 0x0)
write$vga_arbiter(r0, 0x0, 0xd)
r1 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = epoll_create1(0x0)
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000000b80)=[{{&(0x7f0000000140)=@abs, 0x6e, &(0x7f0000000500)=[{&(0x7f00000001c0)=""/119, 0x77}, {&(0x7f0000000240)=""/255, 0xff}, {&(0x7f0000000340)=""/27, 0x1b}, {&(0x7f0000000380)=""/109, 0x6d}, {&(0x7f0000000400)=""/32, 0x20}, {&(0x7f0000000440)=""/162, 0xa2}], 0x6, &(0x7f0000000580)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}}, {{&(0x7f0000000600)=@abs, 0x6e, &(0x7f0000000a00)=[{&(0x7f0000000680)=""/188, 0xbc}, {&(0x7f0000000740)=""/194, 0xc2}, {&(0x7f0000000840)=""/200, 0xc8}, {&(0x7f0000000940)=""/2, 0x2}, {&(0x7f0000000980)=""/107, 0x6b}], 0x5, &(0x7f0000000a80)=[@cred={{0x1c, 0x1, 0x2, {0x0, <r3=>0x0}}}], 0x20}}, {{0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f0000000ac0)=""/44, 0x2c}], 0x1, &(0x7f0000000b40)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x20}}], 0x3, 0x41, &(0x7f0000000c40))
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), 0x800000, &(0x7f0000000c80)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@access_any}, {@fscache}], [{@euid_eq={'euid', 0x3d, r3}}, {@subj_type}, {@fsmagic={'fsmagic', 0x3d, 0x7}}, {@uid_eq={'uid', 0x3d, 0xffffffffffffffff}}, {@pcr={'pcr', 0x3d, 0xc}}]}})
ioctl$BTRFS_IOC_SCRUB(0xffffffffffffffff, 0xc400941b, &(0x7f0000000d80)={<r4=>0x0, 0x3, 0x2})
ioctl$BTRFS_IOC_SCRUB(r1, 0xc400941b, &(0x7f0000001180)={r4, 0x8, 0xcb60})
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

[ 1538.164238] 9pnet_fd: Insufficient options for proto=fd
[ 1538.173026] 9pnet_fd: Insufficient options for proto=fd
05:14:58 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x2c, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:58 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xf9fdffff, 0x0)

[ 1538.214812] 9pnet_fd: Insufficient options for proto=fd
[ 1538.222521] 9pnet_fd: Insufficient options for proto=fd
[ 1538.233199] FAULT_INJECTION: forcing a failure.
[ 1538.233199] name failslab, interval 1, probability 0, space 0, times 0
[ 1538.234699] CPU: 0 PID: 8861 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1538.235753] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1538.236818] Call Trace:
[ 1538.237175]  <TASK>
[ 1538.237506]  dump_stack_lvl+0xc1/0xf0
[ 1538.238074]  should_fail_ex+0x4b4/0x5b0
[ 1538.238684]  ? __kernfs_new_node+0xd4/0x870
[ 1538.239277]  should_failslab+0x9/0x20
[ 1538.239829]  kmem_cache_alloc+0x5a/0x390
[ 1538.240425]  __kernfs_new_node+0xd4/0x870
[ 1538.241012]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1538.241693]  ? down_write+0x11a/0x1f0
[ 1538.242263]  ? up_write+0x196/0x510
[ 1538.242828]  kernfs_new_node+0x97/0x120
[ 1538.243425]  __kernfs_create_file+0x55/0x350
[ 1538.244090]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1538.244758]  ? __pfx_slab_attr_store+0x10/0x10
[ 1538.245423]  internal_create_group+0x322/0xb90
[ 1538.246089]  ? __pfx_internal_create_group+0x10/0x10
[ 1538.246789]  ? up_write+0x196/0x510
[ 1538.247339]  sysfs_slab_add+0x18e/0x220
[ 1538.247902]  __kmem_cache_create+0x1fe/0x610
[ 1538.248538]  kmem_cache_create_usercopy+0x218/0x340
[ 1538.249245]  p9_client_create+0xd0b/0x1260
[ 1538.249845]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1538.250587]  ? __pfx_p9_client_create+0x10/0x10
[ 1538.251243]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1538.251926]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1538.252580]  ? __kasan_kmalloc+0x7f/0x90
[ 1538.253169]  ? __raw_spin_lock_init+0x3a/0x110
[ 1538.253832]  v9fs_session_init+0x1e0/0x17b0
[ 1538.254471]  ? __pfx_lock_release+0x10/0x10
[ 1538.255082]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1538.255752]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1538.256484]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1538.257160]  ? v9fs_mount+0x9e/0xbd0
[ 1538.257737]  v9fs_mount+0xbd/0xbd0
[ 1538.258258]  ? legacy_init_fs_context+0x44/0xe0
[ 1538.258904]  ? __pfx_v9fs_mount+0x10/0x10
[ 1538.259493]  ? cap_capable+0x1be/0x220
[ 1538.260075]  ? __pfx_v9fs_mount+0x10/0x10
[ 1538.260662]  legacy_get_tree+0x109/0x220
[ 1538.261250]  vfs_get_tree+0x92/0x360
[ 1538.261802]  path_mount+0x133c/0x1e50
[ 1538.262403]  ? kasan_quarantine_put+0x81/0x1d0
[ 1538.263051]  ? __pfx_path_mount+0x10/0x10
[ 1538.263629]  ? putname+0x102/0x140
[ 1538.264140]  ? kmem_cache_free+0xff/0x4a0
[ 1538.264733]  ? putname+0x102/0x140
[ 1538.265270]  __x64_sys_mount+0x286/0x310
[ 1538.265829]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1538.266480]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1538.267206]  do_syscall_64+0x3f/0x90
[ 1538.267743]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1538.268468] RIP: 0033:0x7fcf62391b19
[ 1538.268978] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1538.270367] 9pnet_fd: Insufficient options for proto=fd
[ 1538.271269] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1538.272630] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1538.273563] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1538.274514] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1538.275454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1538.276385] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1538.277382]  </TASK>
[ 1538.287793] 9pnet_fd: Insufficient options for proto=fd
05:14:58 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x700, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:58 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
finit_module(0xffffffffffffffff, &(0x7f0000000040)='/`*{!/]&/{[\x00', 0x1)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
setxattr$trusted_overlay_origin(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000140), &(0x7f0000000180), 0x2, 0xd5a9fbb1eb67e016)

05:14:58 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xffff000000000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:14:58 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xfffff000, 0x0)

05:14:58 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x3fb8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1538.421282] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1538.422779] CPU: 0 PID: 8861 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1538.423781] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1538.424797] Call Trace:
[ 1538.425132]  <TASK>
[ 1538.425446]  dump_stack_lvl+0xc1/0xf0
[ 1538.425989]  kmem_cache_create_usercopy+0x12b/0x340
[ 1538.426683]  p9_client_create+0xd0b/0x1260
[ 1538.427252]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1538.427925]  ? __pfx_p9_client_create+0x10/0x10
[ 1538.428538]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1538.429180]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1538.429807]  ? __kasan_kmalloc+0x7f/0x90
[ 1538.430389]  ? __raw_spin_lock_init+0x3a/0x110
[ 1538.431001]  v9fs_session_init+0x1e0/0x17b0
[ 1538.431595]  ? __pfx_lock_release+0x10/0x10
[ 1538.432162]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1538.432802]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1538.433489]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1538.434133]  ? v9fs_mount+0x9e/0xbd0
[ 1538.434680]  v9fs_mount+0xbd/0xbd0
[ 1538.435165]  ? legacy_init_fs_context+0x44/0xe0
[ 1538.435764]  ? __pfx_v9fs_mount+0x10/0x10
[ 1538.436318]  ? cap_capable+0x1be/0x220
[ 1538.436854]  ? __pfx_v9fs_mount+0x10/0x10
[ 1538.437406]  legacy_get_tree+0x109/0x220
[ 1538.437971]  vfs_get_tree+0x92/0x360
[ 1538.438477]  path_mount+0x133c/0x1e50
[ 1538.439007]  ? kasan_quarantine_put+0x81/0x1d0
[ 1538.439612]  ? __pfx_path_mount+0x10/0x10
[ 1538.440169]  ? putname+0x102/0x140
[ 1538.440654]  ? kmem_cache_free+0xff/0x4a0
[ 1538.441204]  ? putname+0x102/0x140
[ 1538.441712]  __x64_sys_mount+0x286/0x310
[ 1538.442244]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1538.442845]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1538.443517]  do_syscall_64+0x3f/0x90
[ 1538.444022]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1538.444691] RIP: 0033:0x7fcf62391b19
[ 1538.445167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1538.447336] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1538.448268] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1538.449123] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1538.450017] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1538.450890] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1538.451747] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1538.452673]  </TASK>
05:15:09 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 98)

05:15:09 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xa00, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1549.962624] 9pnet_fd: Insufficient options for proto=fd
05:15:09 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xffffff7f00000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:15:09 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
chdir(&(0x7f0000000040)='./file1\x00')

05:15:10 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x22, {'wfdno', 0x3d, r1}})

05:15:10 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x900, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:15:10 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xfffffdf9, 0x0)

05:15:10 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x4000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1549.998758] 9pnet_fd: Insufficient options for proto=fd
05:15:10 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xa00, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:15:21 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xffffffff00000000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:15:21 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xb00, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:15:21 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xb00, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:15:21 executing program 1:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
openat(r0, &(0x7f0000000040)='./file0\x00', 0x50040, 0x13a)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:15:21 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x22, r1}})

05:15:21 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 99)

05:15:21 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xffffff8c, 0x0)

05:15:21 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x40b8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1561.613896] 9pnet_fd: Insufficient options for proto=fd
[ 1561.623544] 9pnet_fd: Insufficient options for proto=fd
05:15:21 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x1020, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:15:21 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xfffffff6, 0x0)

[ 1561.642679] FAULT_INJECTION: forcing a failure.
[ 1561.642679] name failslab, interval 1, probability 0, space 0, times 0
[ 1561.644304] CPU: 0 PID: 8934 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1561.645391] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1561.646553] Call Trace:
[ 1561.646905]  <TASK>
[ 1561.647218]  dump_stack_lvl+0xc1/0xf0
[ 1561.647771]  should_fail_ex+0x4b4/0x5b0
[ 1561.648348]  ? __kernfs_new_node+0xd4/0x870
[ 1561.648942]  should_failslab+0x9/0x20
[ 1561.649485]  kmem_cache_alloc+0x5a/0x390
[ 1561.650062]  __kernfs_new_node+0xd4/0x870
[ 1561.650694]  ? __pfx___kernfs_new_node+0x10/0x10
[ 1561.651367]  ? down_write+0x11a/0x1f0
[ 1561.651922]  ? up_write+0x196/0x510
[ 1561.652459]  kernfs_new_node+0x97/0x120
[ 1561.653002]  __kernfs_create_file+0x55/0x350
[ 1561.653628]  sysfs_add_file_mode_ns+0x21c/0x440
[ 1561.654276]  ? __pfx_slab_attr_store+0x10/0x10
[ 1561.654935]  internal_create_group+0x322/0xb90
[ 1561.655583]  ? __pfx_internal_create_group+0x10/0x10
[ 1561.656264]  ? up_write+0x196/0x510
[ 1561.656810]  sysfs_slab_add+0x18e/0x220
[ 1561.657380]  __kmem_cache_create+0x1fe/0x610
[ 1561.657996]  kmem_cache_create_usercopy+0x218/0x340
[ 1561.658745]  p9_client_create+0xd0b/0x1260
[ 1561.659332]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1561.660006]  ? __pfx_p9_client_create+0x10/0x10
[ 1561.660640]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1561.661308]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1561.661958]  ? __kasan_kmalloc+0x7f/0x90
[ 1561.662567]  ? __raw_spin_lock_init+0x3a/0x110
[ 1561.663204]  v9fs_session_init+0x1e0/0x17b0
[ 1561.663832]  ? __pfx_lock_release+0x10/0x10
[ 1561.664431]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1561.665083]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1561.665783]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1561.666484]  ? v9fs_mount+0x9e/0xbd0
[ 1561.667051]  v9fs_mount+0xbd/0xbd0
[ 1561.667573]  ? legacy_init_fs_context+0x44/0xe0
[ 1561.668203]  ? __pfx_v9fs_mount+0x10/0x10
[ 1561.668785]  ? cap_capable+0x1be/0x220
[ 1561.669352]  ? __pfx_v9fs_mount+0x10/0x10
[ 1561.669930]  legacy_get_tree+0x109/0x220
[ 1561.670540]  vfs_get_tree+0x92/0x360
[ 1561.671066]  path_mount+0x133c/0x1e50
[ 1561.671624]  ? kasan_quarantine_put+0x81/0x1d0
[ 1561.672242]  ? __pfx_path_mount+0x10/0x10
[ 1561.672829]  ? putname+0x102/0x140
[ 1561.673329]  ? kmem_cache_free+0xff/0x4a0
[ 1561.673920]  ? putname+0x102/0x140
[ 1561.674475]  __x64_sys_mount+0x286/0x310
[ 1561.675011]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1561.675655]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1561.676374]  do_syscall_64+0x3f/0x90
[ 1561.676911]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1561.677642] RIP: 0033:0x7fcf62391b19
[ 1561.678129] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1561.680364] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1561.681394] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1561.682290] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1561.683220] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1561.684169] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1561.685083] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1561.686092]  </TASK>
05:15:21 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x22, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:15:21 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x2c, r1}})

