_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{0x21, 0xf}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:15:23 executing program 2:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xb)

23:15:23 executing program 5:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xb)

[ 2037.029013] loop4: detected capacity change from 0 to 256
[ 2037.040221] loop2: detected capacity change from 0 to 256
[ 2037.058943] FAULT_INJECTION: forcing a failure.
[ 2037.058943] name failslab, interval 1, probability 0, space 0, times 0
[ 2037.060726] CPU: 0 PID: 10806 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2037.061865] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2037.063455] Call Trace:
[ 2037.063814]  <TASK>
[ 2037.064148]  dump_stack_lvl+0x8b/0xb3
[ 2037.064177] hrtimer: interrupt took 2560703 ns
[ 2037.064692]  should_fail.cold+0x5/0xa
[ 2037.064726]  ? alloc_workqueue_attrs+0x38/0x80
[ 2037.067273]  should_failslab+0x5/0x10
[ 2037.067805]  kmem_cache_alloc_trace+0x55/0x3c0
[ 2037.068490]  alloc_workqueue_attrs+0x38/0x80
[ 2037.069110]  alloc_workqueue+0x939/0xeb0
[ 2037.069680]  ? do_raw_spin_unlock+0x4f/0x210
[ 2037.070302]  ? _raw_spin_unlock+0x24/0x40
[ 2037.070890]  ? bd_prepare_to_claim+0x164/0x300
[ 2037.071585]  ? workqueue_sysfs_register+0x3e0/0x3e0
[ 2037.072349]  ? __fget_files+0x28d/0x470
[ 2037.072908]  ? loop_configure+0x62b/0x1950
[ 2037.073512]  loop_configure+0x6ec/0x1950
[ 2037.074086]  ? putname+0xfe/0x140
[ 2037.074586]  lo_ioctl+0x7c5/0x18b0
[ 2037.075083]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2037.075804]  ? loop_set_status_old+0x1b0/0x1b0
[ 2037.076456]  ? avc_ss_reset+0x180/0x180
[ 2037.076746] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2037.076967]  ? __lock_acquire+0xbac/0x6120
[ 2037.078640]  ? selinux_inode_getsecctx+0x90/0x90
[ 2037.079258]  ? loop_set_status_old+0x1b0/0x1b0
[ 2037.079837]  blkdev_ioctl+0x362/0x7f0
[ 2037.080375]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2037.081029]  ? __x64_sys_ioctl+0x97/0x210
[ 2037.081609]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2037.082372]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2037.083039]  __x64_sys_ioctl+0x196/0x210
[ 2037.083621]  do_syscall_64+0x3b/0x90
[ 2037.084201]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2037.084943] RIP: 0033:0x7f9496e2f8d7
[ 2037.085466] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2037.087998] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2037.089065] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2037.090051] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2037.091035] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2037.092016] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2037.093063] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2037.094098]  </TASK>
[ 2037.117889] FAT-fs (loop2): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:15:23 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x75000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:15:23 executing program 5:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x74800, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:15:23 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r1=>0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x4, 0x10010, r2, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
openat(r2, &(0x7f0000000240)='./file1\x00', 0x0, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r6, 0x0, 0x0}, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000180)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x2, 0x0, r2, &(0x7f0000000040)={0x1000000c}, r6}, 0x1)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r7, r8, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r9, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, r8, &(0x7f0000000280)=@IORING_OP_WRITE_FIXED={0x5, 0x4, 0x2007, @fd_index=0x2, 0xffff, 0x10000, 0x75d, 0x5, 0x0, {0x3}}, 0xb7fa)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r2, 0xffffffffffffffff, r0], 0x3)

23:15:23 executing program 0:
r0 = memfd_secret(0x0)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000240)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r1=>r0, @ANYBLOB="0000000000005be67f5966696c653100"])
r2 = syz_io_uring_setup(0x5c45, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, r1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r3 = openat(r1, &(0x7f0000000340)='./file1\x00', 0x129042, 0x138)
io_uring_register$IORING_REGISTER_FILES(r2, 0x2, &(0x7f0000000000)=[r3, 0xffffffffffffffff, r2], 0x3)
r4 = syz_open_dev$vcsa(&(0x7f0000000040), 0x1f, 0x100)
r5 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r5, 0x6c64, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r5, 0x7, &(0x7f0000000280), 0x1)
r6 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r7=>0x0)
io_uring_enter(r6, 0x6c64, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_FILES(r2, 0x2, &(0x7f0000000200)=[r4, r6, r4, 0xffffffffffffffff, 0xffffffffffffffff], 0x5)
recvmsg$unix(r4, &(0x7f0000001a00)={&(0x7f00000016c0), 0x6e, &(0x7f0000001780)=[{&(0x7f0000001740)}], 0x1, &(0x7f00000017c0)=[@rights={{0x1c, 0x1, 0x1, [<r8=>0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x20}, 0x40000041)
getsockopt$inet6_IPV6_XFRM_POLICY(r8, 0x29, 0x23, &(0x7f0000001a40)={{{@in=@remote, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r9=>0x0}}, {{@in=@empty}, 0x0, @in6=@ipv4={""/10, ""/2, @remote}}}, &(0x7f00000018c0)=0x24)
syz_mount_image$vfat(&(0x7f00000003c0), &(0x7f0000000400)='./file1\x00', 0x0, 0x4, &(0x7f0000001640)=[{&(0x7f0000000440)="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", 0x1000, 0x20}, {&(0x7f0000001440)="6d451a2c8443af3d0184d8f381f333914de42476fc75da0628c909ba95dc74f6d3f3e280355dc6435a771948f98459aece755819e57238fb4b9e6e105fff837680695494b09ca3c16c6d70", 0x4b, 0x1ff}, {&(0x7f00000014c0)="bfc6f1f5f1304b342a14c250f2f166bb624584525a2374622a46e0d7cb0a2a5a4cd2f90fcfde8fd18062072239a5002c81c2626e32e09132c01437474db8e72748d4d2ccab33523da42557f2e5f7fb151f1fc015a17fbdd9622e5be472a975f7577cce7de7264d12c2483875848fd3dff17b2097d7b5cd38536b19de5f067fa3767436d04826c59b3f83cbca3e645081bf43033456f6ec9531bcd301239ad66c2d697858b1cd8c34f9f16851cce452bbd0d38c44e037d2a75b15e212c9fd", 0xbe, 0x73}, {&(0x7f0000001580)="b6e3b9796019604a6094ca867e5f0d77d4602f4f51d2285ca91e59bc114c2a9744781bc61fbd151a3962f351706cb19bb2273cb9febb41db90d14f423157381c2715c681e1325332ca6fa9424d57f842d972ef033585ffaea820f1dee57c628ecaf04c92c4d216c138ad750b7431065b55ea459b6e07450f459d1d5261a370a364c835110aaf925783cf747e4b0dd3094566fb02b3844d6abb4a110fa7a27a2aee7e94923235cbe7b3c1777a63e781f0eed1", 0xb2, 0x2}], 0x10000, &(0x7f0000001800)={[{@shortname_win95}, {@numtail}, {@utf8no}, {@iocharset={'iocharset', 0x3d, 'macgreek'}}, {@shortname_win95}, {@utf8no}], [{@audit}, {@measure}, {@subj_type={'subj_type', 0x3d, '\x00'}}, {@subj_user={'subj_user', 0x3d, '\x00'}}, {@fowner_lt={'fowner<', r9}}, {@seclabel}]})
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000200)={0x4849c1}, &(0x7f0000000180)='./file0\x00', 0x18}, 0x0)
syz_io_uring_submit(0x0, r7, &(0x7f0000000180)=@IORING_OP_POLL_ADD={0x6, 0x1, 0x0, @fd, 0x0, 0x0, 0x0, {0x109}}, 0xa8f)
io_uring_enter(0xffffffffffffffff, 0x6c64, 0x0, 0x0, 0x0, 0x0)
r10 = syz_open_pts(r0, 0x82000)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r4, 0xc018937a, &(0x7f0000000380)=ANY=[@ANYBLOB="010000dd0000e5ff18000000", @ANYRES32=r10, @ANYBLOB='\b\x00\x00\x00\x00\x00\x00\x00./file1\x00'])

23:15:23 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{0x21, 0xc0}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:15:23 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 32)

23:15:23 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x75800, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2037.389776] loop0: detected capacity change from 0 to 8
23:15:23 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xd)

[ 2037.396731] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2037.411715] FAULT_INJECTION: forcing a failure.
[ 2037.411715] name failslab, interval 1, probability 0, space 0, times 0
[ 2037.414866] CPU: 0 PID: 10832 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2037.417111] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2037.420111] Call Trace:
[ 2037.420790]  <TASK>
[ 2037.421376]  dump_stack_lvl+0x8b/0xb3
[ 2037.422395]  should_fail.cold+0x5/0xa
[ 2037.423405]  ? create_object.isra.0+0x3a/0xa20
[ 2037.424633]  should_failslab+0x5/0x10
[ 2037.425628]  kmem_cache_alloc+0x5b/0x480
[ 2037.426708]  create_object.isra.0+0x3a/0xa20
[ 2037.427872]  ? kasan_unpoison+0x23/0x50
[ 2037.428948]  kmem_cache_alloc_trace+0x22e/0x3c0
[ 2037.430185]  alloc_workqueue_attrs+0x38/0x80
[ 2037.431353]  alloc_workqueue+0x939/0xeb0
[ 2037.432448]  ? do_raw_spin_unlock+0x4f/0x210
[ 2037.433610]  ? _raw_spin_unlock+0x24/0x40
[ 2037.434723]  ? bd_prepare_to_claim+0x164/0x300
[ 2037.435949]  ? workqueue_sysfs_register+0x3e0/0x3e0
[ 2037.437301]  ? __fget_files+0x28d/0x470
[ 2037.438370]  ? loop_configure+0x62b/0x1950
[ 2037.439498]  loop_configure+0x6ec/0x1950
[ 2037.440602]  ? putname+0xfe/0x140
[ 2037.441535]  lo_ioctl+0x7c5/0x18b0
[ 2037.442466]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2037.443771]  ? loop_set_status_old+0x1b0/0x1b0
[ 2037.444999]  ? avc_ss_reset+0x180/0x180
[ 2037.446055]  ? __lock_acquire+0xbac/0x6120
[ 2037.447248]  ? selinux_inode_getsecctx+0x90/0x90
[ 2037.448533]  ? loop_set_status_old+0x1b0/0x1b0
[ 2037.449742]  blkdev_ioctl+0x362/0x7f0
[ 2037.450746]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2037.451985]  ? __x64_sys_ioctl+0x97/0x210
[ 2037.453095]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2037.454548]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2037.455805]  __x64_sys_ioctl+0x196/0x210
[ 2037.456891]  do_syscall_64+0x3b/0x90
[ 2037.458036]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2037.459390] RIP: 0033:0x7f9496e2f8d7
[ 2037.460360] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2037.465019] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2037.466923] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2037.468731] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2037.470511] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2037.472447] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2037.474262] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2037.476139]  </TASK>
[ 2037.477163] FAT-fs (loop2): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2037.485719] FAT-fs (loop0): Unrecognized mount option "audit" or missing value
23:15:23 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x404842, 0x0)
truncate(&(0x7f0000000040)='./file1\x00', 0x8000)
r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
pwrite64(r0, &(0x7f0000000200)="785538b608", 0x5, 0xffc)
r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
ioctl$HIDIOCGRAWINFO(r0, 0x80084803, &(0x7f0000000140)=""/170)
pwrite64(r2, &(0x7f0000000400)="c0", 0x1, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000000)={0x0, r1})

23:15:23 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x76000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2037.548751] loop4: detected capacity change from 0 to 256
23:15:23 executing program 3:
openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x20000, 0x2)
pwritev(0xffffffffffffffff, &(0x7f0000000640), 0x0, 0xd8d9, 0x0)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x5)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
sendto$unix(r0, &(0x7f0000000280)="6f728f960f9baf824ba9d8f1942bb58642a507ecc0059f271fbdafccaf3c5be83a8ec52ed12ec84abb513bf5b2d65d744149f264964184857dd2283c01e37b1c010c06967477098f1af9cce55bd8852bb2e8da8eb79bf7e03283033ed1e8b25baddfc376831a1ec3e9", 0x69, 0x40010, &(0x7f0000000300)=@file={0x1, './file1\x00'}, 0x6e)
r1 = timerfd_create(0x3, 0x80000)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r4, 0x0, 0x0}, 0x0)
timerfd_gettime(r4, &(0x7f0000000380))
pwritev(r1, &(0x7f0000000180)=[{&(0x7f0000000040)="8b3ec52381a7ec4af396beb95bad02dafa18d390c0db6881678188941d2729c42df1afef4a847d218ece2f1d9ae1b340ef6f054c6fca85de6be63eac80", 0x3d}], 0x1, 0xaa, 0xfffffffc)
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file1/file0\x00', 0x40200, 0x40)
sendfile(r0, r0, 0x0, 0xb093)
r5 = syz_io_uring_setup(0xe3d, &(0x7f0000000080)={0x0, 0x2, 0x20, 0x0, 0x212}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000140), &(0x7f0000000200))
io_uring_register$IORING_REGISTER_FILES(r5, 0x2, &(0x7f0000000000)=[0xffffffffffffffff, 0xffffffffffffffff, r5], 0x3)

23:15:24 executing program 2:
r0 = syz_mount_image$iso9660(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
setresuid(0x0, r1, 0x0)
stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r5, 0x0, 0x0}, 0x0)
pipe(&(0x7f0000000380)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
move_mount(r5, &(0x7f0000000340)='./file0\x00', r6, &(0x7f00000003c0)='./file0\x00', 0x2)
setresuid(0x0, r2, 0x0)
stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000000))
statx(r0, &(0x7f0000000040)='./file0\x00', 0x4000, 0x10, &(0x7f0000000140))
getresuid(&(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000300))
r8 = getuid()
r9 = getuid()
setreuid(r9, r8)

[ 2037.594041] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2037.683175] loop6: detected capacity change from 0 to 512
[ 2037.693895] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2037.726744] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[ 2037.734271] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:15:38 executing program 0:
capset(&(0x7f0000000a80)={0x19980330}, &(0x7f0000000580))
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$GIO_UNIMAP(r0, 0x4b66, &(0x7f0000000140)={0xfffffffffffffedd, 0x0})

23:15:38 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x7d79}, &(0x7f0000ff9000/0x1000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f0000000040)={0x2, 0x0, @empty}, 0x7)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r2, 0xffffffffffffffff, r0], 0x3)
r3 = syz_open_dev$vcsn(&(0x7f0000000180), 0x8, 0x541000)
openat$incfs(r3, &(0x7f00000001c0)='.log\x00', 0x256cc1, 0xc3)

23:15:38 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 33)

23:15:38 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:15:38 executing program 5:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r1=>0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x4, 0x10010, r2, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
openat(r2, &(0x7f0000000240)='./file1\x00', 0x0, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r6, 0x0, 0x0}, 0x0)
syz_io_uring_submit(r3, r1, &(0x7f0000000180)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x2, 0x0, r2, &(0x7f0000000040)={0x1000000c}, r6}, 0x1)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r7, r8, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r9, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, r8, &(0x7f0000000280)=@IORING_OP_WRITE_FIXED={0x5, 0x4, 0x2007, @fd_index=0x2, 0xffff, 0x10000, 0x75d, 0x5, 0x0, {0x3}}, 0xb7fa)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r2, 0xffffffffffffffff, r0], 0x3)

23:15:38 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x76800, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:15:38 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r2 = signalfd(r1, &(0x7f0000000200)={[0xffffffffffffff80]}, 0x8)
clone3(&(0x7f0000000240)={0x1000c1400, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x6}, &(0x7f0000000100)=""/134, 0x86, &(0x7f00000006c0)=""/4096, &(0x7f00000001c0)=[r0, r0], 0x2, {r2}}, 0x58)

23:15:38 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x10)

[ 2052.109664] loop4: detected capacity change from 0 to 256
23:15:38 executing program 0:
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r0, r1, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r2, 0x0, 0x0}, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0xaaaaac2, &(0x7f0000000180)=[{&(0x7f00000003c0)="601c6d6b646f73668925430008012000040000fc00fc0000200040cba36cca6ac5830003001759879421e4f7923f797ef5e0868199c8e08a936e6a93ff6e913274a9da70654d08ff6d436f399c4d18637af4807fb4625f46f27399ebe7e8ea5438bb3be64f44b0bf", 0x25, 0x80}, {0x0, 0x0, 0x10000}, {&(0x7f0000000080)="f0d5516c119c565247956aa505959840df7be25b0d3ebb6fbbafef72edc849bd2414e790b7a43624b9fbbec503c2e80c0a552160be96bda5aeecd35fe68e90341ed43293abd753eb33fd9e22", 0x4c, 0x8}, {&(0x7f0000000240)="be7404c2d72220b1ae149bd56a39f66e5e24758d82e207db174ca2bfb82d40d49d2140fc77985b3946d99ede97751d76be8f4cb51163a5802bd96ad6c7fa5105e69538289c830904469bc507b8ef64d3f509661d1e69f507feb40836a0ee5ababc2fcc97f2e4e212a067b0d7d0aa9de8a666614b8d0370a965595136c7be9a042467a6e4c7e262d72d2a4f60ef1c73956a5af1ede2b7ac4c786e62d02b1308858a162761d97be8b8f6cc7b1e642a86b465d4d052c1a310bd724870ba544040e091b626b553911a286b82497214c23ab08d112238b2f6c95102f75d45e62ae541662576681adb303e043537c20bbc2ff0c520c17b52b9", 0xf6, 0xfffffffffffffff8}], 0x0, &(0x7f0000000340)=ANY=[@ANYRES64=0x0, @ANYBLOB="1b", @ANYRESOCT=r0])
chdir(&(0x7f0000000440)='./file0\x00')
syz_mount_image$ext4(0x0, &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x4000, 0x82)
rmdir(&(0x7f0000000000)='./file0\x00')

[ 2052.154805] FAULT_INJECTION: forcing a failure.
[ 2052.154805] name failslab, interval 1, probability 0, space 0, times 0
[ 2052.155984] CPU: 1 PID: 10882 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2052.156787] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2052.157948] Call Trace:
[ 2052.158207]  <TASK>
[ 2052.158429]  dump_stack_lvl+0x8b/0xb3
[ 2052.158813]  should_fail.cold+0x5/0xa
[ 2052.159189]  should_failslab+0x5/0x10
[ 2052.159562]  __kmalloc_track_caller+0x79/0x420
[ 2052.160009]  ? kasprintf+0xbb/0xf0
[ 2052.160371]  kvasprintf+0xb5/0x150
[ 2052.160721]  ? bust_spinlocks+0xe0/0xe0
[ 2052.161113]  ? preempt_count_add+0x74/0x140
[ 2052.161535]  ? __is_module_percpu_address+0x237/0x300
[ 2052.162046]  kasprintf+0xbb/0xf0
[ 2052.162380]  ? kvasprintf_const+0x190/0x190
[ 2052.162805]  ? save_trace+0xd00/0xd00
[ 2052.163176]  ? lockdep_init_map_type+0x2c3/0x7a0
[ 2052.163641]  alloc_workqueue+0x408/0xeb0
[ 2052.164038]  ? do_raw_spin_unlock+0x4f/0x210
[ 2052.164482]  ? _raw_spin_unlock+0x24/0x40
[ 2052.164893]  ? workqueue_sysfs_register+0x3e0/0x3e0
[ 2052.165385]  ? __fget_files+0x28d/0x470
[ 2052.165775]  ? loop_configure+0x62b/0x1950
[ 2052.166191]  loop_configure+0x6ec/0x1950
[ 2052.166590]  ? putname+0xfe/0x140
[ 2052.166938]  lo_ioctl+0x7c5/0x18b0
[ 2052.167285]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2052.167754]  ? loop_set_status_old+0x1b0/0x1b0
[ 2052.168206]  ? avc_ss_reset+0x180/0x180
[ 2052.168604]  ? __lock_acquire+0xbac/0x6120
[ 2052.169048]  ? selinux_inode_getsecctx+0x90/0x90
[ 2052.169516]  ? loop_set_status_old+0x1b0/0x1b0
[ 2052.169959]  blkdev_ioctl+0x362/0x7f0
[ 2052.170327]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2052.170782]  ? __x64_sys_ioctl+0x97/0x210
[ 2052.171186]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2052.171723]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2052.172182]  __x64_sys_ioctl+0x196/0x210
[ 2052.172594]  do_syscall_64+0x3b/0x90
[ 2052.172962]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2052.173459] RIP: 0033:0x7f9496e2f8d7
[ 2052.173820] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2052.175593] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2052.176321] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2052.177013] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2052.177693] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2052.178373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2052.179053] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2052.179748]  </TASK>
23:15:38 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x77000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:15:38 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{0x21, 0x0, 0x2}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:15:38 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r4, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x602b, &(0x7f0000000180)={0x0, 0x2471, 0x1, 0x3, 0x102, 0x0, r4}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000040), &(0x7f0000000200)=<r5=>0x0)
r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4, 0x4000010, r1, 0x0)
syz_io_uring_submit(r6, r5, &(0x7f00000009c0)=@IORING_OP_SENDMSG={0x9, 0x3, 0x0, r4, 0x0, &(0x7f0000000980)={&(0x7f0000000240)=@ax25={{0x3, @null, 0x3}, [@null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x80, &(0x7f0000000640)=[{&(0x7f0000000340)="f5f52934a49b3de3932b05f41bf04f6b258ec2f7951f9f9e8e709cdecc72f54094ad7138f4a91363f55eb65472d886ec51008294633492e4ab23c40c820d797bd2fe6bec41e63565016c105581b1461a763bf3309f309f992993bb06fb8b6b64e845f893687838a59be8f097f6d29817a0ca2884b99e51a891ad5552189a24d37b162c0859cec5707b078c6921bb1e4b29f057c3", 0x94}, {&(0x7f0000000400)="4fd3890ce30296e54b74e400fe67a4fc48798d766b859c2f29b397734d0253a74bfcb0e7845326156edafa4bf239734e29c463b295ae8fc1d850bb22efbacfcf0bc5bb250aa0f3e83b40ddc1f9f293d2a1e1e7bd4d542e1e9699dfb46caaa8ed6e2c7d1e6e7e05f1678565e04bef72bca7658dcfe9b6a14e9688f97e45f22000797ec7cb7d9395696535e6f66589eabd25350272853768ecc075c9e28906ef225a6c56749c398ec1296118fb821c16b7139b4d2a3db6368d946661c0d225723abbfb767386556a9445732f7291f04c9deb579aa2315d", 0xd6}, {&(0x7f0000000500)="7e1485d47a94ff7279d6f8c94ce370216964fda4d7bf8765883479de81c76a3cae34f19763eb082885fef237f2207bf3c69b69eac784a888be8f36973f2c4fbdc3a229ba9772891ca41e1206e6e5068dd172fc875d35b2cacfd852ede4c1f4fe89af165454887081e850e8a0fc06041ea450e47d0992c1b6", 0x78}, {&(0x7f0000000580)="26300f4089d1ee91cae2efe1141ea895a32acadf9dec7e79a4f3d11df7cf135e7ceac9ac1389ebfe8b7f65721c053880bcdf67146024e7cc8397ab8015038dc5b56d9f8f973ba3964218fe383218ed270954584d8044cb85793abdc40d0d48329d8e060cef1c22e8c316d9bff8694cc7d481c6cb83899095656d6356cee6006a8e77a4d6bad4362707b08fea2b5bf3786fa353a06526f04d7a7d8df7f4d0302b6aa2d3cfc122", 0xa6}], 0x4, &(0x7f0000000680)=[{0x110, 0x108, 0x1, "423d3a1920327d98500995955374e8383af12eb9cb081a671dd21c79953122ab903703bc359233d018240495b508d87efca657f9f7b526afdd4377242a6a8708947015b6b86f2319f9eb8875ba095b1a512d0efb1487d4e0e19540799ba9bd155ab56dd2edf86fdf385ba195131a3f5af393355fcb7bf79a1c1aa8b798b2a30038870dd5de38ffcd8e367fb8ce2f4ca140651b46d6875366b746d1289765a856dbcf74fc9d88d6ea9f1a1ad53b7b3772efe65ff9372f22282bf18b2cb6b1a2806e9255fc6dd735d280248639357e76cf5d537d08d588856edcd496b27efd23e00a0ba0ca9bb1f16eb41f2dce79b0d79013162e087953699fe7644b"}, {0x90, 0x104, 0x3720, "3e7fb28bf8337a8fa99ffbec46a5b8534b7f081ca8df7d7eae21a14bbb54b852746cbeabf392f3230f4c8890af26324292fbfc5f02eb49a0660b559ecf74ad146677f103ac32f24442a4064d1b5a2b427ee97bacac2ad70d18c877e6dc0b7d699f247710dad50cd21e57978c846bf8fbdd7ab39bfa0045e7c50631e728b1"}, {0x110, 0x110, 0x2, "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"}, {0x30, 0x111, 0xfb, "652c8508081477ef934c4cba5bd8ec4171b4e5877dcde0cb8798c0faaa"}], 0x2e0}, 0x0, 0x20000000}, 0x4)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)

[ 2052.293164] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2052.302419] loop6: detected capacity change from 0 to 512
[ 2052.324116] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
23:15:38 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x77800, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2052.359385] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
23:15:51 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x8}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x842, 0x0)
ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f0000000040)={0x6b0d, 0x22, 0xf89, 0x3, 0x4})
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)

23:15:51 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r2 = signalfd(r1, &(0x7f0000000200)={[0xffffffffffffff80]}, 0x8)
clone3(&(0x7f0000000240)={0x1000c1400, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x6}, &(0x7f0000000100)=""/134, 0x86, &(0x7f00000006c0)=""/4096, &(0x7f00000001c0)=[r0, r0], 0x2, {r2}}, 0x58)

23:15:51 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x18)

23:15:51 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f0000000240), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
sync_file_range(r0, 0xfffffffffffff104, 0xfffffffffffffffb, 0x2)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x8, 0x11, r0, 0x0)
syz_io_uring_submit(r4, 0x0, &(0x7f00000000c0)=@IORING_OP_WRITE={0x17, 0x3, 0x4000, @fd_index=0x6, 0x81, &(0x7f0000000340)="ddea995408b2b165a43ff597b3edc5dec7afd5dae7b3d365312294a6580b0246b6ce84a2bf3510db7b16f079ad0d73f9565fdb82fc12091b158496747b1c583f4c3149b326c5cd64c574ef168678ba51ab16187bdad2f70c858e555866b101136eff91d4aeeb0ac257490ad5e167fe1b6a9341757e60ca7560aa189b762b2d16e12c36c8568ee3a5e10e095324cf9a4c25f55688ab546966ad63fd1b633469543c24a93b91953814d68e7bbf34805716d30b8e640211d19dd049c2d1285c69086f1f2d91e9c6444e2a9f556fcd132575bed00ce9ce", 0xd5, 0x10, 0x1}, 0x6)
r5 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r6, r7, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r8, 0x0, 0x0}, 0x0)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r8, 0x6, &(0x7f0000000540)={0x9, 0x0, &(0x7f0000000500)=[r3, r0, r5, 0xffffffffffffffff, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r8]}, 0x9)
r9 = syz_io_uring_setup(0x1, &(0x7f0000000000), &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000080)=<r10=>0x0, &(0x7f0000000140)=<r11=>0x0)
r12 = io_uring_register$IORING_REGISTER_PERSONALITY(r9, 0x9, 0x0, 0x0)
syz_io_uring_submit(r10, r11, &(0x7f00000001c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000200)={0x4849c1}, &(0x7f0000000180)='./file0\x00', 0x18, 0x0, 0x0, {0x0, r12}}, 0x0)
syz_io_uring_submit(r1, r7, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r12}}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000004c0)=@IORING_OP_FADVISE, 0x3)
syz_io_uring_setup(0x49f0, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, 0x1e7}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000680), &(0x7f00000006c0))

23:15:51 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 34)

23:15:51 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x78000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:15:51 executing program 0:
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r0, r1, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r2, 0x0, 0x0}, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0xaaaaac2, &(0x7f0000000180)=[{&(0x7f00000003c0)="601c6d6b646f73668925430008012000040000fc00fc0000200040cba36cca6ac5830003001759879421e4f7923f797ef5e0868199c8e08a936e6a93ff6e913274a9da70654d08ff6d436f399c4d18637af4807fb4625f46f27399ebe7e8ea5438bb3be64f44b0bf", 0x25, 0x80}, {0x0, 0x0, 0x10000}, {&(0x7f0000000080)="f0d5516c119c565247956aa505959840df7be25b0d3ebb6fbbafef72edc849bd2414e790b7a43624b9fbbec503c2e80c0a552160be96bda5aeecd35fe68e90341ed43293abd753eb33fd9e22", 0x4c, 0x8}, {&(0x7f0000000240)="be7404c2d72220b1ae149bd56a39f66e5e24758d82e207db174ca2bfb82d40d49d2140fc77985b3946d99ede97751d76be8f4cb51163a5802bd96ad6c7fa5105e69538289c830904469bc507b8ef64d3f509661d1e69f507feb40836a0ee5ababc2fcc97f2e4e212a067b0d7d0aa9de8a666614b8d0370a965595136c7be9a042467a6e4c7e262d72d2a4f60ef1c73956a5af1ede2b7ac4c786e62d02b1308858a162761d97be8b8f6cc7b1e642a86b465d4d052c1a310bd724870ba544040e091b626b553911a286b82497214c23ab08d112238b2f6c95102f75d45e62ae541662576681adb303e043537c20bbc2ff0c520c17b52b9", 0xf6, 0xfffffffffffffff8}], 0x0, &(0x7f0000000340)=ANY=[@ANYRES64=0x0, @ANYBLOB="1b", @ANYRESOCT=r0])
chdir(&(0x7f0000000440)='./file0\x00')
syz_mount_image$ext4(0x0, &(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x4000, 0x82)
rmdir(&(0x7f0000000000)='./file0\x00')

23:15:51 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{0x21, 0x0, 0x3}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

[ 2064.908185] loop4: detected capacity change from 0 to 256
[ 2064.923767] FAULT_INJECTION: forcing a failure.
[ 2064.923767] name failslab, interval 1, probability 0, space 0, times 0
[ 2064.924938] CPU: 1 PID: 10932 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2064.925793] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2064.926972] Call Trace:
[ 2064.927256]  <TASK>
[ 2064.927499]  dump_stack_lvl+0x8b/0xb3
[ 2064.927885]  should_fail.cold+0x5/0xa
[ 2064.928275]  ? create_object.isra.0+0x3a/0xa20
[ 2064.928751]  should_failslab+0x5/0x10
[ 2064.929124]  kmem_cache_alloc+0x5b/0x480
[ 2064.929525]  create_object.isra.0+0x3a/0xa20
[ 2064.929957]  ? kasan_unpoison+0x23/0x50
[ 2064.930351]  __kmalloc_track_caller+0x25e/0x420
[ 2064.930846]  ? kasprintf+0xbb/0xf0
[ 2064.931246]  kvasprintf+0xb5/0x150
[ 2064.931607]  ? bust_spinlocks+0xe0/0xe0
[ 2064.932074]  ? preempt_count_add+0x74/0x140
[ 2064.932505]  ? __is_module_percpu_address+0x237/0x300
[ 2064.933057]  kasprintf+0xbb/0xf0
[ 2064.933467]  ? kvasprintf_const+0x190/0x190
[ 2064.933928]  ? save_trace+0xd00/0xd00
[ 2064.934327]  ? lockdep_init_map_type+0x2c3/0x7a0
[ 2064.934870]  alloc_workqueue+0x408/0xeb0
[ 2064.935285]  ? do_raw_spin_unlock+0x4f/0x210
[ 2064.935795]  ? _raw_spin_unlock+0x24/0x40
[ 2064.936223]  ? workqueue_sysfs_register+0x3e0/0x3e0
[ 2064.936824]  ? __fget_files+0x28d/0x470
[ 2064.937242]  ? loop_configure+0x62b/0x1950
[ 2064.937747]  loop_configure+0x6ec/0x1950
[ 2064.938234]  ? putname+0xfe/0x140
[ 2064.938641]  lo_ioctl+0x7c5/0x18b0
[ 2064.939027]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2064.939616]  ? loop_set_status_old+0x1b0/0x1b0
[ 2064.940133]  ? avc_ss_reset+0x180/0x180
[ 2064.940648]  ? __lock_acquire+0xbac/0x6120
[ 2064.941161]  ? selinux_inode_getsecctx+0x90/0x90
[ 2064.941699]  ? loop_set_status_old+0x1b0/0x1b0
[ 2064.942159]  blkdev_ioctl+0x362/0x7f0
[ 2064.942564]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2064.943109]  ? __x64_sys_ioctl+0x97/0x210
[ 2064.943569]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2064.944219]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2064.944759]  __x64_sys_ioctl+0x196/0x210
[ 2064.945221]  do_syscall_64+0x3b/0x90
[ 2064.945643]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2064.946208] RIP: 0033:0x7f9496e2f8d7
[ 2064.946641] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2064.948776] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2064.949516] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2064.950305] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2064.951098] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2064.951887] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2064.952695] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2064.953497]  </TASK>
[ 2064.965731] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:15:51 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x78800, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:15:51 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x200000, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)

[ 2065.048104] loop6: detected capacity change from 0 to 512
[ 2065.058918] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
23:15:51 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x80000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:15:51 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r4, 0x0, 0x0}, 0x0)
io_uring_register$IORING_REGISTER_PROBE(r4, 0x8, &(0x7f0000000180)={0x0, 0x0, 0x0, '\x00', [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}]}, 0xc)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)

[ 2065.084143] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[ 2065.266198] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:16:09 executing program 5:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x200000, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)

23:16:09 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x80700, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:16:09 executing program 0:
preadv(0xffffffffffffffff, &(0x7f0000000080)=[{&(0x7f0000000000)=""/108, 0x6c}], 0x1, 0xe74, 0x2)
getsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)

23:16:09 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xd0)

23:16:09 executing program 3:
r0 = syz_io_uring_setup(0xfffffffe, &(0x7f0000000180)={0x0, 0x0, 0x10, 0x3, 0xfffffffc}, &(0x7f0000ff9000/0x3000)=nil, &(0x7f0000fed000/0x11000)=nil, &(0x7f0000000040), &(0x7f0000000140))
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_setup(0x4c58, &(0x7f0000000200)={0x0, 0x7062, 0x10, 0x2, 0xecee7ef, 0x0, r3}, &(0x7f0000ff4000/0x2000)=nil, &(0x7f0000fec000/0x9000)=nil, &(0x7f00000000c0), &(0x7f0000000280))
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r4, 0xffffffffffffffff, r0], 0x3)
openat$vcsu(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

23:16:09 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r2 = signalfd(r1, &(0x7f0000000200)={[0xffffffffffffff80]}, 0x8)
clone3(&(0x7f0000000240)={0x1000c1400, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x6}, &(0x7f0000000100)=""/134, 0x86, &(0x7f00000006c0)=""/4096, &(0x7f00000001c0)=[r0, r0], 0x2, {r2}}, 0x58)

23:16:09 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{0x21, 0x0, 0x4}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:16:09 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 35)

[ 2082.669901] FAULT_INJECTION: forcing a failure.
[ 2082.669901] name failslab, interval 1, probability 0, space 0, times 0
[ 2082.671760] CPU: 1 PID: 10981 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2082.672817] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2082.674421] Call Trace:
[ 2082.674774]  <TASK>
[ 2082.675094]  dump_stack_lvl+0x8b/0xb3
[ 2082.675643]  should_fail.cold+0x5/0xa
[ 2082.676205]  ? apply_wqattrs_prepare+0xab/0x880
[ 2082.676898]  should_failslab+0x5/0x10
[ 2082.677413]  __kmalloc+0x72/0x440
[ 2082.677874]  ? lock_is_held_type+0xd7/0x130
[ 2082.678448]  apply_wqattrs_prepare+0xab/0x880
[ 2082.679098]  apply_workqueue_attrs_locked+0xc1/0x140
[ 2082.679834]  alloc_workqueue+0xb1a/0xeb0
[ 2082.680426]  ? do_raw_spin_unlock+0x4f/0x210
[ 2082.681093]  ? _raw_spin_unlock+0x24/0x40
[ 2082.681698]  ? workqueue_sysfs_register+0x3e0/0x3e0
[ 2082.682403]  ? __fget_files+0x28d/0x470
[ 2082.682952]  ? loop_configure+0x62b/0x1950
[ 2082.683557]  loop_configure+0x6ec/0x1950
[ 2082.684158]  ? putname+0xfe/0x140
[ 2082.684673]  lo_ioctl+0x7c5/0x18b0
[ 2082.685207]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2082.685890]  ? loop_set_status_old+0x1b0/0x1b0
[ 2082.686545]  ? avc_ss_reset+0x180/0x180
[ 2082.687136]  ? __lock_acquire+0xbac/0x6120
[ 2082.687817]  ? selinux_inode_getsecctx+0x90/0x90
[ 2082.688519]  ? loop_set_status_old+0x1b0/0x1b0
[ 2082.689209]  blkdev_ioctl+0x362/0x7f0
[ 2082.689762]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2082.690450]  ? __x64_sys_ioctl+0x97/0x210
[ 2082.691070]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2082.691875]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2082.692567]  __x64_sys_ioctl+0x196/0x210
[ 2082.693169]  do_syscall_64+0x3b/0x90
[ 2082.693703]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2082.694453] RIP: 0033:0x7f9496e2f8d7
[ 2082.694991] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2082.697630] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2082.698742] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2082.699776] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2082.700807] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2082.701839] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2082.702866] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2082.703891]  </TASK>
23:16:09 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x100000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:16:09 executing program 0:
stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, <r0=>0x0})
setresuid(0x0, r0, 0x0)
r1 = syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x0, 0x4, &(0x7f0000000400)=[{&(0x7f0000010000)="1000000040000000030000002b00000005000000010000000000000000000000002000000020000010000000000000009f09c75f0000ffff53ef", 0x3a, 0x400}, {&(0x7f0000010100)="000000000000000000000000000000000000000000000000000000005178aedb030000001300000023", 0x29, 0x7e0}, {&(0x7f0000010ce0)="00000000000000000000000000000000000000000000000000000000c99b0000ed410000000400009f09c75f9f09c75f9f09c75f00000000000003000200000000000800000000000af3010004", 0x4d, 0x8c60}, {&(0x7f0000000340)="d800b11416350866cddfbe0de6a186db006c1f60d8010eae03c566ba87b858a2c44e53aaf8aa29338d1971e9b6dbae06caa745cae7d06b8bc621ad7419cffb6160f61e9577d1bfd8c569303a1b35442f441028aaa8b7348bfec99a5adf256109c11c448a556282614ac98037223f691aa956dfeaa214b25e0a81ecd55fbc95cc78", 0x81, 0x7fff}], 0x0, &(0x7f00000004c0)={[{@user_xattr}], [{@uid_lt={'uid<', r0}}]})
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
setresuid(0x0, r4, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./mnt\x00', &(0x7f0000000080), 0x41001, &(0x7f0000000140)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@afid={'afid', 0x3d, 0x4}}, {@nodevmap}, {@access_uid={'access', 0x3d, r4}}, {@dfltgid}], [{@smackfsfloor={'smackfsfloor', 0x3d, 'ext4\x00'}}]}})

23:16:09 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r2 = signalfd(r1, &(0x7f0000000200)={[0xffffffffffffff80]}, 0x8)
clone3(&(0x7f0000000240)={0x1000c1400, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x6}, &(0x7f0000000100)=""/134, 0x86, &(0x7f00000006c0)=""/4096, &(0x7f00000001c0)=[r0, r0], 0x2, {r2}}, 0x58)

[ 2082.801407] loop4: detected capacity change from 0 to 256
[ 2082.804061] loop0: detected capacity change from 0 to 140
[ 2082.806220] ext3: Unknown parameter 'uid<00000000000000000000'
[ 2082.824975] loop0: detected capacity change from 0 to 140
[ 2082.827166] ext3: Unknown parameter 'uid<00000000000000016877'
23:16:09 executing program 3:
r0 = syz_io_uring_complete(0x0)
r1 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x0, 0x0, r0}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000280), &(0x7f0000000140)=<r2=>0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xb, 0x8010, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r5, r6, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r7, 0x0, 0x0}, 0x0)
r8 = syz_open_dev$ttys(0xc, 0x2, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r9=>0x0, &(0x7f0000000140)=<r10=>0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r9, r10, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r11 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r11, 0x0, 0x0}, 0x0)
r12 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r12, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000180)=@IORING_OP_FILES_UPDATE={0x14, 0x3, 0x0, 0x0, 0x1000, &(0x7f0000000040)=[r3, r7, r1, r8, r3, r11, r3, r12, r1], 0x9, 0x0, 0x1}, 0xed)
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000000)=[r3, 0xffffffffffffffff, r1], 0x3)

23:16:09 executing program 5:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x0, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x185042, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
write$binfmt_aout(r1, &(0x7f0000001180)=ANY=[], 0x220)
sendfile(r1, r0, 0x0, 0xfffffdef)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r1, 0xc0709411, &(0x7f0000000240)=ANY=[@ANYRES64=0x0, @ANYBLOB="1d06000000000000010000dc15863324b0078c9b6ab9b4942ebb0000000000080000000000000007000000000000000000008000000000090000000000000009000000ff0300000104000004000000d10000000000000000000000000000000500000000000000ffffff7f00000000300000000000000000000000000000000000000000000000000000000000000000000000000000e2ffffffffffffff0000000000000000002edad5cb"])

[ 2082.845012] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:16:09 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x100700, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:16:09 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 36)

23:16:09 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{0x21, 0x0, 0x5}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:16:09 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
signalfd(r0, &(0x7f0000000200)={[0xffffffffffffff80]}, 0x8)

23:16:09 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xfe)

23:16:09 executing program 0:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
pwritev(r0, &(0x7f00000001c0)=[{&(0x7f0000000300)="99", 0x1}], 0x1, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
ioprio_set$uid(0x3, 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000200)={{{@in=@broadcast, @in6=@private1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0}}, {{@in=@initdev}, 0x0, @in6=@remote}}, &(0x7f0000000040)=0xe8)
stat(&(0x7f0000000080)='./file1\x00', &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0})
fsetxattr$system_posix_acl(r2, &(0x7f0000000000)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x6}, [{0x2, 0x6, r3}], {0x4, 0x3}, [{0x8, 0x6, r4}, {0x8, 0x2, 0xffffffffffffffff}], {}, {0x20, 0x2}}, 0x3c, 0x2)
sendfile(r1, r2, 0x0, 0x7fffffff)

[ 2083.011302] FAULT_INJECTION: forcing a failure.
[ 2083.011302] name failslab, interval 1, probability 0, space 0, times 0
[ 2083.012976] CPU: 0 PID: 11016 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2083.014102] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2083.015603] Call Trace:
[ 2083.015946]  <TASK>
[ 2083.016309]  dump_stack_lvl+0x8b/0xb3
[ 2083.016825]  should_fail.cold+0x5/0xa
[ 2083.017347]  ? create_object.isra.0+0x3a/0xa20
[ 2083.017962]  should_failslab+0x5/0x10
[ 2083.018474]  kmem_cache_alloc+0x5b/0x480
[ 2083.019035]  create_object.isra.0+0x3a/0xa20
[ 2083.019629]  ? kasan_unpoison+0x23/0x50
[ 2083.020174]  __kmalloc+0x25b/0x440
[ 2083.020663]  apply_wqattrs_prepare+0xab/0x880
[ 2083.021356]  apply_workqueue_attrs_locked+0xc1/0x140
[ 2083.022116]  alloc_workqueue+0xb1a/0xeb0
[ 2083.022720]  ? do_raw_spin_unlock+0x4f/0x210
[ 2083.023387]  ? _raw_spin_unlock+0x24/0x40
[ 2083.024019]  ? workqueue_sysfs_register+0x3e0/0x3e0
[ 2083.024770]  ? __fget_files+0x28d/0x470
[ 2083.025387]  ? loop_configure+0x62b/0x1950
[ 2083.025946]  loop_configure+0x6ec/0x1950
[ 2083.026483]  ? putname+0xfe/0x140
[ 2083.026953]  lo_ioctl+0x7c5/0x18b0
[ 2083.027428]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2083.028066]  ? loop_set_status_old+0x1b0/0x1b0
[ 2083.028680]  ? avc_ss_reset+0x180/0x180
[ 2083.029241]  ? __lock_acquire+0xbac/0x6120
[ 2083.029863]  ? selinux_inode_getsecctx+0x90/0x90
[ 2083.030514]  ? loop_set_status_old+0x1b0/0x1b0
[ 2083.031141]  blkdev_ioctl+0x362/0x7f0
[ 2083.031690]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2083.032388]  ? __x64_sys_ioctl+0x97/0x210
[ 2083.033042]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2083.034748]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2083.036231]  __x64_sys_ioctl+0x196/0x210
[ 2083.037165]  do_syscall_64+0x3b/0x90
[ 2083.037676]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2083.038366] RIP: 0033:0x7f9496e2f8d7
[ 2083.038859] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2083.041265] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2083.042251] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2083.043182] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2083.044113] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2083.045344] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2083.046462] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2083.047602]  </TASK>
23:16:09 executing program 5:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x0, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x185042, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
write$binfmt_aout(r1, &(0x7f0000001180)=ANY=[], 0x220)
sendfile(r1, r0, 0x0, 0xfffffdef)
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r1, 0xc0709411, &(0x7f0000000240)=ANY=[@ANYRES64=0x0, @ANYBLOB="1d06000000000000010000dc15863324b0078c9b6ab9b4942ebb0000000000080000000000000007000000000000000000008000000000090000000000000009000000ff0300000104000004000000d10000000000000000000000000000000500000000000000ffffff7f00000000300000000000000000000000000000000000000000000000000000000000000000000000000000e2ffffffffffffff0000000000000000002edad5cb"])

23:16:09 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x180000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:16:09 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x90)
pwritev(r0, &(0x7f0000000580)=[{&(0x7f0000000180)="3c7bf5d3ef0b45cb4550e7ea568320d390bba880fdf5d71258dd0cfbf42b874cd95074b169b043be5f0c54e8d6cefe072f0224cbbab7b584739d8fb3e1bad19b1bfdac67b814cc69e3842dc72028107fa96e6743b19df4356ed86ee94190f5551d89935ff173327f8b3958857c55fdc753a41ca50a5b8c135883c8d8e2a1d5a4c898a15696e100a74e921754b1987664d61ba4949cbe69312b3a26c8f8a61ec5e244f6007585c167e6837d24970a6d7b8baa7fdb146952ea9ec4e087eb5d6deebf1a540cfe49d08e6b444a923f947225ab5ddbd057bef57b4b2319935486a7996b7ff3fb8ab041a66808", 0xea}, {&(0x7f0000000280)="199cc62da857c941bb6f33cea9228168f83e282fcdbd63e543c93f1336fba655076efad0c97a304e435bcb9d155065c51aec155a3aa085eefd9bc35d92fbfe875963cfec53c7b67f2ae7a72205ccf6437e6f5b868979c7c89c708caf063684c276c401fa57", 0x65}, {&(0x7f0000000300)="c804fc8c6e73614729e7554837c71ba4c400fdda5bdf6315169ce76de7541049825cf08988116df95ea3e998732531b7ef4686716fbe226f46861273e9fba55ba24755842e454e9a1b87a5e5904537a260d2dcbcb8630403ca46e4e5b6dea7dd5826b8e3bdea82615bb537d4b27533a8f091d8b64efd11d1bf95cec23dd12fbb8a4d290cb733c3b968632da40098145257a1bff2448ee7232a93e7950869a6f722de0a6d0f9e90ed2e71b6f4693d51158db09bd6aaa63da682b0cae633168ced6a12101250d652ee802f78f2d7fbf4c4dd", 0xd1}, {&(0x7f0000000400)="44b42b9b2f0632e68a4d63b5acbd417a3506385f5b3b5f1917e10527078c5eef1686402a213fd89a285f62034db6e6622879d8d18360007cef2a4b9c1694494c7459c9e468fc7810f0b7c4117bd758dbe656d48f9c627537e198bdc08c40bbfcdd71e73cf766d3ebbd3fe0e96c73b92300239fdd41e2a20f2050b4b9270b2ad9b1f56576aa9b31144dd4f6d4969540b52aa2a494f920636d7815d01a10d8b1f13b4366d85f2209dbf0587f8e3503e95b7e27e0b3a7635e6663936710bc329bbb240ce55b2fcd3a48489434d3bb89cdf9190d868d41f0752c8c", 0xd9}, {&(0x7f0000000040)="b98ac48deb33369a5baafc61744452ba68784f5fb732929b147170e53b4014d5bef87d545ce315e661a5dad6", 0x2c}, {&(0x7f0000000500)="b2ba592bcef2d808b142c972b1da85d813f653254afb536b51fc22680870e123c0963b5b081297ee39684a6fa6588c44a5cc8cca1d5ecfcfe03f7d31caf71f788ff7e2315e9dda1fe3d07d57b3b176a6c2ac3f", 0x53}], 0x6, 0xfffff000, 0x8000)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)

[ 2083.118125] loop4: detected capacity change from 0 to 256
[ 2083.118912] loop6: detected capacity change from 0 to 512
[ 2083.126153] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2083.137345] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
23:16:09 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[ 2083.164602] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
23:16:09 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

23:16:09 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{0x21, 0x0, 0x6}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:16:09 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x180700, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2083.399961] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:16:25 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 37)

23:16:25 executing program 0:
r0 = syz_io_uring_complete(0x0)
r1 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x0, 0x0, r0}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000280), &(0x7f0000000140)=<r2=>0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xb, 0x8010, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r5, r6, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r7, 0x0, 0x0}, 0x0)
r8 = syz_open_dev$ttys(0xc, 0x2, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r9=>0x0, &(0x7f0000000140)=<r10=>0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r9, r10, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r11 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r11, 0x0, 0x0}, 0x0)
r12 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r12, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000180)=@IORING_OP_FILES_UPDATE={0x14, 0x3, 0x0, 0x0, 0x1000, &(0x7f0000000040)=[r3, r7, r1, r8, r3, r11, r3, r12, r1], 0x9, 0x0, 0x1}, 0xed)
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000000)=[r3, 0xffffffffffffffff, r1], 0x3)

23:16:25 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{0x21, 0x0, 0x7}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:16:25 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

23:16:25 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x9, 0x4010, r1, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r5, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r6, r7, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r8, 0x0, 0x0}, 0x0)
syz_io_uring_submit(r2, r4, &(0x7f0000003480)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r8, 0x0, &(0x7f0000003440)={&(0x7f0000000180)=@l2tp={0x2, 0x0, @private}, 0x80, &(0x7f0000003340)=[{&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/93, 0x5d}, {&(0x7f0000001280)=""/4096, 0x1000}, {&(0x7f0000000040)}, {&(0x7f0000002280)=""/4096, 0x1000}, {&(0x7f0000003280)=""/167, 0xa7}], 0x6, &(0x7f00000033c0)=""/87, 0x57}, 0x0, 0x4100, 0x1}, 0x1)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, r1, r0], 0x3)

23:16:25 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x300)

23:16:25 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x200000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:16:25 executing program 5:
r0 = syz_io_uring_complete(0x0)
r1 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3, 0x0, 0x0, r0}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000280), &(0x7f0000000140)=<r2=>0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xb, 0x8010, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r5, r6, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r7, 0x0, 0x0}, 0x0)
r8 = syz_open_dev$ttys(0xc, 0x2, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r9=>0x0, &(0x7f0000000140)=<r10=>0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r9, r10, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r11 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r11, 0x0, 0x0}, 0x0)
r12 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r12, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(r4, r2, &(0x7f0000000180)=@IORING_OP_FILES_UPDATE={0x14, 0x3, 0x0, 0x0, 0x1000, &(0x7f0000000040)=[r3, r7, r1, r8, r3, r11, r3, r12, r1], 0x9, 0x0, 0x1}, 0xed)
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000000)=[r3, 0xffffffffffffffff, r1], 0x3)