[ 1561.702665] kmem_cache_create_usercopy(9p-fcall-cache) failed with error -12
[ 1561.703192] CPU: 1 PID: 8934 Comm: syz-executor.7 Not tainted 6.4.0-rc3-next-20230525 #1
[ 1561.703745] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
[ 1561.704305] Call Trace:
[ 1561.704491]  <TASK>
[ 1561.704657]  dump_stack_lvl+0xc1/0xf0
[ 1561.704950]  kmem_cache_create_usercopy+0x12b/0x340
[ 1561.705314]  p9_client_create+0xd0b/0x1260
[ 1561.705623]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1561.705996]  ? __pfx_p9_client_create+0x10/0x10
[ 1561.706344]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1561.706703]  ? lockdep_init_map_type+0x21e/0x7e0
[ 1561.707037]  ? __kasan_kmalloc+0x7f/0x90
[ 1561.707333]  ? __raw_spin_lock_init+0x3a/0x110
[ 1561.707674]  v9fs_session_init+0x1e0/0x17b0
[ 1561.707981]  ? __pfx_lock_release+0x10/0x10
[ 1561.708290]  ? __pfx_v9fs_session_init+0x10/0x10
[ 1561.708641]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1561.709012]  ? __kmem_cache_alloc_node+0x1bc/0x310
[ 1561.709362]  ? v9fs_mount+0x9e/0xbd0
[ 1561.709650]  v9fs_mount+0xbd/0xbd0
[ 1561.709910]  ? legacy_init_fs_context+0x44/0xe0
[ 1561.710236]  ? __pfx_v9fs_mount+0x10/0x10
[ 1561.710544]  ? cap_capable+0x1be/0x220
[ 1561.710838]  ? __pfx_v9fs_mount+0x10/0x10
[ 1561.711139]  legacy_get_tree+0x109/0x220
[ 1561.711442]  vfs_get_tree+0x92/0x360
[ 1561.711724]  path_mount+0x133c/0x1e50
[ 1561.712012]  ? kasan_quarantine_put+0x81/0x1d0
[ 1561.712343]  ? __pfx_path_mount+0x10/0x10
[ 1561.712632]  ? putname+0x102/0x140
[ 1561.712903]  ? kmem_cache_free+0xff/0x4a0
[ 1561.713190]  ? putname+0x102/0x140
[ 1561.713467]  __x64_sys_mount+0x286/0x310
[ 1561.713739]  ? __pfx___x64_sys_mount+0x10/0x10
[ 1561.714069]  ? lockdep_hardirqs_on_prepare+0x27b/0x3f0
[ 1561.714441]  do_syscall_64+0x3f/0x90
[ 1561.714722]  entry_SYSCALL_64_after_hwframe+0x72/0xdc
[ 1561.715075] RIP: 0033:0x7fcf62391b19
[ 1561.715352] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1561.716500] RSP: 002b:00007fcf5f907188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 1561.717023] RAX: ffffffffffffffda RBX: 00007fcf624a4f60 RCX: 00007fcf62391b19
[ 1561.717483] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000000000
[ 1561.717974] RBP: 00007fcf5f9071d0 R08: 0000000020000240 R09: 0000000000000000
[ 1561.718469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 1561.718952] R13: 00007ffc8695371f R14: 00007fcf5f907300 R15: 0000000000022000
[ 1561.719454]  </TASK>
05:15:21 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x2000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1561.804103] 9pnet_fd: Insufficient options for proto=fd
[ 1561.816684] 9pnet_fd: Insufficient options for proto=fd
[ 1561.831078] 9pnet_fd: Insufficient options for proto=fd
[ 1561.831843] 9pnet_fd: Insufficient options for proto=fd
05:15:35 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x2c, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:15:35 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xedc000000000, 0x0)

05:15:35 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x22})

05:15:35 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x1020, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:15:35 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x41b8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:15:35 executing program 1:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0xb5, 0x0, 0x0, 0x1221420, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
r1 = getpid()
pidfd_open(r1, 0x0)
r2 = openat$full(0xffffffffffffff9c, &(0x7f00000001c0), 0x10040, 0x0)
perf_event_open(&(0x7f0000000140)={0x5, 0x80, 0x20, 0x95, 0x3f, 0xf8, 0x0, 0x0, 0x28000, 0x8, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x2, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x4, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x480, 0x10000, 0x800, 0x1, 0x5, 0x8dea, 0x8, 0x0, 0x6, 0x0, 0x5}, r1, 0xd, r2, 0x1)
mknodat(r0, &(0x7f0000000040)='./file0\x00', 0x10, 0x7d0)

05:15:35 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x2010, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:15:35 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) (fail_nth: 100)

[ 1575.209222] 9pnet_fd: Insufficient options for proto=fd
[ 1575.230777] 9pnet_fd: Insufficient options for proto=fd
05:15:35 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x8000000000000, 0x0)

05:15:35 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x42b8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1575.286475] 9pnet_fd: Insufficient options for proto=fd
[ 1575.310311] 9pnet_fd: Insufficient options for proto=fd
05:15:35 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x2000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:15:35 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:15:35 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xf0ffffffffffff, 0x0)

05:15:35 executing program 1:
socketpair(0xa, 0xa, 0xfff, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
pwritev2(r0, &(0x7f0000000340)=[{&(0x7f0000000140)="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", 0xff}, {&(0x7f0000000040)="ba8a1a5790886b44bbb5a8dd57b5e781eaa1e0dda7b0d3c734758b45b036c66ed5685a54760b59325d82b52120fa142d11340815887ad90027e1eee25c001b460d7e6c2f032a99496494500a4756bae4aa7db2e2ba6885400db7ce9ded24e51fb585f35f4a296e5e4dd306a790d330c68f2b2ca0b52d051ff0dce5405f1eaf91032bb637", 0x84}, {&(0x7f0000000240)="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", 0xfc}], 0x3, 0x4, 0x1, 0xc)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)

05:15:35 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x3902, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:15:35 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:15:35 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x22, {'wfdno', 0x3d, r1}})

05:15:35 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x43b8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:15:35 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x2}})

[ 1575.517312] 9pnet_fd: Insufficient options for proto=fd
[ 1575.547376] 9pnet_fd: Insufficient options for proto=fd
05:15:46 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x100000000000000, 0x0)

05:15:46 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x22, r1}})

05:15:46 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x3f00, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:15:46 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x2, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:15:46 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x44b8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:15:46 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x2010, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:15:46 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x7}})

05:15:46 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

[ 1586.734951] 9pnet_fd: Insufficient options for proto=fd
[ 1586.756918] 9pnet_fd: Insufficient options for proto=fd
05:15:46 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x200000000000000, 0x0)

05:15:46 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x45b8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:15:46 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x8}})

05:15:46 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x3f00, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:15:46 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x4000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:15:46 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r0, &(0x7f0000001400)=ANY=[@ANYBLOB="10000000020000000b00000000000000ffe100000000000034db3167517e5f9f0e497ce51f3dbbf1b8d931f23459fb5ae9e2af4e333fb44fffd3571754aa5e9b3ec774cff5be9a1316f064d5de36db52a83c247020f93e77c92b93bb69fcf476f807"], 0x41130000)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f00000002c0)={0x9, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r1=>0x0}], 0x40, "ffc3e65bf54a82"})
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r0, 0xc0709411, &(0x7f00000012c0)={{r1, 0x9, 0x1000, 0x10001, 0xfff, 0x9, 0xfffffffffffffffa, 0x3f, 0x24b, 0x8, 0x7, 0x7, 0xffffffffffffff38, 0xffffffffffffffff, 0x423}, 0x20, [0x0, 0x0, 0x0, 0x0]})
recvfrom$packet(r0, &(0x7f00000001c0)=""/246, 0xf6, 0x40000000, 0x0, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
r3 = fsmount(r0, 0x0, 0x70)
perf_event_open(&(0x7f0000001380)={0x1, 0x80, 0x3, 0x3f, 0x4, 0x6e, 0x0, 0xe666, 0x80400, 0x5, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x2, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0xf060, 0x2, @perf_config_ext={0xed, 0x80000000}, 0x20242, 0x101, 0x1, 0x8, 0x9, 0x8, 0x0, 0x0, 0x9, 0x0, 0x5}, 0xffffffffffffffff, 0x10, r3, 0xd6ebcf9de50e00fa)
perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x1, 0x4, 0xfd, 0x5, 0x0, 0x0, 0x40000, 0x4, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0xfffffe00, 0x1, @perf_bp={&(0x7f0000000040), 0x1}, 0x1610, 0x0, 0x7, 0x6, 0xde, 0x1, 0x6, 0x0, 0x2, 0x0, 0x7}, 0xffffffffffffffff, 0xc, r2, 0x13)

05:15:46 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x3, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:15:46 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x2c, r1}})

05:15:46 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x300000000000000, 0x0)

[ 1586.968006] 9pnet_fd: Insufficient options for proto=fd
[ 1587.011377] 9pnet_fd: Insufficient options for proto=fd
05:16:04 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x22})

05:16:04 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x46b8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:04 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x400000000000000, 0x0)

05:16:04 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x4000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1604.341835] 9pnet_fd: Insufficient options for proto=fd
05:16:04 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x9}})

05:16:04 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x8084, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:04 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x4, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:04 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r0, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0xb}}, 0x41130000)
r1 = openat(r0, &(0x7f0000000040)='./file0\x00', 0x40000, 0x68)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
setresuid(0x0, r2, 0x0)
recvmsg$unix(r1, &(0x7f0000001800)={&(0x7f0000001780)=@abs, 0x6e, &(0x7f0000002040)=[{&(0x7f00000019c0)=""/118, 0x76}, {&(0x7f0000001a40)=""/128, 0x80}, {&(0x7f0000001ac0)=""/134, 0x86}, {&(0x7f0000001b80)=""/170, 0xaa}, {&(0x7f0000001c40)=""/225, 0xe1}, {&(0x7f0000001d40)=""/201, 0xc9}, {&(0x7f0000001e40)=""/238, 0xee}, {&(0x7f0000001f40)=""/242, 0xf2}], 0x8, &(0x7f00000020c0)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, <r3=>0x0}}}], 0x168}, 0x1)
syz_mount_image$ext4(&(0x7f00000000c0)='ext3\x00', &(0x7f0000000180)='./file1/file0\x00', 0x100000000, 0x9, &(0x7f00000018c0)=[{&(0x7f00000001c0)="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", 0x1000, 0x40}, {&(0x7f00000011c0)="768da87fe2d311952a71ca4937b3facbc14f31697f1dd9f9b104a4dcb369eaf0edde8f2149b3dbb48fa24a42a6cc3c0980ac67675b8c28e117287662b54aac9c4b195aaf9fc3afb41a50346bc38240a9a8385fcc0c961023bd3fe69765f11d92c853e1d35ee107d760ec1d234b00988d6e4ca49dc96383359efddf21a2890e66d9d1f0561e6f9a81b16d8c56db27d9a26a", 0x91, 0x7}, {&(0x7f0000001280)="0a72d73ceee2e9fb7f1fcb54545a7c648b257e9509b14bb150fd5fefced026cf6098ec1563e661fe398a65be872a8dbd4a48b7c50ca9d0853cf8aaac08f41331efa3678bf590893e9fd10f9ca1e71db77f7191b40bc0075985e8847deef903fb34b2fafcbed30ebeca2d70a815457167af122b21e85629f87b49a6e7ec2a1ff3e571e1fc4a74da73f7b8bb67bc56a7ec421729ca320af648ab35bd73e8139c8923", 0xa1, 0x1000}, {&(0x7f0000001340)="9708ec0c41036fab5eec6931f77de080f58f8c229b5262dc8fbeef0c", 0x1c, 0x6}, {&(0x7f0000001380)="6406151973e36e7b466d2b0d3bb2bb46e23996cf95c8ae75f294ecf1a4cb8fd36d12fd90e84ca219812dad73d121cb22ce34ad4ffb43a3d8c1d32de10b591a9b530fdac520d918cf9b6dabf2bb06152849cfe1aaa4798da13f59f6e7cdd8084e3e196e1e4152c04b4c97970e50aa8c833c4e7f5a2582ee4e131f01c0e3d7d1f85d6beab0412049121edf2fa2c5601e405f9b9454641ada175a439b9f9cd2362ca5b23a09f6e2e615454ad4e921d46f2270d45e5901798eb9ba18662c4546e67929fbcead9eab52332c7e67783edfa885a76755acfbb593662bf789461a5819f820fe88b1de866654198fd52b11b70e1ca2c81f577d18663fb6c26e0a8900", 0xfe, 0x80000001}, {&(0x7f0000001480)="71e9d741a3bb61743dd85db719be5097d865365a0a9d5cfb6e2297c83919d76e7bb1fb1499590c261cfc4f2925074a02ecc61e78c7cd81c08ed2824ffd84670726196b7c6641d765b0ac77cc19acb83e0aed2d36fed48e65f72f2130cdc8c7c48e39ccc7428b6ba26bd273b76bfd62f54a5ab37068ffa7c8fc1ebd00ece77b5d1627b689d0484c493f38ff765d887d0f2bfc1a5f4f6e19b578bdc427bad2f9248c630c9498ff8ba107527512d2f60c45cc7643835f4edf5b99b02d1fa711c685388a40545ed7f1", 0xc7}, {&(0x7f0000001580)="e2bc6a1e3988db808fa25ee6c73db0c0536d847c71cb974712fb1c333aacdb453a62d859039cb9cd538e097832839f01bc69af3eb7b071ec0282919c37a529703b4b5dcff95f231dcae5c4a0cf438882a2cfade290c710450f0aabba2f01343c59fa245a313161f9335d00bfd584f4b433e443fff9bc5d0de22a24e52b8c425613a66df5735a62d5cab6c19140fd1b348578183b71b08fd54830c6f0c596773cb7", 0xa1, 0x2302}, {&(0x7f0000001640)="9fb8a07c", 0x4, 0x3}, {&(0x7f0000001680)="ca9731cb0dfb308b541fe95598942962e89d4f13c59737a14daa99a70c1a558442fe489e6ecc335f9b63e55af3627108dadf20c0935425b65892630e51d409db6297e82f884429001499578b003736a9eaac47770b2c925e3cbfc2ec0de39aa61ce02b37b34ae118c81b970924184402c4ecc436252a1c93f08a8437c17ad70cdb3d28ed6379ab1258bbd4cfdb84fd97ea15fe513f3ae2f75d9cbab3d50dd907a8c5313b719b85d6efae9958f4fce9e008650d925d98b6688855e8cf4f6be83f7d9bfb7d583deeea336a", 0xca, 0x9}], 0x8, &(0x7f0000002240)={[{@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x3}}, {@user_xattr}, {@min_batch_time={'min_batch_time', 0x3d, 0x5}}, {@usrjquota_path={'usrjquota', 0x3d, './file0/file0'}}, {@norecovery}], [{@subj_role={'subj_role', 0x3d, ',:-'}}, {@fowner_eq={'fowner', 0x3d, r2}}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@euid_gt={'euid>', 0xee01}}, {@dont_appraise}, {@func={'func', 0x3d, 'FILE_CHECK'}}, {@uid_eq={'uid', 0x3d, r3}}, {@dont_appraise}]})

[ 1604.373174] 9pnet_fd: Insufficient options for proto=fd
05:16:04 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x92bb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:04 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x47b8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:04 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x5, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:04 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:04 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x500000000000000, 0x0)

05:16:04 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x7101, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:04 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0xa}})

05:16:04 executing program 1:
waitid$P_PIDFD(0x3, 0xffffffffffffffff, &(0x7f0000000240), 0x1, &(0x7f00000002c0))
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f00000000c0)={<r1=>r0, 0x9, 0xffffffff, 0x20})
fsconfig$FSCONFIG_SET_PATH_EMPTY(r1, 0x4, &(0x7f00000001c0)='\x9f\x92.\x00', &(0x7f0000000200)='./file0\x00', r0)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0xac, 0x6, 0x9, 0xde, 0x0, 0x8001, 0x450, 0x10, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000040), 0x4}, 0x4100, 0x7ffd, 0x8, 0x3, 0x8, 0x1, 0x527, 0x0, 0x1, 0x0, 0xfffffffffffffffa}, 0x0, 0x10, 0xffffffffffffffff, 0x3)

05:16:04 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x77bc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:04 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x48b8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:16 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x93bb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:16 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x49b8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:16 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x78bc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:16 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = gettid()
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x2, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x9, 0x2000000000002}}, r0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
setxattr$security_evm(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000140)=@sha1={0x1, "e1d39dc3ead29260bb5404423619dd2fe6eb5218"}, 0x15, 0x1)

05:16:16 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x6, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:16 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x2}})

05:16:16 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0xb}})

05:16:16 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x600000000000000, 0x0)

05:16:16 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x4ab8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:16 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x79bc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:16 executing program 1:
clock_gettime(0xfffffffffffffffd, &(0x7f0000000040))
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
pwritev2(r0, &(0x7f0000000480)=[{&(0x7f00000000c0)="43c6810319967e1343a9f36a0b0963af50b2a3f0e2e64d72f50e37aabf42a256ce641bb5fab07d62a75be462a2c3b400b126", 0x32}, {&(0x7f0000000140)="f926e50370836343ad1aa1d2aeb3a6e29b86d17c87b4f755aea50451509601ac54a1573583e48c6cc3def3e8b29c8d165290358ab30eac94bf3622a24b72300ad550c8aacf49e25dfc12e782e0f4506bd25ab52b2f14ad5cb49f617b6df9c700e197488364bcaafdb306b79f4ec0d43d5f4bd07b4711f1feae0af0531f23b1f29a9bb1416a74560ba2", 0x89}, {&(0x7f0000000200)="68737538dc0eb2f1c32827d5bd8c36032f1e72f230ca6f1300bb35929de8acbd6770c1cabee661a1734660f333c055418bcf8ea0b9c8651318536133cedb7f066967dc912bb899885a721e26d8ec622e118c917c83763dc5671ceb7df5f3cedc6454e117b003acec3ca1485fb6921a6a90e1f90c4c7296619d46de10bdc6738a189a26cfa090b57df5ac001a7c72e8cc1d07dde1abb55d291c0ba30a9735a68179785a4ce9c0b0a2f0db8f554bda004a486546e56a69884f5582a2d3ec10ae04e3e4e111aae6725b674cc64dec9aa2f4e7540022b21f7e77500ef005d446d92e280fa69b99ae02651edc408711b96ad8", 0xf0}, {&(0x7f0000000300)="35e321d679f77b9def5b749514fb413d02352096b4886cbd210076900dceca7ca227ada3142d9d6bf76487de4113e7c2f313745c7d22e418044b8f1ed4dbc8f06f53293bec7da09cbc08581d117b7eb1613d7cb337a6790eb538111198e4994dc8e3431946bd7888cc45b474b2f0a4803f9b51139084c7c0faabafc6a188e8703419651a28e3633bcfd5da6d4acf18f22d6ffedb2dd8aedf386d2c097350b3a8e5c0a35278bb944643d2afb5af4d21217360bef9061c8717ac6d468658246a5a41995bb6bfda9a9bd2f8a1a86565fe", 0xcf}, {&(0x7f0000000400)="cc11e333b7246587edc2d4d98d6eda378feae3deca8f73688e6c50a88e369ba9839b062b47649faad89729c52abcfb3cf1e48549aa49046604a21d7505f222c619ac8a87a30f5c267e16e0872c4c1253feca65fe6bc9ba34e7f871021f354ffcdcd9d3", 0x63}], 0x5, 0x401, 0x7, 0x1)

05:16:29 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x10}})

05:16:29 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x4bb8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:29 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x7abc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:29 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x94bb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:29 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x7, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:29 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x700000000000000, 0x0)

05:16:29 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x7}})

05:16:29 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r0, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0xb}}, 0x41130000)
recvmsg$unix(r0, &(0x7f0000000480)={&(0x7f0000000140), 0x6e, &(0x7f0000000340)=[{&(0x7f00000001c0)=""/89, 0x59}, {&(0x7f0000000040)=""/60, 0x3c}, {&(0x7f0000000240)=""/245, 0xf5}, {&(0x7f00000000c0)=""/26, 0x1a}], 0x4, &(0x7f0000000380)=[@cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xd0}, 0x1)

05:16:29 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x95bb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:29 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x7bbc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:29 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:29 executing program 2:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
r3 = perf_event_open(&(0x7f0000001840)={0x4, 0x80, 0x6, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x1}}, 0x0, 0x0, 0xffffffffffffffff, 0xa)
r4 = openat$incfs(r0, &(0x7f00000000c0)='.pending_reads\x00', 0x141602, 0x13)
write$P9_RFLUSH(r4, &(0x7f0000000240)={0x7, 0x6d, 0x2}, 0x7)
write$P9_RVERSION(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="7472616e733d66642c7266646e6f3d7b19fb2bfe0817c2cbcefe0c375df9fb39ead8316971e9227dfbe966a9b5282e61eac2f6925e606dc9ae5fcdfb5d055acba0f0aa6914b463ce80f2d6bf2788de17bffa30c763a93a8537e3ad0e92536f90aaa953550a25517636184f3d77f33f2d0ea164b17834", @ANYRESHEX=r1, @ANYBLOB="d492a8609413fe794c39a72fd83d", @ANYRESHEX=r2, @ANYBLOB=',\x00'])
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r4, 0xc0189374, &(0x7f0000000340)={{0x1, 0x1, 0x18, <r5=>r3, {0x3}}, './file0\x00'})
perf_event_open(&(0x7f00000002c0)={0x3, 0x80, 0x18, 0x2b, 0xf7, 0x1, 0x0, 0x5, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0xca, 0x2, @perf_bp={&(0x7f0000000280), 0xe}, 0x40010, 0xb9, 0x8001, 0x2, 0x6, 0x8e, 0x9, 0x0, 0x1000, 0x0, 0x8}, 0x0, 0x4, r5, 0x2)

05:16:29 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x4cb8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:29 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x2000000000000000, 0x0)

05:16:29 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x8}})

05:16:29 executing program 1:
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xe, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r0, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0xb}}, 0x41130000)
open_tree(r0, &(0x7f0000000000)='./file0\x00', 0x0)

[ 1629.571241] 9pnet_fd: Insufficient options for proto=fd
[ 1629.591934] 9pnet_fd: Insufficient options for proto=fd
05:16:29 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x96bb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:29 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x7cbc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:29 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x4db8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:42 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x9, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:42 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x4eb8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:42 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x7dbc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:42 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x2010000000000000, 0x0)

05:16:42 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x9}})

05:16:42 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x97bb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:42 executing program 1:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
openat(r0, &(0x7f0000000180)='./file0\x00', 0x8302, 0x170)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
setxattr$security_evm(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000140)=@md5={0x1, "0e6be4dd5d404858fa3373244ec5f92c"}, 0x11, 0x3)

05:16:42 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = getpid()
pidfd_open(r3, 0x0)
perf_event_open(&(0x7f0000000380)={0x1, 0x80, 0x4, 0x1, 0x20, 0x0, 0x0, 0x6, 0x1000, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x2, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0xfffffffb, 0x4, @perf_bp={&(0x7f0000000200)}, 0x5, 0x1, 0x4, 0x3, 0x3, 0xa4b2, 0x20, 0x0, 0x5, 0x0, 0x5}, r3, 0x8, 0xffffffffffffffff, 0x1)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r4, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0xb}}, 0x41130000)
r5 = dup2(r0, r2)
stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
setresuid(0x0, r6, 0x0)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x8080, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@version_9p2000}, {@cache_none}, {@nodevmap}, {@privport}, {@noextend}, {@version_u}, {@debug={'debug', 0x3d, 0x8}}], [{@appraise_type}, {@euid_lt={'euid<', r6}}, {@subj_type={'subj_type', 0x3d, 'rfdno'}}, {@dont_hash}]}})
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:42 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x7ebc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:42 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x98bb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:42 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xc, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r2, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0xb}}, 0x41130000)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r3, 0x40045431, &(0x7f0000000040))
setxattr$trusted_overlay_redirect(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), &(0x7f0000000200)='./file0\x00', 0x8, 0x2)
r4 = ioctl$TIOCGPTPEER(r3, 0x5441, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f00000000c0)=0x13)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r2, 0xc0189372, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r4, {0x1}}, './file0\x00'})
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rNdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',\x00'])

05:16:42 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x4fb8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:42 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x3b37000000000000, 0x0)

05:16:42 executing program 1:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r1, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0xb}}, 0x41130000)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40004, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x48000, 0x10001}, 0x0, 0x0, r1, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000180), 0x80, 0x0)
ioctl$BTRFS_IOC_QUOTA_RESCAN(r2, 0x4040942c, &(0x7f00000001c0)={0x0, 0xfc, [0x7f, 0x14d, 0x44, 0x3f, 0x1, 0x6]})
renameat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', r0, &(0x7f00000000c0)='./file0\x00')

05:16:42 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xa, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:42 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0xa}})

05:16:42 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x8cffffff00000000, 0x0)

05:16:42 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0xb}})

05:16:42 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x50b8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1642.253703] 9pnet_fd: Insufficient options for proto=fd
[ 1642.283710] 9pnet_fd: Insufficient options for proto=fd
05:16:54 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x51b8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:54 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x7fbc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:54 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x10}})

05:16:54 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:54 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x99bb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:54 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000040))
r1 = ioctl$TIOCGPTPEER(r0, 0x5441, 0x0)
r2 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCXONC(r2, 0x540a, 0x1)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r3, 0x40045431, &(0x7f0000000040))
r4 = ioctl$TIOCGPTPEER(r3, 0x5441, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f00000000c0)=0x13)
ioctl$PIO_FONT(r4, 0x4b61, &(0x7f00000004c0)="74907c3eee0172c9619aa7b3f9f90ae56bfbb51c33c9496669f2f5a033a86bb6ef2bb5d56ec0b3cd24")
ioctl$TIOCSTI(r1, 0x5412, &(0x7f00000000c0)=0x13)
pwritev(r1, &(0x7f0000000040)=[{&(0x7f0000000140)="27a379855bb1a31238658e370d533bace86b7dedb4b3db7017e65478702ae2fd712f903bf2818ba3b1e658d96f1eb1b98c65ebf364c586d6daaf83a9a531e08be89bcfcd951bde696a6918143db23885a881822bd43e5bf4cb5325bf23cc528135cabfbb9a6a8ec35dbd5a0df53a820a7bef3d91b1e7678c155d7ff2ef62f08d4edaea9415f46e88bd473070f507a30e12bd380eab20f778f4b39a27a9e9f5f76cf7ae5f1c9395e393a23d03e655e6081e7216fd109e0218936059cc75a1498f7b0327e06be07d2de8044bd98139cf16b1779c72d789c1578d2501275d71afaf500151bfcef17a7741544b57", 0xec}, {&(0x7f0000000240)="20200689f119f6487a00727a4c34f7c68bd0bdc66e49a9a05d25b56157e61dc259db81b1379bd9c8c139851bd182c4b1d7f1e826dc559717e640c856fd306b0cdbc3f52e073d3d7b5fc4616bf48ba3d58cf0305f82fe2eae295b82271067c67d1c608f7987a485371f1423c0fea40c4b1b9efe93232411d8bfdac4a5298d91c50640ab57c15facd45770f47a1b6d9e7c749d3482b3375808c021c8a41cdc301cb86d06c84fe679e0fd66282d8ffacb7a7f287802b9fa6040a60de53cf10da53ef348b96b6d56c2d512e8f078819cc3fc5068a389d22b", 0xd6}, {&(0x7f0000000340)="6397e067c267fe032121bd8b4734b6d2ccebdba60195e89cad58e53d65c99696a6927da546ecebbff6428edbd8afda1c8805dde8f4b60d7f9950415b482466768668029ca408de120de398b033706febaea3039da66ab355666227d84ff3e7fec3141f", 0x63}, {&(0x7f00000003c0)="ff51a6678d75a5c87c80d6e8ea96b6f55e30d5159df8545ecbac37e9678efdf8367b0171a44d4cf108f10cc30033e429b3a4bfd914d53948986f84a25bce52dfb834861bec48d70082f0a52f3c15536f8f3635d1e74a42ea4f853dc8ceea3a1e5709da8927e778be2ee370a572494ebcbc04533cd35d6bc5e34b677f3c6a4233512200aaa4d7f856550bf932a560be5f2674bd077506d8e48532d043fe6ebb1ecd773fa5353bb992b886c0e28acfc9b2f44cdd0bb5d37fb6bc7319fc5bd1aea5a3fb5ae667915e5c418a4941b9268e3be357b7a4a1ab6f6e926dbfc508c43ddbbf2bf2af4d", 0xe5}], 0x4, 0x9, 0x7)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:16:54 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x4, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0xac, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x5, 0x1000000000000, 0xfffffffd}, 0x0, 0x10, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f00000000c0)=ANY=[@ANYBLOB="1500000065ffffdec83d0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB="2c77668ac70200000000007f04000000e70e000600000000000000", @ANYRESHEX=r1, @ANYBLOB=',\x00'])