[ 2098.931521] loop4: detected capacity change from 0 to 256
[ 2098.944732] FAULT_INJECTION: forcing a failure.
[ 2098.944732] name failslab, interval 1, probability 0, space 0, times 0
[ 2098.945946] CPU: 1 PID: 11078 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2098.946802] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2098.947986] Call Trace:
[ 2098.948260]  <TASK>
[ 2098.948493]  dump_stack_lvl+0x8b/0xb3
[ 2098.948909]  should_fail.cold+0x5/0xa
[ 2098.949325]  ? alloc_workqueue_attrs+0x38/0x80
[ 2098.949814]  should_failslab+0x5/0x10
[ 2098.950217]  kmem_cache_alloc_trace+0x55/0x3c0
[ 2098.950702]  alloc_workqueue_attrs+0x38/0x80
[ 2098.951163]  apply_wqattrs_prepare+0xb3/0x880
[ 2098.951645]  apply_workqueue_attrs_locked+0xc1/0x140
[ 2098.952178]  alloc_workqueue+0xb1a/0xeb0
[ 2098.952616]  ? do_raw_spin_unlock+0x4f/0x210
[ 2098.953100]  ? _raw_spin_unlock+0x24/0x40
[ 2098.953544]  ? workqueue_sysfs_register+0x3e0/0x3e0
[ 2098.954074]  ? __fget_files+0x28d/0x470
[ 2098.954503]  ? loop_configure+0x62b/0x1950
[ 2098.954949]  loop_configure+0x6ec/0x1950
[ 2098.955382]  ? putname+0xfe/0x140
[ 2098.955758]  lo_ioctl+0x7c5/0x18b0
[ 2098.956128]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2098.956638]  ? loop_set_status_old+0x1b0/0x1b0
[ 2098.957140]  ? avc_ss_reset+0x180/0x180
[ 2098.957567]  ? __lock_acquire+0xbac/0x6120
[ 2098.958048]  ? selinux_inode_getsecctx+0x90/0x90
[ 2098.958549]  ? loop_set_status_old+0x1b0/0x1b0
[ 2098.959027]  blkdev_ioctl+0x362/0x7f0
[ 2098.959430]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2098.959925]  ? __x64_sys_ioctl+0x97/0x210
[ 2098.960363]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2098.960935]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2098.961445]  __x64_sys_ioctl+0x196/0x210
[ 2098.961870]  do_syscall_64+0x3b/0x90
[ 2098.962263]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2098.962814] RIP: 0033:0x7f9496e2f8d7
[ 2098.963201] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2098.965113] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2098.965946] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2098.966688] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2098.967436] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2098.968172] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2098.968924] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2098.969690]  </TASK>
[ 2098.976878] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:16:25 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[ 2099.195906] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:16:42 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{0x21, 0x0, 0x9}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:16:42 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)
openat(r1, &(0x7f0000000040)='./file1\x00', 0x400080, 0x21)

23:16:42 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x500)

23:16:42 executing program 2:
ioprio_set$pid(0x0, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

23:16:42 executing program 0:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
pwrite64(r0, &(0x7f0000000140)="cb", 0x1, 0x10001)
mknodat(0xffffffffffffff9c, &(0x7f0000000000)='./file1/file0\x00', 0x4, 0x1)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x1)
pwritev(r1, &(0x7f0000000640)=[{&(0x7f00000002c0)="19", 0x1}], 0x1, 0x8000000, 0x0)
sendfile(r1, r1, 0x0, 0xffffffff000)

23:16:42 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x200700, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:16:42 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 38)

23:16:42 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
pwritev(r0, &(0x7f0000000640)=[{&(0x7f00000002c0)="19", 0x1}], 0x1, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r4, 0x0, 0x0}, 0x0)
openat(r4, &(0x7f0000000080)='./file0\x00', 0x343000, 0x0)
r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
r6 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
pwrite64(r6, &(0x7f0000000400)="c0", 0x1, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000000)={0x0, r5, 0xfffffffe, 0x0, 0x2})

[ 2116.059123] loop4: detected capacity change from 0 to 256
[ 2116.091136] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2116.092848] FAULT_INJECTION: forcing a failure.
[ 2116.092848] name failslab, interval 1, probability 0, space 0, times 0
[ 2116.095703] CPU: 0 PID: 11118 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2116.097636] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2116.099188] Call Trace:
[ 2116.099746]  <TASK>
[ 2116.100046]  dump_stack_lvl+0x8b/0xb3
[ 2116.100824]  should_fail.cold+0x5/0xa
[ 2116.101395]  ? create_object.isra.0+0x3a/0xa20
[ 2116.102063]  should_failslab+0x5/0x10
[ 2116.102693]  kmem_cache_alloc+0x5b/0x480
[ 2116.103242]  create_object.isra.0+0x3a/0xa20
[ 2116.104006]  ? kasan_unpoison+0x23/0x50
[ 2116.104615]  kmem_cache_alloc_trace+0x22e/0x3c0
[ 2116.105248]  alloc_workqueue_attrs+0x38/0x80
[ 2116.105875]  apply_wqattrs_prepare+0xb3/0x880
[ 2116.106501]  apply_workqueue_attrs_locked+0xc1/0x140
[ 2116.107187]  alloc_workqueue+0xb1a/0xeb0
[ 2116.107736]  ? do_raw_spin_unlock+0x4f/0x210
[ 2116.108328]  ? _raw_spin_unlock+0x24/0x40
[ 2116.109080]  ? workqueue_sysfs_register+0x3e0/0x3e0
[ 2116.109817]  ? __fget_files+0x28d/0x470
[ 2116.110356]  ? loop_configure+0x62b/0x1950
[ 2116.110940]  loop_configure+0x6ec/0x1950
[ 2116.111490]  ? putname+0xfe/0x140
[ 2116.111963]  lo_ioctl+0x7c5/0x18b0
[ 2116.112447]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2116.113095]  ? loop_set_status_old+0x1b0/0x1b0
[ 2116.113750]  ? avc_ss_reset+0x180/0x180
[ 2116.114297]  ? __lock_acquire+0xbac/0x6120
[ 2116.114904]  ? selinux_inode_getsecctx+0x90/0x90
[ 2116.115553]  ? loop_set_status_old+0x1b0/0x1b0
[ 2116.116151]  blkdev_ioctl+0x362/0x7f0
[ 2116.116661]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2116.117288]  ? __x64_sys_ioctl+0x97/0x210
[ 2116.117893]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2116.118606]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2116.119238]  __x64_sys_ioctl+0x196/0x210
[ 2116.119785]  do_syscall_64+0x3b/0x90
[ 2116.120303]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2116.120994] RIP: 0033:0x7f9496e2f8d7
[ 2116.121531] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2116.134080] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2116.135134] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2116.136111] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2116.137162] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2116.138212] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2116.139210] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2116.140216]  </TASK>
[ 2116.159978] loop6: detected capacity change from 0 to 512
23:16:42 executing program 2:
ioprio_set$pid(0x0, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

23:16:42 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x3}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000040), &(0x7f0000000140))
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[0xffffffffffffffff, 0xffffffffffffffff, r0], 0x3)

23:16:42 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x280000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2116.199195] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2116.252157] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
23:16:42 executing program 5:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x5, &(0x7f0000000200)=[{&(0x7f0000000040)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="02000000030000000400000032000f000300040000000000000000000f002f7c", 0x20, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008000000000000000500000006", 0x29, 0x4100}, {&(0x7f0000012900)="ed4100003c000000d4f4655fd4f4655fd4f4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c6531000000000000000000000000000000000000000000000000000000f3a2da0a00000000000000000000000000000000000000000000000020000000e0915eece0915eece0915eecd4f4655fe0915eec0000000000000000000002ea0407000000000000000000000000000064617461", 0xb8, 0x4b00}, {&(0x7f0000012f00)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c6530", 0x39, 0xf2f}], 0x0, &(0x7f0000013800)=ANY=[])
lstat(&(0x7f00000019c0)='./file0/file0\x00', &(0x7f0000001a00))

23:16:42 executing program 2:
ioprio_set$pid(0x0, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

23:16:42 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 39)

23:16:42 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)
r2 = syz_open_dev$mouse(&(0x7f0000000200), 0x7ff, 0x400000)
sendfile(r2, r0, &(0x7f0000000240)=0x80000001, 0xc3)
lsetxattr$trusted_overlay_opaque(&(0x7f0000000280)='./file0\x00', &(0x7f0000000180), &(0x7f00000001c0), 0x2, 0x0)

[ 2116.376158] FAULT_INJECTION: forcing a failure.
[ 2116.376158] name failslab, interval 1, probability 0, space 0, times 0
[ 2116.378083] CPU: 1 PID: 11139 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2116.379209] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2116.380663] Call Trace:
[ 2116.381005]  <TASK>
[ 2116.381303]  dump_stack_lvl+0x8b/0xb3
[ 2116.381850]  should_fail.cold+0x5/0xa
[ 2116.382372]  ? alloc_workqueue_attrs+0x38/0x80
[ 2116.382994]  should_failslab+0x5/0x10
[ 2116.383515]  kmem_cache_alloc_trace+0x55/0x3c0
[ 2116.384183]  alloc_workqueue_attrs+0x38/0x80
[ 2116.384801]  apply_wqattrs_prepare+0xbb/0x880
[ 2116.385449]  apply_workqueue_attrs_locked+0xc1/0x140
[ 2116.386145]  alloc_workqueue+0xb1a/0xeb0
[ 2116.386704]  ? do_raw_spin_unlock+0x4f/0x210
[ 2116.387305]  ? _raw_spin_unlock+0x24/0x40
[ 2116.387917]  ? workqueue_sysfs_register+0x3e0/0x3e0
[ 2116.388604]  ? __fget_files+0x28d/0x470
[ 2116.389178]  ? loop_configure+0x62b/0x1950
[ 2116.389798]  loop_configure+0x6ec/0x1950
[ 2116.390356]  ? putname+0xfe/0x140
[ 2116.390854]  lo_ioctl+0x7c5/0x18b0
[ 2116.391331]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2116.391972]  ? loop_set_status_old+0x1b0/0x1b0
[ 2116.392605]  ? avc_ss_reset+0x180/0x180
[ 2116.393165]  ? __lock_acquire+0xbac/0x6120
[ 2116.394269]  ? selinux_inode_getsecctx+0x90/0x90
[ 2116.395000]  ? loop_set_status_old+0x1b0/0x1b0
[ 2116.396282]  blkdev_ioctl+0x362/0x7f0
[ 2116.397383]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2116.398742]  ? __x64_sys_ioctl+0x97/0x210
[ 2116.399952]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2116.401576]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2116.403124]  __x64_sys_ioctl+0x196/0x210
[ 2116.404418]  do_syscall_64+0x3b/0x90
[ 2116.405600]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2116.407314] RIP: 0033:0x7f9496e2f8d7
[ 2116.408387] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2116.413511] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2116.415459] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2116.417272] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2116.419245] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2116.421090] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2116.423166] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2116.425317]  </TASK>
23:16:42 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{0x21, 0x0, 0xf}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:16:42 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x280700, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:16:42 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x600)

[ 2116.627337] loop4: detected capacity change from 0 to 256
[ 2116.641308] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2116.791430] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:16:58 executing program 0:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x280700, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:16:58 executing program 5:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)
r2 = syz_open_dev$mouse(&(0x7f0000000200), 0x7ff, 0x400000)
sendfile(r2, r0, &(0x7f0000000240)=0x80000001, 0xc3)
lsetxattr$trusted_overlay_opaque(&(0x7f0000000280)='./file0\x00', &(0x7f0000000180), &(0x7f00000001c0), 0x2, 0x0)

23:16:58 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{0x21, 0x0, 0xc0}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:16:58 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x300000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:16:58 executing program 3:
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0xfffffffffffffee2, 0x0, 0x820, 0x70bd2c, 0x25dfdbfd, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x8001}, {0x6, 0x16, 0x6}, {0x5}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}, {0x8, 0xb, 0x7}, {0x6, 0x16, 0x111}, {0x5, 0x12, 0x1}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x3}}, {0x8, 0xb, 0x6ad}, {0x6, 0x16, 0x1}, {0x5}}]}, 0xcc}, 0x1, 0x0, 0x0, 0x48051}, 0x20000000)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))

23:16:58 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 40)

23:16:58 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x0)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

23:16:58 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x700)

[ 2131.714851] loop4: detected capacity change from 0 to 256
[ 2131.716622] loop0: detected capacity change from 0 to 256
[ 2131.721389] FAULT_INJECTION: forcing a failure.
[ 2131.721389] name failslab, interval 1, probability 0, space 0, times 0
[ 2131.722925] CPU: 1 PID: 11174 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2131.723986] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2131.725087] Call Trace:
[ 2131.725338]  <TASK>
[ 2131.725575]  dump_stack_lvl+0x8b/0xb3
[ 2131.725979]  should_fail.cold+0x5/0xa
[ 2131.726360]  ? create_object.isra.0+0x3a/0xa20
[ 2131.726818]  should_failslab+0x5/0x10
[ 2131.727189]  kmem_cache_alloc+0x5b/0x480
[ 2131.727608]  create_object.isra.0+0x3a/0xa20
[ 2131.728041]  ? kasan_unpoison+0x23/0x50
[ 2131.728436]  kmem_cache_alloc_trace+0x22e/0x3c0
[ 2131.728905]  alloc_workqueue_attrs+0x38/0x80
[ 2131.729336]  apply_wqattrs_prepare+0xbb/0x880
[ 2131.729804]  apply_workqueue_attrs_locked+0xc1/0x140
[ 2131.730303]  alloc_workqueue+0xb1a/0xeb0
[ 2131.730706]  ? do_raw_spin_unlock+0x4f/0x210
[ 2131.731144]  ? _raw_spin_unlock+0x24/0x40
[ 2131.731569]  ? workqueue_sysfs_register+0x3e0/0x3e0
[ 2131.732070]  ? __fget_files+0x28d/0x470
[ 2131.732473]  ? loop_configure+0x62b/0x1950
[ 2131.732894]  loop_configure+0x6ec/0x1950
[ 2131.733299]  ? putname+0xfe/0x140
[ 2131.733664]  lo_ioctl+0x7c5/0x18b0
[ 2131.734015]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2131.734498]  ? loop_set_status_old+0x1b0/0x1b0
[ 2131.734951]  ? avc_ss_reset+0x180/0x180
[ 2131.735347]  ? __lock_acquire+0xbac/0x6120
[ 2131.735812]  ? selinux_inode_getsecctx+0x90/0x90
[ 2131.736285]  ? loop_set_status_old+0x1b0/0x1b0
[ 2131.736743]  blkdev_ioctl+0x362/0x7f0
[ 2131.737116]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2131.737584]  ? __x64_sys_ioctl+0x97/0x210
[ 2131.738004]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2131.738548]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2131.739016]  __x64_sys_ioctl+0x196/0x210
[ 2131.739413]  do_syscall_64+0x3b/0x90
[ 2131.739792]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2131.740294] RIP: 0033:0x7f9496e2f8d7
[ 2131.740663] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2131.742452] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2131.743195] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2131.743892] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2131.744589] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2131.745275] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2131.745980] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2131.746692]  </TASK>
[ 2131.764456] FAT-fs (loop0): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2131.770286] loop6: detected capacity change from 0 to 512
[ 2131.772430] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2131.781293] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2131.820838] FAT-fs (loop0): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:16:58 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x0)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

23:16:58 executing program 0:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x500)

[ 2131.834138] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
23:16:58 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x300700, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:16:58 executing program 3:
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r0, r1, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r2, 0x0, 0x0}, 0x0)
r3 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x840, 0x0, r2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r3, 0x2, &(0x7f0000000000)=[r4, 0xffffffffffffffff, r3], 0x3)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x2)

23:16:58 executing program 5:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r1 = socket$netlink(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_PEER_REMOVE(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000), 0xc, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[@ANYBLOB="bc000000", @ANYRES16=0x0, @ANYBLOB="8a0026bd7000fddbdf2514000000a8000480440007800800010008000000080004000100008008000100140000000800020006000000080001000010000008000200ffffff7f080002000000000008000200090000000c00078008000200ff0300005400078008000400ce03000008000400040000000800010004000000080002000004000008000200ffffff7f0800010010000000080004000500000008000400e1ffffff08000100080000000800020004000000"], 0xbc}, 0x1, 0x0, 0x0, 0xc004}, 0x892)
sendmsg$NL80211_CMD_SET_REG(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={0x20, r0, 0x1, 0x0, 0x0, {}, [@NL80211_ATTR_REG_RULES={0x4}, @NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'a\x00'}]}, 0x20}}, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r4, 0x0, 0x0}, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r1)
sendmsg$NL80211_CMD_NEW_KEY(r4, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x28, r5, 0x100, 0x70bd27, 0x25dfdbfb, {{}, {@void, @void}}, [@NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "c5fa7e5d49889800cc3703620f"}]}, 0x28}, 0x1, 0x0, 0x0, 0x20040000}, 0x4)

23:16:58 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x0)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

23:16:58 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{0x21, 0x0, 0xf0}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:16:58 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 41)

23:16:58 executing program 3:
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r0, r1, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r2, 0x0, 0x0}, 0x0)
r3 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x4400, 0x0, 0x0, 0x0, 0x0, r2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_register$IORING_REGISTER_FILES(r3, 0x2, &(0x7f0000000000)=[0xffffffffffffffff, 0xffffffffffffffff, r3], 0x3)

23:16:58 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(0x0, 0x0)

[ 2132.063891] FAULT_INJECTION: forcing a failure.
[ 2132.063891] name failslab, interval 1, probability 0, space 0, times 0
[ 2132.065075] CPU: 1 PID: 11219 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2132.065904] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2132.066995] Call Trace:
[ 2132.067244]  <TASK>
[ 2132.067468]  dump_stack_lvl+0x8b/0xb3
[ 2132.067862]  should_fail.cold+0x5/0xa
[ 2132.068240]  ? alloc_unbound_pwq+0x4ad/0xd70
[ 2132.068690]  should_failslab+0x5/0x10
[ 2132.069063]  kmem_cache_alloc_node+0x55/0x490
[ 2132.069508]  ? lock_is_held_type+0xd7/0x130
[ 2132.069943]  alloc_unbound_pwq+0x4ad/0xd70
[ 2132.070367]  apply_wqattrs_prepare+0x2a4/0x880
[ 2132.070836]  apply_workqueue_attrs_locked+0xc1/0x140
[ 2132.071337]  alloc_workqueue+0xb1a/0xeb0
[ 2132.071757]  ? do_raw_spin_unlock+0x4f/0x210
[ 2132.072195]  ? _raw_spin_unlock+0x24/0x40
[ 2132.072622]  ? workqueue_sysfs_register+0x3e0/0x3e0
[ 2132.073119]  ? __fget_files+0x28d/0x470
[ 2132.073529]  ? loop_configure+0x62b/0x1950
[ 2132.073953]  loop_configure+0x6ec/0x1950
[ 2132.074357]  ? putname+0xfe/0x140
[ 2132.074733]  lo_ioctl+0x7c5/0x18b0
[ 2132.075087]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2132.075601]  ? loop_set_status_old+0x1b0/0x1b0
[ 2132.076062]  ? avc_ss_reset+0x180/0x180
[ 2132.076480]  ? __lock_acquire+0xbac/0x6120
[ 2132.076940]  ? selinux_inode_getsecctx+0x90/0x90
[ 2132.077425]  ? loop_set_status_old+0x1b0/0x1b0
[ 2132.077916]  blkdev_ioctl+0x362/0x7f0
[ 2132.078304]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2132.078789]  ? __x64_sys_ioctl+0x97/0x210
[ 2132.079219]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2132.079791]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2132.080266]  __x64_sys_ioctl+0x196/0x210
[ 2132.080698]  do_syscall_64+0x3b/0x90
[ 2132.081077]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2132.081606] RIP: 0033:0x7f9496e2f8d7
[ 2132.081979] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2132.083828] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2132.084591] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2132.085308] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2132.086048] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2132.086767] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2132.087489] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2132.088224]  </TASK>
[ 2132.094874] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:17:12 executing program 0:
prlimit64(0x0, 0x7, &(0x7f0000000080)={0x4, 0x6}, 0x0)
eventfd(0x4)
pipe(0x0)

23:17:12 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{0x21, 0x0, 0x300}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:17:12 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(0x0, 0x0)

23:17:12 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000280)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x2)
r1 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000001c0)=0x1, 0x4)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001)
r2 = gettid()
process_vm_writev(r2, &(0x7f0000000340)=[{&(0x7f0000000140)=""/182, 0xb6}], 0x1, &(0x7f0000000480)=[{&(0x7f0000000380)=""/132, 0x84}, {&(0x7f0000000440)=""/1, 0x1}], 0x2, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x2, 0x0, r1, &(0x7f0000000240)=0x80, &(0x7f00000004c0)=@tipc=@id, 0x0, 0x80800, 0x1}, 0xfffffffd)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r5, 0x0, 0x0}, 0x0)
getpeername$inet6(r5, &(0x7f0000000080)={0xa, 0x0, 0x0, @mcast2}, &(0x7f00000000c0)=0x1c)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r6, 0x0, 0x0}, 0x0)
r7 = epoll_create1(0x0)
kcmp$KCMP_EPOLL_TFD(0xffffffffffffffff, r2, 0x7, r0, &(0x7f0000000000)={r6, r7, 0xb42})

23:17:12 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x380000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:17:12 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x900)

23:17:12 executing program 3:
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r0, r1, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r2, 0x0, 0x0}, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000000)={r2, 0x56e, 0x9, 0x1})
syz_io_uring_setup(0x1, &(0x7f0000000240)={0x0, 0x0, 0x10}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)

[ 2145.634495] loop4: detected capacity change from 0 to 256
[ 2145.663662] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2145.668343] FAULT_INJECTION: forcing a failure.
[ 2145.668343] name failslab, interval 1, probability 0, space 0, times 0
[ 2145.669581] CPU: 0 PID: 11253 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2145.670542] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2145.671730] Call Trace:
[ 2145.672015]  <TASK>
[ 2145.672265]  dump_stack_lvl+0x8b/0xb3
[ 2145.672702]  should_fail.cold+0x5/0xa
[ 2145.673232]  ? create_object.isra.0+0x3a/0xa20
[ 2145.673908]  should_failslab+0x5/0x10
[ 2145.674444]  kmem_cache_alloc+0x5b/0x480
[ 2145.675035]  create_object.isra.0+0x3a/0xa20
[ 2145.675661]  ? kasan_unpoison+0x23/0x50
[ 2145.676124]  kmem_cache_alloc_node+0x248/0x490
[ 2145.676658]  alloc_unbound_pwq+0x4ad/0xd70
[ 2145.677129]  apply_wqattrs_prepare+0x2a4/0x880
[ 2145.677679]  apply_workqueue_attrs_locked+0xc1/0x140
[ 2145.678272]  alloc_workqueue+0xb1a/0xeb0
[ 2145.678741]  ? do_raw_spin_unlock+0x4f/0x210
[ 2145.679238]  ? _raw_spin_unlock+0x24/0x40
[ 2145.679875]  ? workqueue_sysfs_register+0x3e0/0x3e0
[ 2145.680439]  ? __fget_files+0x28d/0x470
[ 2145.680893]  ? loop_configure+0x62b/0x1950
[ 2145.681345]  loop_configure+0x6ec/0x1950
[ 2145.681814]  ? putname+0xfe/0x140
[ 2145.682225]  lo_ioctl+0x7c5/0x18b0
[ 2145.682637]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2145.683144]  ? loop_set_status_old+0x1b0/0x1b0
[ 2145.683667]  ? avc_ss_reset+0x180/0x180
[ 2145.684091]  ? __lock_acquire+0xbac/0x6120
23:17:12 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 42)

[ 2145.684607]  ? selinux_inode_getsecctx+0x90/0x90
[ 2145.685232]  ? loop_set_status_old+0x1b0/0x1b0
[ 2145.685772]  blkdev_ioctl+0x362/0x7f0
[ 2145.686210]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2145.686740]  ? __x64_sys_ioctl+0x97/0x210
[ 2145.687206]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2145.687817]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2145.688339]  __x64_sys_ioctl+0x196/0x210
[ 2145.688811]  do_syscall_64+0x3b/0x90
[ 2145.689230]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2145.689799] RIP: 0033:0x7f9496e2f8d7
[ 2145.690220] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2145.692251] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2145.693104] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2145.693923] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2145.694700] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2145.695496] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2145.696292] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2145.697051]  </TASK>
23:17:12 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$smc(&(0x7f0000000000), r0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), r0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r4, 0x0, 0x0}, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r4, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x60, r1, 0x800, 0x70bd2a, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x6, 0x80}}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x2028}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x173d}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x27c}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x2}, @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x24}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x2}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x271}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x14c8}]]}, 0x60}, 0x1, 0x0, 0x0, 0x40}, 0x40008c5)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r0)

23:17:12 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(0x0, 0x0)

[ 2145.769795] loop6: detected capacity change from 0 to 512
[ 2145.790080] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
23:17:12 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x380700, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2145.828060] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
23:17:12 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)
r2 = open_tree(r1, &(0x7f0000000040)='./file1\x00', 0x88000)
syz_io_uring_setup(0x221e, &(0x7f0000000180)={0x0, 0x5ce8, 0x4, 0x2, 0x36e, 0x0, r2}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000240))

23:17:12 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{0x21, 0x0, 0x500}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

[ 2145.873248] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:17:12 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xa00)

23:17:12 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[ 2146.040033] loop4: detected capacity change from 0 to 256
[ 2146.051128] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2146.142708] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2146.157181] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
23:17:27 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 43)

23:17:27 executing program 0:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_setup(0x1eaf, &(0x7f0000000080)={0x0, 0x4c0e, 0x4, 0x1, 0xb2, 0x0, r0}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000000), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000180)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1}, 0x4000)
ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0x40305839, &(0x7f0000000040)=ANY=[@ANYBLOB="060000000200dda784adff18000000000000002b"])

23:17:27 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x141042, 0x0)
pwritev(r0, &(0x7f0000000280)=[{&(0x7f0000000200)="e6", 0x1}], 0x1, 0x7fefffa, 0x2)
r1 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000001c0)=0x1, 0x4)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendfile(r1, r0, 0x0, 0x80000001)
r2 = gettid()
process_vm_writev(r2, &(0x7f0000000340)=[{&(0x7f0000000140)=""/182, 0xb6}], 0x1, &(0x7f0000000480)=[{&(0x7f0000000380)=""/132, 0x84}, {&(0x7f0000000440)=""/1, 0x1}], 0x2, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x2, 0x0, r1, &(0x7f0000000240)=0x80, &(0x7f00000004c0)=@tipc=@id, 0x0, 0x80800, 0x1}, 0xfffffffd)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r5, 0x0, 0x0}, 0x0)
getpeername$inet6(r5, &(0x7f0000000080)={0xa, 0x0, 0x0, @mcast2}, &(0x7f00000000c0)=0x1c)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r6, 0x0, 0x0}, 0x0)
r7 = epoll_create1(0x0)
kcmp$KCMP_EPOLL_TFD(0xffffffffffffffff, r2, 0x7, r0, &(0x7f0000000000)={r6, r7, 0xb42})

23:17:27 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xb00)

23:17:27 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

23:17:27 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r1, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000003, 0x4000010, 0xffffffffffffffff, 0x0)
syz_io_uring_complete(r4)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r6 = syz_io_uring_setup(0x1, &(0x7f0000000000), &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000080)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f00000001c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000200)={0x4849c1}, &(0x7f0000000180)='./file0\x00', 0x18, 0x0, 0x0, {0x0, r9}}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_OPENAT={0x12, 0x4, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000240)='./file1/file0\x00', 0x20, 0x381a00, 0x12345, {0x0, r9}}, 0x80)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r5, 0x0, 0x0}, 0x0)
r10 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/attr/fscreate\x00', 0x2, 0x0)
r11 = creat(&(0x7f0000000180)='./file1\x00', 0x2)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r1, 0x6, &(0x7f0000000200)={0x6, 0x0, &(0x7f00000001c0)=[r0, r5, r0, r10, r0, r0, r0, r11]}, 0x8)
r12 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r12, 0xffffffffffffffff, r0], 0x3)

23:17:27 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{0x21, 0x0, 0x600}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:17:27 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x400000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2161.310662] loop4: detected capacity change from 0 to 256
[ 2161.316378] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2161.318386] FAULT_INJECTION: forcing a failure.
[ 2161.318386] name failslab, interval 1, probability 0, space 0, times 0
[ 2161.319780] CPU: 1 PID: 11315 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2161.320721] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2161.322008] Call Trace:
[ 2161.322301]  <TASK>
[ 2161.322593]  dump_stack_lvl+0x8b/0xb3
[ 2161.323024]  should_fail.cold+0x5/0xa
[ 2161.323464]  ? kobject_uevent_env+0x236/0xfa0
[ 2161.324004]  should_failslab+0x5/0x10
[ 2161.324421]  kmem_cache_alloc_trace+0x55/0x3c0
[ 2161.324953]  ? lock_is_held_type+0xd7/0x130
[ 2161.325438]  kobject_uevent_env+0x236/0xfa0
[ 2161.325952]  ? dev_uevent_filter+0xd0/0xd0
[ 2161.326447]  ? _raw_spin_unlock+0x24/0x40
[ 2161.326933]  disk_event_uevent+0x17b/0x1e0
[ 2161.327399]  ? disk_events_async_show+0x10/0x10
[ 2161.327960]  ? __fget_files+0x28d/0x470
[ 2161.328401]  disk_force_media_change+0x1e/0xc0
[ 2161.328951]  loop_configure+0x75b/0x1950
[ 2161.329404]  ? putname+0xfe/0x140
[ 2161.329807]  lo_ioctl+0x7c5/0x18b0
[ 2161.330223]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2161.330774]  ? loop_set_status_old+0x1b0/0x1b0
[ 2161.331279]  ? avc_ss_reset+0x180/0x180
[ 2161.331736]  ? __lock_acquire+0xbac/0x6120
[ 2161.332235]  ? selinux_inode_getsecctx+0x90/0x90
[ 2161.332803]  ? loop_set_status_old+0x1b0/0x1b0
[ 2161.333305]  blkdev_ioctl+0x362/0x7f0
[ 2161.333769]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2161.334309]  ? __x64_sys_ioctl+0x97/0x210
[ 2161.334796]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2161.335396]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2161.335931]  __x64_sys_ioctl+0x196/0x210
[ 2161.336376]  do_syscall_64+0x3b/0x90
[ 2161.336796]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2161.337359] RIP: 0033:0x7f9496e2f8d7
[ 2161.337786] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2161.339970] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2161.341029] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2161.341848] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2161.342665] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2161.343453] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2161.344243] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2161.345043]  </TASK>
[ 2161.367711] loop6: detected capacity change from 0 to 512
[ 2161.371374] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2161.395715] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
23:17:27 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x400700, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:17:27 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

23:17:27 executing program 0:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r1, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000003, 0x4000010, 0xffffffffffffffff, 0x0)
syz_io_uring_complete(r4)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r6 = syz_io_uring_setup(0x1, &(0x7f0000000000), &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000080)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f00000001c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000200)={0x4849c1}, &(0x7f0000000180)='./file0\x00', 0x18, 0x0, 0x0, {0x0, r9}}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_OPENAT={0x12, 0x4, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000240)='./file1/file0\x00', 0x20, 0x381a00, 0x12345, {0x0, r9}}, 0x80)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r5, 0x0, 0x0}, 0x0)
r10 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/attr/fscreate\x00', 0x2, 0x0)
r11 = creat(&(0x7f0000000180)='./file1\x00', 0x2)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r1, 0x6, &(0x7f0000000200)={0x6, 0x0, &(0x7f00000001c0)=[r0, r5, r0, r10, r0, r0, r0, r11]}, 0x8)
r12 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r12, 0xffffffffffffffff, r0], 0x3)

[ 2161.542408] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2179.436926] loop0: detected capacity change from 0 to 256
23:17:45 executing program 5:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xa00)

23:17:45 executing program 0:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xb00)

23:17:45 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x480000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:17:45 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140))
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r3 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x2000004, 0x1010, r2, 0x10000000)
r4 = syz_io_uring_setup(0x1, &(0x7f0000000000), &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000080)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f00000001c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000200)={0x4849c1, 0x20}, &(0x7f0000000180)='./file0\x00', 0x18, 0x0, 0x0, {0x0, r7}}, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r8=>0x0, &(0x7f0000000140)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r2, 0xc018937a, &(0x7f0000000780)=ANY=[@ANYBLOB="0100000001000000661800000010502aba50b04ce8168d85bdfccdf0e7f7b689a6198149848439d360089cf6c57724721e1e0eea24cd5d6a83a76d70f43cbbef49ab0639e36576a3", @ANYRES32=<r10=>r4, @ANYBLOB="04000000000000002e2f66696c653000"])
syz_io_uring_submit(r5, r9, &(0x7f0000000800)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x4, 0x0, 0x0, 0x0, 0x1}, 0x6)
io_uring_enter(r10, 0x4, 0xccfe, 0x1, &(0x7f0000000740)={[0x6a4a]}, 0x8)
syz_io_uring_submit(r8, r9, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r11 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
ioctl$BTRFS_IOC_FS_INFO(r11, 0x8400941f, &(0x7f0000000240))
syz_io_uring_submit(r1, r3, &(0x7f0000000180)=@IORING_OP_LINK_TIMEOUT={0xf, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)={0x77359400}, 0x1, 0x1, 0x1, {0x0, r7}}, 0x1000)
r12 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r12, 0x8983, &(0x7f0000000700)={0x8, 'veth0_virt_wifi\x00', {'veth0\x00'}, 0x8001})
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r2, 0xffffffffffffffff, r0], 0x3)
r13 = openat$incfs(r2, &(0x7f0000000640)='.pending_reads\x00', 0x8000, 0x84)
getsockopt$inet_pktinfo(r13, 0x0, 0x8, &(0x7f0000000680)={0x0, @multicast2}, &(0x7f00000006c0)=0xc)

23:17:45 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 44)

[ 2179.469504] FAT-fs (loop0): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:17:45 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

23:17:45 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xc00)

23:17:45 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{0x21, 0x0, 0x700}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

[ 2179.490214] loop4: detected capacity change from 0 to 256
[ 2179.496277] FAULT_INJECTION: forcing a failure.
[ 2179.496277] name failslab, interval 1, probability 0, space 0, times 0
[ 2179.499361] CPU: 1 PID: 11370 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2179.501314] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2179.503304] Call Trace:
[ 2179.503635]  <TASK>
[ 2179.503934]  dump_stack_lvl+0x8b/0xb3
[ 2179.504443]  should_fail.cold+0x5/0xa
[ 2179.504959]  ? create_object.isra.0+0x3a/0xa20
[ 2179.505571]  should_failslab+0x5/0x10
[ 2179.506067]  kmem_cache_alloc+0x5b/0x480
[ 2179.506719]  create_object.isra.0+0x3a/0xa20
[ 2179.507439]  ? kasan_unpoison+0x23/0x50
[ 2179.507976]  kmem_cache_alloc_trace+0x22e/0x3c0
[ 2179.508595]  kobject_uevent_env+0x236/0xfa0
[ 2179.509194]  ? dev_uevent_filter+0xd0/0xd0
[ 2179.509746]  ? _raw_spin_unlock+0x24/0x40
[ 2179.510289]  disk_event_uevent+0x17b/0x1e0
[ 2179.511355]  ? disk_events_async_show+0x10/0x10
[ 2179.512484]  ? __fget_files+0x28d/0x470
[ 2179.513546]  disk_force_media_change+0x1e/0xc0
[ 2179.514722]  loop_configure+0x75b/0x1950
[ 2179.515764]  ? putname+0xfe/0x140
[ 2179.516652]  lo_ioctl+0x7c5/0x18b0
[ 2179.517543]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2179.518867]  ? loop_set_status_old+0x1b0/0x1b0
[ 2179.520023]  ? avc_ss_reset+0x180/0x180
[ 2179.521092]  ? __lock_acquire+0xbac/0x6120
[ 2179.522187]  ? selinux_inode_getsecctx+0x90/0x90
[ 2179.523464]  ? loop_set_status_old+0x1b0/0x1b0
[ 2179.524632]  blkdev_ioctl+0x362/0x7f0
[ 2179.525606]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2179.526719]  ? __x64_sys_ioctl+0x97/0x210
[ 2179.527275]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2179.528002]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2179.528622]  __x64_sys_ioctl+0x196/0x210
[ 2179.529156]  do_syscall_64+0x3b/0x90
[ 2179.529651]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2179.530317] RIP: 0033:0x7f9496e2f8d7
[ 2179.530903] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2179.533255] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2179.534228] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2179.535254] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2179.536161] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2179.537118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2179.538040] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2179.539017]  </TASK>
[ 2179.555641] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:17:46 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x480700, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:17:46 executing program 5:
r0 = syz_io_uring_setup(0x4eff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @private1}}, 0x0)
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
rt_sigprocmask(0x1, &(0x7f0000000080)={[0x6]}, &(0x7f00000000c0), 0x8)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

23:17:46 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[ 2179.713907] loop6: detected capacity change from 0 to 512
[ 2179.732361] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
23:17:46 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[ 2179.765557] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
23:17:46 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000180), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x151042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_setup(0x544, &(0x7f0000000040)={0x0, 0x3cf5, 0x0, 0x3, 0x32e, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000000c0), &(0x7f0000000240)=<r5=>0x0)
syz_io_uring_submit(0x0, r5, &(0x7f0000000280)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x5, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x1}, 0x81)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r7 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000380), 0x202000, 0x0)
ioctl$LOOP_SET_FD(r6, 0x4c00, r7)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r6, 0x0, 0x0}, 0x0)
io_uring_register$IORING_UNREGISTER_FILES(r6, 0x3, 0x0, 0x0)

[ 2179.785551] FAT-fs (loop0): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:17:46 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{0x21, 0x0, 0x900}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:17:46 executing program 0:
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r3, 0x0, 0x0}, 0x0)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000000)=0x2)
ioctl$TIOCL_SETSEL(r0, 0x5425, 0x0)

[ 2179.818719] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:17:46 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x500000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:17:46 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xd00)

23:17:46 executing program 5:
clone(0x4428d500, 0x0, 0x0, 0x0, 0x0)

23:17:46 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 45)

[ 2179.917965] loop4: detected capacity change from 0 to 256
[ 2179.944635] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2179.986263] FAULT_INJECTION: forcing a failure.
[ 2179.986263] name failslab, interval 1, probability 0, space 0, times 0
[ 2179.987801] CPU: 1 PID: 11417 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2179.988863] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2179.990311] Call Trace:
[ 2179.990680]  <TASK>
[ 2179.990970]  dump_stack_lvl+0x8b/0xb3
[ 2179.991474]  should_fail.cold+0x5/0xa
[ 2179.991975]  ? kobject_get_path+0xc0/0x1d0
[ 2179.992543]  should_failslab+0x5/0x10
[ 2179.993041]  __kmalloc+0x72/0x440
[ 2179.993520]  kobject_get_path+0xc0/0x1d0
[ 2179.994111]  kobject_uevent_env+0x25c/0xfa0
[ 2179.994770]  ? _raw_spin_unlock+0x24/0x40
[ 2179.995342]  disk_event_uevent+0x17b/0x1e0
[ 2179.995906]  ? disk_events_async_show+0x10/0x10
[ 2179.996515]  ? __fget_files+0x28d/0x470
[ 2179.997059]  disk_force_media_change+0x1e/0xc0
[ 2179.997652]  loop_configure+0x75b/0x1950
[ 2179.998237]  ? putname+0xfe/0x140
[ 2179.998781]  lo_ioctl+0x7c5/0x18b0
[ 2179.999267]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2179.999924]  ? loop_set_status_old+0x1b0/0x1b0
[ 2180.000539]  ? avc_ss_reset+0x180/0x180
[ 2180.001083]  ? __lock_acquire+0xbac/0x6120
[ 2180.001687]  ? selinux_inode_getsecctx+0x90/0x90
[ 2180.002346]  ? loop_set_status_old+0x1b0/0x1b0
[ 2180.002972]  blkdev_ioctl+0x362/0x7f0
[ 2180.003465]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2180.004093]  ? __x64_sys_ioctl+0x97/0x210
[ 2180.004651]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2180.005386]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2180.006011]  __x64_sys_ioctl+0x196/0x210
[ 2180.006568]  do_syscall_64+0x3b/0x90
[ 2180.007096]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2180.007767] RIP: 0033:0x7f9496e2f8d7
[ 2180.008241] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2180.010612] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2180.011610] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2180.012516] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2180.013436] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2180.014374] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2180.015294] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2180.016232]  </TASK>
23:17:46 executing program 0:
r0 = syz_open_dev$evdev(&(0x7f0000000980), 0x0, 0x0)
ioctl$EVIOCSREP(0xffffffffffffffff, 0x40084503, 0x0)
ioctl$EVIOCSMASK(r0, 0x40104593, &(0x7f00000000c0)={0x3, 0x65, &(0x7f0000000000)="d964f72a2160ae84526ad82d9b5a2e89e0f9fcc4012cbaa5c7ca823384de76c8f3b84f430f98ac27ca3f4e9229f710b67d5226c63580b7273377784ec7b2e83e22d0b14f4bd0fcfa840088aaca84cf104544acfd022207a300da81fb86a365aad01c18a5e0"})
ioctl$EVIOCSMASK(r0, 0x40104593, &(0x7f0000000100)={0x3, 0x1, &(0x7f0000000080)='A'})

23:17:46 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x500700, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2180.049703] loop6: detected capacity change from 0 to 512
23:17:46 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd, 0x0, 0x0, 0x0, {0x4022}, 0x0, {0x0, r3}}, 0x4)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r4, 0xffffffffffffffff, r0], 0x3)
r5 = fcntl$dupfd(r4, 0x0, r4)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r5, 0x6, &(0x7f0000000180)={0xb815, 0x0, &(0x7f0000000040)=[0xffffffffffffffff]}, 0x1)

[ 2180.113052] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2180.145833] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[ 2180.258014] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:18:02 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x580000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:18:02 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{0x21, 0x0, 0xf00}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:18:02 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x4}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000240))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r1, 0xc0189371, &(0x7f0000000280)={{0x1, 0x1, 0x18, <r4=>r0}, './file1\x00'})
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x0, 0x0}, 0x7fff)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r5, 0x0, 0x0}, 0x0)
write$P9_RREADLINK(r5, &(0x7f0000000040)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)

23:18:02 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x1800)

23:18:02 executing program 5:
clone(0x4428d500, 0x0, 0x0, 0x0, 0x0)

23:18:02 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 46)

23:18:02 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3, 0x0, {0x0, r5}}, 0x800)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000380)='^\x80^-\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r7, 0x0, 0x0}, 0x0)
r8 = syz_genetlink_get_family_id$gtp(&(0x7f0000000080), r1)
r9 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(r7, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, r8, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r9}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)
stat(&(0x7f0000000240)='./file1\x00', &(0x7f00000001c0))

23:18:02 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 1)

[ 2195.762415] FAULT_INJECTION: forcing a failure.
[ 2195.762415] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2195.765970] CPU: 1 PID: 11448 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2195.768262] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2195.771728] Call Trace:
[ 2195.772502]  <TASK>
[ 2195.773186]  dump_stack_lvl+0x8b/0xb3
[ 2195.774360]  should_fail.cold+0x5/0xa
[ 2195.775511]  _copy_from_user+0x2e/0x170
[ 2195.776652]  copy_clone_args_from_user+0x147/0x780
[ 2195.778113]  ? lock_is_held_type+0xd7/0x130
[ 2195.779267]  ? sighand_ctor+0x40/0x40
[ 2195.780348]  ? lock_release+0x3b2/0x6f0
[ 2195.781661]  ? ksys_write+0x212/0x250
[ 2195.782904]  ? lock_downgrade+0x6d0/0x6d0
[ 2195.784278]  ? lock_is_held_type+0xd7/0x130
[ 2195.785716]  __do_sys_clone3+0x9d/0x2e0
[ 2195.787055]  ? __ia32_sys_clone+0x150/0x150
[ 2195.788522]  ? wait_for_completion_io+0x270/0x270
[ 2195.790161]  ? lock_is_held_type+0xd7/0x130
[ 2195.791534]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2195.793371]  ? vfs_write+0x188/0xae0
[ 2195.794640]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2195.796493]  ? fput+0x2a/0x50
[ 2195.797554]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2195.799197]  do_syscall_64+0x3b/0x90
[ 2195.800365]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2195.802050] RIP: 0033:0x7f8893772b19
[ 2195.802957] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2195.805256] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2195.806219] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2195.807801] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2195.809588] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2195.811696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2195.813582] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2195.815614]  </TASK>
[ 2195.828220] FAULT_INJECTION: forcing a failure.
[ 2195.828220] name failslab, interval 1, probability 0, space 0, times 0
[ 2195.833761] CPU: 0 PID: 11442 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2195.836088] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2195.839249] Call Trace:
[ 2195.839940]  <TASK>
[ 2195.840551]  dump_stack_lvl+0x8b/0xb3
[ 2195.841755]  should_fail.cold+0x5/0xa
[ 2195.842847]  ? create_object.isra.0+0x3a/0xa20
[ 2195.844146]  should_failslab+0x5/0x10
[ 2195.845280]  kmem_cache_alloc+0x5b/0x480
[ 2195.846593]  create_object.isra.0+0x3a/0xa20
[ 2195.847828]  ? kasan_unpoison+0x23/0x50
[ 2195.848834]  __kmalloc+0x25b/0x440
[ 2195.849742]  kobject_get_path+0xc0/0x1d0
[ 2195.850940]  kobject_uevent_env+0x25c/0xfa0
[ 2195.852205]  ? _raw_spin_unlock+0x24/0x40
[ 2195.853441]  disk_event_uevent+0x17b/0x1e0
[ 2195.854818]  ? disk_events_async_show+0x10/0x10
[ 2195.856402]  ? __fget_files+0x28d/0x470
[ 2195.857649]  disk_force_media_change+0x1e/0xc0
[ 2195.859385]  loop_configure+0x75b/0x1950
[ 2195.860782]  ? putname+0xfe/0x140
[ 2195.861896]  lo_ioctl+0x7c5/0x18b0
[ 2195.863032]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2195.864606]  ? loop_set_status_old+0x1b0/0x1b0
[ 2195.865961]  ? avc_ss_reset+0x180/0x180
[ 2195.867175]  ? __lock_acquire+0xbac/0x6120
[ 2195.868677]  ? selinux_inode_getsecctx+0x90/0x90
[ 2195.870168]  ? loop_set_status_old+0x1b0/0x1b0
[ 2195.871583]  blkdev_ioctl+0x362/0x7f0
[ 2195.872660]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2195.873985]  ? __x64_sys_ioctl+0x97/0x210
[ 2195.875270]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2195.877018]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2195.878375]  __x64_sys_ioctl+0x196/0x210
[ 2195.879568]  do_syscall_64+0x3b/0x90
[ 2195.880652]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2195.882112] RIP: 0033:0x7f9496e2f8d7
[ 2195.883216] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2195.888297] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2195.890300] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2195.892443] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2195.894590] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2195.896585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2195.898506] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2195.900662]  </TASK>
[ 2195.906235] loop4: detected capacity change from 0 to 256
[ 2195.946155] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2196.027707] loop6: detected capacity change from 0 to 512
[ 2196.033221] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2196.050191] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[ 2196.292742] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:18:18 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 2)

23:18:18 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{0x21, 0x0, 0xc000}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:18:18 executing program 5:
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
tkill(r0, 0x12)
r1 = socket$inet6(0xa, 0x1, 0x0)
connect$inet6(r1, &(0x7f0000000340)={0xa, 0x4e20, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0x100}, 0x1c)

23:18:18 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x580700, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:18:18 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r4, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x6688, &(0x7f0000000180)={0x0, 0x6e58, 0x4, 0x3, 0x1dd, 0x0, r4}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000200))

23:18:18 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 47)

23:18:18 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x2000)

23:18:18 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3, 0x0, {0x0, r5}}, 0x800)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000380)='^\x80^-\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r7, 0x0, 0x0}, 0x0)
r8 = syz_genetlink_get_family_id$gtp(&(0x7f0000000080), r1)
r9 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(r7, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, r8, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r9}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)
stat(&(0x7f0000000240)='./file1\x00', &(0x7f00000001c0))

[ 2212.161272] FAULT_INJECTION: forcing a failure.
[ 2212.161272] name failslab, interval 1, probability 0, space 0, times 0
[ 2212.165331] CPU: 1 PID: 11487 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2212.168186] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2212.181173] Call Trace:
[ 2212.181854]  <TASK>
[ 2212.182392]  dump_stack_lvl+0x8b/0xb3
[ 2212.183479]  should_fail.cold+0x5/0xa
[ 2212.184275]  ? copy_process+0x2f76/0x6cb0
[ 2212.184858]  should_failslab+0x5/0x10
[ 2212.185346]  kmem_cache_alloc_node+0x55/0x490
[ 2212.186054]  copy_process+0x2f76/0x6cb0
[ 2212.186627]  ? lock_is_held_type+0xd7/0x130
[ 2212.187209]  ? find_held_lock+0x2c/0x110
[ 2212.187793]  ? lock_release+0x3b2/0x6f0
[ 2212.188305]  ? __might_fault+0xd1/0x170
[ 2212.188904]  ? __cleanup_sighand+0xb0/0xb0
[ 2212.189470]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2212.190236]  ? _copy_from_user+0x139/0x170
[ 2212.190904]  ? kernel_clone+0x2f8/0xa60
[ 2212.191455]  kernel_clone+0xe7/0xa60
[ 2212.192004]  ? lock_is_held_type+0xd7/0x130
[ 2212.192618]  ? create_io_thread+0xf0/0xf0
[ 2212.193161]  ? lock_is_held_type+0xd7/0x130
[ 2212.193782]  __do_sys_clone3+0x1dd/0x2e0
[ 2212.194316]  ? __ia32_sys_clone+0x150/0x150
[ 2212.194964]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2212.195785]  ? vfs_write+0x188/0xae0
[ 2212.196274]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2212.197035]  ? fput+0x2a/0x50
[ 2212.197464]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2212.198266]  do_syscall_64+0x3b/0x90
[ 2212.198941]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2212.199671] RIP: 0033:0x7f8893772b19
[ 2212.200144] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2212.202750] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2212.208066] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2212.209051] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2212.210043] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2212.211099] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2212.212037] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2212.213023]  </TASK>
[ 2212.225219] FAULT_INJECTION: forcing a failure.
[ 2212.225219] name failslab, interval 1, probability 0, space 0, times 0
[ 2212.232383] CPU: 1 PID: 11494 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2212.233487] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2212.235005] Call Trace:
[ 2212.235352]  <TASK>
[ 2212.235670]  dump_stack_lvl+0x8b/0xb3
[ 2212.236182]  should_fail.cold+0x5/0xa
[ 2212.236711]  ? __alloc_skb+0x211/0x340
[ 2212.237246]  should_failslab+0x5/0x10
[ 2212.237774]  kmem_cache_alloc_node+0x55/0x490
[ 2212.238373]  __alloc_skb+0x211/0x340
[ 2212.238913]  alloc_uevent_skb+0x7b/0x210
[ 2212.239496]  kobject_uevent_env+0xaa4/0xfa0
[ 2212.240090]  ? _raw_spin_unlock+0x24/0x40
[ 2212.240656]  disk_event_uevent+0x17b/0x1e0
[ 2212.241246]  ? disk_events_async_show+0x10/0x10
[ 2212.241893]  ? __fget_files+0x28d/0x470
[ 2212.242426]  disk_force_media_change+0x1e/0xc0
[ 2212.243091]  loop_configure+0x75b/0x1950
[ 2212.243671]  ? putname+0xfe/0x140
[ 2212.244143]  lo_ioctl+0x7c5/0x18b0
[ 2212.244636]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2212.245294]  ? loop_set_status_old+0x1b0/0x1b0
[ 2212.245915]  ? avc_ss_reset+0x180/0x180
[ 2212.246432]  ? __lock_acquire+0xbac/0x6120
[ 2212.247120]  ? selinux_inode_getsecctx+0x90/0x90
[ 2212.247779]  ? loop_set_status_old+0x1b0/0x1b0
[ 2212.248373]  blkdev_ioctl+0x362/0x7f0
[ 2212.248902]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2212.249547]  ? __x64_sys_ioctl+0x97/0x210
[ 2212.250097]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2212.250834]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2212.251526]  __x64_sys_ioctl+0x196/0x210
[ 2212.252072]  do_syscall_64+0x3b/0x90
[ 2212.252575]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2212.253276] RIP: 0033:0x7f9496e2f8d7
[ 2212.253794] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2212.256189] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2212.257236] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2212.258181] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2212.259169] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2212.260096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2212.261032] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2212.262044]  </TASK>
23:18:18 executing program 5:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3, 0x0, {0x0, r5}}, 0x800)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000380)='^\x80^-\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r7, 0x0, 0x0}, 0x0)
r8 = syz_genetlink_get_family_id$gtp(&(0x7f0000000080), r1)
r9 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(r7, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, r8, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r9}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)
stat(&(0x7f0000000240)='./file1\x00', &(0x7f00000001c0))