05:16:54 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xf6ffffff00000000, 0x0)

[ 1654.117996] 9pnet_fd: Insufficient options for proto=fd
[ 1654.125171] 9pnet_fd: Insufficient options for proto=fd
05:16:54 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x9abb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:54 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r0, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x41130000)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r1, 0x40045431, &(0x7f0000000040))
r2 = ioctl$TIOCGPTPEER(r1, 0x5441, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f00000000c0)=0x13)
stat(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
newfstatat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, <r4=>0x0}, 0x800)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x1000080, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@access_any}, {@afid={'afid', 0x3d, 0x3}}, {@mmap}], [{@fowner_gt={'fowner>', r3}}, {@permit_directio}, {@euid_lt={'euid<', r4}}, {@subj_role={'subj_role', 0x3d, '@&^)[*/#%,@.'}}]}})
pipe2$9p(&(0x7f0000000140)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r7 = getpgrp(0xffffffffffffffff)
r8 = openat$full(0xffffffffffffff9c, &(0x7f0000000740), 0x40000, 0x0)
perf_event_open(&(0x7f00000006c0)={0x2, 0x80, 0x81, 0x5, 0x8, 0xf0, 0x0, 0x2, 0x8000, 0x2, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x200, 0x0, @perf_bp={&(0x7f0000000680), 0x2}, 0x800, 0x6, 0x1, 0x4, 0x4, 0x9, 0x9, 0x0, 0x7fffffff, 0x0, 0xffffffffffffffff}, r7, 0x10, r8, 0x13)
write$P9_RVERSION(r6, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r6}})

05:16:54 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x8084, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:54 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xf9fdffff00000000, 0x0)

05:16:54 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x10, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:54 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x52b8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:16:54 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
fcntl$dupfd(r0, 0x0, r1)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r4, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0xb}}, 0x41130000)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r5, 0x40045431, &(0x7f0000000040))
r6 = ioctl$TIOCGPTPEER(r5, 0x5441, 0x0)
ioctl$TIOCSTI(r6, 0x5412, &(0x7f00000000c0)=0x13)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r6}, 0x2c, {[{@aname={'aname', 0x3d, '@'}}], [{@func={'func', 0x3d, 'MMAP_CHECK'}}, {@fsname={'fsname', 0x3d, '9p\x00'}}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@smackfshat={'smackfshat', 0x3d, 'wfdno'}}]}})
write$P9_RVERSION(r3, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}})

05:16:54 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x9bbb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:09 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xb8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:09 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
utime(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)={0x4186, 0x101})
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x119000, 0x0)
getsockname(r0, &(0x7f0000000080)=@nfc_llcp, &(0x7f0000000180)=0x80)
pipe2$9p(&(0x7f0000000140)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ff0600000030"], 0x15)

05:17:09 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xffffffff00000000, 0x0)

05:17:09 executing program 2:
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:09 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x53b8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:09 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x80bc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:09 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x9cbb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:09 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x18000, 0x88)

[ 1682.102813] 9pnet_fd: Insufficient options for proto=fd
[ 1682.107743] 9pnet_fd: Insufficient options for proto=fd
05:17:22 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x81bc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:22 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r0, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0xb}}, 0x41130000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x400000, 0x4)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), 0x2010000, &(0x7f0000000180)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@uname={'uname', 0x3d, '#,)!@'}}, {@cache_fscache}, {@version_u}, {@privport}, {@cache_mmap}, {@access_user}, {@privport}], [{@fsuuid={'fsuuid', 0x3d, {[0x62, 0x63, 0x38, 0x65, 0x35, 0x34, 0x63, 0x61], 0x2d, [0x32, 0x63, 0x32, 0x34], 0x2d, [0x39, 0x39, 0x31, 0x32], 0x2d, [0x37, 0x65, 0x35, 0x39], 0x2d, [0x31, 0x30, 0x63, 0x65, 0x0, 0x36, 0x36, 0x32]}}}, {@hash}, {@dont_appraise}, {@obj_user={'obj_user', 0x3d, '9p\x00'}}]}})

05:17:22 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500004c130c000000000000"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:22 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0xfffffffffffff000, 0x0)

05:17:22 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x54b8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:22 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xdd, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:22 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r2, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0xb}}, 0x41130000)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, r2, 0x0)
faccessat(r2, &(0x7f0000000300)='./file0\x00', 0x8)
write$P9_RAUTH(r1, &(0x7f00000000c0)={0x14, 0x67, 0x2, {0x8, 0x1, 0x8}}, 0x14)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB="ffffffff6e6f3d", @ANYRESHEX=r1, @ANYBLOB=',\x00'])
r3 = getpid()
pidfd_open(r3, 0x0)
r4 = open(&(0x7f0000000280)='./file0\x00', 0x800, 0x14)
r5 = gettid()
syz_open_procfs(r5, &(0x7f00000002c0)='net/sockstat\x00')
perf_event_open(&(0x7f00000001c0)={0x6, 0x80, 0x7, 0x8, 0x0, 0x3f, 0x0, 0x9, 0x220c, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x6, 0x0, @perf_bp={&(0x7f0000000180), 0xd}, 0x10, 0x7, 0x2e, 0x1, 0x10000, 0x3, 0x7, 0x0, 0x8222, 0x0, 0xfae}, r3, 0x7, r4, 0x0)

05:17:22 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x9dbb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:22 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = syz_io_uring_complete(0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r2, {0x9dd}}, './file0\x00'})
r3 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500002a00"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000200)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})
write(r3, &(0x7f0000000180)="cbc53c743fc9f52139c5fe32caf4d520983db9c9e99af729a2119ff23736adc55caf277ef38c02002f4910a89db5527de3b533b53c6a7989ebc1a1c534a4cd203f4f2f0bbc", 0x45)

05:17:22 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x9ebb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1682.161929] 9pnet_fd: Insufficient options for proto=fd
05:17:22 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x55b8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1682.180865] 9pnet_fd: Insufficient options for proto=fd
05:17:22 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x82bc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:22 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x7, 0x81, 0x0, 0x0, 0x0, 0xe5, 0x10002, 0x2, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x3, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3, 0x3, @perf_config_ext={0x6, 0x7}, 0x400, 0x1ff, 0x5, 0x7, 0x2, 0x6, 0xfff8, 0x0, 0x4, 0x0, 0x20}, 0x0, 0x10, r2, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:22 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x108080, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x90806}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})
ioctl$EXT4_IOC_GROUP_EXTEND(r2, 0x40086607, &(0x7f00000000c0)=0x7f)
readahead(r0, 0x7, 0x3ff)

05:17:22 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x8000, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:17:22 executing program 4:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
fcntl$setlease(r0, 0x400, 0x1)

05:17:22 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x300, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:22 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x56b8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:22 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x9fbb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:22 executing program 0:
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000040)={'wlan1\x00', &(0x7f0000000400)=@ethtool_gstrings={0x1b, 0x6}})
r1 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r3, &(0x7f00000000c0)=ANY=[@ANYBLOB="150000386b030000000000000033"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}})
ioctl$BTRFS_IOC_SCRUB_CANCEL(r1, 0x941c, 0x0)

[ 1682.390294] 9pnet_virtio: no channels available for device ./file0
[ 1682.409559] 9pnet_virtio: no channels available for device ./file0
05:17:34 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x83bc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:34 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c1081b67eb46d1d493df62c0b5f00736575e5679f4d9c03bc1e21e116b4da175ef120d95626f4af687dc4864c959532e4bfbadf9c7ba2955f3602a3f19af8662b818d0aa2084ea9a4c2e925e38d5024f71d7cb466adc9d30fc83e4cf8489e64534fb8b22773e65f113b1a1cabe7c7fe4e61000000000000000000000000000030959a140052492696d3243c20718730be8dca966bb72d0c62f488aa2077be243b7b7a99716738836745dd721cd2618851cde5cc49d794ec2435"])

05:17:34 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x4, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r3=>r1, {0x10000, 0x4}}, './file0\x00'})
write$P9_RSTATu(r3, &(0x7f0000000180)=ANY=[@ANYBLOB="610000007d010000004900a8f759f6000001040000000100000000000000000010010104000002000000090000000000000000000c005c262e5d2d25267b245e655d00000a002323405b2c2b5d23253a0300397000", @ANYRES32=0xee01, @ANYRES32=0xee01, @ANYRES32=0xee00], 0x61)
fcntl$setflags(r2, 0x2, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r4, 0x40045431, &(0x7f0000000040))
r5 = ioctl$TIOCGPTPEER(r4, 0x5441, 0x0)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f00000000c0)=0x13)
fcntl$setstatus(r5, 0x4, 0x400)

[ 1694.656792] 9pnet_virtio: no channels available for device ./file0
05:17:34 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xa0bb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:34 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = getpid()
pidfd_open(r1, 0x0)
perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x9, 0x81, 0x6, 0xa6, 0x0, 0x3bd7, 0x12904, 0xe, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x4, 0x1, @perf_bp={&(0x7f0000000040), 0x8}, 0x11, 0xd2, 0x7, 0x7, 0x20, 0xfffffffd, 0x7ef, 0x0, 0x1b94, 0x0, 0x7f}, r1, 0x9, r0, 0x1)
stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
setresuid(0x0, r2, 0x0)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000240)={{{@in=@empty, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in6=@ipv4={""/10, ""/2, @loopback}}, 0x0, @in=@initdev}}, &(0x7f0000000340)=0xe8)
mount$9p_unix(&(0x7f00000000c0)='./file0\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), 0x20200, &(0x7f0000000380)={'trans=unix,', {[{@access_any}, {@afid={'afid', 0x3d, 0x10001}}, {@version_9p2000}], [{@uid_eq={'uid', 0x3d, r2}}, {@euid_eq={'euid', 0x3d, r3}}, {@seclabel}, {@subj_role={'subj_role', 0x3d, '9p\x00'}}, {@smackfsdef={'smackfsdef', 0x3d, '9p\x00'}}, {@subj_type={'subj_type', 0x3d, '9p\x00'}}, {@fsname={'fsname', 0x3d, '\',+\',)'}}, {@euid_eq={'euid', 0x3d, 0xee00}}, {@smackfshat={'smackfshat', 0x3d, '9p\x00'}}, {@permit_directio}]}})
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:17:34 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
ioctl$FIGETBSZ(0xffffffffffffffff, 0x2, &(0x7f0000000040))

05:17:34 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x500, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:34 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x57b8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1694.676046] 9pnet_virtio: no channels available for device ./file0
05:17:34 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x84bc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:34 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r2, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0xb}}, 0x41130000)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x10, 0x0, 0x7, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0x9, 0xfffffffffffffffd}, 0x20}, 0x0, 0x0, r2, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:34 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0xb0e, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x4, 0x80, 0x85, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x4, 0xffffffffffffffff, 0x2)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:17:34 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x58b8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:34 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1510000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:34 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xa1bb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:34 executing program 1:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000140), 0x131002, 0x0)
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r2, 0xc0189374, &(0x7f0000000300)={{0x1, 0x1, 0x18, <r3=>r2, {0x35e}}, './file0\x00'})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x81f8943c, &(0x7f0000000340))
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000180)=ANY=[@ANYBLOB="010008000100000018000000", @ANYRES32=r0, @ANYRES32=<r4=>0xee00, @ANYRES32, @ANYBLOB='./file1\x00'])
r5 = geteuid()
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), 0x1101002, &(0x7f00000001c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',cachetag=.,version=9p2000,cache=loose,euid=', @ANYRESDEC=r4, @ANYBLOB="2c6f626a80747972653d2f275c2a2c666f776e657235", @ANYRESDEC=r5, @ANYBLOB=',smackfsroot=9p\x00,\x00'])
r6 = socket(0x9, 0x4, 0x3)
sendfile(r6, r0, &(0x7f0000000540)=0x1, 0x1)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r2, 0x4, &(0x7f0000000280)='\x00', &(0x7f00000002c0)='./file0\x00', 0xffffffffffffffff)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:17:34 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x600, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1694.793442] 9pnet_virtio: no channels available for device ./file0
[ 1694.796797] 9pnet_virtio: no channels available for device ./file0
05:17:47 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x700, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:47 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xa2bb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:47 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = getpid()
pidfd_open(r1, 0x0)
r2 = fcntl$dupfd(r0, 0x0, r0)
perf_event_open(&(0x7f0000000140)={0x7, 0x80, 0x72, 0xd0, 0x2, 0x4, 0x0, 0x20, 0x0, 0x9, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x7fff, 0x2, @perf_config_ext={0x10000, 0x2}, 0x2001, 0x6, 0x4, 0x4, 0x0, 0x3, 0x1, 0x0, 0x1, 0x0, 0x20}, r1, 0x7, r2, 0x9)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:17:47 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x85bc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:47 executing program 4:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat(r0, &(0x7f0000000040)='./file0/file0\x00', 0xa000, 0x10)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:17:47 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x59b8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:47 executing program 2:
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x0, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x820, 0x0, 0x0, 0x6}, 0xffffffffffffffff, 0x200000040000000, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:47 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
setxattr$security_evm(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), &(0x7f00000001c0)=ANY=[@ANYBLOB="0302070000000500411895e4bfd00b73b3a53529661fd696a0fbe1dc694b42a5fb8a69867cb95ce9e1afca8a16b931f704814375bcd86d703250fc681a46806bfce3a9ba745cd909c396"], 0x4a, 0x1)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x8, 0x0, 0x0, 0x6fe3e35f35031a37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000280)=ANY=[@ANYBLOB="1500010000f3fe05000000f46fa61f53297eccd923b746d041eb49a01c0d93cf19f92ddd2aaaa0af8064f3e205911643dc53a2d3062ba1d05984ec9075d9d888474777e3f85472bb7387c7457e"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240))

[ 1707.137971] 9pnet_fd: Insufficient options for proto=fd
[ 1707.141900] 9pnet_fd: Insufficient options for proto=fd
[ 1707.172578] 9pnet_virtio: no channels available for device ./file0
[ 1707.196123] 9pnet_virtio: no channels available for device ./file0
05:17:47 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x86bc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:47 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xa3bb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:47 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000200)='./file1\x00', 0x0, 0x0, 0x0, 0x48012, 0x0)
pipe2$9p(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80000)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0xfd, 0x0, 0x0, 0x0, 0x7000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2, @perf_bp={0x0}, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$TIOCSPTLCK(0xffffffffffffffff, 0x40045431, &(0x7f0000000040))
ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f0000000040))
r3 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f00000000c0)=0x13)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f00000001c0)=0x4)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r4, 0x40045431, &(0x7f0000000040))
r5 = ioctl$TIOCGPTPEER(r4, 0x5441, 0x0)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f00000000c0)=0x13)
sendfile(r2, r5, 0x0, 0x6)
write$P9_RVERSION(r1, &(0x7f00000000c0)=ANY=[@ANYRESOCT=r3], 0x15)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r6, &(0x7f0000000140)=ANY=[@ANYBLOB="10000000020000000b000000000000010000000000000000"], 0x41130000)
write$P9_RWRITE(r6, &(0x7f0000000140)={0xb, 0x77, 0x1, 0x82d}, 0xb)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=dnj=\x00\x00\x00\x00\x00', @ANYRESHEX=r0, @ANYBLOB="2c7766646e6f3df1901cf161250077b24b388c999f9ac79c3714acf22f0a4adbaa2d49c1248a46ed5f0a64e21ed97bdec6cf2408931e0fe67f16ba29a19d7655b0f4b1588eed6e0fbe7eb4f1b45edb86af4319d50a7cf50decec8a29641b48e002efdd0d31a23f85281b8bff9f7862876e2d3fca34a8b332dfa6be53f191ef94b8f4186193a70717", @ANYRESHEX=r1, @ANYBLOB='\bu'])

05:17:47 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x900, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:47 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x5ab8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:47 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x87bc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:47 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r0, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0xb}}, 0x41130000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r1, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0xb}}, 0x41130000)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r0, 0x4, &(0x7f0000000040)='9p\x00', &(0x7f00000000c0)='./file0\x00', r1)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

[ 1707.367053] 9pnet_virtio: no channels available for device ./file0
[ 1707.380519] 9pnet_virtio: no channels available for device ./file0
05:17:58 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x97, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x7}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setxattr$security_evm(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000240)=ANY=[@ANYBLOB="02c5752ef45e83f5a09b88e82f91ef3bf5d09a78a672f4f4c09053a2e3f8e00bf6e2d4289b661dbed55379b94537c6d347f2c7d5a2f704cf0ddddb6371180c540574819bfd3910366328b1955c384a2bec4479390b5cf564b1510c174613d88fad2b065b547a6ee86b9cb7d677f69b06bdf7fe176f68fd26fc98696aac4e3546362b871c359e2a4cac1bae3898bf22073fed0cb7f1ca7f321900541a38aa6e9ec7db6f1993e0d4bc5cd54400ec78defbfe2b85a323ad75968b64ca9be2d85a7b2c7b5e2c6df95f7d5a6f65db2fb9d507df1d3184db40b9"], 0x7, 0x4)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:17:58 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xa00, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:58 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xa4bb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:58 executing program 1:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x210080, 0x0)
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000001480)=@IORING_OP_OPENAT={0x12, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001440)='./file0\x00', 0xc, 0x200001, 0x12345, {0x0, r2}}, 0x1)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_TEE={0x21, 0x1, 0x0, @fd=r1, 0x0, 0x0, 0x0, 0x8, 0x1, {0x0, r2, r0}}, 0xfff)

05:17:58 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x5bb8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:58 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x88bc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:58 executing program 0:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
r3 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r4 = perf_event_open(&(0x7f0000000180)={0x2791a905157b97da, 0x80, 0x7, 0x7f, 0x0, 0xfa, 0x0, 0x6, 0x40, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x96a2, 0x3, @perf_bp={&(0x7f00000000c0), 0x4}, 0x8000, 0xffffffff, 0x7, 0x9, 0xffffffff00000000, 0x81, 0xa04, 0x0, 0x9, 0x0, 0x2}, 0x0, 0x7, 0xffffffffffffffff, 0x8)
write$P9_RVERSION(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500531500"], 0x15)
r5 = getgid()
setresgid(0x0, 0x0, r5)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000680)={0x0, <r6=>0x0})
r7 = getgid()
r8 = getgid()
r9 = getgid()
setresgid(r7, r8, r9)
r10 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r10, 0x40045431, &(0x7f0000000040))
ioctl$TIOCGPTPEER(r10, 0x5441, 0x0)
r11 = syz_mount_image$tmpfs(&(0x7f0000000700), &(0x7f0000000740)='./file0\x00', 0x9, 0x4, &(0x7f0000001a00)=[{&(0x7f0000000780)="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", 0x1000, 0x1}, {&(0x7f0000001780)="cacb571bdb1279e4f49beb34ee280908c92b646486a6a6d1c237af91979760f7abac1c8cf9d07b22331a3f6c571faf1fd5faed65f7f467ec4363626f96dc236ce6563ce788023c364053dc36ddc8892fd7e7be716fadcb11984597723e5f152816c5b973eff0b1bf3d1f09bb8649fa7c2307d7ae89f924a57d213f", 0x7b, 0x10000}, {&(0x7f00000018c0)="1752dd1733752b46611dfe1f64a314d87bc7fce8dc09fd513576b33dfd41f2dd12646b542b618d191e951ca16873d73c556607951e626adf72148352bcd3b05dbf1086fba59cad3ef75e39ff3d35afc5fc17b3122eff615d18dd5e5cb5bced063c96b1276a4c42218b50abb403d94c1fea37611046a3c9ed8132f418628a226236862fae7b299d2498c5fb603aa2c3daecae8bbcf629bcbb248cf868973620869f9c7a8db954893ebac4350b294b1a2829476e07032a475a56baa2", 0xbb, 0x100000001}, {&(0x7f0000001980)="4cdc04b8507b687af82ce2e279231b7c659680bad32e29688eb6dd27547b1db749fd14b80e15a7b86450949a2320c582dd31a844086403789a0181c4858a5328dad2b5f279f17a627e02b6ea511ec554e4241dd070a760d3139eb58945b95fe2532a8df278d21d6f228a84a0e5ad8ce3e8c5fcdd78d967ee21", 0x79, 0x742}], 0x100000, &(0x7f0000001a80)={[{@mode={'mode', 0x3d, 0x400}}, {@huge_advise}, {@huge_always}, {@huge_advise}, {@huge_never}, {@huge_always}], [{@fowner_lt={'fowner<', 0xffffffffffffffff}}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@measure}]})
stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, <r12=>0x0})
setresuid(0x0, r12, 0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f0000001800)={0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000001b40)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, r4, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, r7}}}, @cred={{0x1c, 0x1, 0x2, {r6}}}, @cred={{0x1c, 0x1, 0x2, {r6, 0x0, 0xffffffffffffffff}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01, r8}}}, @rights={{0x20, 0x1, 0x1, [r10, r11, r3, r1]}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, r12}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xffffffffffffffff}}}], 0x118, 0x40005}, 0x24000004)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}})

05:17:58 executing program 2:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
symlinkat(&(0x7f0000000200)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00')
pipe2$9p(&(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
setxattr$trusted_overlay_nlink(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000280), &(0x7f0000000180)={'L-'}, 0x16, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="7472616e733566642c7266646e6f3d767a5028dc882e32c54ffc8c2ca6a96890994e03db8c1dcae3ef025abce91721e7dbe2dc", @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB="2c002c78f111a1d066f7dad5d082b4c221920129f94ce21c12af3095f5de7cafa14701ef5a43e38a374585f918a9449e15b10d9864059fdec2ccba415ba70705b469eedeca90403094525dca3487fdb989900a38db66f23900ee7be892103e8071fb59f8b333876f020d8ad4bf3e791278b46838061a8c111c6a5732c9acbbe2f0f5da82fb44f1fce5cfa11146c083cfcc23bbbb50e269620e309187b8067798cc4c2972ab8bcbb58aba4120ebb398ea24f1d3c5786be267bd9f85409e93b07d7fcf29dbf219830467bf379a06e324"])

[ 1718.572277] 9pnet_virtio: no channels available for device ./file0
[ 1718.616058] loop0: detected capacity change from 0 to 264192
05:17:58 executing program 4:
prctl$PR_GET_FP_MODE(0x2e)
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
openat(r0, &(0x7f0000000040)='./file0\x00', 0x0, 0x43)

05:17:58 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x2010, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:17:58 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x5cb8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:58 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x89bc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:58 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r2, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0xb}}, 0x41130000)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000280)={{{@in6=@remote, @in6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in6=@remote}, 0x0, @in6}}, &(0x7f00000001c0)=0xe8)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x818, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {}, 0x2c, {[{@afid={'afid', 0x3d, 0xfff}}, {@version_L}, {@msize={'msize', 0x3d, 0x45f}}, {@access_uid={'access', 0x3d, 0xee01}}], [{@permit_directio}, {@fowner_eq={'fowner', 0x3d, 0xee00}}, {@mask={'mask', 0x3d, 'MAY_READ'}}, {@euid_lt={'euid<', r3}}, {@euid_lt={'euid<', 0xee00}}, {@appraise_type}, {@subj_user}, {@fsname={'fsname', 0x3d, '9p\x00'}}]}})

05:17:58 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xb00, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:58 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xa5bb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1718.678038] loop0: detected capacity change from 0 to 264192
[ 1718.707116] 9pnet_virtio: no channels available for device ./file0
[ 1718.721695] 9pnet_virtio: no channels available for device ./file0
05:17:58 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xa6bb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:58 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r0, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0xb}}, 0x41130000)
openat(r0, &(0x7f0000000040)='./file0\x00', 0x22300, 0x10)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:17:58 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82)

05:17:58 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7104, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:17:58 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x1020, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1718.858774] 9pnet_virtio: no channels available for device ./file0
[ 1718.877471] 9pnet_virtio: no channels available for device ./file0
05:18:10 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x2000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:10 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x70b8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:10 executing program 4:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r1=>r0, {0x5}}, './file0/file0\x00'})
r2 = signalfd4(r0, &(0x7f0000000140)={[0x98c]}, 0x8, 0x800)
move_mount(r1, &(0x7f00000000c0)='./file0\x00', r2, &(0x7f0000000180)='./file1\x00', 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:18:10 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
setxattr$security_evm(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), &(0x7f00000001c0)=@v2={0x94273ecd5fa91e95, 0x0, 0x8, 0x6, 0x14, "fc9ea8271fc41195680390155acb7b4ad1e612e5"}, 0x1d, 0x2)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r2, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0xb}}, 0x41130000)
connect$unix(r2, &(0x7f0000000280)=@abs={0x1, 0x0, 0x4e21}, 0x6e)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:10 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x8abc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:10 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xa7bb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:11 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x3, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:18:11 executing program 0:
r0 = msgget(0x0, 0x22)
msgget$private(0x0, 0x83)
pipe2$9p(&(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x80000)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = msgget$private(0x0, 0x0)
msgsnd(r3, &(0x7f0000000040)=ANY=[@ANYBLOB="0300000000000000fcea9470619ae6325491e48ac3bc8029d1167b44ac1f3512b1e0200617c4367f04dff8de7f6fbb"], 0x8, 0x0)
msgrcv(r3, 0x0, 0x0, 0x0, 0x0)
msgrcv(r3, &(0x7f0000000280)=ANY=[@ANYBLOB="0000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000001500"/167], 0xa7, 0x3, 0x1000)
msgsnd(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="000000000000000029a5914a632d1616b4605114cede56bc63f0ddfa57368bd5ba5a497a8baa237e87cc52af6732b3c348d0529d7d3633efc25c9865c481213724a6072047ace00418212c8f6f1c29c00d158c2b1ffe0032e26d9db9cfba173a17dc39d8d784073a4a7ae838bd26a0a1bdaacb769fea1dd4cbd179eb0b83e6159aadd1d14d526428061e97157b252fb16f5c114d8c77711e4bbab34e9bf0568c7de3a8c487ec36790980e87c1b49e4710b53de6f5e544b8c7fa1dbf40e028cdab402abffb7d7e32b870de3327c451047de67089ad872793ca620b3a7dcc034420b1de33e78e84dd070fc3bbd6f661d"], 0xef, 0x800)
write$P9_RVERSION(r2, &(0x7f00000000c0)=ANY=[@ANYBLOB="f42632694505bcf096aac49200000001513e01206aaaa6"], 0x15)
r4 = msgget(0x2, 0x40e)
msgrcv(r4, &(0x7f00000005c0)=ANY=[@ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008900000000000000000000000000000000000000000000007fc09c9600"/138], 0x86, 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x22880, &(0x7f0000000180)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [{@func={'func', 0x3d, 'FILE_CHECK'}}, {@obj_user={'obj_user', 0x3d, 'smackfsdef'}}, {@smackfsroot={'smackfsroot', 0x3d, '\\#%\\%\xca/,:}$;\xbb\xea\x0f\xfa\x80\x99\x85\xb5\x02}\\O\x94\x1c\xa4fC\xd8QJ\xfe\n\x02\xb3\"8\x9fW\xef\xf1D\xbd\x10Cq\x83\x93'}}, {@smackfsdef={'smackfsdef', 0x3d, 'ufdno'}}, {@fsmagic}, {@subj_role={'subj_role', 0x3d, 'wfd|\xb4\x81\xedno'}}]}})
msgctl$IPC_STAT(r0, 0x2, &(0x7f0000000500)=""/186)