23:18:18 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x600000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:18:18 executing program 3:
r0 = syz_io_uring_setup(0x5, &(0x7f0000000080)={0x0, 0x0, 0x2, 0x0, 0x21d}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000040), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_enter(r0, 0x6adf, 0x8abc, 0x3, &(0x7f0000000180)={[0x1f]}, 0x8)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)

[ 2212.332494] loop4: detected capacity change from 0 to 256
[ 2212.337026] loop6: detected capacity change from 0 to 512
[ 2212.344280] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2212.354724] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2212.379399] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
23:18:18 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{0x21, 0x0, 0xf000}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:18:18 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x600700, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:18:18 executing program 5:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3, 0x0, {0x0, r5}}, 0x800)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000380)='^\x80^-\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r7, 0x0, 0x0}, 0x0)
r8 = syz_genetlink_get_family_id$gtp(&(0x7f0000000080), r1)
r9 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(r7, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, r8, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r9}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)
stat(&(0x7f0000000240)='./file1\x00', &(0x7f00000001c0))

23:18:18 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 3)

23:18:18 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 48)

[ 2212.602013] FAULT_INJECTION: forcing a failure.
[ 2212.602013] name failslab, interval 1, probability 0, space 0, times 0
[ 2212.603655] CPU: 0 PID: 11535 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2212.604731] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2212.606170] Call Trace:
[ 2212.606498]  <TASK>
[ 2212.606779]  dump_stack_lvl+0x8b/0xb3
[ 2212.607281]  should_fail.cold+0x5/0xa
[ 2212.607767]  ? create_object.isra.0+0x3a/0xa20
[ 2212.608350]  should_failslab+0x5/0x10
[ 2212.608845]  kmem_cache_alloc+0x5b/0x480
[ 2212.609406]  create_object.isra.0+0x3a/0xa20
[ 2212.609972]  ? kasan_unpoison+0x23/0x50
[ 2212.610499]  kmem_cache_alloc_node+0x248/0x490
[ 2212.611134]  copy_process+0x2f76/0x6cb0
[ 2212.611641]  ? lock_is_held_type+0xd7/0x130
[ 2212.612198]  ? find_held_lock+0x2c/0x110
[ 2212.612725]  ? lock_release+0x3b2/0x6f0
[ 2212.613242]  ? __might_fault+0xd1/0x170
[ 2212.613761]  ? __cleanup_sighand+0xb0/0xb0
[ 2212.614304]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2212.615017]  ? _copy_from_user+0x139/0x170
[ 2212.615574]  ? kernel_clone+0x2f8/0xa60
[ 2212.616108]  kernel_clone+0xe7/0xa60
[ 2212.616615]  ? lock_is_held_type+0xd7/0x130
[ 2212.617177]  ? create_io_thread+0xf0/0xf0
[ 2212.617730]  ? lock_is_held_type+0xd7/0x130
[ 2212.618293]  __do_sys_clone3+0x1dd/0x2e0
[ 2212.618827]  ? __ia32_sys_clone+0x150/0x150
[ 2212.619451]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2212.620147]  ? vfs_write+0x188/0xae0
[ 2212.620643]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2212.621354]  ? fput+0x2a/0x50
[ 2212.621776]  ? lock_is_held_type+0xd7/0x130
[ 2212.622348]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2212.622995]  do_syscall_64+0x3b/0x90
[ 2212.623501]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2212.624180] RIP: 0033:0x7f8893772b19
[ 2212.624654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2212.627034] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2212.628026] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2212.628942] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2212.629850] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2212.631007] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2212.633265] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2212.635236]  </TASK>
23:18:19 executing program 0:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r4, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x6688, &(0x7f0000000180)={0x0, 0x6e58, 0x4, 0x3, 0x1dd, 0x0, r4}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000200))

[ 2212.667632] FAULT_INJECTION: forcing a failure.
[ 2212.667632] name failslab, interval 1, probability 0, space 0, times 0
[ 2212.671140] CPU: 1 PID: 11539 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2212.673608] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2212.677138] Call Trace:
[ 2212.677930]  <TASK>
[ 2212.678631]  dump_stack_lvl+0x8b/0xb3
[ 2212.679849]  should_fail.cold+0x5/0xa
[ 2212.681008]  ? create_object.isra.0+0x3a/0xa20
[ 2212.682376]  should_failslab+0x5/0x10
[ 2212.683546]  kmem_cache_alloc+0x5b/0x480
[ 2212.684788]  create_object.isra.0+0x3a/0xa20
[ 2212.686156]  ? kasan_unpoison+0x23/0x50
[ 2212.687413]  kmem_cache_alloc_node+0x248/0x490
[ 2212.688859]  __alloc_skb+0x211/0x340
[ 2212.690033]  alloc_uevent_skb+0x7b/0x210
[ 2212.691365]  kobject_uevent_env+0xaa4/0xfa0
[ 2212.692705]  ? _raw_spin_unlock+0x24/0x40
[ 2212.694000]  disk_event_uevent+0x17b/0x1e0
[ 2212.695294]  ? disk_events_async_show+0x10/0x10
[ 2212.696744]  ? __fget_files+0x28d/0x470
[ 2212.698005]  disk_force_media_change+0x1e/0xc0
[ 2212.699419]  loop_configure+0x75b/0x1950
[ 2212.700687]  ? putname+0xfe/0x140
[ 2212.701770]  lo_ioctl+0x7c5/0x18b0
[ 2212.702854]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2212.704349]  ? loop_set_status_old+0x1b0/0x1b0
[ 2212.705732]  ? avc_ss_reset+0x180/0x180
[ 2212.706975]  ? __lock_acquire+0xbac/0x6120
[ 2212.708327]  ? selinux_inode_getsecctx+0x90/0x90
[ 2212.709783]  ? loop_set_status_old+0x1b0/0x1b0
[ 2212.711236]  blkdev_ioctl+0x362/0x7f0
[ 2212.712407]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2212.713849]  ? __x64_sys_ioctl+0x97/0x210
[ 2212.715006]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2212.716526]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2212.717835]  __x64_sys_ioctl+0x196/0x210
[ 2212.719010]  do_syscall_64+0x3b/0x90
[ 2212.720096]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2212.721664] RIP: 0033:0x7f9496e2f8d7
[ 2212.722803] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2212.728450] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2212.730753] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2212.732837] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2212.735082] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2212.737274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2212.739492] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2212.741720]  </TASK>
23:18:19 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 4)

23:18:19 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x680000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:18:19 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x3f00)

[ 2212.769842] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:18:19 executing program 0:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x2000)

23:18:19 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x680700, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:18:19 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{0x21, 0x0, 0xffff}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

[ 2212.875176] FAULT_INJECTION: forcing a failure.
[ 2212.875176] name failslab, interval 1, probability 0, space 0, times 0
[ 2212.878512] CPU: 1 PID: 11552 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2212.880999] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2212.884333] Call Trace:
[ 2212.885094]  <TASK>
[ 2212.885759]  dump_stack_lvl+0x8b/0xb3
[ 2212.886906]  should_fail.cold+0x5/0xa
[ 2212.888098]  ? memcg_alloc_slab_cgroups+0x7a/0x120
[ 2212.889677]  should_failslab+0x5/0x10
[ 2212.890913]  __kmalloc_node+0x76/0x470
[ 2212.892164]  memcg_alloc_slab_cgroups+0x7a/0x120
[ 2212.893706]  new_slab+0x101/0x360
[ 2212.894844]  ___slab_alloc+0x8ef/0xea0
[ 2212.896106]  ? copy_process+0x2f76/0x6cb0
[ 2212.897429]  ? refill_obj_stock+0x161/0x310
[ 2212.898811]  ? copy_process+0x2f76/0x6cb0
[ 2212.900052]  __slab_alloc.constprop.0+0x45/0x80
[ 2212.901554]  ? copy_process+0x2f76/0x6cb0
[ 2212.902876]  kmem_cache_alloc_node+0x370/0x490
[ 2212.904484]  copy_process+0x2f76/0x6cb0
[ 2212.905743]  ? lock_is_held_type+0xd7/0x130
[ 2212.907117]  ? find_held_lock+0x2c/0x110
[ 2212.908462]  ? lock_release+0x3b2/0x6f0
[ 2212.909705]  ? __might_fault+0xd1/0x170
[ 2212.911025]  ? __cleanup_sighand+0xb0/0xb0
[ 2212.912429]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2212.914189]  ? _copy_from_user+0x139/0x170
[ 2212.915496]  ? kernel_clone+0x2f8/0xa60
[ 2212.916718]  kernel_clone+0xe7/0xa60
[ 2212.917918]  ? lock_is_held_type+0xd7/0x130
[ 2212.919327]  ? create_io_thread+0xf0/0xf0
[ 2212.920673]  ? lock_is_held_type+0xd7/0x130
[ 2212.922070]  __do_sys_clone3+0x1dd/0x2e0
[ 2212.923381]  ? __ia32_sys_clone+0x150/0x150
[ 2212.924788]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2212.926521]  ? vfs_write+0x188/0xae0
[ 2212.927748]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2212.929527]  ? fput+0x2a/0x50
[ 2212.930565]  ? lock_is_held_type+0xd7/0x130
[ 2212.932044]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2212.933558]  do_syscall_64+0x3b/0x90
[ 2212.934745]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2212.940497] RIP: 0033:0x7f8893772b19
[ 2212.951618] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2212.957222] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2212.971797] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2212.974068] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2212.976351] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2212.978628] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2212.985137] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2212.987414]  </TASK>
23:18:19 executing program 5:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3, 0x0, {0x0, r5}}, 0x800)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000380)='^\x80^-\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r7, 0x0, 0x0}, 0x0)
r8 = syz_genetlink_get_family_id$gtp(&(0x7f0000000080), r1)
r9 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(r7, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, r8, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r9}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)
stat(&(0x7f0000000240)='./file1\x00', &(0x7f00000001c0))

23:18:19 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x700000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2213.090228] loop6: detected capacity change from 0 to 512
[ 2213.093037] loop0: detected capacity change from 0 to 256
[ 2213.108839] FAT-fs (loop0): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2213.140186] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
23:18:19 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xd000)

[ 2213.192798] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[ 2213.224063] loop4: detected capacity change from 0 to 256
[ 2213.254915] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2213.436670] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:18:34 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 49)

23:18:34 executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{0x21, 0x0, 0xffff}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:18:34 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x700700, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:18:34 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xfeff)

23:18:34 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x3, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:18:34 executing program 5:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x680700, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:18:34 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 5)

23:18:34 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x603, &(0x7f0000000240)={0x0, 0x77da, 0x10, 0x2, 0xf0}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000340)=<r2=>0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r5, 0x0, 0x0}, 0x0)
r6 = syz_io_uring_setup(0x1, &(0x7f0000000000), &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000080)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f00000001c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000200)={0x4849c1}, &(0x7f0000000180)='./file0\x00', 0x18, 0x0, 0x0, {0x0, r9}}, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000400)=@IORING_OP_CONNECT={0x10, 0x3, 0x0, r1, 0x80, &(0x7f0000000380)=@pppol2tpin6={0x18, 0x1, {0x0, r5, 0x2, 0x0, 0x4, 0x0, {0xa, 0x4e20, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x7fffffff}}}, 0x0, 0x0, 0x1, {0x0, r9}}, 0x1)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r10=>0x0, &(0x7f0000000140)=<r11=>0x0)
syz_io_uring_submit(r10, r11, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0x2)
syz_io_uring_submit(r10, r11, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r12 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r10, r11, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r12, 0x0, 0x0}, 0x0)
tee(r12, r1, 0x20000000000000, 0xa)

[ 2227.963880] FAULT_INJECTION: forcing a failure.
[ 2227.963880] name failslab, interval 1, probability 0, space 0, times 0
[ 2227.965202] CPU: 0 PID: 11592 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2227.966153] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2227.967470] Call Trace:
[ 2227.967755]  <TASK>
[ 2227.968016]  dump_stack_lvl+0x8b/0xb3
[ 2227.968459]  should_fail.cold+0x5/0xa
[ 2227.968896]  should_failslab+0x5/0x10
[ 2227.969338]  __kmalloc_node_track_caller+0x7e/0x440
[ 2227.969886]  ? alloc_uevent_skb+0x7b/0x210
[ 2227.970375]  __alloc_skb+0xe3/0x340
[ 2227.970778]  alloc_uevent_skb+0x7b/0x210
[ 2227.971247]  kobject_uevent_env+0xaa4/0xfa0
[ 2227.971723]  ? _raw_spin_unlock+0x24/0x40
[ 2227.972204]  disk_event_uevent+0x17b/0x1e0
[ 2227.972668]  ? disk_events_async_show+0x10/0x10
[ 2227.973203]  ? __fget_files+0x28d/0x470
[ 2227.973650]  disk_force_media_change+0x1e/0xc0
[ 2227.974176]  loop_configure+0x75b/0x1950
[ 2227.974623]  ? putname+0xfe/0x140
[ 2227.975023]  lo_ioctl+0x7c5/0x18b0
[ 2227.975416]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2227.975970]  ? loop_set_status_old+0x1b0/0x1b0
[ 2227.976473]  ? avc_ss_reset+0x180/0x180
[ 2227.976925]  ? __lock_acquire+0xbac/0x6120
[ 2227.977411]  ? selinux_inode_getsecctx+0x90/0x90
[ 2227.977963]  ? loop_set_status_old+0x1b0/0x1b0
[ 2227.978443]  blkdev_ioctl+0x362/0x7f0
[ 2227.978872]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2227.979391]  ? __x64_sys_ioctl+0x97/0x210
[ 2227.979867]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2227.980456]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2227.980998]  __x64_sys_ioctl+0x196/0x210
[ 2227.981218] FAULT_INJECTION: forcing a failure.
[ 2227.981218] name failslab, interval 1, probability 0, space 0, times 0
[ 2227.981443]  do_syscall_64+0x3b/0x90
[ 2227.983607]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2227.984149] RIP: 0033:0x7f9496e2f8d7
[ 2227.984566] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2227.986612] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2227.987478] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2227.988237] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2227.989025] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2227.989818] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2227.990614] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2227.991434]  </TASK>
[ 2227.991690] CPU: 1 PID: 11601 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2227.992989] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2227.994012] loop6: detected capacity change from 0 to 512
[ 2227.994756] Call Trace:
[ 2227.994766]  <TASK>
[ 2227.994774]  dump_stack_lvl+0x8b/0xb3
[ 2227.996857]  should_fail.cold+0x5/0xa
[ 2227.997457]  ? prepare_creds+0x2b/0x6f0
[ 2227.997996] loop4: detected capacity change from 0 to 256
[ 2227.998090]  should_failslab+0x5/0x10
[ 2227.999302]  kmem_cache_alloc+0x5b/0x480
[ 2227.999942]  prepare_creds+0x2b/0x6f0
[ 2228.000553]  copy_creds+0x72/0x930
[ 2228.001122]  copy_process+0x107e/0x6cb0
[ 2228.001766]  ? lock_is_held_type+0xd7/0x130
[ 2228.002445]  ? find_held_lock+0x2c/0x110
[ 2228.003235]  ? lock_release+0x3b2/0x6f0
[ 2228.003873]  ? __might_fault+0xd1/0x170
[ 2228.004521]  ? __cleanup_sighand+0xb0/0xb0
[ 2228.005199]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2228.006081]  ? _copy_from_user+0x139/0x170
[ 2228.006764]  ? kernel_clone+0x2f8/0xa60
[ 2228.007400]  kernel_clone+0xe7/0xa60
[ 2228.007988]  ? lock_is_held_type+0xd7/0x130
[ 2228.008662]  ? create_io_thread+0xf0/0xf0
[ 2228.009321]  ? lock_is_held_type+0xd7/0x130
[ 2228.010006]  __do_sys_clone3+0x1dd/0x2e0
[ 2228.010639]  ? __ia32_sys_clone+0x150/0x150
[ 2228.011356]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2228.012213]  ? vfs_write+0x188/0xae0
[ 2228.012803]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2228.013670]  ? fput+0x2a/0x50
[ 2228.014167]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2228.014977]  do_syscall_64+0x3b/0x90
[ 2228.015582]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2228.016381] RIP: 0033:0x7f8893772b19
[ 2228.016954] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2228.019854] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2228.021022] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2228.022129] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2228.023237] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2228.024325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2228.025406] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2228.026547]  </TASK>
[ 2228.032136] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
23:18:34 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x780000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2228.035862] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2228.045160] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.7'.
[ 2228.078954] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
23:18:34 executing program 0:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x680700, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2228.130280] loop0: detected capacity change from 0 to 256
[ 2228.156808] FAT-fs (loop0): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2228.185080] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.7'.
[ 2228.213176] FAT-fs (loop0): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2228.241515] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:18:49 executing program 5:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x580700, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:18:49 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xfffe)

23:18:49 executing program 0:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x603, &(0x7f0000000240)={0x0, 0x77da, 0x10, 0x2, 0xf0}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040), &(0x7f0000000340)=<r2=>0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r5, 0x0, 0x0}, 0x0)
r6 = syz_io_uring_setup(0x1, &(0x7f0000000000), &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000080)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f00000001c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000200)={0x4849c1}, &(0x7f0000000180)='./file0\x00', 0x18, 0x0, 0x0, {0x0, r9}}, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000400)=@IORING_OP_CONNECT={0x10, 0x3, 0x0, r1, 0x80, &(0x7f0000000380)=@pppol2tpin6={0x18, 0x1, {0x0, r5, 0x2, 0x0, 0x4, 0x0, {0xa, 0x4e20, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x7fffffff}}}, 0x0, 0x0, 0x1, {0x0, r9}}, 0x1)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r10=>0x0, &(0x7f0000000140)=<r11=>0x0)
syz_io_uring_submit(r10, r11, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0x2)
syz_io_uring_submit(r10, r11, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r12 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r10, r11, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r12, 0x0, 0x0}, 0x0)
tee(r12, r1, 0x20000000000000, 0xa)

23:18:49 executing program 3:
r0 = syz_io_uring_setup(0xfffffffd, &(0x7f0000000080)={0x0, 0x10000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r1, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4105, &(0x7f0000000180)={0x0, 0x20, 0x10, 0x0, 0x40, 0x0, r1}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ff8000/0x6000)=nil, &(0x7f0000000040), &(0x7f0000000200))
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1, 0x30, r3, 0x296cf000)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x3)
r5 = syz_open_dev$mouse(&(0x7f0000000240), 0x78, 0x40002)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r5, 0xc0189373, &(0x7f0000000280)={{0x1, 0x1, 0x18, r6, {0x9}}, './file1\x00'})
dup3(r0, r4, 0x80000)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r2, 0xffffffffffffffff, r0], 0x3)

23:18:49 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 6)

23:18:49 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 50)

23:18:49 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x780700, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:18:49 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0xe, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

[ 2242.697705] loop4: detected capacity change from 0 to 256
[ 2242.718792] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2242.741947] FAULT_INJECTION: forcing a failure.
[ 2242.741947] name failslab, interval 1, probability 0, space 0, times 0
[ 2242.744297] CPU: 0 PID: 11635 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2242.745200] FAULT_INJECTION: forcing a failure.
[ 2242.745200] name failslab, interval 1, probability 0, space 0, times 0
[ 2242.746213] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2242.746229] Call Trace:
[ 2242.746235]  <TASK>
[ 2242.746242]  dump_stack_lvl+0x8b/0xb3
[ 2242.751497]  should_fail.cold+0x5/0xa
[ 2242.752012]  ? create_object.isra.0+0x3a/0xa20
[ 2242.752613]  should_failslab+0x5/0x10
[ 2242.753116]  kmem_cache_alloc+0x5b/0x480
[ 2242.753657]  create_object.isra.0+0x3a/0xa20
[ 2242.754230]  ? kasan_unpoison+0x23/0x50
[ 2242.754749]  kmem_cache_alloc+0x239/0x480
[ 2242.755294]  prepare_creds+0x2b/0x6f0
[ 2242.756378]  copy_creds+0x72/0x930
[ 2242.756858]  copy_process+0x107e/0x6cb0
[ 2242.757378]  ? lock_is_held_type+0xd7/0x130
[ 2242.757931]  ? find_held_lock+0x2c/0x110
[ 2242.758477]  ? lock_release+0x3b2/0x6f0
[ 2242.758995]  ? __might_fault+0xd1/0x170
[ 2242.759523]  ? __cleanup_sighand+0xb0/0xb0
[ 2242.760078]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2242.760773]  ? _copy_from_user+0x139/0x170
[ 2242.761317]  ? kernel_clone+0x2f8/0xa60
[ 2242.761834]  kernel_clone+0xe7/0xa60
[ 2242.762312]  ? lock_is_held_type+0xd7/0x130
[ 2242.762878]  ? create_io_thread+0xf0/0xf0
[ 2242.763448]  __do_sys_clone3+0x1dd/0x2e0
[ 2242.763990]  ? __ia32_sys_clone+0x150/0x150
[ 2242.764555]  ? finish_task_switch.isra.0+0x226/0x870
[ 2242.765244]  ? restore_fpregs_from_fpstate+0xcc/0x1e0
[ 2242.765942]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2242.766623]  do_syscall_64+0x3b/0x90
[ 2242.767123]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2242.767822] RIP: 0033:0x7f8893772b19
[ 2242.768387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2242.770974] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2242.772030] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2242.773815] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2242.774851] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2242.775898] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2242.776929] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2242.777971]  </TASK>
[ 2242.778313] CPU: 1 PID: 11638 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2242.780124] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2242.780733] netlink: 'syz-executor.7': attribute type 3 has an invalid length.
[ 2242.783488] Call Trace:
[ 2242.783500]  <TASK>
[ 2242.783509]  dump_stack_lvl+0x8b/0xb3
[ 2242.783545]  should_fail.cold+0x5/0xa
[ 2242.788269]  ? create_object.isra.0+0x3a/0xa20
[ 2242.789581]  should_failslab+0x5/0x10
[ 2242.790652]  kmem_cache_alloc+0x5b/0x480
[ 2242.791825]  create_object.isra.0+0x3a/0xa20
[ 2242.793072]  ? kasan_unpoison+0x23/0x50
[ 2242.794217]  __kmalloc_node_track_caller+0x269/0x440
[ 2242.795735]  ? alloc_uevent_skb+0x7b/0x210
[ 2242.797012]  __alloc_skb+0xe3/0x340
[ 2242.797974]  alloc_uevent_skb+0x7b/0x210
[ 2242.798575]  kobject_uevent_env+0xaa4/0xfa0
[ 2242.799222]  ? _raw_spin_unlock+0x24/0x40
[ 2242.799894]  disk_event_uevent+0x17b/0x1e0
[ 2242.800461]  ? disk_events_async_show+0x10/0x10
[ 2242.801088]  ? __fget_files+0x28d/0x470
[ 2242.801691]  disk_force_media_change+0x1e/0xc0
[ 2242.802362]  loop_configure+0x75b/0x1950
[ 2242.802931]  ? putname+0xfe/0x140
[ 2242.803494]  lo_ioctl+0x7c5/0x18b0
[ 2242.803967]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2242.805004]  ? loop_set_status_old+0x1b0/0x1b0
[ 2242.806251]  ? avc_ss_reset+0x180/0x180
[ 2242.806810]  ? __lock_acquire+0xbac/0x6120
[ 2242.807905]  ? selinux_inode_getsecctx+0x90/0x90
[ 2242.808600]  ? loop_set_status_old+0x1b0/0x1b0
[ 2242.809215]  blkdev_ioctl+0x362/0x7f0
[ 2242.809712]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2242.810338]  ? __x64_sys_ioctl+0x97/0x210
[ 2242.810879]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2242.811817]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2242.812469]  __x64_sys_ioctl+0x196/0x210
[ 2242.813068]  do_syscall_64+0x3b/0x90
[ 2242.813802]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2242.814561] RIP: 0033:0x7f9496e2f8d7
[ 2242.815095] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2242.818617] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2242.819736] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2242.820775] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2242.822006] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2242.823082] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2242.824143] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2242.825111]  </TASK>
23:18:49 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x800000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:18:49 executing program 5:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3, 0x0, {0x0, r5}}, 0x800)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000380)='^\x80^-\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r7, 0x0, 0x0}, 0x0)
r8 = syz_genetlink_get_family_id$gtp(&(0x7f0000000080), r1)
r9 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(r7, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, r8, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r9}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)
stat(&(0x7f0000000240)='./file1\x00', &(0x7f00000001c0))

23:18:49 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r2 = creat(&(0x7f0000000040)='./file1\x00', 0x1)
io_uring_enter(r2, 0x147b, 0x3ad7, 0x2, &(0x7f0000000180)={[0x9]}, 0x8)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)

23:18:49 executing program 0:
r0 = syz_io_uring_setup(0xfffffffd, &(0x7f0000000080)={0x0, 0x10000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r1, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4105, &(0x7f0000000180)={0x0, 0x20, 0x10, 0x0, 0x40, 0x0, r1}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ff8000/0x6000)=nil, &(0x7f0000000040), &(0x7f0000000200))
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1, 0x30, r3, 0x296cf000)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x3)
r5 = syz_open_dev$mouse(&(0x7f0000000240), 0x78, 0x40002)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r5, 0xc0189373, &(0x7f0000000280)={{0x1, 0x1, 0x18, r6, {0x9}}, './file1\x00'})
dup3(r0, r4, 0x80000)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r2, 0xffffffffffffffff, r0], 0x3)

[ 2242.970880] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:18:49 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x1517f)

23:18:49 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x800700, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:18:49 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 7)

[ 2243.040378] loop6: detected capacity change from 0 to 512
23:18:49 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0xd9d4}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)

[ 2243.069631] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2243.072305] FAULT_INJECTION: forcing a failure.
[ 2243.072305] name failslab, interval 1, probability 0, space 0, times 0
[ 2243.073886] CPU: 0 PID: 11666 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2243.074996] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2243.076496] Call Trace:
[ 2243.076839]  <TASK>
[ 2243.077182]  dump_stack_lvl+0x8b/0xb3
[ 2243.077711]  should_fail.cold+0x5/0xa
[ 2243.078223]  ? security_prepare_creds+0x10a/0x180
[ 2243.078890]  should_failslab+0x5/0x10
[ 2243.079381]  __kmalloc+0x72/0x440
[ 2243.079914]  security_prepare_creds+0x10a/0x180
[ 2243.080529]  prepare_creds+0x505/0x6f0
[ 2243.081057]  copy_creds+0x72/0x930
[ 2243.081538]  copy_process+0x107e/0x6cb0
[ 2243.082082]  ? lock_is_held_type+0xd7/0x130
[ 2243.082662]  ? find_held_lock+0x2c/0x110
[ 2243.083191]  ? lock_release+0x3b2/0x6f0
[ 2243.083775]  ? __might_fault+0xd1/0x170
[ 2243.084333]  ? __cleanup_sighand+0xb0/0xb0
[ 2243.084906]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2243.085640]  ? _copy_from_user+0x139/0x170
[ 2243.086207]  ? kernel_clone+0x2f8/0xa60
[ 2243.086747]  kernel_clone+0xe7/0xa60
[ 2243.087232]  ? lock_is_held_type+0xd7/0x130
[ 2243.087814]  ? create_io_thread+0xf0/0xf0
[ 2243.088374]  ? lock_is_held_type+0xd7/0x130
[ 2243.088943]  __do_sys_clone3+0x1dd/0x2e0
[ 2243.089491]  ? __ia32_sys_clone+0x150/0x150
[ 2243.090076]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2243.090807]  ? vfs_write+0x188/0xae0
[ 2243.091308]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2243.092047]  ? fput+0x2a/0x50
[ 2243.092487]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2243.093169]  do_syscall_64+0x3b/0x90
[ 2243.093672]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2243.094354] RIP: 0033:0x7f8893772b19
23:18:49 executing program 5:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r2 = creat(&(0x7f0000000040)='./file1\x00', 0x1)
io_uring_enter(r2, 0x147b, 0x3ad7, 0x2, &(0x7f0000000180)={[0x9]}, 0x8)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)

[ 2243.094628] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[ 2243.094845] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2243.098886] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2243.099930] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2243.100792] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2243.101634] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2243.102472] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2243.103312] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2243.105195]  </TASK>
[ 2243.107117] netlink: 'syz-executor.7': attribute type 3 has an invalid length.
[ 2258.269474] FAULT_INJECTION: forcing a failure.
[ 2258.269474] name failslab, interval 1, probability 0, space 0, times 0
23:19:04 executing program 5:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x1517f)

23:19:04 executing program 0:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x1517f)

23:19:04 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 8)

23:19:04 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x10, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:19:04 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x80000)

23:19:04 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x880700, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:19:04 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 51)

23:19:04 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r1=>0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r2, 0x6c64, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r2, 0x3bd8, 0xa405, 0x0, &(0x7f0000000040)={[0x2d]}, 0x8)
rt_sigsuspend(&(0x7f0000000180)={[0xbe]}, 0x8)
rt_sigaction(0xb, &(0x7f0000000380)={&(0x7f0000000240)="dbf0f3ad66470f620a8fe97880a2000000007500c4411ddb0d05954ca40fdcb609700000c44271aee5f30f1edc410f9db637000000", 0x80000002, &(0x7f0000000280)="652ef046fe050000000042d9fb6536d814eec442a1df7e00c4e3791444de0000c443610f4b00c70f9a550d6545d29790a50000c4c1fe5bcb400fa9", {[0x10000]}}, &(0x7f0000000440)={&(0x7f00000003c0)="dbd92666420f38deefc482319094fdc600000026f20f1a430c2942e066460f382a890c000000640f01fbc423116be609266567f340e18dc4c17c77", 0x0, &(0x7f0000000400)="c481ad6d5af4c462e19856430f0f0e902666420f18e9c423f9dfc29965410f9ede0fae1241a201000000000000003e2305b20fa581c48211965802"}, 0x8, &(0x7f0000000480))
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r3, 0xffffffffffffffff, r0], 0x3)
r4 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r4, 0x6c64, 0x0, 0x0, 0x0, 0x0)
r5 = syz_io_uring_setup(0x1, &(0x7f0000000000), &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000080)=<r6=>0x0, &(0x7f0000000140)=<r7=>0x0)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f00000001c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000200)={0x4849c1}, &(0x7f0000000180)='./file0\x00', 0x18, 0x0, 0x0, {0x0, r8}}, 0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000340)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x5, 0x0, @fd=r4, 0x5, 0x0, 0x5, 0x1, 0x1, {0x0, r8}}, 0x1)

[ 2258.271907] CPU: 0 PID: 11686 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2258.273811] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2258.276061] Call Trace:
[ 2258.276570]  <TASK>
[ 2258.277014]  dump_stack_lvl+0x8b/0xb3
[ 2258.277794]  should_fail.cold+0x5/0xa
[ 2258.278562]  ? create_object.isra.0+0x3a/0xa20
[ 2258.279479]  should_failslab+0x5/0x10
[ 2258.279848] loop0: detected capacity change from 0 to 256
[ 2258.280239]  kmem_cache_alloc+0x5b/0x480
[ 2258.282128]  create_object.isra.0+0x3a/0xa20
[ 2258.283013]  ? kasan_unpoison+0x23/0x50
[ 2258.283840]  __kmalloc+0x25b/0x440
[ 2258.284558]  security_prepare_creds+0x10a/0x180
[ 2258.285488]  prepare_creds+0x505/0x6f0
[ 2258.286281]  copy_creds+0x72/0x930
[ 2258.286999]  copy_process+0x107e/0x6cb0
[ 2258.287807]  ? lock_is_held_type+0xd7/0x130
[ 2258.288662]  ? find_held_lock+0x2c/0x110
[ 2258.289475]  ? lock_release+0x3b2/0x6f0
[ 2258.290267]  ? __might_fault+0xd1/0x170
[ 2258.291078]  ? __cleanup_sighand+0xb0/0xb0
[ 2258.291952]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2258.293037]  ? _copy_from_user+0x139/0x170
[ 2258.293890]  ? kernel_clone+0x2f8/0xa60
[ 2258.294694]  kernel_clone+0xe7/0xa60
[ 2258.295449]  ? lock_is_held_type+0xd7/0x130
[ 2258.296325]  ? create_io_thread+0xf0/0xf0
[ 2258.297173]  ? lock_is_held_type+0xd7/0x130
[ 2258.298036]  __do_sys_clone3+0x1dd/0x2e0
[ 2258.298856]  ? __ia32_sys_clone+0x150/0x150
[ 2258.299753]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2258.300840]  ? vfs_write+0x188/0xae0
[ 2258.301587]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2258.302683]  ? fput+0x2a/0x50
[ 2258.303331]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2258.304375]  do_syscall_64+0x3b/0x90
[ 2258.305127]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2258.306149] RIP: 0033:0x7f8893772b19
[ 2258.306889] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2258.307777] loop4: detected capacity change from 0 to 256
[ 2258.310516] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2258.310542] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2258.310559] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2258.310573] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2258.317380] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2258.318803] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2258.320251]  </TASK>
[ 2258.321958] FAULT_INJECTION: forcing a failure.
[ 2258.321958] name failslab, interval 1, probability 0, space 0, times 0
[ 2258.324307] CPU: 1 PID: 11694 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2258.325924] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2258.328147] Call Trace:
[ 2258.328645]  <TASK>
[ 2258.329077]  dump_stack_lvl+0x8b/0xb3
[ 2258.329842]  should_fail.cold+0x5/0xa
[ 2258.330595]  ? skb_clone+0x170/0x3c0
[ 2258.331323]  should_failslab+0x5/0x10
[ 2258.332116]  kmem_cache_alloc+0x5b/0x480
[ 2258.332924]  skb_clone+0x170/0x3c0
[ 2258.333622]  netlink_broadcast+0x9ae/0xd60
[ 2258.334458]  ? alloc_uevent_skb+0x1c2/0x210
[ 2258.335320]  kobject_uevent_env+0xa6b/0xfa0
[ 2258.336215]  ? _raw_spin_unlock+0x24/0x40
[ 2258.337054]  disk_event_uevent+0x17b/0x1e0
[ 2258.337897]  ? disk_events_async_show+0x10/0x10
[ 2258.338824]  ? __fget_files+0x28d/0x470
[ 2258.339620]  disk_force_media_change+0x1e/0xc0
[ 2258.340554]  loop_configure+0x75b/0x1950
[ 2258.341364]  ? putname+0xfe/0x140
[ 2258.342068]  lo_ioctl+0x7c5/0x18b0
[ 2258.342772]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2258.343740]  ? loop_set_status_old+0x1b0/0x1b0
[ 2258.344648]  ? avc_ss_reset+0x180/0x180
[ 2258.345456]  ? __lock_acquire+0xbac/0x6120
[ 2258.346360]  ? selinux_inode_getsecctx+0x90/0x90
[ 2258.347316]  ? loop_set_status_old+0x1b0/0x1b0
[ 2258.348246]  blkdev_ioctl+0x362/0x7f0
[ 2258.348991]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2258.349916]  ? __x64_sys_ioctl+0x97/0x210
[ 2258.350727]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2258.351840]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2258.352767]  __x64_sys_ioctl+0x196/0x210
[ 2258.353568]  do_syscall_64+0x3b/0x90
[ 2258.354305]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2258.355306] RIP: 0033:0x7f9496e2f8d7
[ 2258.356050] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2258.359644] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2258.361601] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2258.363328] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2258.364762] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2258.366156] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2258.367621] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2258.369062]  </TASK>
[ 2258.390881] netlink: 'syz-executor.7': attribute type 3 has an invalid length.
[ 2258.391732] FAT-fs (loop0): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2258.404910] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:19:04 executing program 5:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x1517f)

23:19:04 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 9)

23:19:04 executing program 3:
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f00000001c0)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x6}}, '\x00'})
r1 = syz_io_uring_setup(0xb, &(0x7f0000000080)={0x0, 0x0, 0x10, 0x1, 0x3c4, 0x0, r0}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000140), &(0x7f0000000200))
readv(r0, &(0x7f00000002c0)=[{&(0x7f0000000180)=""/53, 0x35}, {&(0x7f0000000240)=""/90, 0x5a}], 0x2)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000000)=[r2, 0xffffffffffffffff, r1], 0x3)
ioctl$EXT4_IOC_GROUP_ADD(r1, 0x40286608, &(0x7f0000000040)={0x4, 0x7, 0xd32, 0x5, 0x1, 0x8})

23:19:04 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x1000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2258.498873] loop6: detected capacity change from 0 to 512
[ 2258.513598] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2258.536023] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[ 2258.587849] FAULT_INJECTION: forcing a failure.
[ 2258.587849] name failslab, interval 1, probability 0, space 0, times 0
[ 2258.590221] CPU: 1 PID: 11715 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2258.591889] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2258.594160] Call Trace:
[ 2258.594685]  <TASK>
[ 2258.595121]  dump_stack_lvl+0x8b/0xb3
[ 2258.595927]  should_fail.cold+0x5/0xa
[ 2258.596698]  ? copy_fs_struct+0x45/0x340
[ 2258.597512]  should_failslab+0x5/0x10
[ 2258.598252]  kmem_cache_alloc+0x5b/0x480
[ 2258.599072]  copy_fs_struct+0x45/0x340
[ 2258.599863]  ? copy_process+0x1cc2/0x6cb0
[ 2258.600705]  copy_process+0x3326/0x6cb0
[ 2258.601520]  ? lock_is_held_type+0xd7/0x130
[ 2258.602382]  ? find_held_lock+0x2c/0x110
[ 2258.603212]  ? __cleanup_sighand+0xb0/0xb0
[ 2258.604070]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2258.605153]  ? _copy_from_user+0x139/0x170
[ 2258.605993]  ? kernel_clone+0x2f8/0xa60
[ 2258.606352] netlink: 'syz-executor.7': attribute type 3 has an invalid length.
[ 2258.606773]  kernel_clone+0xe7/0xa60
[ 2258.606809]  ? lock_is_held_type+0xd7/0x130
[ 2258.609836]  ? create_io_thread+0xf0/0xf0
[ 2258.610674]  ? lock_is_held_type+0xd7/0x130
[ 2258.611524]  __do_sys_clone3+0x1dd/0x2e0
[ 2258.612340]  ? __ia32_sys_clone+0x150/0x150
[ 2258.613212]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2258.614286]  ? vfs_write+0x188/0xae0
[ 2258.615022]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2258.616114]  ? fput+0x2a/0x50
[ 2258.616747]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2258.617761]  do_syscall_64+0x3b/0x90
[ 2258.618502]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2258.619506] RIP: 0033:0x7f8893772b19
[ 2258.620246] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2258.623858] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2258.625333] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2258.626719] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2258.628106] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2258.629488] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2258.630862] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2258.632288]  </TASK>
23:19:05 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xd00000)

23:19:05 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3, 0x0, {0x0, r5}}, 0x800)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000380)='^\x80^-\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r7, 0x0, 0x0}, 0x0)
r8 = syz_genetlink_get_family_id$gtp(&(0x7f0000000080), r1)
r9 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(r7, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, r8, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r9}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)
stat(&(0x7f0000000240)='./file1\x00', &(0x7f00000001c0))

23:19:05 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x2000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:19:05 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x21, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:19:05 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{0x21, 0x0, 0xf00}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:19:05 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 52)

[ 2258.749130] loop4: detected capacity change from 0 to 256
[ 2258.787858] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2258.788776] FAULT_INJECTION: forcing a failure.
[ 2258.788776] name failslab, interval 1, probability 0, space 0, times 0
[ 2258.792048] CPU: 1 PID: 11729 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2258.793767] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2258.796119] Call Trace:
[ 2258.796656]  <TASK>
[ 2258.797122]  dump_stack_lvl+0x8b/0xb3
[ 2258.797936]  should_fail.cold+0x5/0xa
[ 2258.798743]  ? create_object.isra.0+0x3a/0xa20
[ 2258.799717]  should_failslab+0x5/0x10
[ 2258.800511]  kmem_cache_alloc+0x5b/0x480
[ 2258.801366]  create_object.isra.0+0x3a/0xa20
[ 2258.802289]  ? kasan_unpoison+0x23/0x50
[ 2258.803139]  kmem_cache_alloc+0x239/0x480
[ 2258.804037]  skb_clone+0x170/0x3c0
[ 2258.804787]  netlink_broadcast+0x9ae/0xd60
[ 2258.805687]  ? alloc_uevent_skb+0x1c2/0x210
[ 2258.806602]  kobject_uevent_env+0xa6b/0xfa0
[ 2258.807518]  ? _raw_spin_unlock+0x24/0x40
[ 2258.808410]  disk_event_uevent+0x17b/0x1e0
[ 2258.809297]  ? disk_events_async_show+0x10/0x10
[ 2258.810276]  ? __fget_files+0x28d/0x470
[ 2258.811119]  disk_force_media_change+0x1e/0xc0
[ 2258.812095]  loop_configure+0x75b/0x1950
[ 2258.812957]  ? putname+0xfe/0x140
[ 2258.813698]  lo_ioctl+0x7c5/0x18b0
[ 2258.814441]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2258.815454]  ? loop_set_status_old+0x1b0/0x1b0
[ 2258.816427]  ? avc_ss_reset+0x180/0x180
[ 2258.817272]  ? __lock_acquire+0xbac/0x6120
[ 2258.818232]  ? selinux_inode_getsecctx+0x90/0x90
[ 2258.819233]  ? loop_set_status_old+0x1b0/0x1b0
[ 2258.820203]  blkdev_ioctl+0x362/0x7f0
[ 2258.820997]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2258.821979]  ? __x64_sys_ioctl+0x97/0x210
[ 2258.822851]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2258.824020]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2258.825010]  __x64_sys_ioctl+0x196/0x210
[ 2258.825860]  do_syscall_64+0x3b/0x90
[ 2258.826653]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2258.827732] RIP: 0033:0x7f9496e2f8d7
[ 2258.828504] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2258.832298] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2258.833912] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2258.835389] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2258.836889] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2258.838359] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2258.839831] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2258.841332]  </TASK>
[ 2258.890928] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.7'.
[ 2258.913908] loop6: detected capacity change from 0 to 512
[ 2258.953214] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2259.008606] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[ 2259.031348] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.7'.
23:19:21 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 53)

23:19:21 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x28, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:19:21 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 10)

23:19:21 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x3000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:19:21 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x1000000)

23:19:21 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3, 0x0, {0x0, r5}}, 0x800)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000380)='^\x80^-\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r7, 0x0, 0x0}, 0x0)
r8 = syz_genetlink_get_family_id$gtp(&(0x7f0000000080), r1)
r9 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(r7, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, r8, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r9}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)
stat(&(0x7f0000000240)='./file1\x00', &(0x7f00000001c0))

23:19:21 executing program 5:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xd00000)

23:19:21 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x8}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000040), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)
r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x4, 0x8010, r0, 0x10000000)
syz_io_uring_submit(0x0, r2, &(0x7f0000000180)=@IORING_OP_NOP={0x0, 0x2}, 0x2)

[ 2274.646463] loop4: detected capacity change from 0 to 256
[ 2274.651920] FAULT_INJECTION: forcing a failure.
[ 2274.651920] name failslab, interval 1, probability 0, space 0, times 0
[ 2274.654030] CPU: 1 PID: 11762 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2274.656596] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2274.658817] FAULT_INJECTION: forcing a failure.
[ 2274.658817] name failslab, interval 1, probability 0, space 0, times 0
[ 2274.660166] Call Trace:
[ 2274.660179]  <TASK>
[ 2274.660188]  dump_stack_lvl+0x8b/0xb3
[ 2274.665783]  should_fail.cold+0x5/0xa
[ 2274.667028]  ? __kernfs_new_node+0xd4/0x8b0
[ 2274.668453]  should_failslab+0x5/0x10
[ 2274.669656]  kmem_cache_alloc+0x5b/0x480
[ 2274.670850]  __kernfs_new_node+0xd4/0x8b0
[ 2274.672169]  ? kernfs_path_from_node+0x60/0x60
[ 2274.673625]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 2274.675288]  ? mark_held_locks+0x9e/0xe0
[ 2274.676607]  ? lock_is_held_type+0xd7/0x130
[ 2274.677988]  ? find_held_lock+0x2c/0x110
[ 2274.679212]  kernfs_create_dir_ns+0x9c/0x220
[ 2274.680582]  internal_create_group+0x782/0xb20
[ 2274.681961]  ? sysfs_remove_group+0x170/0x170
[ 2274.683320]  ? lock_is_held_type+0xd7/0x130
[ 2274.684008]  ? lockdep_init_map_type+0x2c3/0x7a0
[ 2274.684657]  ? loop_configure+0x1950/0x1950
[ 2274.685253]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[ 2274.685926]  ? __loop_update_dio+0x2a3/0x620
[ 2274.686537]  loop_configure+0xe87/0x1950
[ 2274.687166]  lo_ioctl+0x7c5/0x18b0
[ 2274.687713]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2274.688420]  ? loop_set_status_old+0x1b0/0x1b0
[ 2274.689052]  ? avc_ss_reset+0x180/0x180
[ 2274.689670]  ? __lock_acquire+0xbac/0x6120
[ 2274.690337]  ? lock_is_held_type+0xd7/0x130
[ 2274.691067]  ? selinux_inode_getsecctx+0x90/0x90
[ 2274.691799]  ? loop_set_status_old+0x1b0/0x1b0
[ 2274.692523]  blkdev_ioctl+0x362/0x7f0
[ 2274.693108]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2274.693795]  ? __x64_sys_ioctl+0x97/0x210
[ 2274.694396]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2274.695233]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2274.695962]  __x64_sys_ioctl+0x196/0x210
[ 2274.696582]  do_syscall_64+0x3b/0x90
[ 2274.697163]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2274.697941] RIP: 0033:0x7f9496e2f8d7
[ 2274.698504] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2274.701230] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2274.702327] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2274.703327] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2274.704296] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2274.705239] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2274.706210] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2274.707280]  </TASK>
[ 2274.707632] CPU: 0 PID: 11767 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2274.708538] loop6: detected capacity change from 0 to 512
[ 2274.708911] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2274.712034] Call Trace:
[ 2274.712367] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.7'.
[ 2274.712403]  <TASK>
[ 2274.713970]  dump_stack_lvl+0x8b/0xb3
[ 2274.714524]  should_fail.cold+0x5/0xa
[ 2274.715081]  ? create_object.isra.0+0x3a/0xa20
[ 2274.715745]  should_failslab+0x5/0x10
[ 2274.716322]  kmem_cache_alloc+0x5b/0x480
[ 2274.716913]  create_object.isra.0+0x3a/0xa20
[ 2274.717556]  ? kasan_unpoison+0x23/0x50
[ 2274.718142]  kmem_cache_alloc+0x239/0x480
[ 2274.718896]  copy_fs_struct+0x45/0x340
[ 2274.719469]  ? copy_process+0x1cc2/0x6cb0
[ 2274.720116]  copy_process+0x3326/0x6cb0
[ 2274.720729]  ? lock_is_held_type+0xd7/0x130
[ 2274.721386]  ? find_held_lock+0x2c/0x110
[ 2274.721986]  ? __cleanup_sighand+0xb0/0xb0
[ 2274.722598]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2274.723385]  ? _copy_from_user+0x139/0x170
[ 2274.724046]  ? kernel_clone+0x2f8/0xa60
[ 2274.724642]  kernel_clone+0xe7/0xa60
[ 2274.725211]  ? create_io_thread+0xf0/0xf0
[ 2274.725841]  ? lock_is_held_type+0xd7/0x130
[ 2274.726476]  __do_sys_clone3+0x1dd/0x2e0
[ 2274.727097]  ? __ia32_sys_clone+0x150/0x150
[ 2274.728264]  ? perf_trace_run_bpf_submit+0xf5/0x1d0
[ 2274.728995]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2274.730305]  ? perf_trace_run_bpf_submit+0xf5/0x1d0
[ 2274.731046]  ? lock_is_held_type+0xd7/0x130
[ 2274.731683]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2274.732514]  do_syscall_64+0x3b/0x90
[ 2274.733094]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2274.733852] RIP: 0033:0x7f8893772b19
[ 2274.734452] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2274.739110] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2274.740193] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2274.741204] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2274.743369] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2274.744402] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2274.745421] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2274.746541]  </TASK>
23:19:21 executing program 5:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xd00000)

23:19:21 executing program 3:
r0 = syz_io_uring_setup(0x2, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140))
r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x40010, r0, 0x10000000)
syz_io_uring_submit(r1, r2, &(0x7f0000000280)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd=r0, 0x5, 0x0, 0x200, 0x5, 0x1}, 0x1)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r4 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x40010, r3, 0x10000000)
syz_io_uring_submit(r1, r4, &(0x7f0000000240)=@IORING_OP_FSYNC={0x3, 0x3, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, 0x1}, 0x1)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r3, 0xffffffffffffffff, r0], 0x3)
r5 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r5, 0x6c64, 0x0, 0x0, 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x8, 0x10010, r5, 0x88a99000)
syz_io_uring_setup(0x3bc1, &(0x7f0000000180)={0x0, 0xda4b, 0x4, 0x1, 0x1a5}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000200))

[ 2274.794572] loop4: detected capacity change from 0 to 256
23:19:21 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x4000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2274.815355] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2274.860589] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[ 2274.863215] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2274.910106] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.7'.
23:19:21 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 11)

23:19:21 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3, 0x0, {0x0, r5}}, 0x800)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000380)='^\x80^-\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r7, 0x0, 0x0}, 0x0)
r8 = syz_genetlink_get_family_id$gtp(&(0x7f0000000080), r1)
r9 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(r7, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, r8, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r9}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)
stat(&(0x7f0000000240)='./file1\x00', &(0x7f00000001c0))

[ 2275.014169] FAULT_INJECTION: forcing a failure.
[ 2275.014169] name failslab, interval 1, probability 0, space 0, times 0
[ 2275.016345] CPU: 1 PID: 11794 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2275.017649] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2275.021363] Call Trace:
[ 2275.023331]  <TASK>
[ 2275.023719]  dump_stack_lvl+0x8b/0xb3
[ 2275.024235]  should_fail.cold+0x5/0xa
[ 2275.024873]  ? copy_process+0x1d9c/0x6cb0
[ 2275.025527]  should_failslab+0x5/0x10
[ 2275.026020]  kmem_cache_alloc+0x5b/0x480
[ 2275.026671]  copy_process+0x1d9c/0x6cb0
[ 2275.027192]  ? lock_is_held_type+0xd7/0x130
[ 2275.027914]  ? find_held_lock+0x2c/0x110
[ 2275.028642]  ? __cleanup_sighand+0xb0/0xb0
[ 2275.029204]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2275.030023]  ? _copy_from_user+0x139/0x170
[ 2275.030689]  ? kernel_clone+0x2f8/0xa60
[ 2275.031252]  kernel_clone+0xe7/0xa60
[ 2275.031889]  ? lock_is_held_type+0xd7/0x130
[ 2275.032686]  ? create_io_thread+0xf0/0xf0
[ 2275.033244]  ? lock_is_held_type+0xd7/0x130
[ 2275.034001]  __do_sys_clone3+0x1dd/0x2e0
[ 2275.034662]  ? __ia32_sys_clone+0x150/0x150
[ 2275.035251]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2275.036124]  ? vfs_write+0x188/0xae0
[ 2275.036768]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2275.037682]  ? fput+0x2a/0x50
[ 2275.038110]  ? lock_is_held_type+0xd7/0x130
[ 2275.038795]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2275.039544]  do_syscall_64+0x3b/0x90
[ 2275.040070]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2275.040924] RIP: 0033:0x7f8893772b19
[ 2275.041568] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2275.044282] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2275.045595] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2275.051135] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2275.052512] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2275.053451] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2275.054441] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2275.055565]  </TASK>
23:19:21 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x2000000)

23:19:36 executing program 5:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xd00000)

23:19:36 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x3000000)

23:19:36 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x5000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:19:36 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x33, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:19:36 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3, 0x0, {0x0, r5}}, 0x800)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000380)='^\x80^-\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r7, 0x0, 0x0}, 0x0)
r8 = syz_genetlink_get_family_id$gtp(&(0x7f0000000080), r1)
r9 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(r7, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, r8, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r9}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:19:36 executing program 3:
r0 = syz_io_uring_setup(0x26f4, &(0x7f0000000180), &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)