[ 1730.947430] 9pnet_virtio: no channels available for device ./file0
05:18:25 executing program 1:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
openat(r0, &(0x7f0000000200)='./file0\x00', 0x8000, 0x100)
renameat(r0, &(0x7f0000000180)='./file0\x00', 0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00')
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000040)='9p\x00', &(0x7f00000000c0)='./file0\x00', 0xffffffffffffff9c)
openat(r0, &(0x7f0000000140)='./file0\x00', 0x400, 0x42)

05:18:25 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
unshare(0x40480)
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r1)
tee(r0, r2, 0x1, 0x0)
pipe2$9p(&(0x7f0000000140)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r4, &(0x7f0000000180)=ANY=[@ANYBLOB="1500000065ffff050000003013fc0888e7d5c72191f34ee54a34e6e94f49f32b749f04acb03f67a568c961059f0e102d3ccc8c0b5a1fd841feb21d09b32de7b1bce7f1c04cec000000000013000000"], 0x15)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r5, 0x40045431, &(0x7f0000000040))
ioctl$TIOCGPTPEER(r5, 0x5441, 0x0)
fcntl$setstatus(r5, 0x4, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}})
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0), 0x2000000, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@msize={'msize', 0x3d, 0x3ff}}, {@access_any}, {@version_9p2000}], [{@smackfshat={'smackfshat', 0x3d, 'wfdno'}}]}})

05:18:25 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xa8bb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:25 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0, 0x848828, 0x0)
stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setresuid(0x0, r0, 0x0)
syz_mount_image$tmpfs(&(0x7f0000000100), &(0x7f0000000840)='./file0/file0\x00', 0x0, 0x3, &(0x7f00000009c0)=[{&(0x7f0000000880)="575088ba4ff62965e0ede7ae67f01c9bd2aa220288c2ac823689a67863410d65a68f792c8e64414a72a586a7d9a26ff3876eea14a1724d6e37a0ae3acccc0c61c8497176c2d4accb171c43a7e5cef6bdd259d0834d5b1f6107ac9cfd8239b150d1e8e4c495761e5ffa0010b80894f067ec566dfc8e384426e038a0bf7d0b918885232966f3bc5390a75bad7c7d534f644ee637688768ee09303b994166b9b1", 0x9f, 0x4}, {&(0x7f0000000940), 0x0, 0x1}, {&(0x7f0000000980)="7e1682acca0a4a5eda05057ccab78bd54527d3d540c24b6dce587295ac37091d517929d11226d1f06890c4453062c61891ca", 0x32}], 0x80000, &(0x7f0000000a40)={[{@mode={'mode', 0x3d, 0x7}}, {@size={'size', 0x3d, [0x70]}}, {@mode={'mode', 0x3d, 0x1}}, {@huge_within_size}], [{@obj_type={'obj_type', 0x3d, 'smackfsroot'}}, {@euid_lt={'euid<', 0xee01}}, {@dont_appraise}]})
r1 = syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000180)='./file0\x00', 0x2, 0x6, &(0x7f00000006c0)=[{&(0x7f0000000380)="0bff29790e2d10fd97eb2d8cb1d3de9399ba0ef593aa643842bca288180790eba4384ee18f05fe839cc9f2d53426d14851b07c14c79c0ef27b1b9969028e8aaf71b68a5ade0970500382d275787e745005c72689438e1c9af00fced78c06a12391398680bd6358ea51554d981d7823443e7fc5ee5b9de25c0ee9df521aef2e6e528f720b61d0a9aa2de8e41db73f5667e28ce1b4669d1bb5115a0d69ab1981a76e85cfc1adfc08f8524fca4ed60b84cbcd237591b6052cf10ce54a049f6184c7ea71a436af726f352c27e75ae7db3c3d0823181446a63c1f2c0988cfa985488787f5313cf031aa07", 0xe8, 0x1}, {&(0x7f00000001c0)="fe621664b53c8f53c94319eccb7c45df4b6ffa141e02c2de872588c162b29ae0671df46e5624c9518babdb2582cc626c7352d05099f59948", 0x38, 0x200}, {&(0x7f0000000480)="017745c1b6f986dcc36c10ba431a3840d31705eb36644080090bb462bc2ffb54e3e182bd0367515165e3c3d289830d9b807484d9328f4f37d4f264cdc6acc61909bf78b146ef443b0a80531fb3b9491bc1dd6642a678acf01c", 0x59}, {&(0x7f0000000500)="c981ebfd88aebb60e9d3eaa8536a03989a5a2eeccd8cc4e010255b9ca6866c477e4767fd7575e67ee76afe56c0e57dc8ce121c7417dca92f49390ef0ce592cac720d2c6416245d6549f57fe34f860f99828f856aae1132b64d30432ce51ae1c20c621726654515f1a18860d40b49f02172a5e92b04", 0x75, 0xfffffffffffffff7}, {&(0x7f0000000580)="ecec52680a78533bc96d08f90733038bfb1f156a135207f158107fad2412354b03252199ccdc94108b19d9c0d55ce5084381ff6e24aceff5c11319484c771546441f4cb0fd8eeab2474dfed4ef843806691806540c5a91eb1365e83c937075a66816a6558e6a178396c891f4767a7dd556976b5158a107b74473e105fd55884684019a", 0x83, 0x5}, {&(0x7f0000000640)="270bb67d0ba48d5aaa2b54dcc906f9ffbfe2bc486327c7ba0960c0e3717be927b4efdffde7a248a9fd8104c72460cd5f38d434021ccfe329bb4794017812f939b719288c28e0fdc77f3ce5198e35bfcf8b4d2e123623a5edf1266443eb07c9c744105a9aee4566c25047", 0x6a, 0x8}], 0x200000, &(0x7f0000000780)={[{@nouser_xattr}, {@auto_da_alloc}, {@max_batch_time={'max_batch_time', 0x3d, 0x1}}, {@discard}, {@resuid={'resuid', 0x3d, r0}}], [{@smackfsroot={'smackfsroot', 0x3d, 'trans=fd,'}}, {@fowner_gt}, {@obj_role={'obj_role', 0x3d, '\'].\xbd+{('}}]})
pipe2$9p(&(0x7f0000000140)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
r4 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000940)='./file0\x00', 0x400000, 0x184)
write$P9_RVERSION(r3, &(0x7f0000000280)=ANY=[@ANYBLOB="1500000065ffff5b00000030126f8ac6556e219ca372179099c8532d6cc93470cc33a88947e014df4000140b8e272f6fbcb3a84cc01b390255ffee1fc077e62e3e2ac532e1e31f2efdd21a9bd0f77d9fe77cb71c0e0ec0051f37b09149465b2f5b8a7c4deab63ea502c435b2c3423378a10b1826a9330b1927c55a14008f3ddb53c6d6d8e22eb3c7c0e074eaf614c857fbf49e345c4586615199cb8c792d043aa316705c7a84db21f42854e3469a28813d4cb86ce87342d2c74f66f69bf6e76472b770a7731d9b7e3f1cc6aa2972e2ab422849843502f55d999b34462d2278360fc836c2b4267a0c44779580914850fc79439bf7"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r3}})
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r4, 0xc0189379, &(0x7f0000000b00)={{0x1, 0x1, 0x18, <r5=>r1}, './file0/file0\x00'})
r6 = socket$packet(0x11, 0x3, 0x300)
r7 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000040)={'syz_tun\x00', <r8=>0x0})
bind$packet(r6, &(0x7f0000000000)={0x11, 0x0, r8, 0x1, 0x0, 0x6, @remote}, 0x14)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r9, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0xb}}, 0x41130000)
ioctl$PERF_EVENT_IOC_SET_FILTER(r9, 0x40082406, &(0x7f0000000c00)='discard')
sendmsg$nl_xfrm(r5, &(0x7f0000000bc0)={&(0x7f0000000b40)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000b80)={&(0x7f00000018c0)=@migrate={0x11f8, 0x21, 0x1, 0x70bd25, 0x25dfdbfe, {{@in=@empty, @in=@broadcast, 0x4e22, 0x100, 0x4e20, 0x4, 0xa, 0xb0, 0x0, 0x0, r8, r0}, 0x6e6bb9, 0x1}, [@replay_val={0x10, 0xa, {0x70bd26, 0x70bd29, 0x6}}, @tmpl={0x44, 0x5, [{{@in=@rand_addr=0x64010102, 0x4d5, 0x2b}, 0x73e15fda80b9e7cf, @in=@rand_addr=0x64010102, 0x3501, 0x4, 0x0, 0x6, 0xfffffd2b, 0x3f80, 0x4}]}, @algo_auth={0xf5, 0x1, {{'rmd256-generic\x00'}, 0x568, "52f99920cc35cd836a0afd953b6394cde8a2b1683b334e4fffca781195ce40e8378d93de7af5bf50f391dfde3b687c2b0194d1d66570146ca3ab12df973784df821be400aa07d4a6b19e2c0cdcfcc71cd7d377bfe8dba2e7c44cb180dfd0f64ff195289310c67bda7ff035cee8901788349b2c2171bb7195fa1dfcff8cae504341603e2a2994d491d9da2600eb71bad1afcbe891aef7a2cfe29ba7f28901c10874feea558a1280a52835550a22"}}, @algo_comp={0x1048, 0x3, {{'lzs\x00'}, 0x8000, "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"}}, @extra_flags={0x8, 0x18, 0x80000000}, @policy_type={0xa}]}, 0x11f8}, 0x1, 0x0, 0x0, 0x48080}, 0x4082)
write$P9_RVERSION(r3, &(0x7f0000000040)=ANY=[@ANYBLOB="1300000065fffff000000006003950323030b7"], 0x13)

05:18:25 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x353f4994d97d8784, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x408, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2}, 0x0, 0x40000000000, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r0, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0xb}}, 0x41130000)
fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000040)=']()$\x00', &(0x7f00000000c0)='./file0\x00', r0)
ioctl$EXT4_IOC_PRECACHE_EXTENTS(0xffffffffffffffff, 0x6612)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r1, 0x40045431, &(0x7f0000000040))
ioctl$TIOCGPTPEER(r1, 0x5441, 0x0)
ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r1, 0x8008f513, &(0x7f0000000180))

05:18:25 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x2010, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:25 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x71b8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:25 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x8bbc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1745.316998] 9pnet_virtio: no channels available for device ./file0
[ 1745.330035] 9pnet_virtio: no channels available for device ./file0
05:18:25 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xa9bb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:25 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
r1 = getpid()
pidfd_open(r1, 0x0)
perf_event_open(&(0x7f0000000140)={0x7, 0x80, 0x4, 0x0, 0x1, 0x1f, 0x0, 0x4, 0x204, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, @perf_bp={&(0x7f0000000040), 0x9}, 0x200, 0xff, 0x6, 0x0, 0x8, 0xdc19, 0x1ff, 0x0, 0x3, 0x0, 0x7}, r1, 0x2, r0, 0x0)

05:18:25 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x3f00, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:25 executing program 4:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4410, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xcc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$FIONREAD(r3, 0x4b4a, &(0x7f0000000000))
open_by_handle_at(r2, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0xb}}, 0x41130000)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r2, 0x4, &(0x7f0000000040)='9p\x00', &(0x7f00000000c0)='./file0\x00', r0)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r1, 0x4008240b, &(0x7f0000000180)={0x0, 0x80, 0xfb, 0x6, 0x6, 0x2, 0x0, 0xe6bf, 0x8001, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0x7fff, 0x80000000}, 0x44000, 0x6, 0xa0d, 0x0, 0x81, 0xff, 0xb64, 0x0, 0x4, 0x0, 0xe4e9})
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:18:25 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x8cbc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:25 executing program 0:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
pipe(&(0x7f0000000180)={<r3=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}})
ioctl$F2FS_IOC_FLUSH_DEVICE(r0, 0x4008f50a, &(0x7f00000000c0)={0x4, 0x6922})

05:18:25 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x72b8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:25 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r3=>r2, {0x3}}, './file0\x00'})
write$P9_RCLUNK(r3, &(0x7f0000000180)={0x7, 0x79, 0x1}, 0x7)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:25 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x4000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1745.506085] audit: type=1400 audit(1685164705.576:18): avc:  denied  { tracepoint } for  pid=9659 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
05:18:25 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xaabb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1745.531967] 9pnet_virtio: no channels available for device ./file0
05:18:25 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x8dbc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:25 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000}, 0x0, 0x0, 0xffffffffffffffff, 0xd)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1745.571918] 9pnet_virtio: no channels available for device ./file0
05:18:25 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x1000000000000000, 0x0, 0x0, 0x101054, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:18:40 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xabbb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:40 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x73b8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:40 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x8ebc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:40 executing program 2:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x0, @perf_bp={0x0}}, 0x0, 0xd, 0xffffffffffffffff, 0x0)
write$P9_RMKDIR(r0, &(0x7f00000000c0)={0x14, 0x49, 0x1, {0x80, 0x2, 0x5}}, 0x14)
write$P9_RVERSION(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
setxattr$security_evm(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), &(0x7f0000000200)=@md5={0x1, "62637e17096e0bb3be12a4e7e61de00c"}, 0x11, 0x1)
mount$9p_fd(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000080), 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB="2c66646eef3d008934b0dbfd94ec529ca3a3401320f6e2d776d94a673f112580e644e092cecc9691544690e7e0b34ee4c587b16b58dcbb9281bd5a29eec8473e5dc1208d69ff11cfef2140b4edaea218", @ANYRESHEX=r2, @ANYBLOB=',afid=0x0000000000000002,access=client,cache=mmap,\x00'])

05:18:40 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x73bf, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:40 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = getgid()
r1 = getgid()
r2 = getgid()
setresgid(r0, r1, r2)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000180)={0x0, 0x0, <r3=>0x0}, &(0x7f00000001c0)=0xc)
setresgid(r1, r1, r1)
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x1, 0x0, &(0x7f0000000140), 0x100000, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e550d24a262fda1efbb7206ec27bf3190116c5cd6171a2481d098482321617a150efc76f77733f6fb53d3957eb72bab4a9c0c0654b9d2935e9a467114ca3a5166eb3c94aaf2ef494e90a431fb8f51976a7b42d70a4c86e62843c2da2cafdd4ab5719b11bb551899deb4431fe16ac6c5f5294a55fe3efae6d597bd293893aa44749efccd9b2cf38934486a54a85231f665d460aca00a2da8c21cfd769e92a35bbf9eb4f8a8f08c0814ccc0c77b03dc65ae3d6636dd9f8a9eb005e6c05259a9b7ab7503", @ANYRES16, @ANYBLOB=',gid=', @ANYRESHEX=r2, @ANYBLOB=',huge=never,gid=', @ANYRESHEX=r3, @ANYBLOB=',uid=', @ANYRESHEX=0xee01, @ANYBLOB="6c6769643d33ad0bd1d68528a64ef781d09885c8ba3746df2d7a6dd2aa50fbf139812d609b1ff3cb5da97b837bca7157ac9a4f6ccbccbae2a805d8653b502a46a7b9d2cf3b5ee94199eeb357363fec89fb82bf28a47b920a14448ba3bf7ad648eaa8cb", @ANYRESDEC, @ANYBLOB="2c687567653d77697468696e5f73697a652c736d61636b6633726f6f943d7b282c7063723d30303030303030303030303030303030303032392c726f6f74636f6e746578743d756e636f6e66696e65645f6b2c646f6e745f6d6561737572652c686173682c736d61636b66736861743d2d9c242c00a08f70d2ae84a09f76ed42ee6bd7e3278ec2090af4e056f79294a04a85812323ce90a169e4151266e3e9fec367a8dc0683e3395541f61f70811204e1fa66cf80226156cefc86195713dcef70feef4b64162031be224fcaa15a3a"])
perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x81, 0x0, 0x0, 0xfc, 0x0, 0x0, 0x16228, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x40000}, 0x0, 0xf, 0xffffffffffffffff, 0x3)

05:18:40 executing program 0:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000040))
ioctl$TIOCGPTPEER(r0, 0x5441, 0x0)
stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
setresuid(0x0, r1, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000280)={{{@in6=@loopback, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in6=@loopback}, 0x0, @in6=@empty}}, &(0x7f0000000180)=0xe8)
newfstatat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}, 0x100)
fsetxattr$system_posix_acl(r0, &(0x7f00000000c0)='system.posix_acl_default\x00', &(0x7f0000000400)={{}, {0x1, 0x6}, [{0x2, 0x5, 0xee01}, {0x2, 0x2, r1}, {0x2, 0x3, r2}, {0x2, 0x6}], {0x4, 0x2}, [{0x8, 0x2, 0xee01}, {0x8, 0x4, r3}], {0x10, 0x2}, {0x20, 0x5}}, 0x54, 0x2)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r5, &(0x7f0000000200)=ANY=[@ANYBLOB="1500000065ffff0500003b708d83720328cb304fa0595dcc99fe0030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r5}})

05:18:40 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, @perf_bp={0x0}, 0x12220, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_unix(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000140), 0x880480, &(0x7f0000000540)=ANY=[@ANYBLOB="7472616e733d756e69782c6163636573733d616e792c766573696f6e3d3970323030302e4c2c6d73697a653d3078303030303030303038303030303030302c756e616d573d7b2c7a6f6465766d61702c64666c747569643d006263c3859e161d7996b079f806b5170c62eee049efb39604309e7855621f01c74de2a0266c9bfd01db5c", @ANYRESHEX=0xee01, @ANYBLOB=',access=user,nodevmap,defcontext=system_u,dont_appraise,\x00'])
syz_mount_image$ext4(&(0x7f0000000240)='ext3\x00', &(0x7f0000000280)='./file0\x00', 0x3ff, 0x1, &(0x7f0000000340)=[{&(0x7f00000002c0)="a2a385f00cc9f3736363c0312c6af9d613e0d3cb76e5cd8513428422f33610f3c98d273fb3b1a6d59b722d11f217afb6eea1cc5fdfa6eedfa452ba8f307dc0cfb9254afd6a491783885264900d181fe56c9dbfa9793179eda4", 0x59, 0x7ff}], 0x4420, &(0x7f0000000380)={[{@dax}, {@journal_async_commit}, {@debug_want_extra_isize}, {@grpquota}, {@nouser_xattr}, {@sb={'sb', 0x3d, 0x7fffffff}}, {@minixdf}, {@init_itable_val={'init_itable', 0x3d, 0x80}}], [{@permit_directio}, {@func={'func', 0x3d, 'CREDS_CHECK'}}, {@smackfstransmute}, {@subj_type={'subj_type', 0x3d, '-!\\-,+[{'}}, {@measure}]})
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r0, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0xb}}, 0x41130000)
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000500), 0x100, 0x0)
fsconfig$FSCONFIG_SET_PATH_EMPTY(r0, 0x4, &(0x7f0000000480)='\x00', &(0x7f00000004c0)='./file0/file0\x00', r1)

05:18:40 executing program 2:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
dup3(r2, r0, 0x80000)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x4840, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r2, &(0x7f00000000c0)=ANY=[@ANYBLOB="15020500659a204ea50a9751e2434c84034e46ff050097f430"], 0x15)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r3, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0xb}}, 0x41130000)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r4, 0x40045431, &(0x7f0000000040))
ioctl$TIOCGPTPEER(r4, 0x5441, 0x0)
statx(r0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x200, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000180), 0x10, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@noextend}, {@dfltuid={'dfltuid', 0x3d, 0xee00}}], [{@uid_gt={'uid>', 0xee00}}, {@fowner_lt={'fowner<', 0xffffffffffffffff}}, {@appraise_type}, {@euid_eq={'euid', 0x3d, r5}}, {@measure}, {@subj_role}]}})
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}})

05:18:40 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x74b8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:40 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x8fbc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:40 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xacbb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:40 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x74bf, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:40 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xe, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:18:40 executing program 1:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r0, 0x40045431, &(0x7f0000000040))
r1 = ioctl$TIOCGPTPEER(r0, 0x5441, 0x0)
ioctl$TIOCSSOFTCAR(r1, 0x541a, &(0x7f0000000140)=0x1)
ioctl$TIOCGSID(r0, 0x5429, &(0x7f00000000c0))
ioctl$KDSETKEYCODE(r1, 0x4b4d, &(0x7f0000000040)={0x8, 0x2})
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:18:40 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x1, 0x5, 0xf7, 0x4, 0x0, 0x1, 0x2802, 0x9, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, @perf_config_ext={0x20, 0x80000001}, 0x49208, 0xfff, 0x80000001, 0x8, 0x7, 0x9, 0xfff, 0x0, 0x3, 0x0, 0x411}, 0x0, 0x0, r2, 0x1)
write$P9_RVERSION(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="155b8009a2e281055a0000305baaf023197da96342f7c06161d6051502edaed1f03f4362a23af9b7ad05df8a22b50984ee87893e334a13333d6465a6267e73f7c2e599b2837b7ac5f3e770b6466e4b5e9e3fc25b0261ecb064e118ec9dfa188ff161d85aadc999e7a2166d5b1ee7e8c14b6c52ca7007afff46bf718d0139a540ed3ef9c8d09d0620ca6ded39ff87b7443de8e2932f2a4da711ce82"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:40 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})
write$P9_RVERSION(r1, &(0x7f00000000c0)={0x15, 0x65, 0xffff, 0x6, 0x8, '9P2000.u'}, 0x15)

[ 1760.433798] 9pnet_virtio: no channels available for device ./file0
[ 1760.446253] 9pnet_virtio: no channels available for device ./file0
05:18:54 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/module/i2c_algo_bit', 0x12200, 0x127)
openat(r2, &(0x7f0000000180)='./file0\x00', 0x400000, 0x40)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:54 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x75b8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:54 executing program 0:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="7a00000030c57bffbd142c11f5cdf35c4a9bf800973b5d12817aa17cb2970cf29b254d885f06007d4ab606268770ca40bfba16e1eef0a7a1b1878cdbbf5e05ad95a1cc2879ab5059483e876a47acc753084d9344fa45b92adbd07d4f5aeee5e7dd5c0bbb0a793fcb07a092cbbbfbab8e3af1f3e1a67ad7fa3da5ed81369b5933012585ef5ec67ce4e38286571c332616470c1d3e6eee4fdbc39aae899cf7c937bd64f63c3ece9c30fdd7e0e4a22ff1cc5bb6d32e3e77f40d98c73aa0f3210c73c00f61cee66a84bff9a1b738fad84e046368d68ab158452693a4d241d3bc22ac47f80c2c77b87f1388f3655c81505284b97ac1"], 0x15)
r3 = open$dir(&(0x7f0000000040)='./file0\x00', 0x121000, 0x20)
renameat2(r3, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000000180)='./file0\x00', 0x1)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB="2c0051fd7911"])

05:18:54 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xadbb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:54 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x90bc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:54 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x75bf, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:54 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
r0 = getpid()
r1 = pidfd_open(r0, 0x0)
pidfd_send_signal(r1, 0x25, &(0x7f0000000140)={0x13, 0x136, 0xfffffa59}, 0x0)
ioctl$sock_SIOCSPGRP(0xffffffffffffffff, 0x8902, &(0x7f0000000040)=r0)

05:18:54 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00'})
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_PUBL_GET(r0, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="7d000000030195bf5bd132d5bf31264c021067bc285c5bc639e56c59a56c966257db87f37c257a29be6bf854a21b2f5a5642c4edce79f26ebbd39418f0c023", @ANYRES16=r1, @ANYBLOB="000429bd7000fbdbdf25070000001c0005800800010065746800080001007564700008000100657468004000058008000100657468003400028008000400ff010000080004002d1e0000080003008000000008000200010400000800040004000000080003000000005a240004801300010062726f6164636173742d6c696e6b00000900010073797a3000000000"], 0x94}, 0x1, 0x0, 0x0, 0x4000}, 0x24040010)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

[ 1774.099627] 9pnet_virtio: no channels available for device ./file0
05:18:54 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x91bc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1774.115690] 9pnet_virtio: no channels available for device ./file0
05:18:54 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x76bf, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:54 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
umount2(&(0x7f00000000c0)='./file0\x00', 0x5)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:54 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x3, 0x80, 0x9, 0x0, 0x20, 0x6, 0x0, 0x9, 0x211, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0xfffffc00, 0x4, @perf_config_ext={0xffffffff, 0x7f00000000000}, 0x14541, 0x3a6, 0xffffff77, 0x1, 0x1, 0x6b4, 0x0, 0x0, 0x200, 0x0, 0x9}, 0x0, 0x2, r0, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:18:54 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x76b8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:18:54 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xaebb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1774.286309] 9pnet_virtio: no channels available for device ./file0
[ 1774.298124] 9pnet_virtio: no channels available for device ./file0
05:19:05 executing program 0:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, {0x4}}, './file0\x00'})
pipe2$9p(&(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}})

05:19:05 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x77b8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:19:05 executing program 1:
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f00000000c0)={0x2, 0x8000}, 0x4)
connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000040)={0x1f, 0x5, @none, 0x1e, 0x2}, 0xe)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:19:05 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x77bf, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:19:05 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000200), 0x84001, 0x0)
perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x73, 0x7, 0x9, 0x0, 0x0, 0x4, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f00000000c0), 0x10}, 0x0, 0xffffffff, 0x2, 0x6, 0x9, 0x7de, 0xfffa, 0x0, 0x5, 0x0, 0x3ce}, 0x0, 0x2, r2, 0xb)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:19:05 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0xfffffffffffffffd, 0x0, 0x0, 0x800000, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc0408, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffa, 0x4, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x6}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x2)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)

05:19:05 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xafbb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:19:05 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x92bc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1785.530627] 9pnet_virtio: no channels available for device ./file0
[ 1785.536166] 9pnet_virtio: no channels available for device ./file0
05:19:05 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x20, 0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf80000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:19:05 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x78b8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:19:05 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xb0bb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:19:05 executing program 0:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
r3 = dup(r0)
getresuid(&(0x7f00000001c0), &(0x7f0000000200), &(0x7f0000000280)=<r4=>0x0)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x8, &(0x7f00000002c0)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@dfltuid={'dfltuid', 0x3d, 0xffffffffffffffff}}, {@access_any}, {@version_L}, {@dfltuid={'dfltuid', 0x3d, 0xee00}}, {@posixacl}, {@cache_loose}, {@msize={'msize', 0x3d, 0x3ff}}, {@noextend}, {@posixacl}], [{@euid_eq={'euid', 0x3d, r4}}, {@euid_gt={'euid>', 0xffffffffffffffff}}, {@obj_user={'obj_user', 0x3d, '*)@)-%-.,'}}, {@fsmagic={'fsmagic', 0x3d, 0x8}}, {@euid_eq={'euid', 0x3d, 0xee00}}]}})
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}})

05:19:05 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x93bc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:19:05 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x78bf, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:19:05 executing program 4:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
getdents(r0, &(0x7f0000000140)=""/4096, 0x1000)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