23:19:36 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 54)

23:19:36 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 12)

[ 2289.725510] FAULT_INJECTION: forcing a failure.
[ 2289.725510] name failslab, interval 1, probability 0, space 0, times 0
[ 2289.725908] loop4: detected capacity change from 0 to 256
[ 2289.726762] CPU: 1 PID: 11813 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2289.728749] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2289.729955] Call Trace:
[ 2289.730232]  <TASK>
[ 2289.730467]  dump_stack_lvl+0x8b/0xb3
[ 2289.730890]  should_fail.cold+0x5/0xa
[ 2289.731300]  ? create_object.isra.0+0x3a/0xa20
[ 2289.731793]  should_failslab+0x5/0x10
[ 2289.732229]  kmem_cache_alloc+0x5b/0x480
[ 2289.732664]  create_object.isra.0+0x3a/0xa20
[ 2289.733133]  ? kasan_unpoison+0x23/0x50
[ 2289.733565]  kmem_cache_alloc+0x239/0x480
[ 2289.734004]  __kernfs_new_node+0xd4/0x8b0
[ 2289.734456]  ? kernfs_path_from_node+0x60/0x60
[ 2289.734942]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 2289.735505]  ? mark_held_locks+0x9e/0xe0
[ 2289.735938]  ? lock_is_held_type+0xd7/0x130
[ 2289.736401]  ? find_held_lock+0x2c/0x110
[ 2289.736843]  kernfs_create_dir_ns+0x9c/0x220
[ 2289.737323]  internal_create_group+0x782/0xb20
[ 2289.737829]  ? sysfs_remove_group+0x170/0x170
[ 2289.738321]  ? lock_is_held_type+0xd7/0x130
[ 2289.738789]  ? lockdep_init_map_type+0x2c3/0x7a0
[ 2289.739310]  ? loop_configure+0x1950/0x1950
[ 2289.739796]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[ 2289.740352]  ? __loop_update_dio+0x2a3/0x620
[ 2289.740831]  loop_configure+0xe87/0x1950
[ 2289.741287]  lo_ioctl+0x7c5/0x18b0
[ 2289.741681]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2289.742214]  ? loop_set_status_old+0x1b0/0x1b0
[ 2289.742723]  ? avc_ss_reset+0x180/0x180
[ 2289.743162]  ? __lock_acquire+0xbac/0x6120
[ 2289.743672]  ? selinux_inode_getsecctx+0x90/0x90
[ 2289.744222]  ? loop_set_status_old+0x1b0/0x1b0
[ 2289.744728]  blkdev_ioctl+0x362/0x7f0
[ 2289.745137]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2289.745665]  ? __x64_sys_ioctl+0x97/0x210
[ 2289.746124]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2289.746733]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2289.747257]  __x64_sys_ioctl+0x196/0x210
[ 2289.747705]  do_syscall_64+0x3b/0x90
[ 2289.748119]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2289.748698] RIP: 0033:0x7f9496e2f8d7
[ 2289.749100] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2289.751111] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2289.751944] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2289.752727] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2289.753512] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2289.754291] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2289.755065] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2289.755867]  </TASK>
[ 2289.758495] loop6: detected capacity change from 0 to 512
[ 2289.767678] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2289.769875] FAULT_INJECTION: forcing a failure.
[ 2289.769875] name failslab, interval 1, probability 0, space 0, times 0
[ 2289.772174] CPU: 0 PID: 11819 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2289.773835] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2289.776082] Call Trace:
[ 2289.776603]  <TASK>
[ 2289.777044]  dump_stack_lvl+0x8b/0xb3
[ 2289.777820]  should_fail.cold+0x5/0xa
[ 2289.778586]  ? create_object.isra.0+0x3a/0xa20
[ 2289.779511]  should_failslab+0x5/0x10
[ 2289.780292]  kmem_cache_alloc+0x5b/0x480
[ 2289.781115]  create_object.isra.0+0x3a/0xa20
[ 2289.781998]  ? kasan_unpoison+0x23/0x50
[ 2289.782808]  kmem_cache_alloc+0x239/0x480
[ 2289.783651]  copy_process+0x1d9c/0x6cb0
[ 2289.784463]  ? lock_is_held_type+0xd7/0x130
[ 2289.785329]  ? find_held_lock+0x2c/0x110
[ 2289.786166]  ? __cleanup_sighand+0xb0/0xb0
[ 2289.787038]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2289.788127]  ? _copy_from_user+0x139/0x170
[ 2289.789000]  ? kernel_clone+0x2f8/0xa60
[ 2289.789813]  kernel_clone+0xe7/0xa60
[ 2289.790548]  ? create_io_thread+0xf0/0xf0
[ 2289.791379]  ? lock_is_held_type+0xd7/0x130
[ 2289.792251]  __do_sys_clone3+0x1dd/0x2e0
[ 2289.793066]  ? __ia32_sys_clone+0x150/0x150
[ 2289.793934]  ? perf_trace_run_bpf_submit+0xf5/0x1d0
[ 2289.794905]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2289.795972]  ? perf_trace_run_bpf_submit+0xf5/0x1d0
[ 2289.796991]  ? lock_is_held_type+0xd7/0x130
[ 2289.797844]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2289.798814]  do_syscall_64+0x3b/0x90
[ 2289.799566]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2289.800609] RIP: 0033:0x7f8893772b19
[ 2289.801347] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2289.805001] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2289.806502] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2289.807908] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2289.809317] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2289.810724] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2289.812126] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2289.813563]  </TASK>
[ 2289.821159] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.7'.
[ 2289.823276] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2289.872586] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[ 2289.879308] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.7'.
23:19:36 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x6000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:19:36 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 13)

23:19:36 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x3b, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:19:36 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 55)

23:19:36 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3, 0x0, {0x0, r5}}, 0x800)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000380)='^\x80^-\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r7, 0x0, 0x0}, 0x0)
r8 = syz_genetlink_get_family_id$gtp(&(0x7f0000000080), r1)
r9 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(r7, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, r8, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r9}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:19:36 executing program 5:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x4000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:19:36 executing program 3:
r0 = syz_io_uring_setup(0x80001, &(0x7f0000000080)={0x0, 0x0, 0x2, 0x0, 0x2c1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r4, 0x0, 0x0}, 0x0)
openat(r4, &(0x7f0000000040)='./file1\x00', 0xd0600, 0xe4)

23:19:36 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x7000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2289.988178] FAULT_INJECTION: forcing a failure.
[ 2289.988178] name failslab, interval 1, probability 0, space 0, times 0
[ 2289.989871] CPU: 1 PID: 11840 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2289.990756] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2289.991937] Call Trace:
[ 2289.992255]  <TASK>
[ 2289.992491]  dump_stack_lvl+0x8b/0xb3
[ 2289.992909]  should_fail.cold+0x5/0xa
[ 2289.993313]  ? radix_tree_node_alloc.constprop.0+0x1df/0x330
[ 2289.993942]  should_failslab+0x5/0x10
[ 2289.994345]  kmem_cache_alloc+0x5b/0x480
[ 2289.994780]  radix_tree_node_alloc.constprop.0+0x1df/0x330
[ 2289.995368]  idr_get_free+0x4b5/0x8f0
[ 2289.995779]  idr_alloc_u32+0x170/0x2d0
[ 2289.996192]  ? __fprop_add_percpu_max+0x1a0/0x1a0
[ 2289.996729]  ? lock_acquire+0x1b2/0x4d0
[ 2289.997157]  idr_alloc_cyclic+0x102/0x230
[ 2289.997594]  ? idr_alloc+0x130/0x130
[ 2289.997989]  ? rwlock_bug.part.0+0x90/0x90
[ 2289.998443]  __kernfs_new_node+0x117/0x8b0
[ 2289.998894]  ? kernfs_path_from_node+0x60/0x60
[ 2289.999376]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 2289.999932]  ? mark_held_locks+0x9e/0xe0
[ 2290.000381]  ? lock_is_held_type+0xd7/0x130
[ 2290.000838]  ? find_held_lock+0x2c/0x110
[ 2290.001269]  kernfs_create_dir_ns+0x9c/0x220
[ 2290.001739]  internal_create_group+0x782/0xb20
[ 2290.002229]  ? sysfs_remove_group+0x170/0x170
[ 2290.002710]  ? lock_is_held_type+0xd7/0x130
[ 2290.003176]  ? lockdep_init_map_type+0x2c3/0x7a0
[ 2290.003677]  ? loop_configure+0x1950/0x1950
[ 2290.004137]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[ 2290.004673]  ? __loop_update_dio+0x2a3/0x620
[ 2290.005159]  loop_configure+0xe87/0x1950
[ 2290.005604]  lo_ioctl+0x7c5/0x18b0
[ 2290.005981]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2290.006500]  ? loop_set_status_old+0x1b0/0x1b0
[ 2290.006984]  ? avc_ss_reset+0x180/0x180
[ 2290.007410]  ? __lock_acquire+0xbac/0x6120
[ 2290.007904]  ? selinux_inode_getsecctx+0x90/0x90
[ 2290.008438]  ? loop_set_status_old+0x1b0/0x1b0
[ 2290.008937]  blkdev_ioctl+0x362/0x7f0
[ 2290.009336]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2290.009844]  ? __x64_sys_ioctl+0x97/0x210
[ 2290.010296]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2290.010900]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2290.011412]  __x64_sys_ioctl+0x196/0x210
[ 2290.011854]  do_syscall_64+0x3b/0x90
[ 2290.012259]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2290.012812] RIP: 0033:0x7f9496e2f8d7
[ 2290.013205] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2290.015180] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2290.016011] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2290.016792] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2290.017580] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2290.018345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2290.019130] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2290.019913]  </TASK>
23:19:36 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x4000000)

[ 2290.037755] FAULT_INJECTION: forcing a failure.
[ 2290.037755] name failslab, interval 1, probability 0, space 0, times 0
[ 2290.040056] CPU: 0 PID: 11850 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2290.041692] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2290.043912] Call Trace:
[ 2290.044437]  <TASK>
[ 2290.044876]  dump_stack_lvl+0x8b/0xb3
[ 2290.045649]  should_fail.cold+0x5/0xa
[ 2290.046412]  ? copy_process+0x1f1d/0x6cb0
[ 2290.047241]  should_failslab+0x5/0x10
[ 2290.047996]  kmem_cache_alloc+0x5b/0x480
[ 2290.048835]  copy_process+0x1f1d/0x6cb0
[ 2290.049643]  ? lock_is_held_type+0xd7/0x130
[ 2290.050513]  ? find_held_lock+0x2c/0x110
[ 2290.051352]  ? __cleanup_sighand+0xb0/0xb0
[ 2290.052238]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2290.053337]  ? _copy_from_user+0x139/0x170
[ 2290.054199]  ? kernel_clone+0x2f8/0xa60
[ 2290.055014]  kernel_clone+0xe7/0xa60
[ 2290.055758]  ? lock_is_held_type+0xd7/0x130
[ 2290.056603]  ? create_io_thread+0xf0/0xf0
[ 2290.057439]  ? lock_is_held_type+0xd7/0x130
[ 2290.058295]  __do_sys_clone3+0x1dd/0x2e0
[ 2290.059089]  ? __ia32_sys_clone+0x150/0x150
[ 2290.059956]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2290.061055]  ? vfs_write+0x188/0xae0
[ 2290.061791]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2290.062869]  ? fput+0x2a/0x50
[ 2290.063491]  ? lock_is_held_type+0xd7/0x130
[ 2290.064350]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2290.065300]  do_syscall_64+0x3b/0x90
[ 2290.066030]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2290.067031] RIP: 0033:0x7f8893772b19
[ 2290.067755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2290.071323] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2290.072808] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2290.074190] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2290.074985] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.7'.
23:19:36 executing program 5:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x3000000)

[ 2290.075563] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2290.075581] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2290.079424] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2290.080854]  </TASK>
[ 2290.104624] loop4: detected capacity change from 0 to 256
[ 2290.116413] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2290.147848] loop6: detected capacity change from 0 to 512
23:19:36 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x8800000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2290.178385] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
23:19:36 executing program 5:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x200000, 0x7, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000200000006000000000008000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000004000008000000d2c200001203", 0x66, 0x400}, {&(0x7f0000010100)="00000000000000000000000091b73ef4b8d944c4be6aeaa0d6c47e6c010040", 0x1f, 0x4e0}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="02000000030000000400000019000f000300040000000000000000000f002e69", 0x20, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040080", 0x1d, 0x4400}, {&(0x7f0000012800)="8081000000180000d4f4655fd4f4655fd4f4655f00000000000001008000000010000800000000000af301000400000000000000000000000200000030", 0x3d, 0x4800}, {&(0x7f0000013900)="111fc0d901", 0x5, 0x30000}], 0x0, &(0x7f0000014a00))
newfstatat(0xffffffffffffff9c, &(0x7f00000018c0)='./file0\x00', &(0x7f0000001900)={0x0, 0x0, 0x0, 0x0, <r0=>0x0}, 0x0)
syz_mount_image$tmpfs(&(0x7f00000000c0), &(0x7f0000000140)='./file0\x00', 0x1ff, 0x1, &(0x7f0000000180)=[{&(0x7f00000003c0)="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", 0x1000}], 0x194000, &(0x7f0000001980)={[{@mpol={'mpol', 0x3d, {'prefer', '=static', @val={0x3a, [0x30, 0x2d, 0x0, 0x36, 0x37, 0x2c, 0x36]}}}}, {@nr_blocks={'nr_blocks', 0x3d, [0x36, 0x6d, 0x65, 0x70, 0x74, 0x6b]}}, {@huge_always}, {@size={'size', 0x3d, [0x67, 0x31, 0x38, 0x6b]}}, {@size={'size', 0x3d, [0x2e, 0x35]}}, {@size={'size', 0x3d, [0x34, 0x31]}}, {@uid={'uid', 0x3d, 0xee01}}], [{@fsuuid={'fsuuid', 0x3d, {[0x37, 0x61, 0x66, 0x30, 0x31, 0x37, 0x55, 0x6c], 0x2d, [0x66, 0x36, 0x34], 0x2d, [0x63, 0x30, 0x32, 0x36], 0x2d, [0x37, 0x61, 0x61, 0x31], 0x2d, [0x61, 0x39, 0x64, 0x36, 0x63, 0x35, 0x64, 0x61]}}}, {@euid_gt={'euid>', r0}}, {@context={'context', 0x3d, 'staff_u'}}, {@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}]})
open(&(0x7f0000000080)='./file0\x00', 0x40a01, 0x0)
statfs(&(0x7f0000000040)='./file0\x00', &(0x7f00000002c0)=""/234)

[ 2290.196492] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.7'.
23:19:36 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x200000}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r2, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r5, 0x0, 0x0}, 0x0)
r6 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r7 = dup3(r5, r0, 0x0)
syz_io_uring_setup(0x7a34, &(0x7f0000000240)={0x0, 0x56a8, 0x4, 0x0, 0x1b4, 0x0, r7}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000340), &(0x7f0000000380))
ioctl$EXT4_IOC_CHECKPOINT(r0, 0x4004662b, &(0x7f00000004c0)=0x4)
io_uring_enter(r6, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1f66, &(0x7f0000000500)={0x0, 0xa2d2, 0x2, 0x2, 0x24, 0x0, r7}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000440), &(0x7f0000000480))
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000040)=[r1, r2, r5, r0, r1, r6, r0], 0x7)

[ 2290.231068] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
23:19:36 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xc000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:19:36 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 14)

[ 2290.301458] FAULT_INJECTION: forcing a failure.
[ 2290.301458] name failslab, interval 1, probability 0, space 0, times 0
[ 2290.302767] CPU: 1 PID: 11880 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2290.303648] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2290.304876] Call Trace:
[ 2290.305157]  <TASK>
[ 2290.305390]  dump_stack_lvl+0x8b/0xb3
[ 2290.305810]  should_fail.cold+0x5/0xa
[ 2290.306211]  ? create_object.isra.0+0x3a/0xa20
[ 2290.306706]  should_failslab+0x5/0x10
[ 2290.307108]  kmem_cache_alloc+0x5b/0x480
[ 2290.307545]  create_object.isra.0+0x3a/0xa20
[ 2290.308022]  ? kasan_unpoison+0x23/0x50
[ 2290.308456]  kmem_cache_alloc+0x239/0x480
[ 2290.308909]  copy_process+0x1f1d/0x6cb0
[ 2290.309343]  ? lock_is_held_type+0xd7/0x130
[ 2290.309802]  ? find_held_lock+0x2c/0x110
[ 2290.310253]  ? __cleanup_sighand+0xb0/0xb0
[ 2290.310714]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2290.311297]  ? _copy_from_user+0x139/0x170
[ 2290.311754]  ? kernel_clone+0x2f8/0xa60
[ 2290.312184]  kernel_clone+0xe7/0xa60
[ 2290.312593]  ? lock_is_held_type+0xd7/0x130
[ 2290.313042]  ? create_io_thread+0xf0/0xf0
[ 2290.313496]  ? lock_is_held_type+0xd7/0x130
[ 2290.313947]  __do_sys_clone3+0x1dd/0x2e0
[ 2290.314382]  ? __ia32_sys_clone+0x150/0x150
[ 2290.314847]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2290.315428]  ? vfs_write+0x188/0xae0
[ 2290.315829]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2290.316433]  ? fput+0x2a/0x50
[ 2290.316774]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2290.317335]  do_syscall_64+0x3b/0x90
[ 2290.317732]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2290.318280] RIP: 0033:0x7f8893772b19
[ 2290.318664] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2290.320636] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2290.321463] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2290.322237] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2290.323017] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2290.323794] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2290.324582] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2290.325371]  </TASK>
[ 2290.440722] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:19:53 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 15)

23:19:53 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x6b, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:19:53 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x5000000)

23:19:53 executing program 5:
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="08002bad7000fbe998044db2c2e55853dbdf25490000000c0099005a91000005000000"], 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x88000)
mlock2(&(0x7f0000fef000/0x11000)=nil, 0x11000, 0x0)
shmget$private(0x0, 0x4000, 0x2, &(0x7f0000ff7000/0x4000)=nil)
mremap(&(0x7f0000ff7000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f0000ffd000/0x3000)=nil)
mbind(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x2, 0x0, 0x0, 0x2)

23:19:53 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3, 0x0, {0x0, r5}}, 0x800)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000380)='^\x80^-\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r7, 0x0, 0x0}, 0x0)
r8 = syz_genetlink_get_family_id$gtp(&(0x7f0000000080), r1)
r9 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(r7, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, r8, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r9}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)

23:19:53 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xd000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:19:53 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x40000000, 0x2a}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000040), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)

23:19:53 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 56)

[ 2307.376831] FAULT_INJECTION: forcing a failure.
[ 2307.376831] name failslab, interval 1, probability 0, space 0, times 0
[ 2307.378261] CPU: 1 PID: 11899 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2307.379263] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2307.380653] Call Trace:
[ 2307.380973]  <TASK>
[ 2307.381244]  dump_stack_lvl+0x8b/0xb3
[ 2307.381730]  should_fail.cold+0x5/0xa
[ 2307.382207]  ? create_object.isra.0+0x3a/0xa20
[ 2307.382776]  should_failslab+0x5/0x10
[ 2307.383241]  kmem_cache_alloc+0x5b/0x480
[ 2307.383749]  create_object.isra.0+0x3a/0xa20
[ 2307.384303]  ? kasan_unpoison+0x23/0x50
[ 2307.384847]  kmem_cache_alloc+0x239/0x480
[ 2307.385361]  radix_tree_node_alloc.constprop.0+0x1df/0x330
[ 2307.386052]  idr_get_free+0x4b5/0x8f0
[ 2307.386538]  idr_alloc_u32+0x170/0x2d0
[ 2307.387034]  ? __fprop_add_percpu_max+0x1a0/0x1a0
[ 2307.387632]  ? lock_acquire+0x1db/0x4d0
[ 2307.388135]  idr_alloc_cyclic+0x102/0x230
[ 2307.388682]  ? idr_alloc+0x130/0x130
[ 2307.389144]  ? rwlock_bug.part.0+0x90/0x90
[ 2307.389678]  __kernfs_new_node+0x117/0x8b0
[ 2307.390199]  ? kernfs_path_from_node+0x60/0x60
[ 2307.390756]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 2307.391394]  ? mark_held_locks+0x9e/0xe0
[ 2307.391912]  ? lock_is_held_type+0xd7/0x130
[ 2307.392441]  ? find_held_lock+0x2c/0x110
[ 2307.392987]  kernfs_create_dir_ns+0x9c/0x220
[ 2307.393537]  internal_create_group+0x782/0xb20
[ 2307.394107]  ? sysfs_remove_group+0x170/0x170
[ 2307.394661]  ? lock_is_held_type+0xd7/0x130
[ 2307.395186]  ? lockdep_init_map_type+0x2c3/0x7a0
[ 2307.395768]  ? loop_configure+0x1950/0x1950
[ 2307.396298]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[ 2307.396932]  ? __loop_update_dio+0x2a3/0x620
[ 2307.397483]  loop_configure+0xe87/0x1950
[ 2307.398012]  lo_ioctl+0x7c5/0x18b0
[ 2307.398454]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2307.399058]  ? loop_set_status_old+0x1b0/0x1b0
[ 2307.399623]  ? avc_ss_reset+0x180/0x180
[ 2307.400120]  ? __lock_acquire+0xbac/0x6120
[ 2307.400726]  ? selinux_inode_getsecctx+0x90/0x90
[ 2307.401316]  ? loop_set_status_old+0x1b0/0x1b0
[ 2307.401884]  blkdev_ioctl+0x362/0x7f0
[ 2307.402357]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2307.402936]  ? __x64_sys_ioctl+0x97/0x210
[ 2307.403454]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2307.404132]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2307.404745]  __x64_sys_ioctl+0x196/0x210
[ 2307.405251]  do_syscall_64+0x3b/0x90
[ 2307.405730]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2307.406361] RIP: 0033:0x7f9496e2f8d7
[ 2307.406821] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2307.409079] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2307.410007] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2307.410873] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2307.411731] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2307.412619] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2307.413484] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2307.414376]  </TASK>
[ 2307.415691] loop4: detected capacity change from 0 to 256
[ 2307.417118] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.7'.
[ 2307.434310] FAULT_INJECTION: forcing a failure.
[ 2307.434310] name failslab, interval 1, probability 0, space 0, times 0
[ 2307.437546] CPU: 1 PID: 11910 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2307.439809] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2307.442904] Call Trace:
[ 2307.443588]  <TASK>
[ 2307.444210]  dump_stack_lvl+0x8b/0xb3
[ 2307.445336]  should_fail.cold+0x5/0xa
[ 2307.446424]  ? create_new_namespaces+0x30/0xb30
[ 2307.447603] loop6: detected capacity change from 0 to 512
[ 2307.447789]  should_failslab+0x5/0x10
[ 2307.449761]  kmem_cache_alloc+0x5b/0x480
[ 2307.450313]  ? cap_capable+0x1eb/0x250
[ 2307.451239]  create_new_namespaces+0x30/0xb30
[ 2307.451950]  copy_namespaces+0x391/0x450
[ 2307.452678]  copy_process+0x27f2/0x6cb0
[ 2307.453491]  ? lock_is_held_type+0xd7/0x130
[ 2307.454434]  ? find_held_lock+0x2c/0x110
[ 2307.455358]  ? __cleanup_sighand+0xb0/0xb0
[ 2307.456262]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2307.457681]  ? _copy_from_user+0x139/0x170
[ 2307.458598]  ? kernel_clone+0x2f8/0xa60
[ 2307.459480]  kernel_clone+0xe7/0xa60
[ 2307.460330]  ? lock_is_held_type+0xd7/0x130
[ 2307.461539]  ? create_io_thread+0xf0/0xf0
[ 2307.462497]  ? lock_is_held_type+0xd7/0x130
[ 2307.463252]  __do_sys_clone3+0x1dd/0x2e0
[ 2307.464217]  ? __ia32_sys_clone+0x150/0x150
[ 2307.465222]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2307.466453]  ? vfs_write+0x188/0xae0
[ 2307.467230]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2307.468361]  ? fput+0x2a/0x50
[ 2307.469204]  ? lock_is_held_type+0xd7/0x130
[ 2307.470315]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2307.471470]  do_syscall_64+0x3b/0x90
[ 2307.472319]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2307.473472] RIP: 0033:0x7f8893772b19
[ 2307.474345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2307.478855] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2307.481117] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2307.482829] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2307.484546] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2307.486712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2307.488576] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2307.489478]  </TASK>
[ 2307.491476] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2307.495615] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2307.517899] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
23:19:53 executing program 3:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r0, 0xc0096616, &(0x7f0000000040)={0x3, [0x0, 0x0, 0x0]})
r1 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000000)=[r2, 0xffffffffffffffff, r1], 0x3)

[ 2307.614989] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.7'.
23:20:08 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 57)

23:20:08 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3, 0x0, {0x0, r5}}, 0x800)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000380)='^\x80^-\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r7, 0x0, 0x0}, 0x0)
r8 = syz_genetlink_get_family_id$gtp(&(0x7f0000000080), r1)
r9 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(r7, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, r8, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r9}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)

23:20:08 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r0, 0xc0096616, &(0x7f0000000040)={0x3, [0x0, 0x0, 0x0]})
r1 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000000)=[r2, 0xffffffffffffffff, r1], 0x3)

23:20:08 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 16)

23:20:08 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xe000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:20:08 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x2, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:20:08 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x6000000)

23:20:08 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x1, 0x0, r4, 0x0, 0x0}, 0x0)
openat(r4, &(0x7f0000000040)='./file1\x00', 0x200, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)

[ 2321.710402] FAULT_INJECTION: forcing a failure.
[ 2321.710402] name failslab, interval 1, probability 0, space 0, times 0
[ 2321.711687] CPU: 0 PID: 11935 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2321.712605] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2321.713873] Call Trace:
[ 2321.714159]  <TASK>
[ 2321.714408]  dump_stack_lvl+0x8b/0xb3
[ 2321.714852]  should_fail.cold+0x5/0xa
[ 2321.715282]  ? create_new_namespaces+0x30/0xb30
[ 2321.715809]  should_failslab+0x5/0x10
[ 2321.716239]  kmem_cache_alloc+0x5b/0x480
[ 2321.716699]  ? cap_capable+0x1eb/0x250
[ 2321.717154]  create_new_namespaces+0x30/0xb30
[ 2321.717674]  copy_namespaces+0x391/0x450
[ 2321.718134]  copy_process+0x27f2/0x6cb0
[ 2321.718595]  ? lock_is_held_type+0xd7/0x130
[ 2321.719084]  ? find_held_lock+0x2c/0x110
[ 2321.719550]  ? __cleanup_sighand+0xb0/0xb0
[ 2321.720029]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2321.720642]  ? _copy_from_user+0x139/0x170
[ 2321.721136]  ? kernel_clone+0x2f8/0xa60
[ 2321.721587]  kernel_clone+0xe7/0xa60
[ 2321.722010]  ? lock_is_held_type+0xd7/0x130
[ 2321.722494]  ? create_io_thread+0xf0/0xf0
[ 2321.722973]  ? lock_is_held_type+0xd7/0x130
[ 2321.723450]  __do_sys_clone3+0x1dd/0x2e0
[ 2321.723908]  ? __ia32_sys_clone+0x150/0x150
[ 2321.724399]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2321.725031]  ? vfs_write+0x188/0xae0
[ 2321.725449]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2321.726067]  ? fput+0x2a/0x50
[ 2321.726423]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2321.726997]  do_syscall_64+0x3b/0x90
[ 2321.727416]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2321.727984] RIP: 0033:0x7f8893772b19
[ 2321.728388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2321.730464] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2321.731302] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2321.732081] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2321.732878] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2321.733673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2321.734449] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2321.735234]  </TASK>
[ 2321.760999] loop4: detected capacity change from 0 to 256
[ 2321.775195] FAULT_INJECTION: forcing a failure.
[ 2321.775195] name failslab, interval 1, probability 0, space 0, times 0
[ 2321.777788] CPU: 1 PID: 11945 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2321.779660] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2321.782185] Call Trace:
[ 2321.782769]  <TASK>
[ 2321.783284]  dump_stack_lvl+0x8b/0xb3
[ 2321.784178]  should_fail.cold+0x5/0xa
[ 2321.785063]  ? __kernfs_new_node+0xd4/0x8b0
[ 2321.786038]  should_failslab+0x5/0x10
[ 2321.786903]  kmem_cache_alloc+0x5b/0x480
[ 2321.787829]  __kernfs_new_node+0xd4/0x8b0
[ 2321.788939]  ? kernfs_path_from_node+0x60/0x60
[ 2321.789924]  ? find_held_lock+0x2c/0x110
[ 2321.790986]  ? lock_release+0x3b2/0x6f0
[ 2321.791854]  ? kernfs_add_one+0x3c6/0x550
[ 2321.792947]  ? lock_downgrade+0x6d0/0x6d0
[ 2321.793890]  ? lock_is_held_type+0xd7/0x130
[ 2321.795022]  kernfs_new_node+0x93/0x120
[ 2321.795922]  __kernfs_create_file+0x51/0x350
[ 2321.797088]  sysfs_add_file_mode_ns+0x218/0x430
[ 2321.798124]  ? component_del+0x4c0/0x4c0
[ 2321.799184]  internal_create_group+0x322/0xb20
[ 2321.800216]  ? sysfs_remove_group+0x170/0x170
[ 2321.801403]  ? lock_is_held_type+0xd7/0x130
[ 2321.802358]  ? lockdep_init_map_type+0x2c3/0x7a0
[ 2321.803594]  ? loop_configure+0x1950/0x1950
[ 2321.804542]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[ 2321.805844]  ? __loop_update_dio+0x2a3/0x620
[ 2321.806833]  loop_configure+0xe87/0x1950
[ 2321.807909]  lo_ioctl+0x7c5/0x18b0
[ 2321.808707]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2321.809986]  ? loop_set_status_old+0x1b0/0x1b0
[ 2321.810994]  ? avc_ss_reset+0x180/0x180
[ 2321.812038]  ? __lock_acquire+0xbac/0x6120
[ 2321.813066]  ? selinux_inode_getsecctx+0x90/0x90
[ 2321.814324]  ? loop_set_status_old+0x1b0/0x1b0
[ 2321.815371]  blkdev_ioctl+0x362/0x7f0
[ 2321.816355]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2321.817425]  ? __x64_sys_ioctl+0x97/0x210
[ 2321.818356]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2321.819604]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2321.820858]  __x64_sys_ioctl+0x196/0x210
[ 2321.821756]  do_syscall_64+0x3b/0x90
[ 2321.822732]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2321.823854] RIP: 0033:0x7f9496e2f8d7
[ 2321.824831] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
23:20:08 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xf010000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:20:08 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r0, 0xc0096616, &(0x7f0000000040)={0x3, [0x0, 0x0, 0x0]})
r1 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000000)=[r2, 0xffffffffffffffff, r1], 0x3)

23:20:08 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x10000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2321.828868] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2321.831045] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2321.832623] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2321.834483] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2321.836314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2321.838180] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2321.840050]  </TASK>
23:20:08 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 17)

23:20:08 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r0, 0xc0096616, &(0x7f0000000040)={0x3, [0x0, 0x0, 0x0]})
r1 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000000)=[r2, 0xffffffffffffffff, r1], 0x3)

[ 2321.900647] FAULT_INJECTION: forcing a failure.
[ 2321.900647] name failslab, interval 1, probability 0, space 0, times 0
[ 2321.901952] CPU: 0 PID: 11963 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2321.902837] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2321.904029] Call Trace:
[ 2321.904303]  <TASK>
[ 2321.904539]  dump_stack_lvl+0x8b/0xb3
[ 2321.904961]  should_fail.cold+0x5/0xa
[ 2321.905366]  ? alloc_mnt_ns+0xd4/0x4a0
[ 2321.905780]  should_failslab+0x5/0x10
[ 2321.906180]  kmem_cache_alloc_trace+0x55/0x3c0
[ 2321.906668]  alloc_mnt_ns+0xd4/0x4a0
[ 2321.907060]  copy_mnt_ns+0x108/0xa90
[ 2321.907453]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2321.907954]  ? kmem_cache_alloc+0x332/0x480
[ 2321.908414]  create_new_namespaces+0xd6/0xb30
[ 2321.908901]  copy_namespaces+0x391/0x450
[ 2321.909338]  copy_process+0x27f2/0x6cb0
[ 2321.909764]  ? lock_is_held_type+0xd7/0x130
[ 2321.910213]  ? find_held_lock+0x2c/0x110
[ 2321.910650]  ? __cleanup_sighand+0xb0/0xb0
[ 2321.911094]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2321.911664]  ? _copy_from_user+0x139/0x170
[ 2321.912109]  ? kernel_clone+0x2f8/0xa60
[ 2321.912532]  kernel_clone+0xe7/0xa60
[ 2321.912938]  ? create_io_thread+0xf0/0xf0
[ 2321.913388]  ? lock_is_held_type+0xd7/0x130
[ 2321.913842]  __do_sys_clone3+0x1dd/0x2e0
[ 2321.914269]  ? __ia32_sys_clone+0x150/0x150
[ 2321.914733]  ? perf_trace_run_bpf_submit+0xf5/0x1d0
[ 2321.915257]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2321.915830]  ? perf_trace_run_bpf_submit+0xf5/0x1d0
[ 2321.916357]  ? lock_is_held_type+0xd7/0x130
[ 2321.916824]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2321.917331]  do_syscall_64+0x3b/0x90
[ 2321.917723]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2321.918165] loop4: detected capacity change from 0 to 256
[ 2321.918266] RIP: 0033:0x7f8893772b19
[ 2321.919767] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2321.921684] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2321.922468] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2321.923211] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2321.923951] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2321.924686] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2321.925455] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2321.926204]  </TASK>
[ 2321.955782] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2322.050000] loop6: detected capacity change from 0 to 512
[ 2322.058993] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2322.071891] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
23:20:23 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 58)

23:20:23 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 18)

23:20:23 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3, 0x0, {0x0, r5}}, 0x800)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000380)='^\x80^-\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r7, 0x0, 0x0}, 0x0)
r8 = syz_genetlink_get_family_id$gtp(&(0x7f0000000080), r1)
r9 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(r7, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, r8, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r9}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)

23:20:23 executing program 3:
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r0, r1, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r2, 0x0, 0x0}, 0x0)
ioctl$TIOCGSID(r2, 0x5429, &(0x7f0000000180))
r3 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x280400, 0x10)
io_uring_register$IORING_REGISTER_FILES(r3, 0x2, &(0x7f0000000000)=[r4, 0xffffffffffffffff, r3], 0x3)

23:20:23 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r0, 0xc0096616, &(0x7f0000000040)={0x3, [0x0, 0x0, 0x0]})
r1 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000000)=[r2, 0xffffffffffffffff, r1], 0x3)

23:20:23 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x5, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:20:23 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x7000000)

23:20:23 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x10010000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2337.239278] loop4: detected capacity change from 0 to 256
[ 2337.274919] FAULT_INJECTION: forcing a failure.
[ 2337.274919] name failslab, interval 1, probability 0, space 0, times 0
[ 2337.277454] CPU: 0 PID: 11991 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2337.279181] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2337.281495] Call Trace:
[ 2337.281999]  <TASK>
[ 2337.282459]  dump_stack_lvl+0x8b/0xb3
[ 2337.283221]  should_fail.cold+0x5/0xa
[ 2337.284074]  ? create_object.isra.0+0x3a/0xa20
[ 2337.285070]  should_failslab+0x5/0x10
[ 2337.285867]  kmem_cache_alloc+0x5b/0x480
[ 2337.286726]  create_object.isra.0+0x3a/0xa20
[ 2337.287654]  ? kasan_unpoison+0x23/0x50
[ 2337.288501]  kmem_cache_alloc+0x239/0x480
[ 2337.289391]  __kernfs_new_node+0xd4/0x8b0
[ 2337.290260]  ? kernfs_add_one+0x3c6/0x550
[ 2337.291124]  ? kernfs_path_from_node+0x60/0x60
[ 2337.292088]  ? lock_is_held_type+0xd7/0x130
[ 2337.293022]  ? up_write+0x148/0x460
[ 2337.293792]  ? kernfs_activate+0x1c4/0x240
[ 2337.294825]  kernfs_new_node+0x93/0x120
[ 2337.295612]  __kernfs_create_file+0x51/0x350
[ 2337.296681]  sysfs_add_file_mode_ns+0x218/0x430
[ 2337.297646]  ? component_del+0x4c0/0x4c0
[ 2337.298624]  internal_create_group+0x322/0xb20
[ 2337.299563]  ? sysfs_remove_group+0x170/0x170
[ 2337.300519]  ? lock_is_held_type+0xd7/0x130
[ 2337.301465]  ? lockdep_init_map_type+0x2c3/0x7a0
[ 2337.302462]  ? loop_configure+0x1950/0x1950
[ 2337.303375]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[ 2337.304376]  ? __loop_update_dio+0x2a3/0x620
[ 2337.305304]  loop_configure+0xe87/0x1950
[ 2337.306147]  lo_ioctl+0x7c5/0x18b0
[ 2337.306876]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2337.307896]  ? loop_set_status_old+0x1b0/0x1b0
[ 2337.308836]  ? avc_ss_reset+0x180/0x180
[ 2337.309711]  ? __lock_acquire+0xbac/0x6120
[ 2337.310810]  ? selinux_inode_getsecctx+0x90/0x90
[ 2337.311768]  ? loop_set_status_old+0x1b0/0x1b0
[ 2337.312786]  blkdev_ioctl+0x362/0x7f0
[ 2337.313583]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2337.314527]  ? __x64_sys_ioctl+0x97/0x210
[ 2337.315331]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2337.316431]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2337.317382]  __x64_sys_ioctl+0x196/0x210
[ 2337.318209]  do_syscall_64+0x3b/0x90
[ 2337.318963]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2337.320213] RIP: 0033:0x7f9496e2f8d7
[ 2337.320959] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2337.325419] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2337.327356] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2337.329180] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2337.330718] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2337.332105] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2337.333538] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2337.334969]  </TASK>
[ 2337.342713] FAULT_INJECTION: forcing a failure.
[ 2337.342713] name failslab, interval 1, probability 0, space 0, times 0
[ 2337.344386] CPU: 0 PID: 11988 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2337.345546] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2337.347145] Call Trace:
[ 2337.347519]  <TASK>
[ 2337.347837]  dump_stack_lvl+0x8b/0xb3
[ 2337.348402]  should_fail.cold+0x5/0xa
[ 2337.348960]  ? create_object.isra.0+0x3a/0xa20
[ 2337.349643]  should_failslab+0x5/0x10
[ 2337.350198]  kmem_cache_alloc+0x5b/0x480
[ 2337.350790]  create_object.isra.0+0x3a/0xa20
[ 2337.351393]  ? kasan_unpoison+0x23/0x50
[ 2337.351992]  kmem_cache_alloc_trace+0x22e/0x3c0
[ 2337.352679]  alloc_mnt_ns+0xd4/0x4a0
[ 2337.353247]  copy_mnt_ns+0x108/0xa90
[ 2337.353799]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2337.354485]  ? kmem_cache_alloc+0x332/0x480
[ 2337.355107]  create_new_namespaces+0xd6/0xb30
[ 2337.355735]  copy_namespaces+0x391/0x450
[ 2337.356296]  copy_process+0x27f2/0x6cb0
[ 2337.356865]  ? lock_is_held_type+0xd7/0x130
[ 2337.357481]  ? find_held_lock+0x2c/0x110
[ 2337.358081]  ? __cleanup_sighand+0xb0/0xb0
[ 2337.358663]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2337.359418]  ? _copy_from_user+0x139/0x170
[ 2337.360032]  ? kernel_clone+0x2f8/0xa60
[ 2337.360584]  kernel_clone+0xe7/0xa60
[ 2337.361132]  ? create_io_thread+0xf0/0xf0
[ 2337.361705]  ? lock_is_held_type+0xd7/0x130
[ 2337.362324]  __do_sys_clone3+0x1dd/0x2e0
[ 2337.362881]  ? __ia32_sys_clone+0x150/0x150
[ 2337.363506]  ? perf_trace_run_bpf_submit+0xf5/0x1d0
[ 2337.364174]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2337.364951]  ? perf_trace_run_bpf_submit+0xf5/0x1d0
[ 2337.365694]  ? lock_is_held_type+0xd7/0x130
[ 2337.366307]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2337.367005]  do_syscall_64+0x3b/0x90
[ 2337.367539]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2337.368275] RIP: 0033:0x7f8893772b19
[ 2337.368797] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2337.371384] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2337.372451] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2337.373407] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2337.374402] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2337.375401] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2337.376405] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2337.377438]  </TASK>
23:20:23 executing program 3:
r0 = syz_io_uring_setup(0x611d, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r1, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0xe}}, './file1\x00'})
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x200000, 0x1e)

23:20:23 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x12000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:20:23 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 19)

[ 2337.468364] FAULT_INJECTION: forcing a failure.
[ 2337.468364] name failslab, interval 1, probability 0, space 0, times 0
[ 2337.470124] CPU: 0 PID: 12004 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2337.470993] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2337.472184] Call Trace:
[ 2337.472456]  <TASK>
[ 2337.472688]  dump_stack_lvl+0x8b/0xb3
[ 2337.473120]  should_fail.cold+0x5/0xa
[ 2337.473529]  ? alloc_vfsmnt+0x23/0x6b0
[ 2337.473947]  should_failslab+0x5/0x10
[ 2337.474354]  kmem_cache_alloc+0x5b/0x480
[ 2337.474792]  alloc_vfsmnt+0x23/0x6b0
[ 2337.475183]  clone_mnt+0x6d/0xdc0
[ 2337.475554]  copy_tree+0xfe/0xa50
[ 2337.475928]  ? __down_killable+0x360/0x360
[ 2337.476381]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2337.476960]  ? alloc_mnt_ns+0x2ba/0x4a0
[ 2337.477404]  copy_mnt_ns+0x1a5/0xa90
[ 2337.477820]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2337.478331]  ? kmem_cache_alloc+0x332/0x480
[ 2337.478799]  create_new_namespaces+0xd6/0xb30
[ 2337.479295]  copy_namespaces+0x391/0x450
[ 2337.479739]  copy_process+0x27f2/0x6cb0
[ 2337.480155]  ? lock_is_held_type+0xd7/0x130
[ 2337.480616]  ? find_held_lock+0x2c/0x110
[ 2337.481089]  ? __cleanup_sighand+0xb0/0xb0
[ 2337.481521]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2337.482108]  ? _copy_from_user+0x139/0x170
[ 2337.482574]  ? kernel_clone+0x2f8/0xa60
[ 2337.483008]  kernel_clone+0xe7/0xa60
[ 2337.483424]  ? lock_is_held_type+0xd7/0x130
[ 2337.483898]  ? create_io_thread+0xf0/0xf0
[ 2337.484375]  __do_sys_clone3+0x1dd/0x2e0
[ 2337.484824]  ? __ia32_sys_clone+0x150/0x150
[ 2337.485310]  ? finish_task_switch.isra.0+0x226/0x870
[ 2337.485873]  ? restore_fpregs_from_fpstate+0xcc/0x1e0
[ 2337.486410]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2337.486977]  do_syscall_64+0x3b/0x90
[ 2337.487386]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2337.487951] RIP: 0033:0x7f8893772b19
[ 2337.488322] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2337.490332] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2337.491153] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2337.491922] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2337.492618] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2337.493389] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2337.494159] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2337.494867]  </TASK>
[ 2337.509240] loop6: detected capacity change from 0 to 512
23:20:23 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r0, 0xc0096616, &(0x7f0000000040)={0x3, [0x0, 0x0, 0x0]})
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)

[ 2337.516872] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2337.528200] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:20:23 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x3f000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:20:24 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x6, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:20:24 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3, 0x0, {0x0, r5}}, 0x800)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000380)='^\x80^-\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r7, 0x0, 0x0}, 0x0)
syz_genetlink_get_family_id$gtp(&(0x7f0000000080), r1)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
rmdir(0x0)

[ 2337.597124] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
23:20:24 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r0, 0xc0096616, &(0x7f0000000040)={0x3, [0x0, 0x0, 0x0]})
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)

23:20:24 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 59)

23:20:24 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x5)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r3, 0xffffffffffffffff, r0], 0x3)
syz_io_uring_setup(0x5f9a, &(0x7f0000000180)={0x0, 0xc45a, 0x1, 0x2, 0x1da}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000240))

23:20:24 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x8000000)

23:20:24 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r0, 0xc0096616, &(0x7f0000000040)={0x3, [0x0, 0x0, 0x0]})
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:20:24 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 20)

23:20:24 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x64000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2337.776761] FAULT_INJECTION: forcing a failure.
[ 2337.776761] name failslab, interval 1, probability 0, space 0, times 0
[ 2337.778460] CPU: 0 PID: 12039 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2337.779329] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2337.780638] Call Trace:
[ 2337.780908]  <TASK>
[ 2337.781171]  dump_stack_lvl+0x8b/0xb3
[ 2337.781586]  should_fail.cold+0x5/0xa
[ 2337.782004]  ? create_object.isra.0+0x3a/0xa20
[ 2337.782501]  should_failslab+0x5/0x10
[ 2337.782897]  kmem_cache_alloc+0x5b/0x480
[ 2337.783335]  create_object.isra.0+0x3a/0xa20
[ 2337.783817]  ? kasan_unpoison+0x23/0x50
[ 2337.784240]  kmem_cache_alloc+0x239/0x480
[ 2337.784688]  alloc_vfsmnt+0x23/0x6b0
[ 2337.785092]  clone_mnt+0x6d/0xdc0
[ 2337.785467]  copy_tree+0xfe/0xa50
[ 2337.785834]  ? __down_killable+0x360/0x360
[ 2337.786303]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2337.786894]  ? alloc_mnt_ns+0x2ba/0x4a0
[ 2337.787336]  copy_mnt_ns+0x1a5/0xa90
[ 2337.787737]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2337.788260]  ? kmem_cache_alloc+0x332/0x480
[ 2337.788714]  create_new_namespaces+0xd6/0xb30
[ 2337.789223]  copy_namespaces+0x391/0x450
[ 2337.789493] loop4: detected capacity change from 0 to 256
[ 2337.789650]  copy_process+0x27f2/0x6cb0
[ 2337.791225]  ? lock_is_held_type+0xd7/0x130
[ 2337.791696]  ? find_held_lock+0x2c/0x110
[ 2337.792140]  ? __cleanup_sighand+0xb0/0xb0
[ 2337.792613]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2337.793200]  ? _copy_from_user+0x139/0x170
[ 2337.793675]  ? kernel_clone+0x2f8/0xa60
[ 2337.794096]  kernel_clone+0xe7/0xa60
[ 2337.794520]  ? create_io_thread+0xf0/0xf0
[ 2337.794989]  ? lock_is_held_type+0xd7/0x130
[ 2337.795474]  __do_sys_clone3+0x1dd/0x2e0
[ 2337.795922]  ? __ia32_sys_clone+0x150/0x150
[ 2337.796401]  ? perf_trace_run_bpf_submit+0xf5/0x1d0
[ 2337.796947]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2337.797549]  ? perf_trace_run_bpf_submit+0xf5/0x1d0
[ 2337.798094]  ? lock_is_held_type+0xd7/0x130
[ 2337.798564]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2337.799090]  do_syscall_64+0x3b/0x90
[ 2337.799497]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2337.800053] RIP: 0033:0x7f8893772b19
[ 2337.800457] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2337.802420] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2337.803236] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2337.804009] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2337.804705] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2337.805483] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2337.806258] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2337.807043]  </TASK>
[ 2337.809450] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2337.850383] FAULT_INJECTION: forcing a failure.
[ 2337.850383] name failslab, interval 1, probability 0, space 0, times 0
[ 2337.852917] CPU: 1 PID: 12043 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2337.854614] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2337.856885] Call Trace:
[ 2337.857427]  <TASK>
[ 2337.857877]  dump_stack_lvl+0x8b/0xb3
[ 2337.858676]  should_fail.cold+0x5/0xa
[ 2337.859472]  ? __kernfs_new_node+0xd4/0x8b0
[ 2337.860337]  should_failslab+0x5/0x10
[ 2337.861148]  kmem_cache_alloc+0x5b/0x480
[ 2337.861991]  __kernfs_new_node+0xd4/0x8b0
[ 2337.862858]  ? kernfs_add_one+0x3c6/0x550
[ 2337.863728]  ? kernfs_path_from_node+0x60/0x60
[ 2337.864663]  ? lock_is_held_type+0xd7/0x130
[ 2337.865562]  ? up_write+0x148/0x460
[ 2337.866291]  ? kernfs_activate+0x1c4/0x240
[ 2337.867175]  kernfs_new_node+0x93/0x120
23:20:24 executing program 3:
r0 = syz_io_uring_setup(0x4000001, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)

[ 2337.867997]  __kernfs_create_file+0x51/0x350
[ 2337.869121]  sysfs_add_file_mode_ns+0x218/0x430
[ 2337.870087]  ? component_del+0x4c0/0x4c0
[ 2337.870933]  internal_create_group+0x322/0xb20
[ 2337.871877]  ? sysfs_remove_group+0x170/0x170
[ 2337.872799]  ? lock_is_held_type+0xd7/0x130
[ 2337.873693]  ? lockdep_init_map_type+0x2c3/0x7a0
[ 2337.874660]  ? loop_configure+0x1950/0x1950
[ 2337.875555]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[ 2337.876582]  ? __loop_update_dio+0x2a3/0x620
[ 2337.877486]  loop_configure+0xe87/0x1950
[ 2337.878333]  lo_ioctl+0x7c5/0x18b0
[ 2337.879045]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2337.880048]  ? loop_set_status_old+0x1b0/0x1b0
[ 2337.880993]  ? avc_ss_reset+0x180/0x180
[ 2337.881819]  ? __lock_acquire+0xbac/0x6120
[ 2337.882749]  ? selinux_inode_getsecctx+0x90/0x90
[ 2337.883749]  ? loop_set_status_old+0x1b0/0x1b0
[ 2337.884688]  blkdev_ioctl+0x362/0x7f0
[ 2337.885482]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2337.886443]  ? __x64_sys_ioctl+0x97/0x210
[ 2337.887280]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2337.888412]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2337.889406]  __x64_sys_ioctl+0x196/0x210
[ 2337.890234]  do_syscall_64+0x3b/0x90
[ 2337.891002]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2337.892031] RIP: 0033:0x7f9496e2f8d7
[ 2337.892789] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2337.896499] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2337.898036] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2337.899464] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2337.900897] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2337.902341] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2337.903780] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2337.905243]  </TASK>
23:20:24 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 21)

23:20:24 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3, 0x0, {0x0, r5}}, 0x800)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000380)='^\x80^-\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r7, 0x0, 0x0}, 0x0)
syz_genetlink_get_family_id$gtp(&(0x7f0000000080), r1)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
rmdir(0x0)