[ 1785.719023] 9pnet_virtio: no channels available for device ./file0
05:19:19 executing program 4:
ioctl$TCSETAW(0xffffffffffffffff, 0x5407, &(0x7f0000000040)={0x0, 0x6, 0x5, 0x0, 0x1a, "e7b136c3a248c39b"})
r0 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x400}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCL_GETSHIFTSTATE(0xffffffffffffffff, 0x541c, &(0x7f00000000c0)={0x6, 0x7f})
fstatfs(r0, &(0x7f0000000100)=""/36)

05:19:19 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="1500000065ffff050000003064208fe0c25044a4bf54489d53f6f3e5bc0e1f638080d9497b1fde0e32b7a970afa5fc45d77cb5afc832ddf17e4ee09e46319bd573d4ccffc3d59b5797faabdc4743c96870108f31d5"], 0x15)
ioctl$BTRFS_IOC_WAIT_SYNC(r2, 0x40089416, &(0x7f0000000040))
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:19:19 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x1, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x2, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:19:19 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
stat(&(0x7f0000000040)='./file0\x00', &(0x7f00000002c0))
write$P9_RVERSION(r1, &(0x7f0000000280)=ANY=[@ANYRES16=r2], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB="2c010000006f3d", @ANYRESHEX=r1, @ANYBLOB=',\x00'])

05:19:19 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x79b8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:19:19 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x94bc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:19:19 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x79bf, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:19:19 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xb1bb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:19:19 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f00000000c0)={0x15, 0x65, 0xffff, 0x81, 0x8, '9P2000.L'}, 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:19:19 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x7ab8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1799.367717] 9pnet_fd: Insufficient options for proto=fd
05:19:19 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:19:19 executing program 1:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000140)={0x3, 0x80, 0x7, 0x5, 0x0, 0x80, 0x0, 0x0, 0x84100, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x3, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8, 0x2, @perf_bp={&(0x7f0000000040), 0x8}, 0x3401, 0x80, 0x867, 0x1, 0x100, 0x0, 0x3, 0x0, 0xb0, 0x0, 0x4}, 0xffffffffffffffff, 0xc, r1, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
r2 = fsmount(0xffffffffffffffff, 0x0, 0x7a)
r3 = pidfd_getfd(0xffffffffffffffff, r0, 0x0)
perf_event_open$cgroup(&(0x7f00000001c0)={0x3, 0x80, 0x3, 0x2b, 0x80, 0x8, 0x0, 0x5, 0x100, 0x8, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, @perf_bp={&(0x7f00000000c0)}, 0x6a, 0x1ffc000000000, 0x80000001, 0x9, 0x6, 0x7, 0x5, 0x0, 0x7}, r2, 0x0, r3, 0x0)

[ 1799.394753] 9pnet_fd: Insufficient options for proto=fd
[ 1799.424267] 9pnet_virtio: no channels available for device ./file0
[ 1799.436722] 9pnet_virtio: no channels available for device ./file0
05:19:19 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x7abf, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:19:19 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x7bb8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:19:19 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xb2bb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:19:19 executing program 4:
r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r1, 0x40045431, &(0x7f0000000040))
mknodat$loop(r0, &(0x7f00000000c0)='./file0\x00', 0x20, 0x1)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f0000000040))
r3 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f00000000c0)=0x13)
ioctl$KDGKBMETA(r3, 0x4b62, &(0x7f0000000140))
ioctl$TIOCGPTPEER(r1, 0x5441, 0x0)
ioctl$BTRFS_IOC_SET_FEATURES(r1, 0x40309439, &(0x7f0000000040)={0x2, 0x0, 0xe})
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:19:19 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r2, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0xb}}, 0x41130000)
write$P9_RMKDIR(r2, &(0x7f0000000040)={0x14, 0x49, 0x2, {0x10, 0x0, 0x3}}, 0x14)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000280)=ANY=[@ANYBLOB="1500000065ffff050000003023ec1a32976b2497071e5302bae25e8e014c56538add608f2b121fc7b485f709212ef9cc9e1f8c577f0fabfc822ab165b030a9671785210c683e50de9e4ba49aaf8c48ace48f97db90eac64509ae0b97facd852c1c3d259ec32d40c544a95eefff9ef6552c67a7f8efe21b8bb3300a0164948407b697626a4885179a76c6495ccfcde03d2d681f15485356e0d91bc5e46b6ff562104e195f37048357d5655de71f107b66c35a45bf0dd59dec00dd7e1eca4507ed6241ac"], 0x15)
write$P9_RGETATTR(r1, &(0x7f0000000180)={0xa0, 0x19, 0x2, {0x80, {0x80, 0x0, 0x3}, 0x7, 0xffffffffffffffff, 0xee00, 0x3ff, 0x1, 0x2, 0x1, 0x3, 0x82, 0x401, 0xfffffffffffffaa6, 0x10000, 0x7c7e, 0x335, 0x7, 0x4, 0x5, 0x2}}, 0xa0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB="66647df5386a00", @ANYRESHEX=r1, @ANYBLOB="7a35523a292d3a62f930a3326557aa345d684049fc7a96a47f820c33eab75fa67e6683faa9650ee23bd5d903bff891fe6719e30b64b677457cf3cd91ae9c421693189159e62cc9ae90c90f500fd5ec41a35c7748f62024f53cecf5fd1dbcf1f441bacd8ca63eb312a60433b77a7d44929a88de2dd4c0361ced0b6f1df90004acf8c73cf8fbb0f0436cd24d7f96ac78ea6dc41bd62bd2e6ed6283249a9bc787578ec2b1e4c099515c4936cf6b3e03b1325a1a01e14fb4c060036cb4dd8bacc8789a7f2e2152d570dccdabfb79ec55f2203bcf380ef265"])

05:19:19 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x95bc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1799.552797] 9pnet_fd: Insufficient options for proto=fd
[ 1799.561012] 9pnet_virtio: no channels available for device ./file0
[ 1799.576500] 9pnet_fd: Insufficient options for proto=fd
[ 1799.597409] 9pnet_virtio: no channels available for device ./file0
05:19:32 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x7bbf, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:19:32 executing program 1:
ioctl$BTRFS_IOC_BALANCE_CTL(0xffffffffffffffff, 0x40049421, 0x2)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xcd40, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x8, 0x40, 0x7ff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r0, &(0x7f00000001c0)=ANY=[@ANYBLOB="1000000002000000000000eb141e75899def3ed3cae73794ff5b96c81ba0f4da83d6906c79f5053d5cf4e866b43d603f753a8f5d0bce8b583628ac75a7d5fcb538c69485ac83fa8821526464f8890b4b0649"], 0x41130000)
symlinkat(&(0x7f0000000040)='./file0\x00', r0, &(0x7f00000000c0)='./file0\x00')
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:19:32 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x96bc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:19:32 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$9p_fd(0x20000000, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r0, &(0x7f0000000280)=ANY=[@ANYBLOB="10000000020000000b000000c73d041fba3d6f379a001bd77aa000"/38], 0x41130000)
perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x6, 0x6, 0x1, 0x4, 0x0, 0x5, 0x10022, 0x2, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x2, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x8, 0x2, @perf_bp={&(0x7f0000000040), 0x4}, 0x14800, 0x7, 0xd4, 0x1, 0x1, 0x1, 0x5, 0x0, 0x9, 0x0, 0x200}, 0x0, 0x8, r0, 0x2)
r1 = socket$inet6(0xa, 0x4, 0x40)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r3 = syz_open_dev$char_usb(0xc, 0xb4, 0xfffffffffffffbff)
readv(r3, &(0x7f00000004c0)=[{&(0x7f00000001c0)=""/192, 0xc0}, {&(0x7f0000000500)=""/229, 0xe5}, {&(0x7f0000000380)=""/51, 0x33}, {&(0x7f00000003c0)=""/232, 0xe8}], 0x4)
ioctl$TIOCSPTLCK(r2, 0x40045431, &(0x7f0000000040))
ioctl$TIOCGPTPEER(r2, 0x5441, 0x0)
sendfile(r1, r2, &(0x7f00000000c0)=0x7fffffff, 0x0)

05:19:32 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x7cb8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:19:32 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xb3bb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:19:32 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [{@measure}, {@subj_type={'subj_type', 0x3d, 'trans=fd,'}}, {@fsuuid={'fsuuid', 0x3d, {[0x61, 0x32, 0x64, 0x39, 0x63, 0x61, 0x30, 0x38], 0x2d, [0x36, 0x63, 0xfc, 0x62], 0x2d, [0x30, 0x67, 0x37, 0x33], 0x2d, [0x31, 0x66, 0x39, 0x37], 0x2d, [0x35, 0x32, 0x34, 0x64, 0x31, 0x32, 0x35, 0x32]}}}, {@pcr={'pcr', 0x3d, 0xb}}, {@uid_lt={'uid<', 0xffffffffffffffff}}, {@rootcontext={'rootcontext', 0x3d, 'root'}}, {@rootcontext={'rootcontext', 0x3d, 'staff_u'}}, {@func={'func', 0x3d, 'MODULE_CHECK'}}]}})

05:19:32 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = syz_open_dev$vcsn(&(0x7f0000000200), 0x7, 0x8000)
setxattr$security_capability(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340), &(0x7f0000000380)=@v2={0x2000000, [{0x8, 0x8000}, {0x401, 0x9}]}, 0x14, 0x2)
perf_event_open(&(0x7f0000000280)={0x4, 0x80, 0x2, 0xb, 0x6, 0x4, 0x0, 0xa70, 0x88d00, 0x4, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x3, @perf_bp={&(0x7f00000000c0), 0x4}, 0x2000, 0x0, 0xffa4, 0x7, 0x2, 0x4, 0x4, 0x0, 0x7a0090b, 0x0, 0x2}, 0x0, 0x1, r3, 0x8)
perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0xb9, 0xfc, 0x8, 0xf4, 0x0, 0x7e, 0x3, 0x6, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0x80, 0x9}, 0x2000, 0x3d9f, 0x8, 0xc, 0xd6, 0x7fffffff, 0x1f, 0x0, 0x8, 0x0, 0x7}, 0x0, 0x2, r2, 0x2)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

[ 1812.137707] 9pnet_virtio: no channels available for device ./file0
[ 1812.140378] SELinux: security_context_str_to_sid (root) failed with errno=-22
[ 1812.146716] SELinux: security_context_str_to_sid (root) failed with errno=-22
05:19:32 executing program 0:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x109840, 0x0)
open_by_handle_at(r2, &(0x7f0000000140)=@ceph_nfs_confh={0x10, 0x2, {0x1000000008, 0x1fc}}, 0x41130000)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}}, 0x0, 0x0, r2, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:19:32 executing program 7:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x7cbf, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:19:32 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x7db8, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:19:32 executing program 6:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0xb4bb, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:19:32 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x3, 0xfffffffffffffffa}, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x1000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="1500000065ffff0500000030"], 0x15)
r3 = fcntl$getown(r2, 0x9)
perf_event_open(&(0x7f0000000180)={0x4, 0x80, 0x56, 0x3f, 0x6, 0x8, 0x0, 0x7, 0x8000, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x9, 0x2, @perf_bp={&(0x7f00000000c0), 0xd}, 0x0, 0x6, 0x5084, 0x9, 0x2, 0xffffff53, 0x3, 0x0, 0xe6d, 0x0, 0x400}, r3, 0x10, 0xffffffffffffffff, 0xd)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})
write$P9_RUNLINKAT(r1, &(0x7f0000000200)={0x7, 0x4d, 0x2}, 0x7)

05:19:32 executing program 1:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)

05:19:32 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
mount$9p_fd(0x97bc, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

05:19:32 executing program 0:
r0 = syz_open_pts(0xffffffffffffffff, 0x90000)
ioctl$KDGETMODE(r0, 0x4b3b, &(0x7f00000000c0))
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
perf_event_open(&(0x7f0000001840)={0x2, 0x80, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], 0x15)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r3=>r1, {0x0, 0xee01}}, './file0\x00'})
perf_event_open(&(0x7f0000000180)={0x4, 0x80, 0x1, 0x80, 0x5, 0x8b, 0x0, 0x8, 0x20100, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1f, 0x2, @perf_config_ext={0x100000001, 0x7fff}, 0x189, 0x7, 0x100, 0x7, 0x1, 0x132, 0xffff, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x7, r3, 0x9)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}})

[ 1812.383218] 9pnet_virtio: no channels available for device ./file0

VM DIAGNOSIS:
05:24:25  Registers:
info registers vcpu 0
RAX=0000000000919e75 RBX=0000000000000000 RCX=ffffffff844e28be RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff81288115 RBP=dffffc0000000000 RSP=ffffffff85407e10
R8 =0000000000000001 R9 =ffffed100d9c69f8 R10=ffff88806ce34fc3 R11=0000000000000001
R12=ffffffff85d38210 R13=1ffffffff0a80fc7 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff844e384f RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f3645208010 CR3=0000000008d8e000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000006000000040000000000000000
XMM02=746e696820636578650a0a0100010101 XMM03=651100736465657320636578650a0073
XMM04=737472617473657220726f7475636578 XMM05=636578650a006e656720636578650800
XMM06=69727420636578650b006873616d7320 XMM07=696d696e696d20636578650d00656761
XMM08=65657320636578650a0073746e696820 XMM09=73657220726f74756365786511007364
XMM10=006e6567206365786508007374726174 XMM11=6578650b006873616d7320636578650a
XMM12=6d20636578650d006567616972742063 XMM13=6f7420636578650a00657a696d696e69
XMM14=0e007a7a7566206365786509006c6174 XMM15=00006574616469646e61632063657865
info registers vcpu 1
RAX=0000000000946281 RBX=0000000000000001 RCX=ffffffff844e28be RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff81288115 RBP=dffffc0000000000 RSP=ffff888008e2fe70
R8 =0000000000000001 R9 =ffffed100d9e69f8 R10=ffff88806cf34fc3 R11=0000000000000001
R12=ffffffff85d38210 R13=1ffff110011c5fd3 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff844e384f RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000055840ca3d618 CR3=0000000008d8e000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000
XMM02=00000000000000004187c30380000000 XMM03=0000ff00000000000000000000000000
XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962
XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000