[ 2338.007790] FAULT_INJECTION: forcing a failure.
[ 2338.007790] name failslab, interval 1, probability 0, space 0, times 0
[ 2338.009018] CPU: 0 PID: 12057 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2338.009894] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2338.011071] Call Trace:
[ 2338.011350]  <TASK>
[ 2338.011588]  dump_stack_lvl+0x8b/0xb3
[ 2338.012003]  should_fail.cold+0x5/0xa
[ 2338.012412]  should_failslab+0x5/0x10
[ 2338.012819]  __kmalloc_track_caller+0x79/0x420
[ 2338.013310]  ? kstrdup_const+0x53/0x80
[ 2338.013734]  kstrdup+0x36/0x70
[ 2338.014077]  kstrdup_const+0x53/0x80
[ 2338.014481]  alloc_vfsmnt+0xb5/0x6b0
[ 2338.014646] loop6: detected capacity change from 0 to 512
[ 2338.014873]  clone_mnt+0x6d/0xdc0
[ 2338.016386]  copy_tree+0xfe/0xa50
[ 2338.016760]  ? __down_killable+0x360/0x360
[ 2338.017245]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2338.017840]  ? alloc_mnt_ns+0x2ba/0x4a0
[ 2338.018279]  copy_mnt_ns+0x1a5/0xa90
[ 2338.018682]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2338.019210]  ? kmem_cache_alloc+0x332/0x480
[ 2338.019680]  create_new_namespaces+0xd6/0xb30
[ 2338.020177]  copy_namespaces+0x391/0x450
[ 2338.020619]  copy_process+0x27f2/0x6cb0
[ 2338.021067]  ? lock_is_held_type+0xd7/0x130
[ 2338.021532]  ? find_held_lock+0x2c/0x110
[ 2338.022000]  ? __cleanup_sighand+0xb0/0xb0
[ 2338.022473]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2338.023088]  ? _copy_from_user+0x139/0x170
[ 2338.023556]  ? kernel_clone+0x2f8/0xa60
[ 2338.023989]  kernel_clone+0xe7/0xa60
[ 2338.024394]  ? lock_is_held_type+0xd7/0x130
[ 2338.024865]  ? create_io_thread+0xf0/0xf0
[ 2338.025337]  ? lock_is_held_type+0xd7/0x130
[ 2338.025807]  __do_sys_clone3+0x1dd/0x2e0
[ 2338.026251]  ? __ia32_sys_clone+0x150/0x150
[ 2338.026740]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2338.027330]  ? vfs_write+0x188/0xae0
[ 2338.027739]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2338.028342]  ? fput+0x2a/0x50
[ 2338.028695]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2338.029271]  do_syscall_64+0x3b/0x90
[ 2338.029693]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2338.030243] RIP: 0033:0x7f8893772b19
[ 2338.030649] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2338.032647] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2338.033459] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2338.034211] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2338.034952] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2338.035692] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2338.036449] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2338.037217]  </TASK>
[ 2338.069113] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2338.092303] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[ 2338.149292] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:20:41 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x8, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:20:41 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 60)

23:20:41 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3, 0x0, {0x0, r5}}, 0x800)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000380)='^\x80^-\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r7, 0x0, 0x0}, 0x0)
syz_genetlink_get_family_id$gtp(&(0x7f0000000080), r1)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
rmdir(0x0)

23:20:41 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x519a02, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)
io_uring_enter(r1, 0x64a2, 0x6897, 0x1, &(0x7f0000000040)={[0x7]}, 0x8)

23:20:41 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x81020000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:20:41 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r0, 0xc0096616, &(0x7f0000000040)={0x3, [0x0, 0x0, 0x0]})
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:20:41 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 22)

23:20:41 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x9000000)

[ 2354.828708] FAULT_INJECTION: forcing a failure.
[ 2354.828708] name failslab, interval 1, probability 0, space 0, times 0
[ 2354.830225] CPU: 1 PID: 12082 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2354.831279] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2354.832705] Call Trace:
[ 2354.833045]  <TASK>
[ 2354.833337]  dump_stack_lvl+0x8b/0xb3
[ 2354.833842]  should_fail.cold+0x5/0xa
[ 2354.834329]  ? create_object.isra.0+0x3a/0xa20
[ 2354.835196]  should_failslab+0x5/0x10
[ 2354.836154]  kmem_cache_alloc+0x5b/0x480
[ 2354.837278]  create_object.isra.0+0x3a/0xa20
[ 2354.838281]  ? kasan_unpoison+0x23/0x50
[ 2354.838811]  __kmalloc_track_caller+0x25e/0x420
[ 2354.839398]  ? kstrdup_const+0x53/0x80
[ 2354.839902]  kstrdup+0x36/0x70
[ 2354.840327]  kstrdup_const+0x53/0x80
[ 2354.841312]  alloc_vfsmnt+0xb5/0x6b0
[ 2354.842181]  clone_mnt+0x6d/0xdc0
[ 2354.843225]  copy_tree+0xfe/0xa50
[ 2354.844035]  ? __down_killable+0x360/0x360
[ 2354.844596]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2354.846052]  ? alloc_mnt_ns+0x2ba/0x4a0
[ 2354.846082] loop4: detected capacity change from 0 to 256
[ 2354.846988]  copy_mnt_ns+0x1a5/0xa90
[ 2354.847020]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2354.850069]  ? kmem_cache_alloc+0x332/0x480
[ 2354.850729]  create_new_namespaces+0xd6/0xb30
[ 2354.851436]  copy_namespaces+0x391/0x450
[ 2354.852032]  copy_process+0x27f2/0x6cb0
[ 2354.852639]  ? lock_is_held_type+0xd7/0x130
[ 2354.853341]  ? find_held_lock+0x2c/0x110
[ 2354.853985]  ? __cleanup_sighand+0xb0/0xb0
[ 2354.854617]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2354.855442]  ? _copy_from_user+0x139/0x170
[ 2354.856067]  ? kernel_clone+0x2f8/0xa60
[ 2354.856656]  kernel_clone+0xe7/0xa60
[ 2354.857229]  ? lock_is_held_type+0xd7/0x130
[ 2354.857860]  ? create_io_thread+0xf0/0xf0
[ 2354.858448]  ? lock_is_held_type+0xd7/0x130
[ 2354.859020]  __do_sys_clone3+0x1dd/0x2e0
[ 2354.859567]  ? __ia32_sys_clone+0x150/0x150
[ 2354.859569] FAULT_INJECTION: forcing a failure.
[ 2354.859569] name failslab, interval 1, probability 0, space 0, times 0
[ 2354.861776]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2354.862480]  ? vfs_write+0x188/0xae0
[ 2354.863171]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2354.864009]  ? fput+0x2a/0x50
[ 2354.864501]  ? lock_is_held_type+0xd7/0x130
[ 2354.865700]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2354.866854]  do_syscall_64+0x3b/0x90
[ 2354.867740]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2354.868974] RIP: 0033:0x7f8893772b19
[ 2354.869651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2354.872239] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2354.874066] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2354.875723] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2354.877422] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2354.879093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2354.880795] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2354.882906]  </TASK>
[ 2354.883616] CPU: 0 PID: 12083 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2354.884908] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2354.886587] Call Trace:
[ 2354.886969]  <TASK>
[ 2354.887296]  dump_stack_lvl+0x8b/0xb3
[ 2354.887859]  should_fail.cold+0x5/0xa
[ 2354.888424]  ? create_object.isra.0+0x3a/0xa20
[ 2354.889145]  should_failslab+0x5/0x10
[ 2354.889759]  kmem_cache_alloc+0x5b/0x480
[ 2354.890364]  create_object.isra.0+0x3a/0xa20
[ 2354.891019]  ? kasan_unpoison+0x23/0x50
[ 2354.891611]  kmem_cache_alloc+0x239/0x480
[ 2354.892234]  __kernfs_new_node+0xd4/0x8b0
[ 2354.892857]  ? kernfs_add_one+0x3c6/0x550
[ 2354.894176]  ? kernfs_path_from_node+0x60/0x60
[ 2354.894878]  ? lock_is_held_type+0xd7/0x130
[ 2354.895554]  ? up_write+0x148/0x460
[ 2354.896127]  ? kernfs_activate+0x1c4/0x240
[ 2354.896843]  kernfs_new_node+0x93/0x120
[ 2354.897503]  __kernfs_create_file+0x51/0x350
[ 2354.898201]  sysfs_add_file_mode_ns+0x218/0x430
[ 2354.898922]  ? component_del+0x4c0/0x4c0
[ 2354.899561]  internal_create_group+0x322/0xb20
[ 2354.900276]  ? sysfs_remove_group+0x170/0x170
[ 2354.900984]  ? lock_is_held_type+0xd7/0x130
[ 2354.901683]  ? lockdep_init_map_type+0x2c3/0x7a0
[ 2354.902414]  ? loop_configure+0x1950/0x1950
[ 2354.903078]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[ 2354.903841]  ? __loop_update_dio+0x2a3/0x620
[ 2354.904538]  loop_configure+0xe87/0x1950
[ 2354.905205]  lo_ioctl+0x7c5/0x18b0
[ 2354.905785]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2354.906550]  ? loop_set_status_old+0x1b0/0x1b0
[ 2354.907275]  ? avc_ss_reset+0x180/0x180
[ 2354.907919]  ? __lock_acquire+0xbac/0x6120
[ 2354.909393]  ? selinux_inode_getsecctx+0x90/0x90
[ 2354.910153]  ? loop_set_status_old+0x1b0/0x1b0
[ 2354.910883]  blkdev_ioctl+0x362/0x7f0
[ 2354.911492]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2354.912243]  ? __x64_sys_ioctl+0x97/0x210
[ 2354.912908]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2354.913775]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2354.914535]  __x64_sys_ioctl+0x196/0x210
[ 2354.915181]  do_syscall_64+0x3b/0x90
[ 2354.915779]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2354.916581] RIP: 0033:0x7f9496e2f8d7
[ 2354.917163] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2354.919666] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2354.919801] netlink: 'syz-executor.7': attribute type 8 has an invalid length.
[ 2354.920691] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2354.920711] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2354.920724] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2354.920737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2354.920750] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2354.928111]  </TASK>
[ 2354.946723] loop6: detected capacity change from 0 to 512
23:20:41 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0xfffffffd, 0x0, 0x0, 0x17a}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_enter(r0, 0x720d, 0x134e, 0x1, &(0x7f0000000040), 0x8)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)

[ 2354.954577] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2354.955837] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2354.976197] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[ 2355.103941] netlink: 'syz-executor.7': attribute type 8 has an invalid length.
23:20:57 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xf4ffffff, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:20:57 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 61)

[ 2371.320298] FAULT_INJECTION: forcing a failure.
23:20:57 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xa000000)

[ 2371.320298] name failslab, interval 1, probability 0, space 0, times 0
[ 2371.321820] CPU: 1 PID: 12106 Comm: syz-executor.6 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2371.322870] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2371.326271] Call Trace:
[ 2371.326661]  <TASK>
[ 2371.326997]  dump_stack_lvl+0x8b/0xb3
[ 2371.327582]  should_fail.cold+0x5/0xa
[ 2371.327930] loop4: detected capacity change from 0 to 256
[ 2371.328153]  ? create_object.isra.0+0x3a/0xa20
[ 2371.329601]  should_failslab+0x5/0x10
[ 2371.330166]  kmem_cache_alloc+0x5b/0x480
[ 2371.330793]  create_object.isra.0+0x3a/0xa20
[ 2371.331451]  ? kasan_unpoison+0x23/0x50
[ 2371.332058]  kmem_cache_alloc+0x239/0x480
[ 2371.332696]  __kernfs_new_node+0xd4/0x8b0
[ 2371.333323]  ? kernfs_add_one+0x3c6/0x550
[ 2371.333999]  ? kernfs_path_from_node+0x60/0x60
[ 2371.334897]  ? lock_is_held_type+0xd7/0x130
[ 2371.335552]  ? up_write+0x148/0x460
[ 2371.336094]  ? kernfs_activate+0x1c4/0x240
[ 2371.336738]  kernfs_new_node+0x93/0x120
[ 2371.337337]  __kernfs_create_file+0x51/0x350
[ 2371.337990]  sysfs_add_file_mode_ns+0x218/0x430
[ 2371.338649]  ? component_del+0x4c0/0x4c0
[ 2371.339216]  internal_create_group+0x322/0xb20
[ 2371.340356]  ? sysfs_remove_group+0x170/0x170
[ 2371.340974]  ? lock_is_held_type+0xd7/0x130
[ 2371.342062]  ? lockdep_init_map_type+0x2c3/0x7a0
[ 2371.343235]  ? loop_configure+0x1950/0x1950
[ 2371.344295]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[ 2371.345545]  ? __loop_update_dio+0x2a3/0x620
[ 2371.346633]  loop_configure+0xe87/0x1950
[ 2371.347647]  lo_ioctl+0x7c5/0x18b0
[ 2371.348515]  ? avc_has_extended_perms+0x7e8/0xeb0
[ 2371.349717]  ? loop_set_status_old+0x1b0/0x1b0
[ 2371.350857]  ? avc_ss_reset+0x180/0x180
[ 2371.351830]  ? __lock_acquire+0xbac/0x6120
[ 2371.352950]  ? selinux_inode_getsecctx+0x90/0x90
[ 2371.354133]  ? loop_set_status_old+0x1b0/0x1b0
[ 2371.355244]  blkdev_ioctl+0x362/0x7f0
[ 2371.356178]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2371.357326]  ? __x64_sys_ioctl+0x97/0x210
[ 2371.358351]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2371.359692]  ? blkdev_common_ioctl+0x16b0/0x16b0
[ 2371.360841]  __x64_sys_ioctl+0x196/0x210
[ 2371.361927]  do_syscall_64+0x3b/0x90
[ 2371.363009]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2371.364339] RIP: 0033:0x7f9496e2f8d7
[ 2371.365268] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2371.369840] RSP: 002b:00007f94943a4f48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 2371.371666] RAX: ffffffffffffffda RBX: 00007f9496e79970 RCX: 00007f9496e2f8d7
[ 2371.373360] RDX: 0000000000000005 RSI: 0000000000004c00 RDI: 0000000000000006
[ 2371.375106] RBP: 0000000000000006 R08: 0000000000000000 R09: ffffffffffffffff
[ 2371.376878] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000005
[ 2371.378661] R13: 0000000000000005 R14: 0000000020000248 R15: 0000000000000003
[ 2371.380391]  </TASK>
23:20:57 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x200000}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140))
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r2, 0xffffffffffffffff, r0], 0x3)
r3 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_setup(0x22b9, &(0x7f0000000240)={0x0, 0x7f30, 0x20, 0x2, 0x3b2, 0x0, r3}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000000340), &(0x7f0000000380)=<r6=>0x0)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r6, &(0x7f00000003c0)=@IORING_OP_WRITE_FIXED={0x5, 0x5, 0x4004, @fd=r3, 0x1, 0x5, 0x4, 0x7, 0x1, {0x2, r7}}, 0x1)
syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r8, 0x0, 0x0}, 0x0)
ioctl$BTRFS_IOC_LOGICAL_INO(r8, 0xc0389424, &(0x7f0000000040)={0x70f, 0x48, '\x00', 0x0, &(0x7f0000000180)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]})
r9 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r9, 0x6c64, 0x0, 0x0, 0x0, 0x0)
pidfd_getfd(r2, r9, 0x0)

23:20:57 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r0, 0xc0096616, &(0x7f0000000040)={0x3, [0x0, 0x0, 0x0]})
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))

23:20:57 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3, 0x0, {0x0, r5}}, 0x800)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000380)='^\x80^-\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r7, 0x0, 0x0}, 0x0)
r8 = syz_genetlink_get_family_id$gtp(&(0x7f0000000080), r1)
sendmsg$GTP_CMD_DELPDP(r7, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, r8, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:20:57 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 23)

23:20:57 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x9, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

[ 2371.402998] loop6: detected capacity change from 0 to 512
[ 2371.416110] FAULT_INJECTION: forcing a failure.
[ 2371.416110] name failslab, interval 1, probability 0, space 0, times 0
[ 2371.419499] CPU: 0 PID: 12120 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2371.421906] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2371.425132] Call Trace:
[ 2371.425910]  <TASK>
[ 2371.426542]  dump_stack_lvl+0x8b/0xb3
[ 2371.427604]  should_fail.cold+0x5/0xa
[ 2371.428689]  ? create_object.isra.0+0x3a/0xa20
[ 2371.429995]  should_failslab+0x5/0x10
[ 2371.431062]  kmem_cache_alloc+0x5b/0x480
[ 2371.432226]  create_object.isra.0+0x3a/0xa20
[ 2371.433503]  kmemleak_alloc_percpu+0xa0/0x100
[ 2371.434821]  pcpu_alloc+0x7bf/0x1060
[ 2371.435890]  alloc_vfsmnt+0xfd/0x6b0
[ 2371.436927]  clone_mnt+0x6d/0xdc0
[ 2371.437908]  copy_tree+0xfe/0xa50
[ 2371.438862]  ? __down_killable+0x360/0x360
[ 2371.440071]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2371.441653]  ? alloc_mnt_ns+0x2ba/0x4a0
[ 2371.442807]  copy_mnt_ns+0x1a5/0xa90
[ 2371.443892]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2371.445292]  ? kmem_cache_alloc+0x332/0x480
[ 2371.446559]  create_new_namespaces+0xd6/0xb30
[ 2371.447876]  copy_namespaces+0x391/0x450
[ 2371.449045]  copy_process+0x27f2/0x6cb0
[ 2371.450196]  ? lock_is_held_type+0xd7/0x130
[ 2371.451448]  ? find_held_lock+0x2c/0x110
[ 2371.452651]  ? __cleanup_sighand+0xb0/0xb0
[ 2371.453902]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2371.455436]  ? _copy_from_user+0x139/0x170
[ 2371.456637]  ? kernel_clone+0x2f8/0xa60
[ 2371.457771]  kernel_clone+0xe7/0xa60
[ 2371.458823]  ? create_io_thread+0xf0/0xf0
[ 2371.460021]  ? lock_is_held_type+0xd7/0x130
[ 2371.461219]  __do_sys_clone3+0x1dd/0x2e0
[ 2371.462399]  ? __ia32_sys_clone+0x150/0x150
[ 2371.463659]  ? perf_trace_run_bpf_submit+0xf5/0x1d0
[ 2371.465066]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2371.466617]  ? perf_trace_run_bpf_submit+0xf5/0x1d0
[ 2371.468061]  ? lock_is_held_type+0xd7/0x130
[ 2371.469260]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2371.470657]  do_syscall_64+0x3b/0x90
[ 2371.471672]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2371.473122] RIP: 0033:0x7f8893772b19
[ 2371.474162] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2371.479439] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
23:20:57 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xfbffffff, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2371.481646] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2371.490296] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2371.492342] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2371.494373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2371.496384] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2371.498461]  </TASK>
[ 2371.500446] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2371.507492] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:20:57 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 24)

[ 2371.561108] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[ 2371.614000] FAULT_INJECTION: forcing a failure.
[ 2371.614000] name failslab, interval 1, probability 0, space 0, times 0
[ 2371.617170] CPU: 0 PID: 12139 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2371.619374] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2371.622359] Call Trace:
[ 2371.623067]  <TASK>
[ 2371.623653]  dump_stack_lvl+0x8b/0xb3
[ 2371.624659]  should_fail.cold+0x5/0xa
[ 2371.625679]  ? create_object.isra.0+0x3a/0xa20
[ 2371.626913]  should_failslab+0x5/0x10
[ 2371.627946]  kmem_cache_alloc+0x5b/0x480
[ 2371.629016]  ? mark_held_locks+0x9e/0xe0
[ 2371.630092]  create_object.isra.0+0x3a/0xa20
[ 2371.631330]  kmemleak_alloc_percpu+0xa0/0x100
[ 2371.632851]  pcpu_alloc+0x7bf/0x1060
[ 2371.633866]  alloc_vfsmnt+0xfd/0x6b0
[ 2371.634836]  clone_mnt+0x6d/0xdc0
[ 2371.635764]  copy_tree+0xfe/0xa50
[ 2371.636700]  ? __down_killable+0x360/0x360
[ 2371.637860]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2371.639469]  ? alloc_mnt_ns+0x2ba/0x4a0
[ 2371.640518]  copy_mnt_ns+0x1a5/0xa90
[ 2371.641568]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2371.642876]  ? kmem_cache_alloc+0x332/0x480
[ 2371.644092]  create_new_namespaces+0xd6/0xb30
[ 2371.645290]  copy_namespaces+0x391/0x450
[ 2371.646418]  copy_process+0x27f2/0x6cb0
[ 2371.647556]  ? lock_is_held_type+0xd7/0x130
[ 2371.648753]  ? find_held_lock+0x2c/0x110
[ 2371.649942]  ? __cleanup_sighand+0xb0/0xb0
[ 2371.651186]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2371.652776]  ? _copy_from_user+0x139/0x170
[ 2371.654029]  ? kernel_clone+0x2f8/0xa60
[ 2371.655219]  kernel_clone+0xe7/0xa60
[ 2371.656304]  ? lock_is_held_type+0xd7/0x130
[ 2371.657566]  ? create_io_thread+0xf0/0xf0
[ 2371.658779]  ? lock_is_held_type+0xd7/0x130
[ 2371.660014]  __do_sys_clone3+0x1dd/0x2e0
[ 2371.661187]  ? __ia32_sys_clone+0x150/0x150
[ 2371.662452]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2371.664053]  ? vfs_write+0x188/0xae0
[ 2371.665116]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2371.666716]  ? fput+0x2a/0x50
[ 2371.667623]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2371.669193]  do_syscall_64+0x3b/0x90
[ 2371.670295]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2371.671818] RIP: 0033:0x7f8893772b19
[ 2371.672896] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2371.678353] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2371.680570] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2371.682653] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2371.684695] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2371.686793] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2371.688860] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2371.690944]  </TASK>
23:20:58 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[]) (fail_nth: 62)

23:20:58 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3, 0x0, {0x0, r5}}, 0x800)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000380)='^\x80^-\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r7, 0x0, 0x0}, 0x0)
r8 = syz_genetlink_get_family_id$gtp(&(0x7f0000000080), r1)
sendmsg$GTP_CMD_DELPDP(r7, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, r8, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:20:58 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r0, 0xc0096616, &(0x7f0000000040)={0x3, [0x0, 0x0, 0x0]})
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))

23:20:58 executing program 3:
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000040)={{0x1, 0x1, 0x18, <r0=>0xffffffffffffffff, {0x1}}, './file1\x00'})
sendmsg$NL80211_CMD_GET_STATION(r0, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x2c, 0x0, 0x800, 0x70bd2b, 0x25dfdbfc, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x9}, @NL80211_ATTR_STA_TX_POWER={0x6, 0x114, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x64000001}, 0x400c015)
r1 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000000)=[r2, 0xffffffffffffffff, r1], 0x3)
getsockname(r2, &(0x7f0000000280)=@pppol2tpv3={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @dev}}}, &(0x7f0000000300)=0x80)
r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000340), 0x80, 0x0)
syz_io_uring_setup(0x5ee, &(0x7f0000000380)={0x0, 0xc71f, 0x8, 0x3, 0x387, 0x0, r3}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000400), &(0x7f0000000440))

23:20:58 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xfeffffff, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:20:58 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xb000000)

23:20:58 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:20:58 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r0, 0xc0096616, &(0x7f0000000040)={0x3, [0x0, 0x0, 0x0]})
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))

23:20:58 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r1, 0x0, 0x0}, 0x0)
sendmsg$NL80211_CMD_ADD_TX_TS(r1, &(0x7f0000000500)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x42100}, 0xc, &(0x7f00000004c0)={&(0x7f0000000440)={0x28, r0, 0x1, 0x70bd2c, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x8, 0x68}}}}, [@NL80211_ATTR_ADMITTED_TIME={0x6, 0xd4, 0x8000}]}, 0x28}, 0x1, 0x0, 0x0, 0x20000800}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000140)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000540)={0x34, r0, 0x1, 0x1, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_KEY_SEQ={0x4}, @NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, "1d146c6bf9"}, @NL80211_ATTR_KEY_IDX={0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x44000}, 0x0)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000140)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000240)={0x4c, r4, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_KEY_SEQ={0x14, 0xa, "40d234644e44b430d094a1462065e839"}, @NL80211_ATTR_KEY_DATA_WEP104={0x11, 0x7, "b01d08e84e9fa06832759ca054"}, @NL80211_ATTR_KEY_IDX={0x5}]}, 0x4c}}, 0x0)
sendmsg$NL80211_CMD_SET_MULTICAST_TO_UNICAST(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x2c, r0, 0x8, 0x70bd29, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}, @NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20008011}, 0x41)
r7 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f00000003c0), &(0x7f0000000140))
r8 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r7, 0x2, &(0x7f0000000000)=[r8, 0xffffffffffffffff, r7], 0x3)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r10, 0x8933, &(0x7f0000000140)={'wlan0\x00', <r11=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000540)=ANY=[@ANYBLOB="7d749f93", @ANYRES16=r9, @ANYBLOB="010000000000000000000b00000008000300", @ANYRES32=r11, @ANYBLOB="04000a0011000700b01d08e84e9fa06832759ca0540000000500080000000000"], 0x3c}}, 0x0)
sendmsg$NL80211_CMD_DEL_INTERFACE(r5, &(0x7f0000000380)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x1c, r0, 0x400, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r11}, @void}}, [""]}, 0x1c}, 0x1, 0x0, 0x0, 0x20040000}, 0x0)

[ 2371.895606] loop6: detected capacity change from 0 to 512
[ 2371.910490] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2371.964181] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
23:21:14 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3, 0x0, {0x0, r5}}, 0x800)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000380)='^\x80^-\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r7, 0x0, 0x0}, 0x0)
r8 = syz_genetlink_get_family_id$gtp(&(0x7f0000000080), r1)
sendmsg$GTP_CMD_DELPDP(r7, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, r8, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:21:14 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x145, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:21:14 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140))
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r4, 0x0, 0x0}, 0x0)
syz_io_uring_submit(r1, r3, &(0x7f0000000040)=@IORING_OP_NOP={0x0, 0x6}, 0x6b3f)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r5, 0xffffffffffffffff, r0], 0x3)

23:21:14 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xc000000)

23:21:14 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xff010000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:21:14 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0xa, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:21:14 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 25)

23:21:14 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r0, 0xc0096616, &(0x7f0000000040)={0x3, [0x0, 0x0, 0x0]})
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

[ 2388.349279] FAULT_INJECTION: forcing a failure.
[ 2388.349279] name failslab, interval 1, probability 0, space 0, times 0
[ 2388.350911] CPU: 1 PID: 12182 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2388.351995] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2388.353455] Call Trace:
[ 2388.353817]  <TASK>
[ 2388.354121]  dump_stack_lvl+0x8b/0xb3
[ 2388.354636]  should_fail.cold+0x5/0xa
[ 2388.355137]  ? alloc_vfsmnt+0x23/0x6b0
[ 2388.355664]  should_failslab+0x5/0x10
[ 2388.356177]  kmem_cache_alloc+0x5b/0x480
[ 2388.356727]  alloc_vfsmnt+0x23/0x6b0
[ 2388.357229]  clone_mnt+0x6d/0xdc0
[ 2388.357712]  ? is_subdir+0x19a/0x2d0
[ 2388.358257]  copy_tree+0x3ac/0xa50
[ 2388.358748]  copy_mnt_ns+0x1a5/0xa90
[ 2388.358791] loop6: detected capacity change from 0 to 65
[ 2388.359251]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2388.359280]  ? kmem_cache_alloc+0x332/0x480
[ 2388.361488]  create_new_namespaces+0xd6/0xb30
[ 2388.362139]  copy_namespaces+0x391/0x450
[ 2388.362699]  copy_process+0x27f2/0x6cb0
[ 2388.363231]  ? lock_is_held_type+0xd7/0x130
[ 2388.363817]  ? find_held_lock+0x2c/0x110
[ 2388.364368]  ? __cleanup_sighand+0xb0/0xb0
[ 2388.364945]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2388.365680]  ? _copy_from_user+0x139/0x170
[ 2388.366276]  ? kernel_clone+0x2f8/0xa60
[ 2388.366792]  kernel_clone+0xe7/0xa60
[ 2388.367273]  ? lock_is_held_type+0xd7/0x130
[ 2388.367844]  ? create_io_thread+0xf0/0xf0
[ 2388.368417]  ? lock_is_held_type+0xd7/0x130
[ 2388.369019]  __do_sys_clone3+0x1dd/0x2e0
[ 2388.369574]  ? __ia32_sys_clone+0x150/0x150
[ 2388.370255]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2388.370990]  ? vfs_write+0x188/0xae0
[ 2388.371495]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2388.372229]  ? fput+0x2a/0x50
[ 2388.372641]  ? lock_is_held_type+0xd7/0x130
[ 2388.373213]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2388.373919]  do_syscall_64+0x3b/0x90
[ 2388.374428]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2388.375116] RIP: 0033:0x7f8893772b19
[ 2388.375620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2388.377787] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2388.378039] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2388.380387] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2388.381327] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2388.382296] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2388.383229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2388.384164] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2388.385113]  </TASK>
[ 2388.387661] loop4: detected capacity change from 0 to 256
[ 2388.410363] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2388.418957] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
23:21:14 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r0, 0xc0096616, &(0x7f0000000040)={0x3, [0x0, 0x0, 0x0]})
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:21:14 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xff070000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:21:14 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r3, 0x0, 0x0}, 0x0)
mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000000, 0x40010, r3, 0x8000000)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r4, 0xffffffffffffffff, r0], 0x3)

23:21:14 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x14f, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

[ 2388.655358] loop6: detected capacity change from 0 to 65
[ 2388.658605] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2388.676900] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2388.689772] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
23:21:31 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3, 0x0, {0x0, r5}}, 0x800)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000380)='^\x80^-\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r7, 0x0, 0x0}, 0x0)
r8 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(r7, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r8}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

[ 2404.701589] loop4: detected capacity change from 0 to 256
23:21:31 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x150, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:21:31 executing program 3:
io_setup(0x1, &(0x7f0000000000)=<r0=>0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x802, 0x0)
io_submit(r0, 0x1, &(0x7f00000008c0)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0xfe}])
io_cancel(r0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x401, 0xffffffffffffffff, &(0x7f00000001c0)="3954a27a17b43d39a65961fb9749f0c6e5eafb6975e7e9a0034c4402cd78afcb49abda74329ac73e85a3104db1333b3cd37c78d3efef67dfbae668d2ecd7fc280d857064311010d40ada811cf8dce649fa538cc8116d15eb46840df231da05cd04b7f96970668bb626a517712f58441baadf0a5cedcb535c0e729f27a11a9f7597f0efafb4f78af0b0628e24849cf8b96be945287b3baea3bdf2b70612762198aa897c34ef8f91fbf94aa4e8a9db7582f41f63fc3fe763050722b85300606b74420678033aa68c32d9f597539386b51d605b0611b37c4ffb654c3910cb106e133a", 0xe1, 0x7f2}, &(0x7f00000002c0))
r2 = syz_io_uring_setup(0xd8c, &(0x7f0000000080)={0x0, 0x357e, 0x20}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180))
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r2, 0x2, &(0x7f0000000000)=[r3, 0xffffffffffffffff, r2], 0x3)

23:21:31 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xff0f0000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:21:31 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r0, 0xc0096616, &(0x7f0000000040)={0x3, [0x0, 0x0, 0x0]})
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:21:31 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xd000000)

23:21:31 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0xb, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:21:31 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 26)

[ 2404.730540] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2404.731517] loop6: detected capacity change from 0 to 65
[ 2404.737742] FAULT_INJECTION: forcing a failure.
[ 2404.737742] name failslab, interval 1, probability 0, space 0, times 0
[ 2404.739357] CPU: 0 PID: 12229 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2404.740463] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2404.741929] Call Trace:
[ 2404.742299]  <TASK>
[ 2404.742589]  dump_stack_lvl+0x8b/0xb3
[ 2404.743098]  should_fail.cold+0x5/0xa
[ 2404.743604]  ? create_object.isra.0+0x3a/0xa20
[ 2404.744213]  should_failslab+0x5/0x10
[ 2404.744710]  kmem_cache_alloc+0x5b/0x480
[ 2404.745252]  create_object.isra.0+0x3a/0xa20
[ 2404.745830]  ? kasan_unpoison+0x23/0x50
[ 2404.746386]  kmem_cache_alloc+0x239/0x480
[ 2404.746936]  alloc_vfsmnt+0x23/0x6b0
[ 2404.747436]  clone_mnt+0x6d/0xdc0
[ 2404.747897]  ? is_subdir+0x19a/0x2d0
[ 2404.748382]  copy_tree+0x3ac/0xa50
[ 2404.748866]  copy_mnt_ns+0x1a5/0xa90
[ 2404.749358]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2404.749983]  ? kmem_cache_alloc+0x332/0x480
[ 2404.750600]  create_new_namespaces+0xd6/0xb30
[ 2404.751193]  copy_namespaces+0x391/0x450
[ 2404.751745]  copy_process+0x27f2/0x6cb0
[ 2404.752271]  ? lock_is_held_type+0xd7/0x130
[ 2404.752845]  ? find_held_lock+0x2c/0x110
[ 2404.753390]  ? __cleanup_sighand+0xb0/0xb0
[ 2404.753950]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2404.754697]  ? _copy_from_user+0x139/0x170
[ 2404.755270]  ? kernel_clone+0x2f8/0xa60
[ 2404.755808]  kernel_clone+0xe7/0xa60
[ 2404.756309]  ? create_io_thread+0xf0/0xf0
[ 2404.756864]  ? lock_is_held_type+0xd7/0x130
[ 2404.757435]  __do_sys_clone3+0x1dd/0x2e0
[ 2404.757974]  ? __ia32_sys_clone+0x150/0x150
[ 2404.758612]  ? perf_trace_run_bpf_submit+0xf5/0x1d0
[ 2404.759257]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2404.759997]  ? perf_trace_run_bpf_submit+0xf5/0x1d0
[ 2404.760638]  ? lock_is_held_type+0xd7/0x130
[ 2404.761206]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2404.761838]  do_syscall_64+0x3b/0x90
[ 2404.762385]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2404.763046] RIP: 0033:0x7f8893772b19
[ 2404.763522] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2404.765829] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2404.766870] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2404.767766] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2404.768686] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2404.769604] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2404.770558] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2404.771487]  </TASK>
[ 2404.788104] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2404.796358] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
23:21:31 executing program 3:
r0 = syz_io_uring_setup(0x68b8, &(0x7f0000000180)={0x0, 0x0, 0x4b8873019fcc4708, 0x106, 0x38d}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000040), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)

23:21:31 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:21:31 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xff170000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:21:31 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 27)

23:21:31 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x269, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

[ 2404.977032] loop6: detected capacity change from 0 to 65
23:21:31 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0xfffffffe}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)

23:21:31 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

[ 2405.006164] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2405.019912] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2405.030677] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
23:21:31 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xff1f0000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:21:31 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3, 0x0, {0x0, r5}}, 0x800)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000380)='^\x80^-\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r7, 0x0, 0x0}, 0x0)
r8 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(r7, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r8}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:21:31 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x10000000)

23:21:31 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0xe, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

[ 2405.135797] FAULT_INJECTION: forcing a failure.
[ 2405.135797] name failslab, interval 1, probability 0, space 0, times 0
[ 2405.137271] CPU: 1 PID: 12267 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2405.138315] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2405.139704] Call Trace:
[ 2405.140030]  <TASK>
[ 2405.140325]  dump_stack_lvl+0x8b/0xb3
[ 2405.140831]  should_fail.cold+0x5/0xa
[ 2405.141324]  should_failslab+0x5/0x10
[ 2405.141806]  __kmalloc_track_caller+0x79/0x420
[ 2405.142476]  ? kstrdup_const+0x53/0x80
[ 2405.142991]  kstrdup+0x36/0x70
[ 2405.143426]  kstrdup_const+0x53/0x80
[ 2405.143907]  alloc_vfsmnt+0xb5/0x6b0
[ 2405.144398]  clone_mnt+0x6d/0xdc0
[ 2405.144875]  ? is_subdir+0x19a/0x2d0
[ 2405.145430]  copy_tree+0x3ac/0xa50
[ 2405.145914]  copy_mnt_ns+0x1a5/0xa90
[ 2405.146463]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2405.147089]  ? kmem_cache_alloc+0x332/0x480
[ 2405.147669]  create_new_namespaces+0xd6/0xb30
[ 2405.148280]  copy_namespaces+0x391/0x450
[ 2405.148831]  copy_process+0x27f2/0x6cb0
[ 2405.149421]  ? lock_is_held_type+0xd7/0x130
[ 2405.149997]  ? find_held_lock+0x2c/0x110
[ 2405.150596]  ? __cleanup_sighand+0xb0/0xb0
[ 2405.151191]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2405.151917]  ? _copy_from_user+0x139/0x170
[ 2405.152475]  ? kernel_clone+0x2f8/0xa60
[ 2405.153019]  kernel_clone+0xe7/0xa60
[ 2405.153533]  ? lock_is_held_type+0xd7/0x130
[ 2405.154164]  ? create_io_thread+0xf0/0xf0
[ 2405.154755]  ? lock_is_held_type+0xd7/0x130
[ 2405.155360]  __do_sys_clone3+0x1dd/0x2e0
[ 2405.155908]  ? __ia32_sys_clone+0x150/0x150
[ 2405.156500]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2405.157270]  ? vfs_write+0x188/0xae0
[ 2405.157791]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2405.158580]  ? fput+0x2a/0x50
[ 2405.159017]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2405.159705]  do_syscall_64+0x3b/0x90
[ 2405.160220]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2405.160891] RIP: 0033:0x7f8893772b19
[ 2405.161411] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2405.163805] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2405.164787] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2405.165694] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2405.166641] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2405.167545] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2405.168442] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2405.169410]  </TASK>
23:21:48 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x26a, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:21:48 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x10, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:21:48 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 28)

23:21:48 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
sendfile(r1, r0, &(0x7f0000000040)=0xdde, 0xffffffff)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)

23:21:48 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xff270000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:21:48 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:21:48 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3, 0x0, {0x0, r5}}, 0x800)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000380)='^\x80^-\x00')
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r8 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(r7, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r8}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:21:48 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x18000000)

[ 2421.666821] loop4: detected capacity change from 0 to 256
[ 2421.673652] netlink: 'syz-executor.7': attribute type 16 has an invalid length.
[ 2421.710773] loop6: detected capacity change from 0 to 65
[ 2421.714527] FAULT_INJECTION: forcing a failure.
[ 2421.714527] name failslab, interval 1, probability 0, space 0, times 0
[ 2421.716032] CPU: 0 PID: 12296 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2421.717094] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2421.718532] Call Trace:
[ 2421.718863]  <TASK>
[ 2421.719155]  dump_stack_lvl+0x8b/0xb3
[ 2421.719671]  should_fail.cold+0x5/0xa
[ 2421.720168]  ? create_object.isra.0+0x3a/0xa20
[ 2421.720775]  should_failslab+0x5/0x10
[ 2421.721265]  kmem_cache_alloc+0x5b/0x480
[ 2421.721800]  create_object.isra.0+0x3a/0xa20
[ 2421.722414]  ? kasan_unpoison+0x23/0x50
[ 2421.722953]  __kmalloc_track_caller+0x25e/0x420
[ 2421.723554]  ? kstrdup_const+0x53/0x80
[ 2421.724066]  kstrdup+0x36/0x70
[ 2421.724486]  kstrdup_const+0x53/0x80
[ 2421.724968]  alloc_vfsmnt+0xb5/0x6b0
[ 2421.725455]  clone_mnt+0x6d/0xdc0
[ 2421.725916]  ? is_subdir+0x19a/0x2d0
[ 2421.726427]  copy_tree+0x3ac/0xa50
[ 2421.727056]  copy_mnt_ns+0x1a5/0xa90
[ 2421.727581]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2421.728197]  ? kmem_cache_alloc+0x332/0x480
[ 2421.728756]  create_new_namespaces+0xd6/0xb30
[ 2421.729346]  copy_namespaces+0x391/0x450
[ 2421.729889]  copy_process+0x27f2/0x6cb0
[ 2421.730403]  ? lock_is_held_type+0xd7/0x130
[ 2421.730957]  ? find_held_lock+0x2c/0x110
[ 2421.731475]  ? __cleanup_sighand+0xb0/0xb0
[ 2421.732013]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2421.732703]  ? _copy_from_user+0x139/0x170
[ 2421.733235]  ? kernel_clone+0x2f8/0xa60
[ 2421.733862]  kernel_clone+0xe7/0xa60
[ 2421.734348]  ? create_io_thread+0xf0/0xf0
[ 2421.734906]  ? lock_is_held_type+0xd7/0x130
[ 2421.735458]  __do_sys_clone3+0x1dd/0x2e0
[ 2421.735977]  ? __ia32_sys_clone+0x150/0x150
[ 2421.736548]  ? perf_trace_run_bpf_submit+0xf5/0x1d0
[ 2421.737178]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2421.737869]  ? perf_trace_run_bpf_submit+0xf5/0x1d0
[ 2421.738574]  ? lock_is_held_type+0xd7/0x130
[ 2421.739122]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2421.739744]  do_syscall_64+0x3b/0x90
[ 2421.740231]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2421.740878] RIP: 0033:0x7f8893772b19
[ 2421.741350] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2421.743696] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2421.744656] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2421.745544] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2421.746455] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2421.747357] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2421.748232] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2421.749152]  </TASK>
[ 2421.760614] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2421.762024] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2421.763943] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
[ 2421.909270] netlink: 'syz-executor.7': attribute type 16 has an invalid length.
[ 2421.938150] loop6: detected capacity change from 0 to 65
23:21:48 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x10000, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)
r2 = dup(r1)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f0000000040)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r4=>r1, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00>/file1\x00'])
io_uring_register$IORING_REGISTER_FILES_UPDATE(r2, 0x6, &(0x7f00000001c0)={0x20, 0x0, &(0x7f0000000180)=[r3, r0, r4, r0, r1]}, 0x5)

23:21:48 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xff2f0000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:21:48 executing program 5:
io_uring_enter(0xffffffffffffffff, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:21:48 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3, 0x0, {0x0, r5}}, 0x800)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000380)='^\x80^-\x00')
r7 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r7}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:21:48 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x26b, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:21:48 executing program 3:
r0 = syz_io_uring_setup(0x78ae, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)

23:21:48 executing program 5:
io_uring_enter(0xffffffffffffffff, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:21:48 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x11, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

[ 2421.984238] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2421.995141] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
23:22:04 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x28, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:22:04 executing program 5:
io_uring_enter(0xffffffffffffffff, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:22:04 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xff370000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:22:04 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3, 0x0, {0x0, r5}}, 0x800)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/seq/clients\x00', 0x0, 0x0)
r6 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r6}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:22:04 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 29)

23:22:04 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x20000000)

23:22:04 executing program 3:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
r1 = syz_io_uring_setup(0xffffffbf, &(0x7f0000000080)={0x0, 0x0, 0x1, 0x0, 0x0, 0x0, r0}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000040), &(0x7f0000000140))
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000000)=[r2, 0xffffffffffffffff, r1], 0x3)

23:22:04 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x26c, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

[ 2438.347184] loop6: detected capacity change from 0 to 65
[ 2438.359691] loop4: detected capacity change from 0 to 256
[ 2438.382753] FAULT_INJECTION: forcing a failure.
[ 2438.382753] name failslab, interval 1, probability 0, space 0, times 0
[ 2438.384275] CPU: 1 PID: 12347 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2438.385339] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2438.386889] Call Trace:
[ 2438.387223]  <TASK>
[ 2438.387514]  dump_stack_lvl+0x8b/0xb3
[ 2438.388046]  should_fail.cold+0x5/0xa
[ 2438.388546]  ? create_object.isra.0+0x3a/0xa20
[ 2438.389143]  should_failslab+0x5/0x10
[ 2438.389638]  kmem_cache_alloc+0x5b/0x480
[ 2438.390171]  create_object.isra.0+0x3a/0xa20
[ 2438.390962]  kmemleak_alloc_percpu+0xa0/0x100
[ 2438.392152]  pcpu_alloc+0x7bf/0x1060
[ 2438.393069]  alloc_vfsmnt+0xfd/0x6b0
[ 2438.393917]  clone_mnt+0x6d/0xdc0
[ 2438.394793]  ? is_subdir+0x19a/0x2d0
[ 2438.395624]  copy_tree+0x3ac/0xa50
[ 2438.396463]  copy_mnt_ns+0x1a5/0xa90
[ 2438.397330]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2438.398447]  ? kmem_cache_alloc+0x332/0x480
[ 2438.399472]  create_new_namespaces+0xd6/0xb30
[ 2438.400534]  copy_namespaces+0x391/0x450
[ 2438.401498]  copy_process+0x27f2/0x6cb0
[ 2438.402421]  ? lock_is_held_type+0xd7/0x130
[ 2438.403653]  ? find_held_lock+0x2c/0x110
[ 2438.404772]  ? __cleanup_sighand+0xb0/0xb0
[ 2438.405766]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2438.406978]  ? _copy_from_user+0x139/0x170
[ 2438.407972]  ? kernel_clone+0x2f8/0xa60
[ 2438.408907]  kernel_clone+0xe7/0xa60
[ 2438.409778]  ? lock_is_held_type+0xd7/0x130
[ 2438.410748]  ? create_io_thread+0xf0/0xf0
[ 2438.411311]  ? lock_is_held_type+0xd7/0x130
[ 2438.411882]  __do_sys_clone3+0x1dd/0x2e0
[ 2438.412414]  ? __ia32_sys_clone+0x150/0x150
[ 2438.412992]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2438.413700]  ? vfs_write+0x188/0xae0
[ 2438.414189]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2438.414943]  ? fput+0x2a/0x50
[ 2438.415366]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2438.416050]  do_syscall_64+0x3b/0x90
[ 2438.416538]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2438.417211] RIP: 0033:0x7f8893772b19
[ 2438.417698] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2438.419960] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2438.420899] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2438.421843] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2438.422807] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2438.423741] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2438.424687] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2438.425643]  </TASK>
[ 2438.431012] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2438.435361] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2438.457661] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
23:22:04 executing program 5:
r0 = syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:22:04 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3, 0x0, {0x0, r5}}, 0x800)
r6 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r6}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:22:04 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
ioctl$VFAT_IOCTL_READDIR_BOTH(r1, 0x82307201, &(0x7f0000000180)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r2, 0x6c64, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_selinux(r2, &(0x7f0000000040), &(0x7f00000003c0)='system_u:object_r:file_context_t:s0\x00', 0x24, 0x2)

23:22:04 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xff3f0000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:22:04 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x2df, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:22:04 executing program 5:
r0 = syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

[ 2439.027517] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
23:22:21 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3, 0x0, {0x0, r5}}, 0x800)
r6 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r6}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:22:21 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 30)

23:22:21 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x33, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:22:21 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xff470000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:22:21 executing program 3:
mkdir(&(0x7f0000000280)='./file1\x00', 0x0)
r0 = syz_io_uring_setup(0x20001, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000040), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_setup(0x6cec, &(0x7f0000000340)={0x0, 0x236b8, 0x10, 0x1, 0x28, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000240))
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r2, 0x6c64, 0x0, 0x0, 0x0, 0x0)
signalfd4(r2, &(0x7f00000002c0)={[0x9]}, 0x8, 0x180800)

23:22:21 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x3f000000)

23:22:21 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x2e0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:22:21 executing program 5:
r0 = syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

[ 2454.952919] FAULT_INJECTION: forcing a failure.
[ 2454.952919] name failslab, interval 1, probability 0, space 0, times 0
[ 2454.954511] CPU: 0 PID: 12389 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2454.955715] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2454.957336] Call Trace:
[ 2454.957710]  <TASK>
[ 2454.958042]  dump_stack_lvl+0x8b/0xb3
[ 2454.958627]  should_fail.cold+0x5/0xa
[ 2454.959199]  ? create_object.isra.0+0x3a/0xa20
[ 2454.959798]  should_failslab+0x5/0x10
[ 2454.960304]  kmem_cache_alloc+0x5b/0x480
[ 2454.960848]  create_object.isra.0+0x3a/0xa20
[ 2454.961456]  kmemleak_alloc_percpu+0xa0/0x100
[ 2454.962047]  pcpu_alloc+0x7bf/0x1060
[ 2454.962554]  alloc_vfsmnt+0xfd/0x6b0
[ 2454.963099]  clone_mnt+0x6d/0xdc0
[ 2454.963632]  ? is_subdir+0x19a/0x2d0
[ 2454.964224]  copy_tree+0x3ac/0xa50
[ 2454.964790]  copy_mnt_ns+0x1a5/0xa90
[ 2454.965387]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2454.966117]  ? kmem_cache_alloc+0x332/0x480
[ 2454.966785]  create_new_namespaces+0xd6/0xb30
[ 2454.967412]  copy_namespaces+0x391/0x450
[ 2454.967950]  copy_process+0x27f2/0x6cb0
[ 2454.968481]  ? lock_is_held_type+0xd7/0x130
[ 2454.969050]  ? find_held_lock+0x2c/0x110
[ 2454.969737]  ? __cleanup_sighand+0xb0/0xb0
[ 2454.970317]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2454.971109]  ? _copy_from_user+0x139/0x170
[ 2454.971747]  ? kernel_clone+0x2f8/0xa60
[ 2454.972356]  kernel_clone+0xe7/0xa60
[ 2454.972921]  ? lock_is_held_type+0xd7/0x130
[ 2454.973564]  ? create_io_thread+0xf0/0xf0
[ 2454.974179]  ? lock_is_held_type+0xd7/0x130
[ 2454.974814]  __do_sys_clone3+0x1dd/0x2e0
[ 2454.975463]  ? __ia32_sys_clone+0x150/0x150
[ 2454.976129]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2454.976941]  ? vfs_write+0x188/0xae0
[ 2454.977480]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2454.978255]  ? fput+0x2a/0x50
[ 2454.978899]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2454.979569]  do_syscall_64+0x3b/0x90
[ 2454.980050]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2454.980732] RIP: 0033:0x7f8893772b19
[ 2454.981196] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2454.983645] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2454.984747] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2454.985830] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2454.986858] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2454.987815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2454.988733] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2454.989694]  </TASK>
[ 2454.999611] loop6: detected capacity change from 0 to 65
[ 2455.003746] loop4: detected capacity change from 0 to 256
[ 2455.021323] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2455.024724] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2455.027703] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
23:22:21 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xff4f0000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:22:21 executing program 5:
r0 = syz_io_uring_setup(0x4f02, 0x0, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:22:21 executing program 3:
r0 = open_tree(0xffffffffffffffff, &(0x7f0000000040)='./file1\x00', 0x1000)
r1 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0xfffffffe}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140))
syz_io_uring_setup(0x7e05, &(0x7f0000000180)={0x0, 0xfb18, 0x8, 0x2, 0x3d3}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200), &(0x7f0000000240)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000340)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, r0, &(0x7f0000000280)=0x80, &(0x7f00000002c0)=@alg, 0x0, 0x800, 0x1}, 0xf81)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000000)=[r4, 0xffffffffffffffff, r1], 0x3)

23:22:21 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x2f4, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

[ 2455.173261] loop6: detected capacity change from 0 to 65
[ 2455.191885] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
23:22:21 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3, 0x0, {0x0, r5}}, 0x800)
r6 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r6}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

[ 2455.198551] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
23:22:21 executing program 5:
r0 = syz_io_uring_setup(0x4f02, 0x0, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:22:21 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xff570000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:22:21 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3b, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:22:21 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 31)

[ 2455.335064] FAULT_INJECTION: forcing a failure.
[ 2455.335064] name failslab, interval 1, probability 0, space 0, times 0
[ 2455.336579] CPU: 0 PID: 12428 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2455.337653] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2455.339151] Call Trace:
[ 2455.339463]  <TASK>
[ 2455.339730]  dump_stack_lvl+0x8b/0xb3
[ 2455.340241]  should_fail.cold+0x5/0xa
[ 2455.340755]  ? alloc_vfsmnt+0x23/0x6b0
[ 2455.341271]  should_failslab+0x5/0x10
[ 2455.341773]  kmem_cache_alloc+0x5b/0x480
[ 2455.342306]  ? lock_release+0x3b2/0x6f0
[ 2455.342845]  alloc_vfsmnt+0x23/0x6b0
[ 2455.343391]  clone_mnt+0x6d/0xdc0
[ 2455.343882]  copy_tree+0x3ac/0xa50
[ 2455.344381]  copy_mnt_ns+0x1a5/0xa90
[ 2455.344928]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2455.345573]  ? kmem_cache_alloc+0x332/0x480
[ 2455.346161]  create_new_namespaces+0xd6/0xb30
[ 2455.346774]  copy_namespaces+0x391/0x450
[ 2455.347383]  copy_process+0x27f2/0x6cb0
[ 2455.347939]  ? lock_is_held_type+0xd7/0x130
[ 2455.348513]  ? find_held_lock+0x2c/0x110
[ 2455.349075]  ? __cleanup_sighand+0xb0/0xb0
[ 2455.349657]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2455.350396]  ? _copy_from_user+0x139/0x170
[ 2455.351000]  ? kernel_clone+0x2f8/0xa60
[ 2455.351542]  kernel_clone+0xe7/0xa60
[ 2455.352061]  ? create_io_thread+0xf0/0xf0
[ 2455.352648]  ? lock_is_held_type+0xd7/0x130
[ 2455.353216]  __do_sys_clone3+0x1dd/0x2e0
[ 2455.353759]  ? __ia32_sys_clone+0x150/0x150
[ 2455.354373]  ? perf_trace_run_bpf_submit+0xf5/0x1d0
[ 2455.355098]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2455.355843]  ? perf_trace_run_bpf_submit+0xf5/0x1d0
[ 2455.356524]  ? lock_is_held_type+0xd7/0x130
[ 2455.357112]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2455.357769]  do_syscall_64+0x3b/0x90
[ 2455.358288]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2455.359011] RIP: 0033:0x7f8893772b19
[ 2455.359509] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2455.361925] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2455.362988] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2455.363937] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2455.364884] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2455.365838] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2455.366779] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2455.367754]  </TASK>
23:22:38 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)
openat(r1, &(0x7f0000000040)='./file1\x00', 0x105001, 0x4)

23:22:38 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x6b, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:22:38 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 32)

23:22:38 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xff5f0000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:22:38 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
r5 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r5}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:22:38 executing program 5:
r0 = syz_io_uring_setup(0x4f02, 0x0, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:22:38 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x7f510100)

[ 2471.727534] loop4: detected capacity change from 0 to 256
[ 2471.740214] FAULT_INJECTION: forcing a failure.
[ 2471.740214] name failslab, interval 1, probability 0, space 0, times 0
[ 2471.742488] CPU: 0 PID: 12442 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2471.743553] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2471.744962] Call Trace:
[ 2471.745288]  <TASK>
[ 2471.745575]  dump_stack_lvl+0x8b/0xb3
[ 2471.746082]  should_fail.cold+0x5/0xa
[ 2471.746577]  ? create_object.isra.0+0x3a/0xa20
[ 2471.747211]  should_failslab+0x5/0x10
[ 2471.748346]  kmem_cache_alloc+0x5b/0x480
[ 2471.749549]  create_object.isra.0+0x3a/0xa20
[ 2471.750871]  ? kasan_unpoison+0x23/0x50
[ 2471.752070]  kmem_cache_alloc+0x239/0x480
[ 2471.753189]  alloc_vfsmnt+0x23/0x6b0
[ 2471.754152]  clone_mnt+0x6d/0xdc0
[ 2471.755042]  copy_tree+0x3ac/0xa50
[ 2471.755998]  copy_mnt_ns+0x1a5/0xa90
[ 2471.757118]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2471.758377]  ? kmem_cache_alloc+0x332/0x480
[ 2471.759630]  create_new_namespaces+0xd6/0xb30
[ 2471.760867]  copy_namespaces+0x391/0x450
[ 2471.761999]  copy_process+0x27f2/0x6cb0
[ 2471.763218]  ? lock_is_held_type+0xd7/0x130
[ 2471.764577]  ? find_held_lock+0x2c/0x110
[ 2471.765793]  ? __cleanup_sighand+0xb0/0xb0
[ 2471.766954]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2471.768420]  ? _copy_from_user+0x139/0x170
[ 2471.769677]  ? kernel_clone+0x2f8/0xa60
[ 2471.770794]  kernel_clone+0xe7/0xa60
[ 2471.771887]  ? create_io_thread+0xf0/0xf0
[ 2471.773167]  ? lock_is_held_type+0xd7/0x130
[ 2471.774431]  __do_sys_clone3+0x1dd/0x2e0
[ 2471.775617]  ? __ia32_sys_clone+0x150/0x150
[ 2471.776934]  ? perf_trace_run_bpf_submit+0xf5/0x1d0
[ 2471.778414]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2471.780034]  ? perf_trace_run_bpf_submit+0xf5/0x1d0
[ 2471.781502]  ? lock_is_held_type+0xd7/0x130
[ 2471.782729]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2471.784120]  do_syscall_64+0x3b/0x90
[ 2471.785243]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2471.786805] RIP: 0033:0x7f8893772b19
23:22:38 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x8544, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

[ 2471.787916] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2471.793340] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2471.795053] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2471.796995] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2471.798907] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2471.800871] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2471.802801] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2471.804697]  </TASK>
[ 2471.806299] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:22:38 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xff670000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:22:38 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)
syz_io_uring_setup(0x5974, &(0x7f0000000180)={0x0, 0x25b5, 0x20, 0x3, 0x384}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000200))

[ 2471.826100] loop6: detected capacity change from 0 to 66
[ 2471.839934] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2471.843215] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
23:22:38 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:22:38 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
r5 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r5}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:22:38 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x8545, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:22:38 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_setup(0x74fd, &(0x7f0000000180)={0x0, 0x11c4, 0x14, 0x0, 0xea})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r2 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200), 0x204000, 0x0)
clone3(&(0x7f0000000480)={0xddfc20ed2cf169ea, &(0x7f0000000240)=<r4=>0xffffffffffffffff, &(0x7f0000000280), &(0x7f00000002c0), {0x2a}, &(0x7f0000000300)=""/132, 0x84, &(0x7f00000003c0)=""/102, &(0x7f0000000440)=[0xffffffffffffffff, 0xffffffffffffffff, 0x0], 0x3, {r1}}, 0x58)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000500)=[r2, r0, r3, r4], 0x4)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)

23:22:38 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x117, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

[ 2471.966829] loop6: detected capacity change from 0 to 66
[ 2471.976926] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2471.979212] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
23:22:38 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xff6f0000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:22:54 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:22:54 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x135, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:22:54 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xf6ffffff)

23:22:54 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 33)

23:22:54 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x854e, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:22:54 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
r5 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r5}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:22:54 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)
io_uring_enter(r0, 0x7efd, 0xfece, 0x3, &(0x7f0000000040)={[0xb1]}, 0x8)

23:22:54 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xff770000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2488.308875] loop4: detected capacity change from 0 to 256
[ 2488.319744] FAULT_INJECTION: forcing a failure.
[ 2488.319744] name failslab, interval 1, probability 0, space 0, times 0
[ 2488.322900] CPU: 0 PID: 12510 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2488.325311] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2488.327837] Call Trace:
[ 2488.328175]  <TASK>
[ 2488.328790]  dump_stack_lvl+0x8b/0xb3
[ 2488.329963]  should_fail.cold+0x5/0xa
[ 2488.331130]  should_failslab+0x5/0x10
[ 2488.332257]  __kmalloc_track_caller+0x79/0x420
[ 2488.333576]  ? kstrdup_const+0x53/0x80
[ 2488.334721]  kstrdup+0x36/0x70
[ 2488.335738]  kstrdup_const+0x53/0x80
[ 2488.336886]  alloc_vfsmnt+0xb5/0x6b0
[ 2488.338055]  clone_mnt+0x6d/0xdc0
[ 2488.339190]  copy_tree+0x3ac/0xa50
[ 2488.340421]  copy_mnt_ns+0x1a5/0xa90
[ 2488.341652]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2488.343221]  ? kmem_cache_alloc+0x332/0x480
[ 2488.344557]  create_new_namespaces+0xd6/0xb30
[ 2488.345923]  copy_namespaces+0x391/0x450
[ 2488.347155]  copy_process+0x27f2/0x6cb0
[ 2488.348406]  ? lock_is_held_type+0xd7/0x130
[ 2488.349699]  ? find_held_lock+0x2c/0x110
[ 2488.350942]  ? __cleanup_sighand+0xb0/0xb0
[ 2488.352239]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2488.353947]  ? _copy_from_user+0x139/0x170
[ 2488.355248]  ? kernel_clone+0x2f8/0xa60
[ 2488.356497]  kernel_clone+0xe7/0xa60
[ 2488.357658]  ? create_io_thread+0xf0/0xf0
[ 2488.358957]  ? lock_is_held_type+0xd7/0x130
[ 2488.360351]  __do_sys_clone3+0x1dd/0x2e0
[ 2488.361574]  ? __ia32_sys_clone+0x150/0x150
[ 2488.362894]  ? perf_trace_run_bpf_submit+0xf5/0x1d0
[ 2488.364446]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2488.366099]  ? perf_trace_run_bpf_submit+0xf5/0x1d0
[ 2488.367720]  ? lock_is_held_type+0xd7/0x130
[ 2488.369021]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2488.370578]  do_syscall_64+0x3b/0x90
[ 2488.371754]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2488.373441] RIP: 0033:0x7f8893772b19
[ 2488.374696] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2488.380841] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2488.383208] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2488.385445] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2488.387676] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2488.389951] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2488.392365] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2488.394634]  </TASK>
[ 2488.397764] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:22:54 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:22:54 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
syz_io_uring_setup(0x29d8, &(0x7f0000000180)={0x0, 0x96c2, 0x1, 0x1, 0x11a, 0x0, r0}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000200))
r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000005, 0x810, r0, 0x10000000)
r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000300)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, &(0x7f0000000240)=0x80, &(0x7f0000000280)=@llc, 0x0, 0x80000, 0x1, {0x0, r3}}, 0x80)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r4, 0xffffffffffffffff, r0], 0x3)
openat(r4, &(0x7f0000000340)='./file1\x00', 0x40000, 0x1a8)

[ 2488.437601] loop6: detected capacity change from 0 to 66
23:22:54 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xff7f0000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2488.459515] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2488.472553] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
23:22:54 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xfeffffff)

23:22:54 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), 0x0)
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

[ 2488.670120] loop4: detected capacity change from 0 to 256
[ 2488.685334] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2488.755607] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2489.065475] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
23:23:11 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xffffff7f, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:23:11 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, r3, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r4 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r4}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:23:11 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xfff7ffff)

23:23:11 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), 0x0)
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:23:11 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
r3 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r3, 0x6c64, 0x0, 0x0, 0x0, 0x0)
ioctl$FS_IOC_SETVERSION(r3, 0x40087602, &(0x7f0000000040)=0x401)
fcntl$setown(r2, 0x8, 0xffffffffffffffff)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r6, 0x0, 0x0}, 0x0)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NBD_CMD_RECONFIGURE(r7, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x50004000}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x20, 0x0, 0x200, 0x70bd28, 0x25dfdbfe, {}, [@NBD_ATTR_SERVER_FLAGS={0xc, 0x5, 0x20}]}, 0x20}, 0x1, 0x0, 0x0, 0x40000}, 0x40885)
openat(r6, &(0x7f0000000180)='./file1\x00', 0x80002, 0x102)
sendmmsg$inet6(r6, &(0x7f000000ac00)=[{{&(0x7f00000003c0)={0xa, 0x4e24, 0x5, @private1={0xfc, 0x1, '\x00', 0x1}, 0x8}, 0x1c, &(0x7f00000015c0)=[{&(0x7f0000000400)="7ad39a7763b642aaa7537e976de4e4019505d9604105c30ddf2ccb3571b445dac3c1869a2594029df95899ce9767677c91e030da2de7454d7efa36f0a2e742025fea207d59b857b1b2a1a5ab8cbd7ab37373a1c3f96dfbd5e19e83fa216ebb83523933efe35425784f0bc4a665329b4bff51c7801c021d66b3e1352184effbdd9c393dcd5be7", 0x86}, {&(0x7f00000004c0)="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", 0x1000}, {&(0x7f00000014c0)="7e3d587ec6bd3d9d20fbf3126e6341c0409063216a335547cfbda3c618694fc022ebfd56f55b3d00950e035a831eaa28e242756cfcece37633105f15552ed28b72ba", 0x42}, {&(0x7f0000001540)="2154008937f1a22ea7fae65ba83c099af4c01e9ac6ed90916249f0bfc36bfa13885ccb4ed1ca8ec1e2b04f6adbee922cd6167d3484a3b438836b401ecb271bd0daa6a514de619daa1becb1f799", 0x4d}], 0x4, &(0x7f0000001600)=[@dstopts_2292={{0x38, 0x29, 0x4, {0x11, 0x4, '\x00', [@enc_lim={0x4, 0x1, 0x5}, @enc_lim, @calipso={0x7, 0x10, {0x2, 0x2, 0x1, 0x6, [0x4]}}, @generic={0x2f}, @pad1, @enc_lim={0x4, 0x1, 0xec}]}}}, @rthdrdstopts={{0xd0, 0x29, 0x37, {0x4, 0x16, '\x00', [@hao={0xc9, 0x10, @private0={0xfc, 0x0, '\x00', 0x1}}, @generic={0x2, 0x56, "6e5053cd5321c139984d6ac6c75f336786ee7a6e1b060b6a400ae8153d46d66673042dac1ff27f922294cb4d40513d1f4fa762e757c5abd5587e11b7baed5cdac20e523e3cfbd149193ce25410875b2a7d280f3a667c"}, @calipso={0x7, 0x28, {0x0, 0x8, 0xc3, 0x1, [0x6, 0x8, 0xa6c1, 0x7]}}, @calipso={0x7, 0x20, {0x1, 0x6, 0xb9, 0x5, [0x9, 0xff, 0x1f]}}]}}}, @hoplimit={{0x14, 0x29, 0x34, 0x1}}, @rthdr={{0x38, 0x29, 0x39, {0x6, 0x4, 0x0, 0x20, 0x0, [@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @mcast1]}}}, @rthdr_2292={{0x28, 0x29, 0x39, {0x2e, 0x2, 0x0, 0x20, 0x0, [@empty]}}}], 0x180}}, {{&(0x7f0000001780)={0xa, 0x4e23, 0x7, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0xc}}, 0x5}, 0x1c, &(0x7f0000001cc0)=[{&(0x7f00000017c0)="79122d1a264f07936429609953d1ddf3e3405e4d4227643cc06cd23f5476a1ff305576d02a8ba2d379dbe98708b2f3e851526e44bac250e138de47bb77da7e6c0c9642ae4f80f2d69ec8c20a5b1c25a073fd5d7e56482df195bf3ae7cef4c5819444a79745153b52ca0e6bb9c768d02662caaa861086e0d188c78597e3de9fde8dc44a25894e934d7cab347f0280739d9846d2fa0292a657ff0173f900b8fbe4e4db215f0c1f88036c47a62b7b863ca2d4f6b53c00bac72126e54afc1c6057e0cf37fff65be567d8014d236755dbe53c4898f8dbcab7d536dafed60089b50c7d64e26afc1eab", 0xe6}, {&(0x7f00000018c0)="4d56b650ebb490bf33609d3ffcda3f411feb0b0b274eb98536a0925ff69a383637fb6613bcb23963ae96d0cf5ed272d382f487b424ab8398f71ebfeaed4250edb70571960b6c9b24faa33fb06978ebe43ff20be9544b35cb464f617b453ec8e240608bed8581e99d40a98aefc01d684516a508ad0c0b38bdf11a6431e1d9909dc4c7b39676ee019fc0ef9c0e56a929564f35c12717bb9d7a838ce41e5ef1a798e8faec1ed1580efa93cfb4669436a98ac2819bf306ad1fbc8bc5641d965df497503f9249a71ae23baa86f7b88a3040be59a480ed8a", 0xd5}, {&(0x7f00000019c0)="cfc8ff563c9c1b31ae407579447091474cfddab60255082b287c151a5552b00246f4575f8574586c7b7fc83e30fcc7a3d0dc1b21e056ebdc9da772bf9e77db88586c03fb10629d9e41e45606aef6f0aa783703db8dcf04192720da5f6c8d1722de63f97733ad5d8e540e5b72dd8804b6a2739bfcb6dc34fe66fe563066ac0536d4a90eb6a7bad814834f06d1460f330393188419032b0ce85bc2f068116bfbfbcb5bd0d9f6538291a5b0f9da8bffef781b3e5c8b951d99fc70041c2a38751e5615911927b029230440d63d731a000df0e9c847a66e402986e0a372c79d3d65", 0xdf}, {&(0x7f0000001ac0)="1e35586ad5724dcdddb818a6211d1a0a1cac4b88f2b3d2380d870e28ae27e242cc0cf3ddfb4e29126be9bdb03b468955d885370d25e2b64524531923fd5691718628", 0x42}, {&(0x7f0000001b40)="b360a87f958df2eaf7d441f7e905dc745ae0757f813a14e1a3c52fe83aa9e4c23382c823f9fc404bd23d946cbec3328983e83d00b65e8fc627a96e92e94266d0513d8e75b544a9d5af1aba2eb04c69875c655498117f5bece7209e9246e17cb281541d4f41e4f76c389671e80a90e7fcf7ff8f5a2d2000946aa426777bb33b6244e4c2d6ac1b4acfa9929c2b2eac692705852c651d850e98e797db294acee50a5002e19b2796d39a19f9544282a09c0d62f74bbf91be4fcc533f4a448ce536226ae66c91f74886dba64fc732df53c0b0ec", 0xd1}, {&(0x7f0000001c40)="eac3506412377e3bfd86db25b77b86cf847610c86f177e5122b51c344a83eb3a83a55b2abfd26d743777dea60ddda264f6ac281d912646d71b5ff4da9434fb9b8643adaf76bd385e8d47fa74c49972be279c1c4f8c2abce7736be9a31cd803b5aed2771f1b9a3ceba95bdf6337c45db74526f0d612248324953e4b", 0x7b}], 0x6, &(0x7f0000001d40)=[@hoplimit={{0x14, 0x29, 0x34, 0x3}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0xfffffffb}}, @dstopts_2292={{0x1070, 0x29, 0x4, {0x0, 0x20a, '\x00', [@generic={0xcb, 0x1000, "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"}, @pad1, @generic={0x7f, 0x3b, "f0d4b8f2d12d57a16f36c38c1edbe6965e232bd0bf07012f966da996c071123c58b12f93811c12c82b452da21417e4131975ec173ec14443895138"}, @pad1, @ra={0x5, 0x2, 0x2}, @padn={0x1, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x4}}, @hopopts_2292={{0x148, 0x29, 0x36, {0xd2c7df46967917f6, 0x25, '\x00', [@pad1, @hao={0xc9, 0x10, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @calipso={0x7, 0x48, {0x1, 0x10, 0x0, 0x3b, [0x8, 0x4, 0x5, 0x7, 0x8001, 0x5, 0x2, 0xfffffffffffffffa]}}, @generic={0x0, 0xc7, "9a91ecd45b61f74d891e739325afd4bfe0331db2a62cd124f47916a7c9d2cd7aa850102ad224e79e1e7bc4502ee64676a6703f1c80fec5bb1bc3dc677a24b55daa26e8e316cee7baf9aa2243ece0dd085e0332e94972adf61df55d6d97db7976b8ec94b0f4f564161683c8c747a264e12f28200e26ca287dbcf205931586098d417ecb478842397462c2491218312182653485f60239be5bbf65c4684a68eaec583ebc0625cd3c2007423e9fdf2905891188ea1beb224b4da25d4e4525ea365a8509feefe7cc3c"}, @padn={0x1, 0x2, [0x0, 0x0]}]}}}, @dstopts_2292={{0x20, 0x29, 0x4, {0x8, 0x0, '\x00', [@jumbo={0xc2, 0x4, 0xfffff001}]}}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0xff}}], 0x1238}}, {{&(0x7f0000002f80)={0xa, 0x4e20, 0xfffffffb, @private2={0xfc, 0x2, '\x00', 0x1}, 0x2}, 0x1c, &(0x7f0000003080)=[{&(0x7f0000002fc0)="ba73e3e3c7ec6f8b4d68e43597a188", 0xf}, {&(0x7f0000003000)="b92edc38cb786c684c2a4b3d6db5dee09536f8f78465476c8c6ad34e81d3eb051bcd396102e19f67f3df26e8cc88ce92e9ea8500934f8552442fc2", 0x3b}, {&(0x7f0000003040)="384c00ff7efc0c29b9ebc169e01d2d454d2cca4a8eedc244cefe29b3e1542b2c", 0x20}], 0x3}}, {{&(0x7f00000030c0)={0xa, 0x4e22, 0x401, @mcast2, 0x4}, 0x1c, &(0x7f0000004740)=[{&(0x7f0000003100)="f7eab33dd545361e445edf8bcc00916a3a8e7a7e5c5033bc7ea34ead4c53f385b789508b5e1dd33702df4de93f29cf8c178c335aae27669a4ab5b6ae2bb806c1dd4d23fe18bc64b2267834b374ea17705b72242c951ababd7ba9d1418f5fa0a9491a6916ed0a6331f2594ed8b70d6832f54be93d2a444f9e8af25bc3098b16d2d05a8f7d68dc0bcf4859d1b69c4a43c5e4be853fe61ea9bc304d62", 0x9b}, {&(0x7f00000031c0)="ec5cf7340064015a138a9a40c78843f94e47beea37b0a83a9c98629bc941702e18ab203fd2e416779c24aafcbcd77827013c4ded8e0d7200e791ec52576d210774dfdd7342dc190c0dfd684193ef16f2f3a3c9881dfef9edbd57a5c515e63c81140cc5df5109697d9de579eb49bc5f4cd257785f64d8f232f05c062875ad7286f93b8d7e7a5b5b64af36ef67edc05a4270e8e324212c05d4d6bfccb2d3434e56405255ded4d5be8f578fba59db81d6a975f8c77062a908a6fde27d6d0177ece94dda", 0xc2}, {&(0x7f00000032c0)="554d1880ef4272ac0bffeb1e056eb164d100d963a1edf97e1b14d714aa70952a1342b455d888a5de7d0f562d7421168079b3c36114cd37419df2260e56c6e483e0f2a16abc20c84601c59dcfad14de8e8aab1f8440924454c1da90db80bb0ffd3c3e018104a1edf389abc5732ec0524e8d58fa5a64111a880a405d5d99ded63ed9492c2fc4cab7cbc3d66d", 0x8b}, {&(0x7f0000003380)="4a2820bcae4305f4eda7db5ca25cc6f14b5c090315baf6b8a8a6b44e2f", 0x1d}, {&(0x7f00000033c0)="91671f9b536723e60d3ace0ea37c951dbf7f9c25f3326e5912512e9934f0d958bac3c88725af3d24b2acbbbf84f6513d0e5194410c6a71028e07b638df57cf757801dacc33ca265778f36c386a446ce27bad37ef3fc442415df8cd777e53886934ece8a681d5fe92901ff85ef371d58fbf3dc2eed41066813be3bd45e4642c37a3efd83ba94ea08d3f53093515180bc1451598361876878d02eab6880a976ac9ea1019fbad5ee666f10ad660654718c87df57c940f507699e11c0cce42c3d1cba54c27808e9f0bf7fdb1fd14c29844894fcfb76964c9a2bee2d1245483224157631624f7f3e95f112c4ed285c2ca29f41eaf297b", 0xf4}, {&(0x7f00000034c0)="46bc75ead5aaea1bb128fb0443a0ad1d9281e917e366da8079c7767e963878121fa2e5b3f610e0ca83abccf29d0c841ec1b07f73360e14cd4c9b96dcd59423187eb8a2c2aeb327bfda5b0d4b82fe631036177543374ceb1daec6816b576a184411a03453b90bc1bdcc4654a06adf9ccb6ab60b6b5370b9e106e48f474d55b7c4667f517a3bcfdc54fab1eb4297c494dd18557e31138636ba0a0c79ae67923809f969c02ab3aa0ee07c24ee1e3e34faf3f58e79d79fd6e551d8553f5e317b9ca15812fd09c27e6bb6ca2c4ef656f8b03e7017fc31e4e3ed3367f5b88fdb", 0xdd}, {&(0x7f00000035c0)="b0d57ac1544236b95b09c9837bcb7997da0080c44a63dae826da4408c661af0a28582e146f5570df0883a85b49ff10cb229a7d4f7bb12aa62aae653a06c4a44f0b860b94dd56959ad2c755ce78f09c8a2da7ad261053aabfa0c184161fccd04fd68d7356e068ce311875bc538b189a17062693fe650b79190a376511603cf51cb9ddccc3739887dfaf16e61dbfbf8efe514b6f43f635a1de7c4be379939d4df5debce5a4a04349129bc9ac166dfc93dc77123b11fe31211a634c452c4e0236966b200bb7106b55ac320ce746e132b89081ecd5f994f817f15b2a5cdd5d03773b51ee5cf055f25e4f85c43de6e0067a2f32780b5bfd3354fb7507ef3dca665e327953d54215490f25d757cdf3392976f46704dfb0d66d4ef8fe70a1009bf1530699c4b609cee2cda4d237f33fb6244815fc322e8e7ab76e385cfeff3d6a9a76a9ac3fa74c923e82f64b77d5e6c9a6d09c4cbc831f57759b1feaa27fbf3342935a6dfecb01aa32950123b6e57c09082ce27b245ff918ab92c250c79f3723c4f6e0d47c1069a84f262b41063ca8b10e59879ea3f5af2a4d1800a726947c5538d1ada137fe6554d7ff2489493e818618bc0fa55e2f1bb2b41196ad32a682aa9015129419d5eac425f1fb767097c82bb2136daee0644204fb890472b4783eb1fa76c930b63f8e0555b5e438afcac7bcfacee2f25c5aaf610fd46433140c8a3b98cbe0af83f2462ada874fac614a87025e447787f784e9c84c031a31500535857233705d282f925be44dca1ced8fe03496e54895129c55dfb433a6f9129625bb52c6a028f93cf00de56d3865abf455351bd8e7c1a9708b308072eaeb0407b1bc30ce8072c77dd7628d2ef628b325fa8aacd96d5aeec21665841bbcdc67bfacdeb913543aaa38cf4f888a9b46f823e837338f187b52cc8c1ad3f651d9a741426d565d640da937d206bfe8ebc8fcf50d6df2c2ff554e5d0fb9fe96a0e50e605d4d5667929c19b4108481e6290c6986319b45a81b3828173af53e3ffc33db81f80421cfcc4a7aa3d7db8bdb381a58d237fe3ff8c8159ff936c4a63432301b295e640aefac9ed700faf3ab216f2ee02b7987cf7442f3ea95f1784bf4ea9bf28e988938f5af9793ae95551ef836261897e7673e02b45c3321c38b73d6a9f479cbece3abd23636f103f2483d03b86b37f9762b3582f8183354392362e0e34054e9bfbc944d513a97eb86d43fa64941b9f840db3325368551775445b0852d67cab3c0ebddb2733210f791f83328eef3d0a776d026cf0f866838b287bdc0e79945358d82aedd3c58229f5fcb9cc942c8af8d0ae83df2aa2191c98f47a1dfd28d47bb2850004c30fd215007414effba57cb8b69667939e3b6fc13ccbb164336f1aba0a9f591257d974991c08a1b6980036f8332065ea96d6f3f2acd25f38b835eafd5286fd0ec9aff13054d0dc4cabd7b6e9caf77211a950acef2b3ae0441cfa1d462d60a9ce1095cc8d459176a476a5a32bab94b9da6a390fbd5b391de226beb9e5748e1de07336a9cc2261940570e59bf4088e7b18ec49291a164021ca237cd77c1350ef715317c0a7a7f14aab18d448adceb1e000bd549bf80b4d2d859d79a46ef7eb20ea3835eb4e4d239927aa21bf6abe856d1254886cf65d6462cd922018af562c996c6f708c3594698f4f626928d9b6ba95b959fe6c9aecfdf3e86b546cf60493bb7be64719f692c1c76980786b34146d4296ea71ebf37b58c5c0adc211777692379ce738defcc625445b18a2e1593d8dd85aaa0cf63d5ab94806c422844b1f18964c3b717a711308d0ddf537f54bc431a32cf42e95d22be4ba464b0ccdbccea06dfb3b7afbede7734942e4d382805fd1bb2b81a317403ca9756667a45dc2bbfdb1a6af01d33d2b13e6d163dc4bdd65687daa61cd364d386cc4d728829821ea592d65e2c9c938b940f238bd017f9f14904833a081b11fcf3cb08954c7fd223652413b0a268f854d5d3ca0e80f0312e57bcb5c200b77f776f460f3b6f1be6e38e9329075c3a89c1ad144ae54459fa0021984b8fdf2b5dfd7da879d7367a7b4d58fff7accf37d24f830f8588c86e3f103b7d60ed43b6e8f3aedca2a4ffd239732d23879da0b7165130e8b54afeacc98d4890f28855dcc6a25320152c4bcf63a31686bbc202c36fc2a1485ec335f2b54e9a2f7b0ee548e13658d26de06d9a3b7c0c436663cc633964640d4b5ebc7c574532643fc36ab3c28b9a8d78ca20f9d9d2fb8f402f5063c3348ee600d769eac90f311d8488d9304801f7a4caf075ec99e546267475a630d8b1e04a970beef6c63295c7ad6c69fb8f473a9951f32da47acffbe5e68c96d1f06a135d1373ef7f3a8c6e03cab6409e3eabe5b4f536f91f487a1035c4e82d9d79a691b09d1d942e5c6fca4021ed9aeddbeec3cab681b3bc1b2f0f18ae7c0beaa5dd112759061cc156676b590accf68eb886215c685d220f5ebec34a20e44bf89bbb2d415744bff57d21cafe49d0236f1dec975dc2d74b88a22c56df57ea9118360c3a48163bbfd96bce4c711b5ba8cb723ea2e0cf13090552ff8951eee07f84b20d53cf6a746620dc815136b10d818c9beff1c1182780d3f4c168ac32b3515a8024e0df3f02f9358db1af8039e1ffb4396fc90f5343ffad9bbb9896e13ba08142798f05841d70caa8dc0079f6b75e035397fd85af47d7cac2b138757a641b28da067ccfc89f2b55aa77eaad9e00be0ad4ba0269c38eb9ccaaf967896dbbd47470efe952cb32fab7f69e02eadce1bb9170ff73df222547174c0202a19e4e892e7970fde7558799acad64349352b6981ce698a81abca586efe4bc8b7e09ac35eee38e59ec6ae94d543db57b780c219bcb700a013c7cc660a6d80cb5f306a60aad31cb01e14206314689c3c5a16e3615ee15b3b5b3204db63b26c3ce441eeb927a1bf54d2868978249168e7cea3e3196677860eaf57369479f9409a5d8d352c598ddccd8a60c17d449603c515a35878f17fcd345f60c8ad25dd8a3386b423ca56e76dab827d28835b4fc36ea14a4c68482b89b4bfce5f1b8ab46b52067dcc21a9868b8a549e36bc32f0ff5157838e517ddb37493f59ae8980427a5062bdcee63823f62a103402d7883dbdc17eb1246eb1c766894b342401e939d3cc577608212934351490aea111c0e49e2c9af0d074a1875b40a4fda832b137ba84a1a1fe9888987f9f6bb8dac24c07b53bf5635494a7399c8424f22640896cf4deb40613abe147101bb9f5a11f5bd15a24cd7e1a094e69bf595b863f5c24c7698dc731d7a20bbcb26db0eba3c0f0da2911cd810157a4a013d52b6858ba7e007d9d89dce8a2a3123a5a1423a325fc4c15e08efa8f7c1e28475299a7d589f7676b61ca844c79fc524371b5c32cb633e2c251554c7ea0717ad19ba873adc8e88b38587d8f4234a368f0c6ab6714c12952d97ebd2755e4fb5885979bd70633fb7f078a2482c893f97029354d2f8931e25b6d725400ddca29cf10871f4463fdb133e7372f827b2c82d96066e18d1b20ac7709db6bb2ebe85662b40d6f852c2dbdfbf82574413292f251ef283d2ee06d9d68b6655e81adef45c448962b9494778cfb9e3dc2c110abebb62831b0d821d1cfe34d138c7211ccb2e13e4e0dec5a12841bf1743ea266bcf0e5799dceb3ffca270b0aa2b2f2ab6960754744097b4402cf3ca2e10268545035ed85b2abca0d3e0e4958352e5be69559a3c24e21e099bd937d077520e95b3a4f2ae86576ca1af9e29393b588bde5ab5b579daea3ba9e8078902fa6934405965230dfb41231fbc25a417306fc60a8b8bc3977a02dd20b9eca69ed370bf243af62d8160ff85d544ad9ff442d3d7cfbca13b6b4789615dcaf1f7c9ef43687cb24a1977a930447c7cf4d74a298817beab3480c8e103540a895e517c9005927e4857ee1ed089b96416f1ebd5d5fb8f292b06e399b2e71dbb870b017b929132d67e6034bfe58ca2e7c2ca54abd0ceee73fd273424f7375e4ea1b0b93bfa49984934b00e7f5deecbefe1af722389c751f2708445c261e8b76e6b101d18fac54b18b23f1d004a30ce44d900a7478a854670d0b99d261aab4c21a969af3281c3b31f7d7dc69cf7c43c2ffe58eeda1d4e34af2a993fe7433fba6264fb14c115ae7605ff1581db54e9a478b8f6aa1b1fd27a49baa467605fb2c7aec69d2d7defcd3e5034bdaf6839bc3c0f7f7dad05a7c218b6e61d7ba2abfb7ddd74ba245610ea179e6f81c67287a4bc2cc1091d1cde430a5384c9f83232316a200a05a75dd2017c3b08e1c48d329874a01d1f8ce968627af1cdfedf47988efa1ca3cde263771d271868c30977ee85dfb1d9acc2d9a1d29e0f781b523d31d9d3e2c2d509c81ec8f6a13c2bbd3b9210081159682157f1b57757cf9adb4f5556418dcbc16ff47bcdda7a2295a2374534d6be47419c836ee3df2a0d0e83a763047a16bda9ba8a24b797502e8c1c2042282d693da79e816b48e4cfebab91ab7dd589dd584018061e08759f7e38f0d9c42e7fb704d4acbfed45d82c9b066af61cec9de4a4acc1d82c4558c04d187cc28a1c529a8eab33b0d0d58ca7a6cff9d34b57c6d8e9b74e2557b658cb5bd8cb02fa179d2c7c9df45faf9cc9725424faa05dc24da4344a0b1785138464b9a7d7f37455502746af1cd8cc980c07c6cb793f8f10b92d8cc3bd5f592787b5e7fb8040461e633fca43c224364fede3baa42e51014fe2aaa2d175b11c094f51599292fb6d755550d69a2032503587a1d6bdf39f3ee71a926faae5b15d8433c0afbdb9abd80fba577fb69644f00af60581062f551e63ef5ec948bd2e15a0b95e8a41ce683406eb3ce011548a59132b947763b01357a076ce1af7e398ca04921980f92bee9a48c56b8dca64a1cd6ffae623c4fa52c17c9deac822eda784395d8a6bb907b427eb3077e54cf44b5e72b52879ea3f976dd73dfb043edeb47483f509256d6bf1978787c430d8926c738c6582659bc00f41b57a0228915f0a0e25a1c887d6004f89023b069bde662aea005c3f08200736a53b0417c5732d0ca50ae941c57534b2fbcc1f39ab39c8652171de6dd2639e2c3cc4fcd7faee9ad30f4eee5d658017b5f5bd7ca3b3bfed54f5275dd31b52c5c52cd89560557ef7f234cc708f839a4a2637b38738b1fb944d14d77501be8f045139d32c5e2462190d6217235fc88b7d1edafe14c90a8c225e01b4af3279dc7fff4107e8ae12e9da72534fb467bf349e432460b1cf373b4fd54d415c61b45c488144dbd6902cfdbfdf6ea8ea1d7bc6fb4086983be52c64a65b8a63636a99ee606ab9a101ee209fd71803f5c2e4b4960a81c09b417ba3a2bf49fc5853e0b5b618e9c72165df0549deb074e92be4bb5674853ec06c7ed6d4504d4fe7513ccff1cd1d3b27e7dfb35cb6936f42c0a95885e29152f7d692c3f824fde132b28f10be497f0ac2a409f0fa5e201b7a3d39469e659844d9f17875ee4d496fd8c04281602075784362b0eebfd77367798c167af245391b7dffdb107156c48b40d4365bfcd9d936f0e113fb6f5bed759b8c5dfc3fd04b709c12f6a1e787505d50fbdd03f7dc7e6ebda8b69a803d3e68500509c50cd8ec749758be48321c2aa7daf18a24b3d3dd2a3ef2207a1cedac5981020b1f6d072190fe325646c242afe965ad6c23ab1b19a376f6042eea93bbfc44c2eeac67579470a5dee200752a312b2e89394865aa6222366a5b73863b8a4e8e72d3dae0a4b2318d8cf3aa69eaac206fcf4fa8b6a83502dcab35a1c47cd487ad72bdf6d6", 0x1000}, {&(0x7f00000045c0)="6b9ecc2ca7a81505", 0x8}, {&(0x7f0000004600)="94971d506990f3dad0a1ac9880d63bd7fc7cb0e1079286d5e18366d2ac81fda2d407ada64dbedb1909d5f95c6e10a1481982afaa77b34afd8e", 0x39}, {&(0x7f0000004640)="73c4b895368228eb751f95c54f3d7dfccf748199ac90afd5a556298c4dc4d47c5f53095fc09a6b0c106c740ce43bbb969e4bad605e1aadd23cea615c7688d53366c523215c8ad105c40af8ad3d402450f7176a74246fda0b90b277a41c0e6a0184ce82c09b24bf41f4bc5d57b860d0a4c60dc476f7a1caf617b73f019050499470ab773bcb2b67989c5853f0cbdae77e81df96496ee6a8cec2d306a197c25b89cbaaf0262f2261e88e081db8f0694859540b8c4b15a4f72fce3dc1d799471f0638ea", 0xc2}], 0xa, &(0x7f0000004800)=[@dontfrag={{0x14, 0x29, 0x3e, 0x1}}, @flowinfo={{0x14, 0x29, 0xb, 0x1}}, @hopopts={{0x118, 0x29, 0x36, {0x29, 0x1f, '\x00', [@ra, @generic={0x2, 0xf0, "8d156578026d728b1ec034dabcd866b8f8488dec67ba3db2ee59234943c04d713ae69fead15f93fd5a45e85904336e101b19147be24bb158bd733a5f2e81049258f610ba974a5f1a87ace5f0f79c8d50fd2633afe501e5eafb32852a6f5f8e2fc07f8f25159e9b501b4dfb3dacf2dc9e13a1c3ec83c4e6081f9304af90cc4ec671fe4810fc71c5721377fce09d102c7f006b702fde07b2fe3f40b12df4c1ebc76dd32038b3c06ed982ce8fb1e476b53c48a418db2ff4179c23e8058f59726abbfc41c4d30db5f480be846fb50acdb610933744f2e7c05e647b321832be0277b0f631be9aa5c542efc22c031b4bfad9c5"}, @ra={0x5, 0x2, 0x1f}]}}}, @dontfrag={{0x14, 0x29, 0x3e, 0x702}}, @rthdr={{0x88, 0x29, 0x39, {0x0, 0xe, 0x2, 0x0, 0x0, [@dev={0xfe, 0x80, '\x00', 0x20}, @local, @empty, @ipv4={'\x00', '\xff\xff', @remote}, @mcast2, @private2, @mcast2]}}}, @dstopts_2292={{0x20, 0x29, 0x4, {0x2b, 0x0, '\x00', [@ra]}}}, @hopopts={{0xe8, 0x29, 0x36, {0x3b, 0x19, '\x00', [@generic={0x9, 0x26, "82fa6a0cbb366a58010f09d7174c1e1f409eee7f9272f43f6157abcd806dc11beec0f58ef33b"}, @generic={0x80, 0x5f, "9c2aa6050f6f01658812213c8c380b188935459c8fd3241265fb5621d3ee6725fe1237e8f45b34a76fed1a6b77809c5314973afad64f78a22249e21aa55c23151ce4615701f577089711c619a9dde627a255dc4838fca7c3e78f2ad64d5485"}, @jumbo={0xc2, 0x4, 0x1}, @hao={0xc9, 0x10, @mcast2}, @calipso={0x7, 0x20, {0x1, 0x6, 0x20, 0x14, [0x1ff, 0x2, 0x1f00]}}, @padn={0x1, 0x3, [0x0, 0x0, 0x0]}, @jumbo={0xc2, 0x4, 0x3}]}}}, @dontfrag={{0x14, 0x29, 0x3e, 0x80000000}}], 0x308}}, {{&(0x7f0000004b40)={0xa, 0x4e22, 0xc8c4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x3}, 0x1c, &(0x7f0000006c80)=[{&(0x7f0000004b80)="3db366d04dcd8aea8825957166940ec1299b884071b1b02f98c365b065b6888e3da1c2165628186ca312e514fe8fed5ae6167482da84beaa3d01d2c93b6ad8ad37aae497343baa740a48e33ed2b48982e18e505afa676d5df7708e5e14a37075a32c35b76f84bd7147a980fcbe5429a5bef267db6b38c74085be1cd9ebf8c1f76d134d1a5d82813e10c9bf2546ae07d1e3c87240bbfbbe6537325d94aee853a7aab38a062da1cc2fc1e8e1f8c9c8f68a588d73e749c54bf66d898b092404b00c8ebda4835840614357577679cca12a4ae74272f9db96", 0xd6}, {&(0x7f0000004c80)="a1cfbca6ea7dfe7e4808b6ca7c22f488a039ac6d28352cd9b1fc005579049bb622b12e4cb49a391e0ef8250217fe88c2839f6f1fc4d787cd6f710176120f7aacb528b1bc606ed4352b873a45e59d0a632ff8508bf9b8da12b7a2fe2bac2e988a5c2d1f4c61377f2c18de0c8768e5db9f466e2713c692e71cd9297460462a89ea75768d348831cdc9c26af8b16a932d02facb7cdd8310721edc96b3c445aa406cb1b53b3228ad2ab4c7ca7e27895808de743daf4be037234f18e1ce881f9e6ffe0558b3605756ae8253f17a1a1a97e90b3c41cc96137066c8e640c212462b02755e78b41cdb2ef2e17961614f6ec45d2e557ee63dcc739d27fa34251fac55f87e512ec6f26ec4742c01e8ce1cf1b3a520a0a3c534ae818fc597f2e69df21e77d1d0d83654310fc457b0fe5186d9d3152adfa9a5b2da42ec6e718732d4472f164d0d5a7eafa23d46d98e9747535bd9e2bab7769c787f9612c40fc70f449d4a553f8043ae1bfcd628134000660d45a3ccda039e130376eb0e335f3335ababaf3661dca83087e99dd09b83a97641ea31b3ae80e7dd2243495a695203dbaa61992cf168aa303366124e14e0f2ecdbddb24d5252c5b3cb20839441294aa403e6339509b03d791a238d6fcd33b016093393a9b8e2432a68ead9383dd3aeece187788e599a9b566f06891392fe9eb046cfb772abf55a37094681ece44855cc9a16af4a1c4a2e6adefec4e1b1751592a8a0ea65c13e767475f940a73c9f42a3c9db56ead77e3552ad87562c424f9e1f876922df60b2c8a1fe4abc6851ca974716d1d0409eb5e8cea963e7d1a912f4e073358b866dc4872720daec24894b8773de141922848a741c86f57d145bcdc6928c6692d2f5782cb1d65029afda0f4155e011e059ee8c32ebc79eaf0a1c2c84364caa3371b9004cc8f45f716b400d841f885064dd68d731a33d90177e86f08c48c0486bfc5be9b83629eb412506b7de1e9809753caa80711215029fafad2035d10ce8c1d3dc77d7503fad0ba948f6a8115c34bc7e1e2f6f78b299b8a2faa7cc5f5674b57a89251779d98079a7ef29b163f6f00f242461318d5fb77035b4afc77d56f21f8ebe59fa794a162213f993439db14610e96a1af2d7cbcba7c2fb2e195cbe61c46227194acb661eee1f138311b065b36b983ed967e57d2d3d9de2b32ce7b6da2ffe961c9c269b1d000ecbde38138cc82d09d79c8a7995e44e1926711aa46491ba3ac2284fa8cb088442ac4eb36384aade64a2ceae80e3e514805fd960c72fb3270b399832e5c60a8b1d7ba45e587e7bc0817f147ffc6a32a64af9d755d87b61331f95df74aa22d4a3dc8e4dffd1e50a9daa7c9f97d33200135465061eec633cd55040499375880110d30ee055e17dbc1e22af84a75f3add7da72df26ce9fb8ee76bff050d92bcfcf421f5fd8276c0efa0a6e334564adfecce8e88e2158c40a83e6276e915fdade34bb25ffe53ca638a88283ffbd2149dd785ef47aaa94dd145efc9cbae445ac1a403e596a91afbe436ef1efdc36fbad2ef32811db23358801d25178d9810712bfe1a22e53780c6fe66244b49c4867b255ffeb283e170e0b4772def484e11ff72d58c8bb86915e47fbb7c92b8f77afd302235c7914a6d3bcca78a3e166b6fadcb9f4e664bf7217799fff3c5c02267db48addc34307084d18d09022e45063b9fd657572f96814a34ed9484b8a909fcfa9fa0e8ffaa55e08b3877dd9323a9506d245cafee64a65cfefd4496c4dd73355b14370b2d009217a28cb02ed823fc4d9cbeab48beb4b112f53a606b504330a94a23d47b7b11824543bf2cecfc8f9b6a80362011d5456600ae96b6e5e9e3e7fc2bff4d92f9d295d060b3255d64a0174c12c1a881cde6efbb06828ec40ef93b26f7f47947fe8d6309706f99b17944143c493b4c9722aace152a4990414a78bf2570289c33ced1adb4d7b91df4e3a5433ed1914772f845c77e2227c460970a3a25ddcb1a9887b9d2c5d446441da4ab03c3e01c1f41484ba3fbd3ee383fc8177e50edda083c301a78dfd852c8fe8ae25d4802f849bca8136884119abb13d9cad080d18425707ea1b125aec5a7cf46e1f9b2c80324e3954d5eb8653616db8062d229335338dd0fc7c56e8bb2244fcf5d0f58fb669f5587d15feb951e4c31adeca2f8b7cf64f641950a8a8d576d800030b7dacc1ec7b10ac911532b4e5cd7699b266f9d804a7576db635364ea6b062632775d842c1021a0d928774d1cd1480de9487686ef3f50aec053d9b79469fac31306cee3f3e89b3dfb10daca5f103f95ae9a5f1c3609da2004bf5b56d288f2b7338dbcd353744f93cd24771861414533de7857dca91637b9a2ef155068168d2c464e94e681ce002f31d4cdaa0b35631a681bbe95d04ea05efb7ffc7bf1144fcd6128ef7cebf42a22679a3edd3e7713474f69d86e61f7fb3f8983493888c7ab5c28dcd0f2a710b028e7b795a5694239883d5bf6e2ea38ec75dfbb99850cc055f2ebd180f4d3a19f2907e83d078aa6ea10f1c4eaa0a943d385f75631789f207b77b42842cf0e26948cc3df3e7822db26290a2cb27a6c07c65b5fa99c8ca32bf0fb12ec9493fa3038d91d376151a98030e39968d371bc383d2133f1cb03fe4aa96b0a36e4353138fd0460d248131700ba3df3bd50f1b86f63acbf415499f74c0dce30181a953d47de1f87056df10cb871d59f2fb9bc21e56d22289e842a3dbfa6e64b2a8a19842ae41da95df597de2c2586676d458860c9cc8d923a443d43bdafa72fa565f9e268704a2d10a9460b325ec88d879818191fc3fbcf1c71f8fa335ab88b8d3a69b5d4ef410708a670fde95fb5964db99b0d40986afaad8bdbea87e6e58c003c13012c813718db8f88be4c896d703cbf5bfc0fd1b9a1e6c08fcf8830cd6d3ac7e3e965ece6ee7c68cb34b3fa464734f9c6f47ea4353de98e0320f1220722bcf5b59f4f9c14b9170ed2a37eac52cd3b20e8ccd740ff9e8bc31476f8508df3f164391011c00f801e86e95030f8960d03eeb39a287a920eeb5fa0819700eaf4ce896fb969792cbe136da2f6ceb5a8f5a0b69adfb2beba83da6a585d12dfa44cfdb4e5cc4286474ba0eca1fc85cd902ec1b17a58d4d9a47082158901d8ef398c35503971fb07c89d6d05a44e82525d418ec19b03bc88750988667ccefeea92564a5beb8c68b291204734d33a40673931e369e480ec8e91301c580f878a15a5042b343b690d70c93ec85797114da14e014a960d61a18b7cb61557809c0e1aeb9560b8aa5027323954dfc4fe07e3d07f3645a828dbe5a5766a37b5f192e00f22221827a1d7a5a78cecd38ff745597a6063199fe0ed8bc57cd0539d1b93f87197244d30f3896c0047e7db924dba60084152de920d7de496b865b1972509cba8adbe4fd2fcda2eb43d724d63817ca7c10b17a649f67680c4d8d65aa010cee6c9c7958a33b0ca178bdbf2e52b13d98ef6780d1f6e701e0a64ba3816a3ebeca6f0d7c613f6e3b355d93a76b9962c89bb15e3f6dd2708a8d5a8c70af106fcf05b5183765c23fee3e2dc0f7b777a723440d48ac20f067cd1fa8adb30a5727193e026b264bcfcee0e640a37ef26b4373bac117d124ab49404369a030483059a54c1f5d0f367437876d2ebb88c5f5b63b3fbd6a7722d78d2c913230155c6d8be32629b5b0d71af5efdca27ad7e11a7b2daf296a66fdbb334e16f0fa23978af797f2c3f0661a02ca10c6ec2dd575fdb5b671d65e2d3e3a92d035b26a12ea86b61d6ea2e767c19c17c726acb8534cd7dccd80411f0e2b815c77b7f63f227005183739eafe4c70c5be84612947eefe42d438f7a399703b57200870a162a67b5f9a10c291be96a71597f81de19e5d8befff41be53dfedbb4c7900b2de7e826d65917c48aa50ab2804ce071210266da7794fccba60447232cf603b1a19c5fe9e5d0d88514e5218776f5d3bf5841d57b1c466ff760705573153654c3e8087aba04b0b5102be59eb2638326900cfe38700928531da71e375fb5024735fe47f541f3dc29619e8e2df2cd19043a7ca54349899a12ff999bcc3e77552f4a8b5c58cad7202e3df0989ad1a3161c4152384e6a900fc0c7207b4150f7ae8e4398eb78f2aedf78698208fa428c8ef95435947b81f3a67245a66a65bc24419d6218e036bce9be10ace82634080959ed6c230b50c5b6f896ddedfe12fe67ed49730b8f64d18dffc13b01125ee534a9fc6d8852fe06f903b302146b6dc8fd7ed76318967e9770e409bfc492fc4daeb1a1bfc06b5a358a58d5bf8696bdb1fb76c26036fad8c17b8863e3956d99d157dcc11a3d7d8f4415f8a9667c8cf241f6e614dd24127aec1f083315e73837686af8e9a99d237f3350313971250edc7bda6b2cfb39d3092a760519ae6e2a959382b4e629120ec26dbc66106a3628503cf84aebffc557d5e8bbfb2df2264c00883a65649454c34c7f7e0f5cdb4e6daae486381b53dc553cd16f2b6482bdf16fa8947024602f5077d84e1293743f2a7a28bb5e570d7737ea4159b1d9d4e00177d76b823f678ac55f47649b9902428e960fbb3e3b5c7cc544c8743077c31df35fb32b08fab835e9e6c4ade867dfa1e3e6428e61ac57932a81a6715bd99e308be786897af1412f9dcb4c143cbd0dd1b474b463752d2122b2925a860dcc736e6a5eca0de3bdd5f5b5eabdefbe17de1c2c714f445864cb3167e4453db604d38166f7649b7568f2f609ea39eb13231853e513ec30fb0417918649568d68f6c41730c05cc8badd4efea0ad81be72d0bfb3b64ec189856587c671f8a83d94eb254f57b0c732cc0943419bd3f22e2af28e637bbf15bf8f294d9ccf7e512f341f88c0ed200e68acc9275214c546fac3480ba0f45124aadba622a824926bb4777331026c1c4842c099d4b2bb8073db6cb17270ad40ee2d9bcdcbc4e28f376893d9899add5f3a26d8808d95cb2fd5d835f7983e5e445761b94b92a3aedc95a42651e9e79c2672d087b6e1ec0eab744de4a07f0895470cc826dc0a22655ab40b24e8a53405bc7e0e50e2502c737848531debb9728169c5b75657c8645a8777bdb0fa18f07b12a5f940c5ed1e2f6ede48f1b8193eef2ef4e272d9808975a05a1ef5d2e7aa4f33c29dd2bac482ecbcd3ae63277d5ad4e1bcd38b1b1448d66229092256652d4d87a59e4aa0a20555b60da1e6fa68b14299a7ae46a92d55bb87f2fa6140dac79be42a0ea939c7711c03ce8269a545969c68fa7a94a803fa5b3e3b4b1371b7363587d4d89105b8316b914ed1c5e1aa5a53a915922dbf5e2c88a33b6f095fd7be70367b54922f228e11610e46c56e28f645c1e672412b5ce3d29c9f003cb7b48aad06d9c7851a7ae21b872aa7379a911462c5e1d128952e19d650052626b98181806cb28f078e66d081acbe50a5272b34ca1578bd4aad5f15713bed78cae108add13494ceb10f8cb24b1e355f24909bfcd6bda007a5985817a0d6df392190e8a52676b86fd4b4081e54c2b597db02a49c1f049637caf3dd76144643e17ad796e7b99eee9f906010ca329451e7210073929f9dccfd0316d10ae99af4c3a6b97ccfa9a6341d1639a0373ff473051e7a93c0db87142612c1cb4dbb729137792dbc7557f931b457e2a6a3a8ddfdae1cd3256d84f7115a3e19cb292913cfe2bdea31020b1bdce19c7000f9ff7bd2666197c2527e86f60b7edfccf20d629142664d2f15175329923c697d70a8189662494858a8dbd2b1b56da8c39f74873ba21b689dfe30aa07a16afc47ea994a2b71d7992a2fc26f99", 0x1000}, {&(0x7f0000005c80)="53495fb81551292ec20893043b503dd8422a4546142270631f67f228964e1a44b33b8ee1c25bb00e773722488e28be878567c31523c4daa1997eec323edf4bded66e7809cdd9808136aa589e12e71a1b1f50ee5d9a61cd344917517e5545f659c56a51a95102e13af0eea444960dc2f0350178c8e3e57cc0f86cfd9e88a7f797c315d79a1368d80624e3f39d24e7e0d643b7098f20f45ef688905714ccbccf6c2b7d06d1e61f05810072f529965cfae11e21e036b4b5dd269c739bb2c9238acac5bc81f17534a63c5e5d37a994a0444551e8f5dce5fae8abe4cc7e11cdbe3a3f64d9afe463aad4017f8e30afab42ba25d92e31c3580084c6c3f1a8453d3461c928d08dd5b935d1af589a663dc32b7d7f6164ab6effdac0512507ca7a777d7c99bb14c7e44750da25edcd6dcbf01b689426cfc2b989faf64122dafc041ab6bdeda15cb7c93b4a7d5b2319eb9fc1466eb2af581a375a7201abb501bfd05c5d947a30918cdbd66442d6e21b4ce54c0754830b1089860975927d36c6ac454c3ca51b08d5d75801047665651ee2b60d5d5b00b618d78d32ee6b7da244e78ad4efdabd4d58fe4d719bcbf4de412f45b45d1ce0365d1157b9081f78149f10c2279973ccec08bcd4fa5b6f5af54519cfcfe05c2b0105b1f4f694ae3afc39e54ccfa7610f930c5b86135e27a4213cc5afc625a0e1e30db6ac937f7df96f03864209e95b864f024100a516ebb5c8ce0c8426d9a561c3274b5f3b1bcc9401d7215c48420b49716ec63cb16627ef673c5bf30cb3e6fa0a642c5e46919933cdc99f1e805ec32c349b56fd5ba4639340538504a584b305d73aa6e33b13e3a78be58884ed1e19c1fc0e11308983a1c3b44905fb219935d7a475d7a0fe47c8623dd443e233664b08bf9af14be2ba840ab4590f3a6e0ac42b82cbeafa1cdca60fe351512095583c326e2f21a566b270a127fbe3f971ef0afa0e3bb698ae3ecf150b2fc0858babb6e14a8807625a9a421067b8e4a6cfe98aa8cd64d09fba761b67c6f2e3a277c6782041d9a0c45ccf9ad31defd60933b07da5c79d9b7c7b7155b0357850916b9692cb5ee9df9dcc98017d6c642d1c9e04ca7aa73038f6b6833c87296380d6a7b1a36b1e4419c194e2572bf23981b5fd8d875c32674aab3699110bbbe54e29b147f24bd3b94890081a9218c1fe794b613a839d5a665faffedf6a2685e898c239074edcd5640f60180cc23c42f1234cb06b9e7a26a87d100a4ad5c6cb7ec37c789d32f1eb6c5a1ff1d96cb530aa9f33fd9cfb72d781537a46d8fca7e4b15d2af12cf865873a9426449a37c928cef11367030beb8a89667b18675e25a3e7cc3f5706693b8b9a178cfdf014b13058150d8ce02ec2f2d30e11d8ed1779d613fe30e37505927da5bcd2a430db8086a9a8f000d2c62e381966d3b2c74c3d17047aabf90d6ecafdc5ea0c17466533f264bd04ee8876c8296f4098a5ec10161d7c2754b511d0b6826404325126dd31cd433350b704dca471cf381055421d5365d785505c5e9d1b688eed5d0a5e3e32478194144f5228d5588a66db108613011c47408234bdc1d39f9c6604c5ea9533f4916cbf9bde68110420c44b7ce5a0c413634d6c8ebbb50fe9ece52e7632393c032772cf2f5f973d5518caa0b08a0c3a7fd0c92091c1c8300e2e7fae1fa96c3cfa6ab503aea531cf9f2e1ecf3a2842c2aeb153de3180c507fa9bb9f0ffb92b126fa8e2edd88ddd0eb1633b16d3c5535186743a4974d8e8ed5ce41ff0cb5df7ccd3e64e6c3ba7a0885d689fd9ae4a3fbed2d7c93e493c05345e5abecd8523697338fbfeec9b04087c06b35e984ae75c7163b2ea48afa56ac05031d19b33e8fc77cf0122f63e3fb99e1b5304bfa96d8ea424b0e5aa162f241d7e129395dff0153a433ce1b801da0364b8040a68cf5f0f74ab981200aae11e86bf37273374120480664964df87ff376903d8921d880271be96756813703f4a86561de2582ed31192fd94194af91618e77633981bc8883df5225150241722aa6af69ea9d3ba42a3ce38f81b2b5a155e23966ddd7e8e8ad0f124932cef0afd810734af8f37dbfd6485b4d1fd0349d0fbebb078acc33ad580f69032255b8a0b7ec97a0c822cef3f7a83fc25a838e66f4bc06faf5f65c9c704dc7e30104099340c28c2f28fe474e613688dc3ea314255288fbdc4d6d735e3480c5b043a56f2054093171e405b895f998cc978bf7628de675c945f42aa884a62d38bcd32056b43d23743d825a8ef84ed144dcda1e67ddd5e5c36e4e5465d2b2d2d3fbee8dac66fa5012aa31022af349301d8689c018820aa47f5ffcfcd1f852821fc8d9e19f057b6b9cd080be44366333f01cac51f184de3bc568e2d379b4b27776983e576a9973181766491a27a06bb8576b765a0763ff802f55d79b959ce43bf16797b4fe81be9fdbffc72a36823bdc5839052c8ce730e8528f9fb0b1c7bc178e9013e8cbffee0e4d895a623f57412841d020255ba2148d4e245ac32b7fb79f953c64539f9aea059eeee5e7f0f3503ff463434bfe5cb03ac56e0c1c90db6a8c219e0a11cb1075c232b77b5d59160f5b7b53df213e3d014f2f752341420dcb11f0004c1334f11ccc441b3500d077f1735b9da3a6ead0bcb30a0e3b2d3f32f43bfec170beb238212bcb7f5b16b69c69f66283eaa84dfcfecabb4883b5b090ba6f6b4c3b14ba6f2e1fb78c79b02b61bfdf7231f83dc59aaf6d20cd2c8b451d20a58efe775dc4f3c6b61cee9240d28b0856bb44a3ce651adfcea8580cd6002897a661d89b7108294c6b7391d90eecb5d4eaa097a58024f1f84edd6521afaa6dae1543aeba4c30718fa64a20a5229df2e0ebf0c024c37a2d8e6571870b06eac336a34d66e261977648c3f728b1867755acab2f16ef2a04f58d236c7cc6cec09e027279273233fbc66d2385ce5179dc6723b5c9417e4ebedacf30c9bd83af0ab115786eada987c1f619a8efe797f23539b5fae45a83ca8a39ad13b73a01919d50b5c9566ca1ad3a2b9338e222fc826b90698d183d7484d404b12cf818dcce64eb2d3fa6b63949d891f6303c9f4e4c5bba398706f7439da290e4f755bbb71234d18ef88c55625ef202ce239aa327ab8393fe6582591cdf2b9ae99a246b42f813856dec52a9c250355f6ae268d96a27c95958b53cfba8a3f302cdcbbb709eaaf73f47f4b37a794495a05d952f6e1365e60d919e31f000bbc11ebd551f3d042ed7406a57743f279f6cfd4595cbbaa132b7567b9e0ec3b0e9d597066819cec457136b919e02c6dbedabc395691333970d40fc7a5aab8e43bf1b3cbebfb3157f1341988ea255ed2a3a4eacd91cba241fb3064be967589ec2f529e68357cd4aaac361fcd95b3758be2365643f4c029d21f294ed80ba3c99a8aff9fa6668a6fe4f8d5dd62c9b2b124f4fa559d6f3d4637635e47446a88385d77776e9d115a56fe0904a16cc2987431a889ecf5d29029abc878a3644da962ffc4d2fbec5c821c5d066de77cffd36f307df175cb6b5098f81f9947d8bd0703d42104d241a163afc9f2ac883c8c3f168105313211285583520ba0cb70eca26abb84eef350d7e624be9688306b3209cb94dc5bf97d4da43a17dd6a9dfa725ac17fd8caa3cbbedfdd890a15b5f0cdd76aa34b91321f28a09e2cda11cf8563235a846f0dfa41272ce34d3416aef11cdf965da8430aae308e068380d0632747f627ab0a467cd124a93b52b0a764cef36ce3b006a6b72aa7a808ec122290e9808721672b328e287abb8c96bf290975009d16edda466571dfc2708781bf4719bf5dc99610e1a748aa0a1581270e6f9eca5462d0da96d9082c10d4d5215d9f011a0841b1d94b23be31463042c49d84fffab3737cd3678c2e7b7eb2e483c074804e82aab87ebd3c879becdd65de6e4b1bd3286a9772ab2435456b58938ead4f20acfbb4505c2f3f81868410f57658b9baf8b1f88faaa51ad68982189f76cfc817c4579a99879509921f93586a9916c17bbf9cf7e7822ec052f14b757f06a0ab41439d91f4e37cbd0fdbdfa989dc4d054ed09bcaefcdc913d4941d0e1aab95f0c7d53ce0a21ab92edfff235e4870f5d7099f8ae8a1a2d91ad52ee0544f7e260f1dafdfa8f24e5f171eac44944d5e48dbaacaacf4df42e86ce4baadf5fc6bcef1ae20b98252de8e12516d111961bc9b47313e1e2f6d3afbae38134c4c11b28bcc06135441912378ff0f8500bb800b412b34b48f9324e7308f177e5b18506c13768fa3c44efe7c720ef2b9ea62abba60233e3200a79fb3d35bacc5e22340c326b2b5a30b86e20ee049358f9b696198301911b9212d5cd948251111b02fd96d19bd06635bb1bd61a6917659a5df1e0d5e4cc7ea3388178afc6174e3b88b7803e1ef7e83c27118eb557062b5a115682c8edc37805a1e9726168de6645e32b52aa8bdf2f03a574fddc119ebbab8dca4a2dc0122d0a0d0bcfd13367b833a3b3cb30eef4963610ac16b45a4d9b40b695e653316ddf51983f483807f3fbf4b716e5e2dcd3fcd253163ed3c2993109dfa29131ac00d8eb6162a96e83d42e073949a321fc28f2866ca3ab4b6ccd3e24f9ffcb9165abf72f7054738dba3a7b78eedcda29b2babbcd6f7bf57755909d30af1d7797589772dbab12945e2e4edb52972e46a0179e29bfc96b8805a1b05b6da634a4f33c57d0a06dc6079e8e9754663718bbe3731341afbd206a8fd06565842f2f476f219b8bad7d88525eed40df40b8a63df82de9a4a95ec06d5c783fc61c01d6ae64ffcc2a6ee5ae3c30f8ab5ce0d35a3157baf883335aa7ac76697146a7553a80ee362b6a4e9ca02f5f797a26dd35752736bf3c5796b39575206a6560fdca4d452748aaee65a488cef2c9896252a8b6fff10755a7a860e6670418f5a1f68d44dbc647b9eda9814ff2c0010beb11eb7a6bf03e295496e5831e4c4c73c653ebc058f0929611911076c13ce8cfab3379e1d23c934099f1bea53a750f94feb4bdc4b167e46f558b0b639a7c35913b6c8075ca66a24a930af0c8fb7573351fecf8b2e7fb133b801cb6ad0b32f932e5202ec16d61c39d9d14b98ffd878f76f7601e47ccde96ce6c4ad1fb937371584b270925f08ed82bc7c09d554f833e08ef757b744c302c0119af2359fd9317348de8401e1909905a0cd2dd068c40c451a51386ecdd32f8d69aa619184c3ec77a9c49a4ec1c1cbe9c61255a72ca8876df1484df265b1bf33def90183c353b37b890f9a54a8b642f20d71577233e15f8f4d373a93b7fedb48f5b4991e347cfe28f4b9511efef679566cd931e7f1c046eccb768dc25a82c025b2351a2b56451b404b76a17b6f147f538cc223d373b2b7a841061d95035139a62a22220f6ed3268fb89a5db93a78e3bd131a8913a376d1566ab1b1f21a776778b26047daa278f59913c59369bd4e42405c1ecc051e878002767df1ffa62d30dbacd0d692d0db7c1faefd64ce8718f89428bcbc6c762e9041e88fa3480cd49164af762d321a36dc2095b7693b21463de55b0e30aab5faf537292342cf501455160fa6a98d4951ad828b7ec2c32d040564a7647c683981ca43d0ecb78fc5b4da83a49eeadbcc1a7c9462fcd3b0d1e790597d74e508598ad7b0dc4a2c053bf7b20499fbcb3b36426c155d5b6cdda833ad647c2b5f14e59a141393690df92ce15830fa56a333dce858e95a9ecee036c676859f1e6e727d5ceb724f271b76cee49f2d39e60ab0c29f4a4ecd6c928c9414c69321b1318880b06381ae216fab759ff48197ab2e8840a4878f078969", 0x1000}], 0x3, &(0x7f0000006cc0)=[@flowinfo={{0x14, 0x29, 0xb, 0x1f}}, @dstopts={{0x38, 0x29, 0x37, {0x3e2c4f31ad5385ae, 0x3, '\x00', [@pad1, @pad1, @hao={0xc9, 0x10, @dev={0xfe, 0x80, '\x00', 0x28}}, @ra={0x5, 0x2, 0x9bf4}]}}}, @dstopts_2292={{0xa8, 0x29, 0x4, {0x0, 0x12, '\x00', [@jumbo={0xc2, 0x4, 0x6}, @enc_lim={0x4, 0x1, 0x4}, @calipso={0x7, 0x58, {0x0, 0x14, 0x7, 0x3, [0x7fff, 0x2, 0x2374000000000, 0x9, 0x1000, 0x383b2eb1, 0xc0fc, 0x3, 0x401, 0xff]}}, @hao={0xc9, 0x10, @remote}, @hao={0xc9, 0x10, @private0}, @pad1, @jumbo={0xc2, 0x4, 0xe6}]}}}], 0xf8}}, {{&(0x7f0000006dc0)={0xa, 0x4e20, 0x81, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xffff7fff}, 0x1c, &(0x7f0000007080)=[{&(0x7f0000006e00)="d8c0160eddbce3d8d212bed82db8cfbbf8cb1f4350fed0db63564931a7903391f5f9547ea1a232c631d87581e97cc32c10d6ad9e91593e92222f988607ff498a705cbc47bacf65057fd8583aff3f6ea1eff6615ac992204987905306944cc4db72430c32dc4c0fbedaa78ba8a1cef1ad781903667e4199ebd0955481d3431f615b158b5d9dd729fe60b08d6668b31428c8c2720977ec166ce690f255aaa3b27756f0ac9bdc392535df0b7ef4b2ce00e6fd", 0xb1}, {&(0x7f0000006ec0)="b22c9689dde704a17b2bb686d649faffbfee0f", 0x13}, {&(0x7f0000006f00)}, {&(0x7f0000006f40)="5cea5889ab9aa7e5c1fb6330b27fdf99898beb2817e50d2ddf8e76b02091c3f5f5d55eb2b803b0241a5f80d7c12744d2319c22ebea0cf97a541685adc514052859f73eb63d677b8a45f565a216e2aa90bd7d83967c6fbd2e2ccaeb58f7", 0x5d}, {&(0x7f0000006fc0)="58611b224f", 0x5}, {&(0x7f0000007000)="a9fbbc9de1b4bfaeeeb7bbdf146fa869cd8f81fe378cf3f2e5a87c38d4d8e7a7ceb5001a926bc248f96c50f920f1b8fefd6f08a270eaf1d574828a51f7e22aa14fca6ca94df6b3c3179cd54da653ea712f0339351f63c01360d83428ef363c8e2657d962", 0x64}], 0x6}}, {{0x0, 0x0, &(0x7f0000007380)=[{&(0x7f0000007100)="1d4a5a1d38ff2dbaf476987bbf0255d0d052b2cd5455f88d76110bd1754bc8c65ea16f4439eb45849c589eb2be8b4d25e710c4c2bae9283059aeedf0f30c41efb67898731adbd635ebd4ab31769a7803e563ac4390eaca00e1df3ff5068eb1a9d8a79f29282578440efa4b52542bd709701ad3673724bad8cdcabea16968ea0db0a166bc00c0e567fdf10c2329a7542fb92d7c1c316dffcae6638372fa1ccc35c2c443e771ea8b85babd70160bbc848bb831e6", 0xb3}, {&(0x7f00000071c0)="cdd209869d22bd2c96803d4ee3b5a48ba78713d86b997a17b5641b186342b6ced8d35eeca2928209067883a67684ccd315fb441fcee02f8743acabfa44e544b0c12668cea56bc05dea4890e536f10cf42bd7b2ba1c5eef44b419aa7ea523b05849b44b477c2cc783ddc713dd858f1a6413d23401b9ac9f66f940e06208ed85d2d61519f1da71f5deeda83b736d6199e4e789e0e71555a4083509b22981", 0x9d}, {&(0x7f0000007280)="47bcc6de2a55d42912cff391ff897cb620a90c5fd3f2c40675afbdafbb5156bfae562c129cc67d0ab1ae536a1a925546", 0x30}, {&(0x7f00000072c0)="c4e41cfd53c074b84a484b7efb23151a7cd1a5adb5927d469e3baafcc0e4b0eb77267968d07b7fedc5746702d06a6247e1014247a8de7076c42a618a8b227a971e8cc67bb46b4dbea5ca6dfb9af0499ef583fb56f79b4ce18bd6916e80b931cb1733a7eae42428c7fb6edb2dc890b2dcf9de7ccfe74322c11ba2aeb2d431c05df4c2985068da221d69cddec0c1f446691e7c65585b94ae3a9b36a4201f60eb24353851a14a0d2fbff60726dee5d0bd1f2bb57dc33b3c46e6344d", 0xba}], 0x4, &(0x7f00000073c0)=[@hopopts_2292={{0x1048, 0x29, 0x36, {0x0, 0x206, '\x00', [@hao={0xc9, 0x10, @local}, @generic={0x6f, 0x1000, "eb68cebb52540c46b90f8deb3b325e59ea5729f9e321a65f53de744396ba1830493e8ccdd3512df4f53d9b434bafcac55a52cb3099bf172dd57c7d77024ca7b5d8293e4377ec51bd632654310feac5ad473f26b978e1f3e2cb95c6c1c58f2b6d2d081a7a54268cef9c8d7a15785d9234566e1fb24e8a492c62854563f04556bff52e66c21bee2462ca2ee001ee3baa19ada2ab27547a5da807ff6d4ba0954f8a2ec4b719e7ec0ae2e0c5b94e4b704d0fea385472fb54a752184b80a63b46fb1680c5e7e81771011e71696749071fd5b7f77c0ebfb0c79ddeed73f9f3bfd8c6c8bb5aa8c291d5357ad4faf3e015dcee0be40507e8e7402b1a912adfb074dadae8724cbc16a2fbce63bcf0b3c87004879e852f1de866d1fa2ff61158413683af8b216d35f10dc0a63679b7f247779874c4d0b038cdae365a1b7ac713b15d3d8a3bba383f746b0d2d78c7b9640658e961fc5ae05e48f5a06e601e936e11f7ed151a827051f5ad09e07c5f81b56fcd24631d31337dc93803e2de465c3cd0418bfa59b2601fcd05b9a4dc82a92ee31db42a72bc48eedb7b663770e0c552f51b6b0c4fc66335286ef3b507a4c7e31d3617bcc8f2ff3f3607ad6172e4b12f1b952c7290579317c4e9c07f08dca36efb3e59d3c292343034a7bc3b6f1a0c5ab0e7fda2d00eef175aa13c9d2f4c6e2c2bbed70b6eb29f7fd0898c4410a89d8aa6bd0ebb6adbcc482aaa03e3d9cd655c9f0e689d7239da26df340bc9ac237ee5f9328e81ecf7e0c4cb2202089e50167244666cbc012c6b7b64b003c8cd155f88b067a34df2880cec7fb4e383d43804d31fe6daef780d884a550cddbd2900b877ae71977f4c65289cb09d01e62770ab7eaa435547ff72ac6a35175468345bd4c44c2ae555ac5cbd00511a65f7d71be19f87800b5054ab7d91b98c1de67958ff20302fc46a029bfb8b65c7cc249a9735f761e0e019548fed1dad0961d6809d6a88a8ad6184e9d00c79935d949dfeff5ec6a8792861c8fe7646654e33ede18e22065e409518c8f0f8f74c23cb1e069dfa0d48ec91175073b9176cd4fee4a52fbab9cdc00d6139326ab966bd946f24d661ebd5170b1ea6a32f3e447e5255fc254d0c98e6097f1d3821c33e50352a3b158bc7ec190746786905a07593c0e0f5114a0a321d2d34775cd52d0d3ae67e9cc7093f9d8c55af32f78ff5d4c0dffd14ff17b447fac1c262c4c99fed51db407a19b381e8b2f936057c831003829731dd39c9edb52ef3e1686ca89d77f5be8ae2ec4d1c3ce59faa255c958baf877480719f2f92fdc50a470b8deaf1fcc6ba95ad33bd06781991c1c4e3fa438005362d422e0546ee4ff5fb9bc5e1e2cab7eade360253da56cd107eb61d4ed6b1973f73e35a3b2f0733738113291e444c1ef30f6f8abc0524136a08d510dfd372b35a3bffcbeff029b3f8e1deb3a9e285608a06886c12d7efe47dd6533972a0c0131f0653d6057c8102899b7539baf32804fe5b329f93484bf2b9cb115269566afb8ca44447703cafeabcd85568816041b130ef2c633e75c809289be717dba6b79a7ef7263a52affcab48c08afe3fb99fd7a4b9ca7a5cb7c2b09734fc3deba8d4f91a8764f9feadb47633e62de6414f33058a3581f4ac0e5421eaf40ed3e80c4e7bbd8b9f4174fe84df3291323149143f920a49b875734f79d7b5825494d840fdda84e39566ab6b781099de27ed80aae182ec5e9deeadb0894496f46d482f16f91e1f1e390bc79f053c22bcdb741e9ff1168e178fc4fac3b01384c72c90bad7d169056d686eabec34e97d6da3d09c459b3ed7f5d334c251d00acc4c71cbd057ece7360aa3f3f5bb85506967a760b205fe55b01d06b29cadf5aa635299ec7f20425bf1e0e954a6f289e00a82bc0a49b579361a92413f54b82841020c4c0e7fee354095d51ee61c0b36d66a62ce51d042644c09a3cd872627c608caee64b93d8438f22da0de1786f49ecc30b56c1d0129f90a23559df0c0ebc6bcbdac503387b6e2f3e57f46ccfede2b82556150e301f54734f95a52a981128ad98e6588c1271dd41e8f1f49d02abb493a9a17471e34c591d81afffc49e7941d71469f5aaafe832c78b3c99766dc62de7d25ff6115e5a70bb7a9020b87270484a4e6481970ffcd27669600b6be57f788ba5a8f551781b79d8bfeb3a125752306c5ab41519d141d4bd16c1a23d97ab1a0c605671252ad9b0ed6c56d0df6cd4c8895cf1f84f636639c3dc8947841e2a4e1692b767bb731cb3f366a606ba55aca05f4e9e0929cdebb69d472195e31307d6b2123e0c0f6f1044ebf471d4231be0bf0b3adbe9b40f2915583525c79d204a72a50a340281fad6588374d603f7160d2e657974207d5736c2486ae689c0d2c70d682951214d194c96813e312e38441c7e7541d3d782c89b88fc52b2094a4587ebdd39a1963c87bc6f578d85999a587ec6be16e965532c708beac607ff8fbf69c0b515874859cfa3188b7ad35bd43753083c87133d34a223322c94349437f85abe3b736187a62843e5f31af4f762a0dd0cf3e3dae232d577f91226f94194d90ed33a0a4d22fd148f59f37300908d08904f537bb73af4169a7ba2ef4ff78d496d388ab52aa93a296287a2b555758720592b765315807368f033545a3d2cf16928fb483628cb12fe17afa41c9454e21820187376e94ac914eddec85caeb1038ec435c591a551e4e46f0e606a1580f1680fa528da23d2da83fefc07a1736b4e564e9b3f1da544c508beca23e19f0a8f1c655b2d88fe12194bfc909fde901f9ff90789d51b6ec8e496eed059969f8a8bacc1f8688c2ffd2a14cb4b92218b671209925b89c96dab4565bc012e201fe6fb9e6bc58c8fea8a80c53dc246e36f401bc21a0b2d92ac216d4406a681c2396f2c5921085721cbedaa180595def51f81fa0e5570a695685cc57f2e857ac216bdd01e1ae5f7a3ffe7d2d54756e5301c770e53368811b371c8995e8745f6331ff86a0d81b776ff46b1b926fbd8e102b0b15b06a8e4d12f4866f88ee2d8f33f845f8453a99555fc5b32ac64c2d4c665bed1ec8d222c78d9f80e75a2c5cb3b2f2d7e2de8475d92b799e4b55b1e32eae9a199af2bb61637d041ef45e747f252bdb82dc0fb069dd9cd26df12b0cf4c114587821d86f3176d5b94fd812980d89511b2b33b80b802b4b10522c80dac47057f6e2cbac62f76f29c8ea1e7f06d5eb06835828d2f2807d50de9eb027c28047c14a9e0c9c29bd3fedda13793dd5bbef08801a78438309f4d017a3ef9f8dd030933cb73b4a4350e3208c8087566875d23548ea9da68c51397900abb79360b195b72c1967d49eecffb7efc59b775edc2d1b89bf0be515b731f34e0a67acc90a3da2ac757f0b4cbcd2ad876fcea0d1ceef3d60a135238139cc8bc018b3c7077f4ffec8129288326e39f931f48473bcec657c7064bea8cdc85a82004fc15001e68ba8b16bac78b10d212bd60d41e17d2b0e8306f38c9f8473c794d60b558462a9c4c9feaa996f9e64ed4029839cd3a507358a5aa699a4d9f669e46965e126f08593533c2c641ffc68da46a02ea17271c0cb12b005f94ca7b4841166f5925e6fc74f033d383e8cbba57157a42aee3b1464be60b2f28fd2f1dc95cecffca73906dfb9d8097a1908bb205babbca5ec5d8d9269998be4710769c9d8a51f5e21d40a2198eaecba0a37cc45edd053b5011354739396b69bd24e91f6b4fd6098d1ef53834b640f8a7b2d86c8905bb665dfa716312760389e3a111bd12fee6c62104ef92fbd403680421b7a8ca322108d70a6b05f2b706aa614733692e879f8af21d9e92a406644e149f1104fe3919f8ae5aac4604abca8380b8493297c1597f2a0b09f0c3c3a8f1ba4f62dd285bc1a459443b1f1ddbc0ef6f0d308f3c4b2f3544ae900f26d9178786f6cc7a084096550bf0d83a338852b1e0be895d59353e5eb8452559f6f652b4af7b4ae0a3289305b5407dd95f22b851947eff6994243c49556fb30d57917d8d4cbfe0468b14f1ea70f40479030d4043d322589e76c6bfee926c622feea5f7c5791d4fed9f2a0903dde27aaf6271b43148cfdb74995cb6e04dcc4939c34de35c238fc0bd1e38f11dad5a7aa438bcc7e88cefe367a98a7ffa6056c7746c4631873e97d61fff1bb6ff4b879c4cb64062bd327ce6cb305a4cdc821d0574517578ad17bb25f364ad83e932680b61646c9264fc65fa84243329c0636aeb50203f6312844574166d703846692717f8e499ddcc53f2530f95d46d4ce0c9cc200efa6cfa17f234142ecf5a678c706d6656eddf536203c352123855827a1c1f40e4ceaf1d797bcf6b6006a6026cd027e64237559b8ea7c28759f089585dfb6b0a15ef0d61f89e554e3d96bc76069fb026560d3bd7278a4f56d4d1bb5ffcdffc5dae36d01685c2e8d632d0c9a9f5c9787ed109a6575a3398883ea5996239b4eeefaf9655382a148a329a13af65d3ff02952fce7d1c5952ad8a19fb28bb813db86641c95469891891f9226554deb0392ffe0e050488a7b53463aa4101a90c8c39a5cb650c1350bf3145a845959cfdb7643ebdbcdf35d1f0ca81434aa700f827a03017a5554a17d4d27399ef9977bad4de0dc633b956c3a5f297154436695b48ba03dcf7f1d1ee0b9b1d41c6ed34474bcfcee715a4ce314b6b52abbe4a5c751b13116ccb2be3f28318b18b3c20f3dd165213fcbf522fd5c2be672cc985c00d76c0ebb9eb291fdaf184fad31ba4d29c890a88e5e6de6c6f292d81895cdc0114a69ed6ff7d84c2cdf3f457a76b26c740d50a3fd600f8c0c51f20421b613f81ef2b237f6533be55d2a5143ba0d1ab4ea2a79e3e1257f7f9a7197e2e56d65d04c586fc6a269d5bb9cc3999289f0bd599af85a6cb73920d279bd1a708bfd243e73b22690e9405ca8da5e7a2c39da354ef9b873b9c278fa654e33c33da925f25d36936f1278c911902c592bdd8ba3458445b72dbe8fcdf8de22a0b4c7bfe19d9f9ce72593a4407baf7ee99c5f1b2cc3371e0f79570544fa5344ec4d6db679e936f515cc021346fb2cc79674ec0003f978cb4708c777e0f302859ed073ce4b4fc946ec86682435fd1d66549e91bd7651feee7256fb58597a77d022df12acf305885ac68a9198342e0e66e934d4c40e3c45881820cf5c4ded0f6d68146169ffcfd90d36025fefe851e623c947a9058b173ac52171165a6bacf4d0d952c7e3c2a29f94a1db1b42d1fb9e087fc57abc5135c639485ad5267626483441b906e0a5a5bd2799be354f243a892fa84a7d9e9797c49a0b3913a184a5d24b13e7fe17927058ea47a76db327cb7c0697d6ecdee41b4f9d27bcc10f5f9bd6255631cc7d3e2ffd98213e92da2414906facbf46ee142e89a32fe60674f589062bd130d6042c475400e2a9d50d5605305f3801a7f20fd2b9116b59b7dee13a584cd43e8821ab7309fa464b0942cd34957fd2c60a12c8e2cb7793cc63cc60ca6957c67e0fe600dce7b37a1393cad87698588ad3b42e1ac74afd17c27902f28011231c9f5e90a9b30397394a379b0f0c2c379ff42d142b0f0cab7357412be40a4e434eafba759de8171132302db50cfda9a3e82900f89d10cb682449697aafb8c1909a58dd1089114710a336caccffc353277387347d92111aca783dbc955fb147db21ad6c33b290b6b74c432f66dd6902fd9d57a10b32475b82632a889232a765ed9d79bc5a43b468a80ced5f2be41b379abee9bbbd3b98caf6f38df5cbfbf78e4e891d4b431353a23bcac0d046d09d6464a6fd69b1397a400c73"}, @ra={0x5, 0x2, 0x7634}, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, @jumbo={0xc2, 0x4, 0xb12}, @enc_lim={0x4, 0x1, 0x5}, @padn={0x1, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}}}, @rthdrdstopts={{0x30, 0x29, 0x37, {0x6c, 0x2, '\x00', [@padn, @ra={0x5, 0x2, 0x7}, @padn={0x1, 0xa, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x1}}, @rthdr={{0x68, 0x29, 0x39, {0x5c, 0xa, 0x0, 0x7, 0x0, [@rand_addr=' \x01\x00', @mcast1, @remote, @mcast2, @mcast1]}}}, @dstopts_2292={{0x48, 0x29, 0x4, {0x3b, 0x5, '\x00', [@generic={0x2, 0x1e, "48a897099f618a217e4b9f01c1178f1192cb0812c37864f555f932db7c76"}, @pad1, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}]}}}, @hoplimit={{0x14, 0x29, 0x34, 0x4}}], 0x1158}}, {{&(0x7f0000008540)={0xa, 0x4e20, 0x9, @private2={0xfc, 0x2, '\x00', 0x1}, 0xfffffffb}, 0x1c, &(0x7f0000009900)=[{&(0x7f0000008580)="5f31729218ba0e30bb3bd5f0334c6c1f50ccd72ca4e745d41022cbb2f84aec55d828629d9b13d13adc4f643a64add2dbfc5d7e6c598dd0afe5b318360d8f09eeb102e214d6512d4f7954c5c96063f8bf64b428dd1a068426369906bbe3dbd7edae74dd6154eba3e9774ca415fc22916488b3e04f941983c1eb390e538ee8340a3009428d311cc596bce3442f085b64c8daffbadeffeccb1a03", 0x99}, {&(0x7f0000008640)="9b1a380cae99a29b662d4e3b1a83ca29c583fe39dda002df6eddf48bf3864cea9900d16227b981f7b7f9576a1de61f2a4ad5941cc597a8438e4b2490659112248c5b2f6ce8c595a7dd4193593722f0c66d0dae4f519dfcf761fdc8dd58a03728f0ba492383546cb8d31ebae13a4a23ffc69f5066d3a9680ea125e645cfb068ea1c42591792a80d0311", 0x89}, {&(0x7f0000008700)="23bfdd404fe062fe88085517aa98bd7422054f5dd875793a0045c7f81c124f61493e9029bf1fd61a91e7cdaf1399a454c30088425b727ec237a170be3ccb4d5f48e3053a6e73928f3af1a4443ebeeda087cfeeb047437d14c8b23b73813b7f715f65f668974351dc171e696d724c545f55a59f016aa0265abb68f485daf67a19a32040bd9ceebd73", 0x88}, {&(0x7f00000087c0)="e86b0491b3e118ec7c6340c40aad790d50e62a3257ad693119cf070a1ee3a58a03e728600ae2cfb14c917a8e5545c971807e3aa259c40017fed4f4dae2090f3639efed8ae64d5dbb2d70a508a57b22b6d4bc8db94e82502a65404176a9ed9d2a2cb7f267627844ea8589", 0x6a}, {&(0x7f0000008840)="05d46b7f9db3b7b24de273e14f119852496e25842c1320da6a032c0d08ebb7ed66b591dc472f6689f71ddb435cfee10b2db62664a0db30fb26b85b7d758fb9354b037ae56921ca608f98f0bb8fc892cf8f0fce14a582a05d821396fd845ac96bb79d8f3f570ff8caf0ec0a535e191e7971461f950152eb6524779c03f7a13202dff9323fbf9f9ccdb31a6e006563608a0ee3460f8b5f1cb1b3aadc23", 0x9c}, {&(0x7f0000008900)="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", 0x1000}], 0x6, &(0x7f0000009980)=[@dstopts_2292={{0x58, 0x29, 0x4, {0x3c, 0x7, '\x00', [@calipso={0x7, 0x30, {0x2, 0xa, 0x77, 0x4, [0x1a000000000, 0x9, 0x1f, 0x144, 0x5]}}, @pad1, @enc_lim={0x4, 0x1, 0x7}, @jumbo={0xc2, 0x4, 0x8}]}}}, @pktinfo={{0x24, 0x29, 0x32, {@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}}}, @hopopts={{0x70, 0x29, 0x36, {0x73, 0xa, '\x00', [@padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, @calipso={0x7, 0x48, {0x1, 0x10, 0x97, 0x2, [0x400, 0xffffffffffff26c7, 0xe57c, 0x66, 0x7fff, 0xfffffffffffffffb, 0x3, 0x0]}}]}}}, @dontfrag={{0x14}}, @pktinfo={{0x24, 0x29, 0x32, {@local}}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x6}}, @flowinfo={{0x14, 0x29, 0xb, 0x7}}, @dstopts={{0x38, 0x29, 0x37, {0x60, 0x4, '\x00', [@ra={0x5, 0x2, 0x2}, @pad1, @ra, @calipso={0x7, 0x10, {0x1, 0x2, 0x3, 0x8, [0x3]}}, @enc_lim={0x4, 0x1, 0x98}]}}}], 0x198}}, {{0x0, 0x0, &(0x7f000000ab40)=[{&(0x7f0000009b40)="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", 0x1000}], 0x1, &(0x7f000000ab80)=[@dontfrag={{0x14, 0x29, 0x3e, 0x40}}, @dontfrag={{0x14, 0x29, 0x3e, 0x104006dd}}, @hoplimit={{0x14, 0x29, 0x34, 0xfffff1d3}}, @rthdr_2292={{0x28, 0x29, 0x39, {0x0, 0x2, 0x0, 0x7f, 0x0, [@mcast1]}}}], 0x70}}], 0x9, 0x24000046)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)

23:23:11 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x1001, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:23:11 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 34)

23:23:11 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x854f, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

[ 2504.818780] loop4: detected capacity change from 0 to 256
[ 2504.839422] FAULT_INJECTION: forcing a failure.
[ 2504.839422] name failslab, interval 1, probability 0, space 0, times 0
[ 2504.841039] CPU: 0 PID: 12554 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2504.842117] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2504.843534] Call Trace:
[ 2504.843912]  <TASK>
[ 2504.844206]  dump_stack_lvl+0x8b/0xb3
[ 2504.844710]  should_fail.cold+0x5/0xa
[ 2504.845208]  ? create_object.isra.0+0x3a/0xa20
[ 2504.845811]  should_failslab+0x5/0x10
[ 2504.846307]  kmem_cache_alloc+0x5b/0x480
[ 2504.846838]  create_object.isra.0+0x3a/0xa20
[ 2504.847408]  ? kasan_unpoison+0x23/0x50
[ 2504.847962]  __kmalloc_track_caller+0x25e/0x420
[ 2504.848560]  ? kstrdup_const+0x53/0x80
[ 2504.848706] loop6: detected capacity change from 0 to 66
[ 2504.849039]  kstrdup+0x36/0x70
[ 2504.850052]  kstrdup_const+0x53/0x80
[ 2504.850541]  alloc_vfsmnt+0xb5/0x6b0
[ 2504.851018]  clone_mnt+0x6d/0xdc0
[ 2504.851487]  copy_tree+0x3ac/0xa50
[ 2504.852012]  copy_mnt_ns+0x1a5/0xa90
[ 2504.852503]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2504.853130]  ? kmem_cache_alloc+0x332/0x480
[ 2504.853703]  create_new_namespaces+0xd6/0xb30
[ 2504.854302]  copy_namespaces+0x391/0x450
[ 2504.854834]  copy_process+0x27f2/0x6cb0
[ 2504.855360]  ? lock_is_held_type+0xd7/0x130
[ 2504.855955]  ? find_held_lock+0x2c/0x110
[ 2504.856514]  ? __cleanup_sighand+0xb0/0xb0
[ 2504.857082]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2504.857778]  ? _copy_from_user+0x139/0x170
[ 2504.858343]  ? kernel_clone+0x2f8/0xa60
[ 2504.858877]  kernel_clone+0xe7/0xa60
[ 2504.859372]  ? lock_is_held_type+0xd7/0x130
[ 2504.860007]  ? create_io_thread+0xf0/0xf0
[ 2504.860576]  ? lock_is_held_type+0xd7/0x130
[ 2504.861131]  __do_sys_clone3+0x1dd/0x2e0
[ 2504.861656]  ? __ia32_sys_clone+0x150/0x150
[ 2504.862243]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2504.862655] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2504.862924]  ? vfs_write+0x188/0xae0
[ 2504.864216]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2504.864862]  ? fput+0x2a/0x50
[ 2504.865238]  ? lock_is_held_type+0xd7/0x130
[ 2504.866008]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2504.867304]  do_syscall_64+0x3b/0x90
[ 2504.868362]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2504.869734] RIP: 0033:0x7f8893772b19
[ 2504.870726] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2504.875722] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2504.877922] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2504.879821] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2504.881661] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2504.883484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2504.885353] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2504.887205]  </TASK>
[ 2504.897571] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:23:11 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), 0x0)
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:23:11 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xfffffff4, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2504.975933] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
23:23:11 executing program 3:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
r1 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000040))
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000000)=[r2, 0xffffffffffffffff, r1], 0x3)

23:23:11 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, r3, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r4 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r4}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:23:11 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x8550, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:23:11 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xfffff7ff)

23:23:11 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3801, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:23:11 executing program 5:
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:23:11 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xfffffffb, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2505.193238] loop6: detected capacity change from 0 to 66
[ 2505.204804] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
23:23:11 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 35)

23:23:11 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(0x0, r3, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r4 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r4}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

[ 2505.213646] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
[ 2505.272437] FAULT_INJECTION: forcing a failure.
[ 2505.272437] name failslab, interval 1, probability 0, space 0, times 0
[ 2505.274639] CPU: 1 PID: 12599 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2505.275708] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2505.277147] Call Trace:
[ 2505.277490]  <TASK>
[ 2505.277788]  dump_stack_lvl+0x8b/0xb3
[ 2505.278345]  should_fail.cold+0x5/0xa
[ 2505.278891]  ? create_object.isra.0+0x3a/0xa20
[ 2505.279475]  should_failslab+0x5/0x10
[ 2505.279962]  kmem_cache_alloc+0x5b/0x480
[ 2505.280455]  create_object.isra.0+0x3a/0xa20
[ 2505.281420]  kmemleak_alloc_percpu+0xa0/0x100
[ 2505.282335]  pcpu_alloc+0x7bf/0x1060
[ 2505.283125]  alloc_vfsmnt+0xfd/0x6b0
[ 2505.283849]  clone_mnt+0x6d/0xdc0
[ 2505.284273]  copy_tree+0x3ac/0xa50
[ 2505.284713]  copy_mnt_ns+0x1a5/0xa90
[ 2505.285160]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2505.285728]  ? kmem_cache_alloc+0x332/0x480
[ 2505.286241]  create_new_namespaces+0xd6/0xb30
[ 2505.287372]  copy_namespaces+0x391/0x450
[ 2505.288206]  copy_process+0x27f2/0x6cb0
[ 2505.289012]  ? lock_is_held_type+0xd7/0x130
[ 2505.289875]  ? find_held_lock+0x2c/0x110
[ 2505.290754]  ? __cleanup_sighand+0xb0/0xb0
[ 2505.291650]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2505.293087]  ? _copy_from_user+0x139/0x170
[ 2505.293958]  ? kernel_clone+0x2f8/0xa60
[ 2505.294780]  kernel_clone+0xe7/0xa60
[ 2505.295545]  ? lock_is_held_type+0xd7/0x130
[ 2505.296593]  ? create_io_thread+0xf0/0xf0
[ 2505.297446]  ? lock_is_held_type+0xd7/0x130
[ 2505.298354]  __do_sys_clone3+0x1dd/0x2e0
[ 2505.299205]  ? __ia32_sys_clone+0x150/0x150
[ 2505.300182]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2505.301293]  ? vfs_write+0x188/0xae0
[ 2505.302062]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2505.303172]  ? fput+0x2a/0x50
[ 2505.303863]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2505.305070]  do_syscall_64+0x3b/0x90
[ 2505.305850]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2505.306896] RIP: 0033:0x7f8893772b19
[ 2505.307647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2505.312159] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2505.314027] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2505.315475] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2505.317173] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2505.318637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2505.320204] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2505.321958]  </TASK>
23:23:11 executing program 5:
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:23:11 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x8565, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:23:11 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x5132, 0x4}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x4, 0x4007, @fd_index=0x6, 0x2, 0x0, 0x0, 0x14, 0x0, {0x2}}, 0x1)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r3, 0xffffffffffffffff, r0], 0x3)

23:23:11 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xfffffffe, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2505.414893] loop6: detected capacity change from 0 to 66
[ 2505.470001] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2505.492753] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
[ 2521.721134] FAULT_INJECTION: forcing a failure.
[ 2521.721134] name failslab, interval 1, probability 0, space 0, times 0
[ 2521.722645] CPU: 1 PID: 12625 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2521.724003] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2521.726564] Call Trace:
[ 2521.727092]  <TASK>
[ 2521.727546]  dump_stack_lvl+0x8b/0xb3
[ 2521.727802] loop6: detected capacity change from 0 to 66
[ 2521.732587]  should_fail.cold+0x5/0xa
[ 2521.732628]  ? create_object.isra.0+0x3a/0xa20
[ 2521.735190]  should_failslab+0x5/0x10
[ 2521.736016]  kmem_cache_alloc+0x5b/0x480
[ 2521.736988]  ? mark_held_locks+0x9e/0xe0
[ 2521.737816]  create_object.isra.0+0x3a/0xa20
[ 2521.738755]  kmemleak_alloc_percpu+0xa0/0x100
[ 2521.739659]  pcpu_alloc+0x7bf/0x1060
[ 2521.740557]  alloc_vfsmnt+0xfd/0x6b0
[ 2521.741326]  clone_mnt+0x6d/0xdc0
[ 2521.742041]  copy_tree+0x3ac/0xa50
[ 2521.742775]  copy_mnt_ns+0x1a5/0xa90
[ 2521.743521]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2521.743843] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2521.744828]  ? kmem_cache_alloc+0x332/0x480
[ 2521.744864]  create_new_namespaces+0xd6/0xb30
[ 2521.748504]  copy_namespaces+0x391/0x450
[ 2521.749684]  copy_process+0x27f2/0x6cb0
[ 2521.750816]  ? lock_is_held_type+0xd7/0x130
[ 2521.752101]  ? find_held_lock+0x2c/0x110
[ 2521.753293]  ? __cleanup_sighand+0xb0/0xb0
[ 2521.754518]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2521.756173]  ? _copy_from_user+0x139/0x170
[ 2521.757405]  ? kernel_clone+0x2f8/0xa60
[ 2521.758545]  kernel_clone+0xe7/0xa60
[ 2521.759607]  ? lock_is_held_type+0xd7/0x130
[ 2521.760892]  ? create_io_thread+0xf0/0xf0
[ 2521.762007]  ? lock_is_held_type+0xd7/0x130
[ 2521.763084]  __do_sys_clone3+0x1dd/0x2e0
[ 2521.764163]  ? __ia32_sys_clone+0x150/0x150
[ 2521.765264]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2521.766748]  ? vfs_write+0x188/0xae0
[ 2521.767809]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2521.769524]  ? fput+0x2a/0x50
[ 2521.770484]  ? lock_is_held_type+0xd7/0x130
[ 2521.771767]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2521.773195]  do_syscall_64+0x3b/0x90
[ 2521.774313]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2521.775896] RIP: 0033:0x7f8893772b19
[ 2521.777056] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2521.782825] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2521.785213] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2521.787385] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2521.789604] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2521.791740] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2521.793827] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2521.796038]  </TASK>
[ 2521.803307] loop4: detected capacity change from 0 to 256
[ 2521.810179] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:23:28 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xfffffff6)

23:23:28 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 36)

23:23:28 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(0x0, r3, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r4 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r4}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:23:28 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x8566, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:23:28 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000280)={0x0, 0x0, 0x20}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000240)=<r1=>0x0)
syz_io_uring_setup(0x785e, &(0x7f0000000180)={0x0, 0x7343, 0x20, 0x1, 0x14c, 0x0, r0}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ff5000/0xb000)=nil, &(0x7f0000000040), &(0x7f0000000200))
syz_io_uring_setup(0x6a21, &(0x7f0000000080)={0x0, 0x452f, 0x1, 0x0, 0x161, 0x0, r0}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000140)=<r2=>0x0, &(0x7f0000000300))
r3 = socket$nl_route(0x10, 0x3, 0x0)
syz_io_uring_submit(r2, r1, &(0x7f0000000cc0)=@IORING_OP_SENDMSG={0x9, 0x1, 0x0, r3, 0x0, &(0x7f0000000c80)={&(0x7f0000000340)=@nl=@proc={0x10, 0x0, 0x25dfdbfd, 0x1}, 0x80, &(0x7f0000000a00)=[{&(0x7f00000003c0)="e107acde0508cf62e5840dc600a2a7d31efaa8c44702c328114a24d0d98da2bbfe51fc4e48ea033feb58981ec524e7d5779162d6423ee6fd7a8d4bfa347d8ff726b54e2e819413aaa403b99ef8793964447e8086bb5c6ccf2a615dc40fe313654bffad626f9ad007212d0209802957b3c596eb082754bd9efc2576cf915c627edefca97062480fd9398384b84f5136c2e8f1a92acf525bf26dee4afa71746c0898", 0xa1}, {&(0x7f0000000480)="343c0f6b8dbc883ba39aa08c31896f2a815697e22a0aa06ff4aeb18e4b83a8b770301cbf88043338b73a6fb2ed65f038d0e550e1d99af01361f4851e6e78ac94a5bc498243f241ba709b1ca18c6803fdd5fb53f230b7e22182c13f3c82bdd814b2f8deb1a9c8ebfe34e963d7d7bf08ff", 0x70}, {&(0x7f0000000500)="3d5c07449d6b8ae9d788aaa336d9ffd047f0f083ba35186991636fff6454dd65c796fbe8df6981f3d600270c7fdf70bcc909f9c41cb30b4e7acb57b2012bd189c3754c052ce26b975c7321a9506a31899597fcc53bcb56967d37df524d545a", 0x5f}, {&(0x7f0000000580)="ef78f36ccf2519acd28c8f543d8d34b264e3ca639a3b579374b7d3667924d1be607a24ea20eb30b702cb71f550375f967a40d6eb04530e54e55514095006b32d0ed8d55b282217a1e5543bc62e66fd8636f2da5444d774bb931ebf1ac2e8d9afa4fd2a489836665c8a01ed156b3012759fe41c4727d0413f85565640e7e25590ae6c7c9a414ba1be17d8b07cd95a4e2c043874c95b0a68bef9488bee91", 0x9d}, {&(0x7f0000000640)="b151a58f1d7e37e5a395be732ca1b00c1259ffc7d076bbdecf7053bcb3e1b68546dae39bd5b535327280f33246cf0dab258270f51b32170d351c360e1cf73088724c48954cac30817736b809fa346e48831206ce893eb6561be6f1522d599be0bbcc9e", 0x63}, {&(0x7f00000006c0)="95cf332e9a3857991148350d3e1853a59daa", 0x12}, {&(0x7f0000000700)="cd3b3b08c2fe5e1848f291610ce1a239687923c9d578ff739e24852faf388887ce612062c0f43f4fbaff699f0e0248c5aed95727e0301758feb3dbe8ad8ded7b8f83cd6223fc068337b7c3b57165048007299b225c345d4c7c7f5b1e5806b4d03f705e9e00c0995591b32f6814f4f58a9350526f1118ea0f163ace7d2a2e41590614bc8458cd732d237aea56ec67b1b9bc0a510e1997ea09e0ffcf6c9dd5db65a3c30d7b4bfd26bbf44ceee5338a64150f063524a9c7014a7fb877429e356f56ef863800c58d4605323457b4d5e64a", 0xcf}, {&(0x7f0000000800)="cea1f873708031f92484f08a775046683790768c207e90b861c760fa52bff12275498b637501b732fe7604ce9782789e1e300d311576bf0b2aa5c4b68f893f8a044501871a1224976d5db9bfe2cd0af13c9915daa4e1de3580f8515988f3b858f7b75e85300aa6507ca17f604f9d1fd5caf5165923832824cc88bb391c42b91cb87fc606c7691d720e562928396af92cfb5a82d659486d67b013212377aa2176cff5184097855ae4c2834e6a08ffda9903807eeaee4538395270627e6907876d1243ba4aa8c871faefa5e90a26cb7ba4e301b316c232a217652cf69ec2f1d1d4d6831a2f196de2c48d2d6a89", 0xec}, {&(0x7f0000000900)="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", 0xfc}], 0x9, &(0x7f0000000ac0)=[{0xb8, 0x115, 0x19, "22601475f44f626ddfbe255ad65a4883649ad0ed01edcd2c33772a258b4b938a7d5fd72d42b2c21ac83c53f9ff6d1ccfdf03ebecaf8a636441c98a80333deca7c9fae65d15a8f782c191b0c6c94fae066658dbb150024870579c96d43feaa6f81d25b01b8a73d8b20127ce00a98356b8794c3fbe5500cfd5113ca6712bcbe44cd166f63bfd955c7e3ae92cdc2b772fea1a6c30732613e9f444409a57470172862d"}, {0xd0, 0x185, 0x1, "d39d649e02f93715196236a200650430d5344e8da327d73dd5196b11c59cdd391a93b21444d4963c082aeb528d8bd9884458845bf0724a168e59d0a6631057e1aa55917931258b18db39e090e3957a0c2b5fef0ef8d0e057cd035d9428cbab01cda2585a13308877db3f9c1f7af17d94a42a53d226b375318b6ff5106599126ea1f4bdc0850d7e945b376d45c16b5731ab9fe250716ecb97052d3c912284077d4d450cfa24684c6d59acf711dd0054168f5d12d08ba52afd1a"}], 0x188}, 0x0, 0x60000000}, 0x9)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r6, 0x0, 0x0}, 0x0)
stat(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, <r7=>0x0})
setresuid(0x0, r7, 0x0)
sendmsg$netlink(r6, &(0x7f0000005200)={&(0x7f0000000d00)=@kern={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000005180)=[{&(0x7f0000000d40)={0x1398, 0x24, 0x800, 0x70bd2a, 0x25dfdbfc, "", [@generic="25bb92eeefc8c94f4027aa38e77c46301dcfd2c00222a5dea87f417385f3b5d22395f4cb3fa2e4f83e063678b34b8da670984305201fb8a1d54a23a57bbaff7500b0d7da3d7cba990db9f963", @nested={0x133b, 0x85, 0x0, 0x1, [@generic="3c765c7788da72f56ac47c88e6d678e7a6ab12162768ef399eddb106be8240359ed08a59c53f3011c604f49e394dabd04cb4afc600e53bdfe462e57f204801494e034cfad83be67d910dc811ed357ccd61994396ade2e1", @typed={0x8, 0x7a, 0x0, 0x0, @uid=r7}, @typed={0x8, 0x7, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}, @generic="d89609480ac3b18b60fa87822f2c3ba0e88770e95e586f4d6a49e792fb85b1136cb705da9d69591ea6c7962f6a37e8ad18a394e713d7df273162bc8808247e59fb46525ae7d5dc013207e3dd114adcefd290abae97e1a94e113470ba7f10396210033fbf74e5f64d7a35fc9e376be6230485f0e97f3ff6d6000a43b97977857548ba", @typed={0xc, 0x20, 0x0, 0x0, @u64=0x100}, @generic="5e8163d4fa0c4d6c451fa3138a43ed8080330bb1ec82e66f11052f89a3a049bdb3292454a0a7063ed062d658143d70d86d2da28912f0dd81f021a3afbfa2ad80eeb458d6a4f689f1394b6e5fa465662c5e948c2e29a318d6d668ee0c20d55266c1fd9a79aa0c141bf7226221cf992f74eeeb22d9be32206d139e2be7abbdef5232913e720b9a2da63cae975d31feed6c04b03307d0f92a7425b458901e141c8dcac2e03c12a2117d92165214a32ea14722a751a04fdaf8aeb5866fe31e81f75df1d08e7702ab52803b18f0b04e0a394cd90dab508a0f06f714ecf8d8bb08f5bf1af6ea8406", @generic="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", @generic="2b60a3bdc7fe5becc9efd077e1c80c39b87c92dce6f075cf1b73040c54dd88145eb528812f3a351b5d3f830e6aec8dc0e873f074ec9f5fdc00163e9a71638b4c519257bda07e0db551fde0c36aac4adfda21c567397763ce", @typed={0x7b, 0x40, 0x0, 0x0, @binary="278336c5ab0d536ad272e10d3b6d142d9a687485629c3fce55cd6197ddb0bbf53bcef269a3e85062797b56261e6c49aa95d89c91b12200cfec13cd379d21d680f53dff76071e8135143030bcdf631b3ca9db75ce92f927da06ba7c60964bb93f9895f532a6e909ce96b89bb5da71eecaa0bbc2e60564c8"}, @generic="1852fc4493b9d4c337fabb9868d1bfd9387d67946824d131a667a27f6a10797c718f6a21084a4433309dcac44d71ad97da90553847dd8d500efb8286ed79ec6529108b7def3f6d3c8c22d3a62d89c00644ef242f29cf02bcbf11deb11eb07e6ca9532d1d3cbe79c053de6b5f0f8c6fc1c9b52d748bb0b21fbe9d424d42ce255c0055eaeadbd041e753"]}]}, 0x1398}, {&(0x7f0000002100)={0x658, 0x22, 0x200, 0x70bd25, 0x25dfdbfb, "", [@nested={0xb1, 0x17, 0x0, 0x1, [@generic="6f4932da8de4198109c3b81f3fa3ed8cc1e4cd8e2062f8c47e4a793fef66ab4b229b9a73aa56c8b533b506f4c3acb08a50579c111f23ae7f0188e9e84807c3aae311378cf0da47df751a56ecf9c9941c353fcd0c0d1d2b0c3233e314ba28618588e1edd7dcc1740d7458a5e1d485fb467927f6ce81547fec3dd66c08bc774bf2af54b2befa51becc5816b43841224328bff31ff1fc937f3e5261b5b7a798b51299068b2781", @typed={0x5, 0x14, 0x0, 0x0, @str='\x00'}]}, @nested={0xb5, 0x3e, 0x0, 0x1, [@typed={0x4, 0x4c}, @generic="6db92f0bdb5e147de7c7d0cb451002c6657816cb1f5dfa3ab457985b146403c817970b7a99113083dea165787d93a2627fac976ff87728ae83969cb15373f66c29f6453a2ff95b2b891f58b706bc2f112db801fd1a0e09f571fc75b412b89e8d6d0d54b89135c9614f6e68490f4cca1ead6a72b7005f3bf7c3b7dbb1abacfa458ab2e316f9b4291faf2f898a7ab71c052be1d944ba4de2b2282114302f7f07bdf61d0798a0d728b0018057a218"]}, @generic="e1eacaa57d6f01fdee1e34fc7deb6b5ab02b30ba23b76ffa2827a8f0e979a052781c98914ea649707b5bed0c559ef4f941ffbe994223164cc97c92ff369456f14b93d2420b139b71e8b6b1", @nested={0x3af, 0x5a, 0x0, 0x1, [@generic="c9da1a996b345b331c70046fa0fad7063e07d133d56d9301d6d1644c1e69de269a17d376e17a35478ae742645da11a60df38d1720dc28e380730c22d56230f474ed1121139ba6cc46b972f4e461564ef9a9e5a1d9bd31a504a989f9adf5d93dbbe5a9b4b272efb18a400a123f5db288c1feb5b8ddc44b9d79e8d1d8b14f3f6fd99571af52d201897fc980377e13eefd276173c9cea934b43d20839985bf21888bf7c521aa230a073d04ed48d2ea5c52d072d684d09644ed3fa61ec528f65b808c1980146340adb46a1", @typed={0x8, 0x2c, 0x0, 0x0, @u32=0x8edc}, @generic="01e3cef92c7ab56d4e74163e24f79b470ff5b9f50516ab7038d0a9ae13cf12bcda65067b9c47dd4c3615ff0c7aa4c30df29a0eb95c30eeb35ac2662457a16fbc50a1d7bffdefb987f2adf2fa4661291231abe962c24c4ca83d8834f683449ee00b4c5ab02a7eb446cf1dec86415f9953ecb9c07ef2ea77a0caabac360de63035aaa0218313eae66fa792d94f37f6eeef235d6463bf3a76b2b53025019740a00ab38dbd0c89db29cf16b6cc0eab8fa8510c4e871f236653c7f6f32e010097a7d933464ecaa294495ee0122e095867cd9a77", @generic="af845805051735dc9c0d0e3c53f887fa73d705d45a9ce31546416ab36d9347d1e7edf23f55b8c1f940993bb3476262139fcfca78cc6701f4967791a05108a1c51734135645772518bf7b9ab43d7d49e8a550f7963ade4d18b011be31f1d7e3f1e7f7f7087cf038b77c75cdeab6e2848759afa90b4bec110c6ec81dcaa95cf676b3f631b8458bef16", @generic, @typed={0x96, 0x12, 0x0, 0x0, @binary="f42d5491d42ba63cb7e8722f285f4f270b29746d8624f5d92506e7a4394ca70d14243807de768e1615c1b7d3f4b1432e5e9006c3993ede9806c45ef5198dc61cf71fd9dc259b7f9ac1e35992430cef1df2dd79641d87428be7d1eaf6443a4366f031453351e222e5f2dee1fe7bf28c9d33262736c3420e84c82959a7290d1005292df997e0d4cbb34a7593f2e5b0d70b44da"}, @generic="7fea8a43cd9a00e9121052f0e34cf55fe3a1d3b164c3f30d1e370df36caad1658b04612ad2a6caddec83c81d8a86ae36794b58828d6db3d1b9d25632370bedcc2d9987aac6014867b50412489ea17a0d172d2e591760746ddf9a1eae785623f069637f2c5cca140eacdb3b9b5e26e6946424d0b0242ea717a4b107ba9850c8ed19031e882f35d9f3ea181c0e7b408126c8d861aa0b5ea3497cd074d9df9d747ed09cb364c6eff8a55770c2b2acfc012ae5af01e62910100bbad72a2636d5c5fe4f08b3777fca4e4fb745ca32249c792c03889b96a27b47299625dce655d4f60ccb628674d7cb2a828b"]}, @generic='H', @generic="89cc2aa451a634e08755ec5da7dc1a8b49bef35b66b395e70f5681e3ce3c46e07d71ce9a9790ec43983eadef8aa84282e6e06e1b5adab9ae28d2f45956be900a7860af43d7eb28d7c0a484fa853c4da5f566a2b3f53b6d40ea7a08f2dbbe6def3f6bc042e2a2684b75aab14049d88ff9965b0cf6ecff80eb27503d6d5803bfa9f751748990a86018b8e546cc378bfb5faefe3ddfb9d5d5a3df9d8937bfe522800fc1e6b14ec0d5cfff92039a30cfd3234dbb18cc6c664779d0d055506aaf89e23e54dcff8bd0fd14f3942ab5b4c2c42b827971a205380f69ff51dd127de7"]}, 0x658}, {&(0x7f0000002780)={0x12c8, 0x36, 0x100, 0x70bd2d, 0x25dfdbfc, "", [@generic="0bcd82367b261af9881392e6e3c478bf080c586ff81692479c7180100522d5871f8b36adcf55ae114e442dfa0597980dcb9f273c25b7b5348ac9d620947b6092e2698a40fdd96d0b4f8102ef726be178227f1737338670b46c05e5c0b795703844fbcf3f8ba53eaef8cffd3ba3abe3f271c648b0bcda6caa54f2f5582fc29f1023ebac415e594e1915230d7357d221a2f85c64ea7b9d1c517513717da23f937d4583e47eec1bb20e988c2c08dbea8b5664586ccd4611094e6653d31d6da00d10b15efe2d3bae3085ac0685f6f126f345bace2fb63e0968eaab660c9872197abe19d993754fb0218947b740", @typed={0x8, 0x3b, 0x0, 0x0, @pid=0xffffffffffffffff}, @generic="78959538328693042dc2a80b58d162bba880e7fd6a1ebf51f8d54492dfc5a3a4b80e3e9909279d01749ca647dbe8d4d6273eae2c99a4fdc9940f5f1ea111", @nested={0x35, 0x4b, 0x0, 0x1, [@typed={0x8, 0x1f, 0x0, 0x0, @ipv4=@rand_addr=0x64010102}, @generic="739c5ea1035e2bc25ba1e56c16a4f218145f8619fe7f01a4628eb60d92258eb22fb7a7c6228b74043a"]}, @generic="2ab9666d9221cc75a9f4ced236464c2c78618867dd4a2ae0f43d9eea3222263919b99228d9e48fcfa74a05cc1683e3dd6715d247ac380753ecf1cf9e48c81fe056e94058948947a51d852cf2ad462f944c497a772608b392f8930c7ec57db8e5b249153841738c90da5e1d5a1f678b86d9b04e01150a4ec2fe82b24194cd322b0910129be25050fff2fa4ca6937860a93c11448bbf3bd969a9904e0cc9d8bc947a6669e390b80bac2dd611de9bf824ed65", @nested={0x1018, 0x1c, 0x0, 0x1, [@typed={0x13, 0x8e, 0x0, 0x0, @binary="a029295b2d99dc611a59547d39e07b"}, @generic="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"]}, @generic="7176a0216ec1c21ee51902dea19ad546160bdb1c396cb1fb2996129dd95de50de55a5111b9f2893a9b8c18dc947c5141003259e71de2bc9f55b22eec5b3a1c1045b82d23fea6f419cda4fec51b587c787fc9df22b2612e9c64e8c386601ca662b0de8241a73649b1e9346960c4c2fd3aa63617a8970156f9cc5858b358688147301452985ca7"]}, 0x12c8}, {&(0x7f0000003a80)={0x1bc, 0x21, 0x800, 0x70bd26, 0x25dfdbfd, "", [@generic="2ba597da147aac993a34c7f395518a8265172aec6eddec48bb2152ce2af4e63729a969c074238b0c5ca3794727b23fda520c942ac80a64f2ae0e9824ed0da952b849595febcf9c508f1672b6c59a445f5298cffd4d8b12af58a3ae0c99cc7d9c26db2276af160ccaee425d027d1933e4114548be25dc5edf1719f9836fb9705effe8e82188add52f5e88d242102dfa248276f3e44cc6cc1275e505a3ae83eec21aa21aa63f7219430be07d898386ac42fb80d87d71c909fdb4c95be8100f6955434a60d30325492e64d7b497dff86faa", @typed={0xd9, 0x4a, 0x0, 0x0, @binary="72e81b622fefb2debde3412951a5c0d2f4541b8669d06a448ffda6b114a811f9d8f95fd8633dd85308f7bbca855ff9071ea0a8d673b3c3666ad5c16310ab5705eb2d7ee214f2f52612f49d258def5fbcface24b80e543516fbc796939fb06e1305b61078220aed7bd3dd4f245d18d2b936f7fd988c4d25feb7c32f2be2077858d9ed7cc2501da923d5648592f3897bbcf99626e4fd9fb0f12dcdcfc0dde06dc6f3c6ce3265ddd4369e77af12aa976142239c3d7fb11d7bb0c5a5c9539fe77f81cc251673a325bf80c0be0c19c88d2fd37d1a9e10a6"}]}, 0x1bc}, {&(0x7f0000003c40)={0x10ec, 0x22, 0x10, 0x70bd29, 0x25dfdbfe, "", [@nested={0x10db, 0x9, 0x0, 0x1, [@typed={0x4, 0x4b}, @generic="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", @typed={0x68, 0x1c, 0x0, 0x0, @binary="36270d73240d7977d2dad56a63f4204cf71c0c598c6b0231549af97b9bbe742d48704ac57091605469a1fc070b829767e778cc9c89bf48234834680958ec47a7e66209701f873a58aa1d573f7ce385e3a7c279a63b1138d7fe0d4f76a39ad4720cb11e82"}, @generic="468b54f8339d9086a441c358e7c8e8da6f57c60579f636e71a2a5f940c00d193b1e13b4fee071e73516150c5e1c29112b18b3eb2981e8e5f07cc5b3e05410ba12f6430ec9f42a876ee5d17e0da27abe962b108b3d771ccea1562722df4ea0ff39b1aaf00fa355a", @typed={0x4, 0x6a}]}]}, 0x10ec}, {&(0x7f0000004d40)={0x410, 0x2d, 0x8, 0x70bd2b, 0x25dfdbfb, "", [@typed={0x8, 0x1d, 0x0, 0x0, @ipv4=@local}, @generic="8eabb123c7943e86c256845bf4afab52b27f816244a0e2f1d81bd163ebdc90e21e7285773ab2a3392abd47c32e30033028ebf86332ce458cf4e8c3f9", @nested={0x3bb, 0x7b, 0x0, 0x1, [@generic="d375c060d907bff1a78e19c9889489908ddaec86ad2e6e1fb264970d2fc2b1f45265c32fc272f4b13be2931020325932218efe32927ad86ff253ef35cd9e800017c6eb2176a601c5aab7c762e98961810201cc93a2843d3c1279aaa3b080c42d5957d6eb9802e18a2b2ed34d9f76bcc80247e4cd8a1a2c2b5d468dc6db4f6573ba47efd7b51f604bfc4474064a61745fe35b8b65f79cdb7df6731b75ca34d84c6294e83bc31a8177a6a633ed7ee16f5e21b4ec9947b0b4c091b584a23f6c90583bfaf5ecb705c607bb6c1a3ece6c375f45", @generic="eb8b67f2c644e908d2bebae521ed5a0fea84c4aee6e272ac98d57b182267d293e0d7997a28fe8ab2726f714fa8f02a10d16cb16657290dce43c2e9f8f1206cdd6c33932bf4d9e3b4c203304804bb235dd0729e008007cd380a37ce338bb94c3bfc5ffbb4f95e2ac878298a4579c974603c02995faa4bfe0c8c0c1b6486fb6eae9b1ce112fe81b6d4b1602cfc56750d7db2253395064fe612ea3cd4bc60f7e75c8fdac63a72f317adbcf63dc142f97ecce7b47ac1375e172178bd8bb561c2666328176f252cbed586b8d6a027f702e9ea6cc4f71a83387fbca42e64c4eca43c5e2a", @generic="52cd521c5030ea22359280d7aeaa22e1b47bc5773e5a1b90537054b7d230e28769844454c41fe805491536861150b81157e001455cd4765018db5757c4fba8a11ac27d7a72cabe4b206e73b85b975dfcc798fd15ec0fc056d6ffb4ce97be03eef402", @generic="d8016fbb48a4c8d11cdee6de735b46f862e52221208d8749ac03801ef38c4573bcda075e4900106a2d632cdde5578efb476f173a628d6dee95e14b9a9eb8569391deeed9475b47b55a0e89a1184a3e693bf1bad642fbbbab2045e6f99e5d16d59b3027212327aace848b011c060438df16295e4f402c1047c0246c142693e4c0f8bda27b4ce4dc092add19dcf420bf101957a228c396", @generic="000a942edb2f3d685bbe1bc28fd4610bab5d91261af1930cf8ec6a1a5f0bf1dbd57f274241a1c6a3cdd6d742480ad7337bdfcbdd8a8fb6397fcb60d47a2e22edcdaf847255cb793420d8e500171b7146734e484db0fb5ce129df000c07bb680f57eeb24b3b3d817d68fc50ccec6cd45dc5be5b0e41a89dce37475e882a9053390fa52ac77c2d04b248070f7b2f780b0d5ae963909f251aeed5fc6e30dce1e703a78b2b6897cafd6c97", @generic="735ed99ffb3874a76dfc187c8ad00e4524c87a4986026384cc0c419983f576f99fcb2d4920c5edc7d7674da3cfbce06e5f2409ca39856047ce7c616a5ca327c4a16913e020cfb712331ff0db5d449de9fb7ff9eb3ddb9b92c8d2203c15ad17354148b2a2"]}]}, 0x410}], 0x6, 0x0, 0x0, 0x20000000}, 0x0)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r8, 0xffffffffffffffff, r0], 0x3)

23:23:28 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x3, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:23:28 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x800000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:23:28 executing program 5:
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:23:28 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(0x0, r3, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r4 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r4}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

[ 2521.890605] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'.
[ 2521.923907] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
23:23:28 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 37)

23:23:28 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

[ 2521.997507] FAULT_INJECTION: forcing a failure.
[ 2521.997507] name failslab, interval 1, probability 0, space 0, times 0
[ 2521.999243] CPU: 0 PID: 12648 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2522.000436] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2522.002130] Call Trace:
[ 2522.002512]  <TASK>
[ 2522.002841]  dump_stack_lvl+0x8b/0xb3
[ 2522.003409]  should_fail.cold+0x5/0xa
[ 2522.004115]  ? alloc_vfsmnt+0x23/0x6b0
[ 2522.004702]  should_failslab+0x5/0x10
[ 2522.005252]  kmem_cache_alloc+0x5b/0x480
[ 2522.005853]  ? lock_release+0x3b2/0x6f0
[ 2522.006425]  alloc_vfsmnt+0x23/0x6b0
[ 2522.006967]  clone_mnt+0x6d/0xdc0
[ 2522.007492]  copy_tree+0x3ac/0xa50
[ 2522.008056]  copy_mnt_ns+0x1a5/0xa90
[ 2522.008640]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2522.009350]  ? kmem_cache_alloc+0x332/0x480
[ 2522.009996]  create_new_namespaces+0xd6/0xb30
[ 2522.010677]  copy_namespaces+0x391/0x450
[ 2522.011290]  copy_process+0x27f2/0x6cb0
[ 2522.011890]  ? lock_is_held_type+0xd7/0x130
[ 2522.012544]  ? find_held_lock+0x2c/0x110
[ 2522.013159]  ? __cleanup_sighand+0xb0/0xb0
[ 2522.013744]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2522.014465]  ? _copy_from_user+0x139/0x170
[ 2522.015036]  ? kernel_clone+0x2f8/0xa60
[ 2522.015587]  kernel_clone+0xe7/0xa60
[ 2522.016125]  ? lock_is_held_type+0xd7/0x130
[ 2522.016747]  ? create_io_thread+0xf0/0xf0
[ 2522.017326]  ? lock_is_held_type+0xd7/0x130
[ 2522.017930]  __do_sys_clone3+0x1dd/0x2e0
[ 2522.018486]  ? __ia32_sys_clone+0x150/0x150
[ 2522.019093]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2522.019832]  ? vfs_write+0x188/0xae0
[ 2522.020342]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2522.021063]  ? fput+0x2a/0x50
[ 2522.021497]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2522.022192]  do_syscall_64+0x3b/0x90
[ 2522.022700]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2522.023376] RIP: 0033:0x7f8893772b19
[ 2522.023882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2522.026545] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2522.027648] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2522.028701] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2522.029739] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2522.030751] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2522.031777] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2522.034007]  </TASK>
23:23:28 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x8580, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

[ 2522.070603] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:23:28 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r2 = syz_open_dev$hidraw(&(0x7f0000000040), 0x7fffffff, 0x8000)
pwritev(r2, &(0x7f0000000340)=[{&(0x7f0000000180)="a670214658a89ea1644265566176ce4abee6f21a0751e7032ff9fadef90c7c215f413ca3a8c51b9a6a002c46045e7280e3b6658af00c6a78c279989d0dbb", 0x3e}, {&(0x7f00000001c0)="bf9cb7e52e439f6306c885d3805c940e3ce10b4a67852c0cd8017a0360e367d2f373b4af75ace00a12f0d83af66ae2e8377845006e24297d84d9bec36e18bc330a1cdd8ef03b4ed804d41aec4518b30df6e5592f6476becac46f27bca5160380e87730ca3fb87a0d4a2428aa2d05e17fc9516cf6166ab7d5c9c4d1819606b4328ffef42b", 0x84}, {&(0x7f0000000280)="68c6b1cfc9378bf931b0da0775def3e5d0310e11f7ecf012f0ec69f78939a6b69115619c3947dfdeaeeda43a29622455e1b3ee112f1d7b11f92e08e4d8b034702324b31cf4d47c7c1aaf9bfe60359cbf61745cbdf8893a65d72e90f3249b7fc3336d62569d15cf0cf6c04de70139eb36", 0x70}, {&(0x7f0000000300)="24326f79d18bd5913b0a184f", 0xc}], 0x4, 0x5, 0x2)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)

23:23:28 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xfffffffe)

[ 2522.088246] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'.
[ 2522.177893] loop4: detected capacity change from 0 to 256
[ 2522.205438] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2522.352712] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:23:45 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x1000000000000)

23:23:45 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x80300, 0x1a0)

23:23:45 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x800800000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:23:45 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(0x0, r2, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r3 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r3}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:23:45 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 38)

23:23:45 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0xe, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:23:45 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:23:45 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x8598, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

[ 2538.791214] FAULT_INJECTION: forcing a failure.
[ 2538.791214] name failslab, interval 1, probability 0, space 0, times 0
[ 2538.792797] CPU: 1 PID: 12675 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2538.793893] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2538.795349] Call Trace:
[ 2538.795679]  <TASK>
[ 2538.795965]  dump_stack_lvl+0x8b/0xb3
[ 2538.796491]  should_fail.cold+0x5/0xa
[ 2538.796986]  ? create_object.isra.0+0x3a/0xa20
[ 2538.797579]  should_failslab+0x5/0x10
[ 2538.798069]  kmem_cache_alloc+0x5b/0x480
[ 2538.798605]  create_object.isra.0+0x3a/0xa20
[ 2538.799186]  ? kasan_unpoison+0x23/0x50
[ 2538.799731]  kmem_cache_alloc+0x239/0x480
[ 2538.800334]  alloc_vfsmnt+0x23/0x6b0
[ 2538.800850]  clone_mnt+0x6d/0xdc0
[ 2538.801341]  copy_tree+0x3ac/0xa50
[ 2538.801842]  copy_mnt_ns+0x1a5/0xa90
[ 2538.802355]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2538.803010]  ? kmem_cache_alloc+0x332/0x480
[ 2538.803604]  create_new_namespaces+0xd6/0xb30
[ 2538.804245]  copy_namespaces+0x391/0x450
[ 2538.804816]  copy_process+0x27f2/0x6cb0
[ 2538.805365]  ? lock_is_held_type+0xd7/0x130
[ 2538.805941]  ? find_held_lock+0x2c/0x110
[ 2538.806509]  ? __cleanup_sighand+0xb0/0xb0
[ 2538.807100]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2538.807850]  ? _copy_from_user+0x139/0x170
[ 2538.808443]  ? kernel_clone+0x2f8/0xa60
[ 2538.808983]  kernel_clone+0xe7/0xa60
[ 2538.809495]  ? lock_is_held_type+0xd7/0x130
[ 2538.810068]  ? create_io_thread+0xf0/0xf0
[ 2538.810775]  ? lock_is_held_type+0xd7/0x130
[ 2538.811357]  __do_sys_clone3+0x1dd/0x2e0
[ 2538.811897]  ? __ia32_sys_clone+0x150/0x150
[ 2538.812549]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2538.813266]  ? vfs_write+0x188/0xae0
[ 2538.813768]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2538.814492]  ? fput+0x2a/0x50
[ 2538.814917]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2538.815591]  do_syscall_64+0x3b/0x90
[ 2538.816095]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2538.816775] RIP: 0033:0x7f8893772b19
[ 2538.817263] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2538.821549] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2538.823265] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2538.824622] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2538.825571] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2538.826503] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2538.827401] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2538.828371]  </TASK>
[ 2538.830573] loop6: detected capacity change from 0 to 66
[ 2538.842690] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'.
[ 2538.848639] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2538.855479] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
[ 2538.884084] loop4: detected capacity change from 0 to 256
[ 2538.917965] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:23:45 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:23:45 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x8599, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:23:45 executing program 3:
r0 = syz_io_uring_setup(0x68ea, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)

[ 2539.000896] loop6: detected capacity change from 0 to 66
[ 2539.014382] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'.
[ 2539.029523] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
23:23:45 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x8000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:23:45 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(0x0, r2, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r3 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r3}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

[ 2539.036637] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
23:23:45 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 39)

23:23:45 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x10, 0x9e, 0x40}]}, 0x24}}, 0x0)

[ 2539.135103] FAULT_INJECTION: forcing a failure.
[ 2539.135103] name failslab, interval 1, probability 0, space 0, times 0
[ 2539.136777] CPU: 0 PID: 12706 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2539.137823] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2539.139435] Call Trace:
[ 2539.139772]  <TASK>
[ 2539.140064]  dump_stack_lvl+0x8b/0xb3
[ 2539.140652]  should_fail.cold+0x5/0xa
[ 2539.141183]  should_failslab+0x5/0x10
[ 2539.141721]  __kmalloc_track_caller+0x79/0x420
[ 2539.142258]  ? kstrdup_const+0x53/0x80
[ 2539.142778]  kstrdup+0x36/0x70
[ 2539.143169]  kstrdup_const+0x53/0x80
[ 2539.143763]  alloc_vfsmnt+0xb5/0x6b0
[ 2539.144331]  clone_mnt+0x6d/0xdc0
[ 2539.144826]  copy_tree+0x3ac/0xa50
[ 2539.145384]  copy_mnt_ns+0x1a5/0xa90
[ 2539.145893]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2539.146595]  ? kmem_cache_alloc+0x332/0x480
[ 2539.147217]  create_new_namespaces+0xd6/0xb30
[ 2539.147985]  copy_namespaces+0x391/0x450
[ 2539.148603]  copy_process+0x27f2/0x6cb0
[ 2539.149135]  ? lock_is_held_type+0xd7/0x130
[ 2539.149763]  ? find_held_lock+0x2c/0x110
[ 2539.150366]  ? __cleanup_sighand+0xb0/0xb0
[ 2539.150985]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2539.151822]  ? _copy_from_user+0x139/0x170
[ 2539.152456]  ? kernel_clone+0x2f8/0xa60
[ 2539.153000]  kernel_clone+0xe7/0xa60
[ 2539.153566]  ? create_io_thread+0xf0/0xf0
[ 2539.154162]  ? lock_is_held_type+0xd7/0x130
[ 2539.154804]  __do_sys_clone3+0x1dd/0x2e0
[ 2539.155567]  ? __ia32_sys_clone+0x150/0x150
[ 2539.156147]  ? perf_trace_run_bpf_submit+0xf5/0x1d0
[ 2539.156958]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2539.157701]  ? perf_trace_run_bpf_submit+0xf5/0x1d0
[ 2539.158391]  ? lock_is_held_type+0xd7/0x130
[ 2539.158962]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2539.159628]  do_syscall_64+0x3b/0x90
[ 2539.160109]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2539.160878] RIP: 0033:0x7f8893772b19
[ 2539.161397] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2539.163603] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2539.164622] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2539.165535] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2539.166452] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2539.167384] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2539.168255] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2539.169202]  </TASK>
[ 2539.204613] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'.
[ 2539.238284] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2539.310231] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'.
23:24:02 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x21, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:24:02 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x8070000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:24:02 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(0x0, r1, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r2 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r2}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:24:02 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x85c0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:24:02 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x8000000000000)

23:24:02 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0xffffffff, 0x8}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat2(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', &(0x7f0000000180)={0x280000, 0x10, 0x10}, 0x18)
syz_io_uring_submit(r1, r2, &(0x7f0000000280)=@IORING_OP_MADVISE={0x19, 0x2, 0x0, 0x0, 0x0, &(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x12, 0x1}, 0x6)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(0xffffffffffffffff, 0xc400941d, &(0x7f0000000400)={0x0, 0x1, 0x1, 0x1})
r4 = syz_io_uring_setup(0x1, &(0x7f0000000000), &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000080)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f00000001c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000200)={0x4849c1}, &(0x7f0000000180)='./file0\x00', 0x18, 0x0, 0x0, {0x0, r7}}, 0x0)
syz_io_uring_setup(0x1098, &(0x7f00000002c0)={0x0, 0xa98e, 0x0, 0x2, 0x248, 0x0, r0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000340)=<r8=>0x0, &(0x7f0000000380))
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r8, 0x0, &(0x7f00000003c0)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r3, 0x0, 0x0, 0x0, {0x91413d086a57910a}, 0x0, {0x0, r9}}, 0x8)
syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@l2tp={0x2, 0x0, @broadcast, 0x3}, 0x0, 0x0, 0x0, {0x0, r7}}, 0x200)
r10 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r10, 0xffffffffffffffff, r0], 0x3)

23:24:02 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 40)

23:24:02 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

[ 2555.954949] FAULT_INJECTION: forcing a failure.
[ 2555.954949] name failslab, interval 1, probability 0, space 0, times 0
[ 2555.956851] loop4: detected capacity change from 0 to 256
[ 2555.958765] CPU: 1 PID: 12732 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2555.961084] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2555.965824] Call Trace:
[ 2555.966170]  <TASK>
[ 2555.966470]  dump_stack_lvl+0x8b/0xb3
[ 2555.967003]  should_fail.cold+0x5/0xa
[ 2555.967537]  ? create_object.isra.0+0x3a/0xa20
[ 2555.968168]  should_failslab+0x5/0x10
[ 2555.968722]  kmem_cache_alloc+0x5b/0x480
[ 2555.969269]  create_object.isra.0+0x3a/0xa20
[ 2555.969873]  ? kasan_unpoison+0x23/0x50
[ 2555.970421]  __kmalloc_track_caller+0x25e/0x420
[ 2555.971059]  ? kstrdup_const+0x53/0x80
[ 2555.971599]  kstrdup+0x36/0x70
[ 2555.972046]  kstrdup_const+0x53/0x80
[ 2555.972604]  alloc_vfsmnt+0xb5/0x6b0
[ 2555.973121]  clone_mnt+0x6d/0xdc0
[ 2555.973615]  copy_tree+0x3ac/0xa50
[ 2555.974123]  copy_mnt_ns+0x1a5/0xa90
[ 2555.974654]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2555.975317]  ? kmem_cache_alloc+0x332/0x480
[ 2555.975917]  create_new_namespaces+0xd6/0xb30
[ 2555.976584]  copy_namespaces+0x391/0x450
[ 2555.977151]  copy_process+0x27f2/0x6cb0
[ 2555.977701]  ? lock_is_held_type+0xd7/0x130
[ 2555.978278]  ? find_held_lock+0x2c/0x110
[ 2555.978991]  ? __cleanup_sighand+0xb0/0xb0
[ 2555.979603]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2555.980433]  ? _copy_from_user+0x139/0x170
[ 2555.981047]  ? kernel_clone+0x2f8/0xa60
[ 2555.981590]  kernel_clone+0xe7/0xa60
[ 2555.982096]  ? lock_is_held_type+0xd7/0x130
[ 2555.982703]  ? create_io_thread+0xf0/0xf0
[ 2555.983276]  ? lock_is_held_type+0xd7/0x130
[ 2555.983867]  __do_sys_clone3+0x1dd/0x2e0
[ 2555.984417]  ? __ia32_sys_clone+0x150/0x150
[ 2555.989101]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2555.989847]  ? vfs_write+0x188/0xae0
[ 2555.990363]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2555.991088]  ? fput+0x2a/0x50
[ 2555.991527]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2555.992214]  do_syscall_64+0x3b/0x90
[ 2555.992800]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2555.993489] RIP: 0033:0x7f8893772b19
[ 2555.993998] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2555.996460] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2555.997491] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2555.998496] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2555.999442] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2556.000393] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2556.001335] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2556.002307]  </TASK>
[ 2556.007244] loop6: detected capacity change from 0 to 66
[ 2556.016435] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'.
[ 2556.027706] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2556.090184] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2556.095994] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
23:24:02 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:24:02 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x125803, 0x1)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)

[ 2556.126576] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'.
23:24:02 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(0x0, r1, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r2 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r2}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:24:02 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x10000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:24:02 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x85c5, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:24:02 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x28, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:24:02 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:24:02 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 41)

23:24:02 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xd0000000000000)

[ 2556.338633] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'.
[ 2556.359261] FAULT_INJECTION: forcing a failure.
[ 2556.359261] name failslab, interval 1, probability 0, space 0, times 0
[ 2556.363052] CPU: 1 PID: 12771 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2556.365730] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2556.369223] Call Trace:
[ 2556.370007]  <TASK>
[ 2556.370760]  dump_stack_lvl+0x8b/0xb3
[ 2556.371981]  should_fail.cold+0x5/0xa
[ 2556.373151]  ? create_object.isra.0+0x3a/0xa20
[ 2556.374351]  should_failslab+0x5/0x10
[ 2556.375326]  kmem_cache_alloc+0x5b/0x480
[ 2556.376420]  create_object.isra.0+0x3a/0xa20
[ 2556.377858]  kmemleak_alloc_percpu+0xa0/0x100
[ 2556.379051]  pcpu_alloc+0x7bf/0x1060
[ 2556.380063]  alloc_vfsmnt+0xfd/0x6b0
[ 2556.380843]  clone_mnt+0x6d/0xdc0
[ 2556.381333]  copy_tree+0x3ac/0xa50
[ 2556.381821]  copy_mnt_ns+0x1a5/0xa90
[ 2556.382312]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2556.382938]  ? kmem_cache_alloc+0x332/0x480
[ 2556.383507]  create_new_namespaces+0xd6/0xb30
[ 2556.384104]  copy_namespaces+0x391/0x450
[ 2556.384902]  copy_process+0x27f2/0x6cb0
[ 2556.385908]  ? lock_is_held_type+0xd7/0x130
[ 2556.387038]  ? find_held_lock+0x2c/0x110
[ 2556.388102]  ? __cleanup_sighand+0xb0/0xb0
[ 2556.389338]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2556.390751]  ? _copy_from_user+0x139/0x170
[ 2556.391829]  ? kernel_clone+0x2f8/0xa60
[ 2556.392995]  kernel_clone+0xe7/0xa60
[ 2556.393971]  ? lock_is_held_type+0xd7/0x130
[ 2556.395060]  ? create_io_thread+0xf0/0xf0
[ 2556.396160]  ? lock_is_held_type+0xd7/0x130
[ 2556.396958]  __do_sys_clone3+0x1dd/0x2e0
[ 2556.397520]  ? __ia32_sys_clone+0x150/0x150
[ 2556.398124]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2556.398861]  ? vfs_write+0x188/0xae0
[ 2556.399372]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2556.400108]  ? fput+0x2a/0x50
[ 2556.400616]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2556.402309]  do_syscall_64+0x3b/0x90
[ 2556.403251]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2556.404617] RIP: 0033:0x7f8893772b19
[ 2556.405749] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2556.409538] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2556.410533] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2556.411476] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2556.412416] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2556.414598] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2556.416825] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2556.418677]  </TASK>
[ 2556.495079] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'.
23:24:25 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140))
r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000019, 0x4000010, r0, 0x10000000)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_POLL_ADD={0x6, 0x5, 0x0, @fd=r0, 0x0, 0x0, 0x0, {0x81}, 0x1}, 0x0)
getsockopt$IP_SET_OP_GET_BYINDEX(0xffffffffffffffff, 0x1, 0x53, &(0x7f0000000240)={0x7, 0x7, 0x2}, &(0x7f0000000280)=0x28)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_setup(0x2792, &(0x7f00000002c0)={0x0, 0x6, 0x8, 0x1, 0x5e, 0x0, r0}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000340), &(0x7f0000000380))
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r3, 0xffffffffffffffff, r0], 0x3)
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x28080, 0x0)
link(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000200)='./file1\x00')

23:24:25 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x33, 0x9e, 0x40}]}, 0x24}}, 0x0)

23:24:25 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x100000000000000)

23:24:25 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:24:25 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(0x0, r1, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r2 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r2}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:24:25 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 42)

23:24:25 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x85c6, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:24:25 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x10070000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2579.135246] loop4: detected capacity change from 0 to 256
[ 2579.140796] loop6: detected capacity change from 0 to 66
[ 2579.158066] FAULT_INJECTION: forcing a failure.
[ 2579.158066] name failslab, interval 1, probability 0, space 0, times 0
[ 2579.159699] CPU: 1 PID: 12799 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2579.160773] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2579.162315] Call Trace:
[ 2579.162636]  <TASK>
[ 2579.162922]  dump_stack_lvl+0x8b/0xb3
[ 2579.163473]  should_fail.cold+0x5/0xa
[ 2579.163967]  ? create_object.isra.0+0x3a/0xa20
[ 2579.164590]  should_failslab+0x5/0x10
[ 2579.165200]  kmem_cache_alloc+0x5b/0x480
[ 2579.165763]  ? mark_held_locks+0x9e/0xe0
[ 2579.166296]  create_object.isra.0+0x3a/0xa20
[ 2579.166867]  kmemleak_alloc_percpu+0xa0/0x100
[ 2579.167447]  pcpu_alloc+0x7bf/0x1060
[ 2579.167950]  alloc_vfsmnt+0xfd/0x6b0
[ 2579.168439]  clone_mnt+0x6d/0xdc0
[ 2579.168944]  copy_tree+0x3ac/0xa50
[ 2579.170101]  copy_mnt_ns+0x1a5/0xa90
[ 2579.171188]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2579.172640]  ? kmem_cache_alloc+0x332/0x480
[ 2579.173988]  create_new_namespaces+0xd6/0xb30
[ 2579.175287]  copy_namespaces+0x391/0x450
[ 2579.176497]  copy_process+0x27f2/0x6cb0
[ 2579.177724]  ? lock_is_held_type+0xd7/0x130
[ 2579.179040]  ? find_held_lock+0x2c/0x110
[ 2579.180250]  ? __cleanup_sighand+0xb0/0xb0
[ 2579.181609]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2579.183225]  ? _copy_from_user+0x139/0x170
[ 2579.184549]  ? kernel_clone+0x2f8/0xa60
[ 2579.185688]  kernel_clone+0xe7/0xa60
[ 2579.186519] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'.
[ 2579.186805]  ? lock_is_held_type+0xd7/0x130
[ 2579.189338]  ? create_io_thread+0xf0/0xf0
[ 2579.190509]  ? lock_is_held_type+0xd7/0x130
[ 2579.191706]  __do_sys_clone3+0x1dd/0x2e0
[ 2579.192876]  ? __ia32_sys_clone+0x150/0x150
[ 2579.194136]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2579.195638]  ? vfs_write+0x188/0xae0
[ 2579.196669]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2579.198204]  ? fput+0x2a/0x50
[ 2579.199095]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2579.200541]  do_syscall_64+0x3b/0x90
[ 2579.201596]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2579.203002] RIP: 0033:0x7f8893772b19
[ 2579.204010] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2579.209078] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2579.210819] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2579.212467] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2579.213600] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2579.214514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2579.215425] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2579.216366]  </TASK>
[ 2579.217433] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2579.235853] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2579.252766] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
23:24:25 executing program 3:
getsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, &(0x7f0000000040), &(0x7f0000000180)=0x8)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, 0xffffffffffffffff)
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)

23:24:25 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r0=>0x0)
syz_io_uring_submit(0x0, r0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:24:25 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:24:25 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x8600, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:24:25 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x18000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:24:25 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x200000000000000)

[ 2579.418534] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'.
[ 2579.436071] loop6: detected capacity change from 0 to 67
[ 2579.455846] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2579.462417] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
[ 2579.559942] loop4: detected capacity change from 0 to 256
[ 2579.575963] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2579.669988] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2580.000866] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
23:24:42 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x300000000000000)

23:24:42 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000180))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_enter(r1, 0xf8b, 0xfd1c, 0x1, &(0x7f0000000040), 0x8)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)

23:24:42 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x18070000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:24:42 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x3b, 0x9e, 0x40}]}, 0x24}}, 0x0)

[ 2596.049281] loop4: detected capacity change from 0 to 256
23:24:42 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:24:42 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 43)

23:24:42 executing program 0:
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r0=>0x0)
syz_io_uring_submit(0x0, r0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:24:42 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x8640, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

[ 2596.067204] FAULT_INJECTION: forcing a failure.
[ 2596.067204] name failslab, interval 1, probability 0, space 0, times 0
[ 2596.068744] CPU: 1 PID: 12838 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2596.070681] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2596.073371] Call Trace:
[ 2596.073709]  <TASK>
[ 2596.074004]  dump_stack_lvl+0x8b/0xb3
[ 2596.074544]  should_fail.cold+0x5/0xa
[ 2596.075050]  ? alloc_vfsmnt+0x23/0x6b0
[ 2596.075567]  should_failslab+0x5/0x10
[ 2596.076062]  kmem_cache_alloc+0x5b/0x480
[ 2596.076589]  ? lock_release+0x3b2/0x6f0
[ 2596.077125]  alloc_vfsmnt+0x23/0x6b0
[ 2596.077639]  clone_mnt+0x6d/0xdc0
[ 2596.078103]  copy_tree+0x3ac/0xa50
[ 2596.078599]  copy_mnt_ns+0x1a5/0xa90
[ 2596.079101]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2596.079720]  ? kmem_cache_alloc+0x332/0x480
[ 2596.080278]  create_new_namespaces+0xd6/0xb30
[ 2596.080867]  ? create_new_namespaces+0x2/0xb30
[ 2596.081520]  copy_namespaces+0x391/0x450
[ 2596.082060]  copy_process+0x27f2/0x6cb0
[ 2596.082587]  ? lock_is_held_type+0xd7/0x130
[ 2596.083153]  ? find_held_lock+0x2c/0x110
[ 2596.083706]  ? __cleanup_sighand+0xb0/0xb0
[ 2596.084270]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2596.084985]  ? _copy_from_user+0x139/0x170
[ 2596.085613]  ? kernel_clone+0x2f8/0xa60
[ 2596.086170]  kernel_clone+0xe7/0xa60
[ 2596.086675]  ? lock_is_held_type+0xd7/0x130
[ 2596.087220]  ? create_io_thread+0xf0/0xf0
[ 2596.087836]  ? lock_is_held_type+0xd7/0x130
[ 2596.088405]  __do_sys_clone3+0x1dd/0x2e0
[ 2596.088935]  ? __ia32_sys_clone+0x150/0x150
[ 2596.089589]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2596.090414]  ? vfs_write+0x188/0xae0
[ 2596.090988]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2596.091813]  ? fput+0x2a/0x50
[ 2596.092259]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2596.092946]  do_syscall_64+0x3b/0x90
[ 2596.093470]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2596.094148] RIP: 0033:0x7f8893772b19
[ 2596.094628] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2596.096965] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2596.098090] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2596.099146] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2596.100241] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2596.101325] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2596.102389] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2596.103479]  </TASK>
[ 2596.105411] loop6: detected capacity change from 0 to 67
[ 2596.119662] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2596.123141] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
[ 2596.125650] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2596.139404] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'.
23:24:42 executing program 0:
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r0=>0x0)
syz_io_uring_submit(0x0, r0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:24:42 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:24:42 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x8668, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:24:42 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x20000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2596.269582] loop6: detected capacity change from 0 to 67
[ 2596.283281] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2596.289510] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
[ 2596.293277] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'.
23:24:42 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x2, 0x0, 0x1}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_enter(r1, 0x1f0c, 0xd6c, 0x2, &(0x7f0000000040)={[0x4]}, 0x8)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r4, 0x0, 0x0}, 0x0)
r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x2, 0x12, r1, 0x10000000)
r6 = syz_io_uring_setup(0x1, &(0x7f0000000000), &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000080)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f00000001c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000200)={0x4849c1}, &(0x7f0000000180)='./file0\x00', 0x18, 0x0, 0x0, {0x0, r9}}, 0x0)
syz_io_uring_submit(r2, r5, &(0x7f0000000280)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x1, 0x0, r1, 0x0, &(0x7f0000000180)="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", 0xfd, 0x23, 0x0, {0x0, r9}}, 0xaf1)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r10 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r10, 0x0, 0x0}, 0x0)
r11 = socket$nl_route(0x10, 0x3, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000340)=@IORING_OP_CLOSE={0x13, 0x1, 0x0, r11, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r9}}, 0x1f)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)

23:24:42 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 44)

23:24:42 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:24:42 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x400000000000000)

[ 2596.380942] FAULT_INJECTION: forcing a failure.
[ 2596.380942] name failslab, interval 1, probability 0, space 0, times 0
[ 2596.382536] CPU: 0 PID: 12871 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2596.383602] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2596.385044] Call Trace:
[ 2596.385415]  <TASK>
[ 2596.385711]  dump_stack_lvl+0x8b/0xb3
[ 2596.386221]  should_fail.cold+0x5/0xa
[ 2596.386725]  ? create_object.isra.0+0x3a/0xa20
[ 2596.387324]  should_failslab+0x5/0x10
[ 2596.387821]  kmem_cache_alloc+0x5b/0x480
[ 2596.388362]  create_object.isra.0+0x3a/0xa20
[ 2596.388944]  ? kasan_unpoison+0x23/0x50
[ 2596.389517]  kmem_cache_alloc+0x239/0x480
[ 2596.390203]  alloc_vfsmnt+0x23/0x6b0
[ 2596.390715]  clone_mnt+0x6d/0xdc0
[ 2596.391192]  copy_tree+0x3ac/0xa50
[ 2596.391682]  copy_mnt_ns+0x1a5/0xa90
[ 2596.392182]  ? rcu_read_lock_sched_held+0x3a/0x70
23:24:42 executing program 0:
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r0=>0x0)
syz_io_uring_submit(0x0, r0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

[ 2596.392818]  ? kmem_cache_alloc+0x332/0x480
[ 2596.393407]  create_new_namespaces+0xd6/0xb30
[ 2596.393985]  copy_namespaces+0x391/0x450
[ 2596.394510]  copy_process+0x27f2/0x6cb0
[ 2596.397319]  ? lock_is_held_type+0xd7/0x130
[ 2596.397879]  ? find_held_lock+0x2c/0x110
[ 2596.398412]  ? __cleanup_sighand+0xb0/0xb0
[ 2596.398961]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2596.399647]  ? _copy_from_user+0x139/0x170
[ 2596.400185]  ? kernel_clone+0x2f8/0xa60
[ 2596.400697]  kernel_clone+0xe7/0xa60
[ 2596.401216]  ? lock_is_held_type+0xd7/0x130
[ 2596.401764]  ? create_io_thread+0xf0/0xf0
[ 2596.402312]  ? lock_is_held_type+0xd7/0x130
[ 2596.402860]  __do_sys_clone3+0x1dd/0x2e0
[ 2596.403389]  ? __ia32_sys_clone+0x150/0x150
[ 2596.403961]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2596.404648]  ? vfs_write+0x188/0xae0
[ 2596.405134]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2596.405834]  ? fput+0x2a/0x50
[ 2596.406239]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2596.406890]  do_syscall_64+0x3b/0x90
[ 2596.407369]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2596.408126] RIP: 0033:0x7f8893772b19
[ 2596.408587] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2596.410910] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2596.411878] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2596.412775] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2596.413723] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2596.414634] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2596.415534] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2596.416459]  </TASK>
[ 2596.464663] loop4: detected capacity change from 0 to 256
[ 2596.492616] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2596.666183] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2596.981638] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
23:24:59 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x267}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)

23:24:59 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x8669, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:24:59 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x500000000000000)

23:24:59 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 45)

23:24:59 executing program 0:
perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r0=>0x0)
syz_io_uring_submit(0x0, r0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:24:59 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x20070000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:24:59 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:24:59 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x6b, 0x9e, 0x40}]}, 0x24}}, 0x0)

[ 2612.832506] FAULT_INJECTION: forcing a failure.
[ 2612.832506] name failslab, interval 1, probability 0, space 0, times 0
[ 2612.838112] CPU: 1 PID: 12889 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2612.839149] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2612.840545] Call Trace:
[ 2612.840868]  <TASK>
[ 2612.841152]  dump_stack_lvl+0x8b/0xb3
[ 2612.841691]  should_fail.cold+0x5/0xa
[ 2612.842184]  should_failslab+0x5/0x10
[ 2612.842665]  __kmalloc_track_caller+0x79/0x420
[ 2612.843238]  ? kstrdup_const+0x53/0x80
[ 2612.843743]  kstrdup+0x36/0x70
[ 2612.844151]  kstrdup_const+0x53/0x80
[ 2612.844621]  alloc_vfsmnt+0xb5/0x6b0
[ 2612.845102]  clone_mnt+0x6d/0xdc0
[ 2612.847699]  copy_tree+0x3ac/0xa50
[ 2612.848186]  copy_mnt_ns+0x1a5/0xa90
[ 2612.848672]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2612.849303]  ? kmem_cache_alloc+0x332/0x480
[ 2612.849881]  create_new_namespaces+0xd6/0xb30
[ 2612.850462]  copy_namespaces+0x391/0x450
[ 2612.850980]  copy_process+0x27f2/0x6cb0
[ 2612.851485]  ? lock_is_held_type+0xd7/0x130
[ 2612.852025]  ? find_held_lock+0x2c/0x110
[ 2612.852558]  ? __cleanup_sighand+0xb0/0xb0
[ 2612.853117]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2612.857907]  ? _copy_from_user+0x139/0x170
[ 2612.858469]  ? kernel_clone+0x2f8/0xa60
[ 2612.858989]  kernel_clone+0xe7/0xa60
[ 2612.859470]  ? lock_is_held_type+0xd7/0x130
[ 2612.860023]  ? create_io_thread+0xf0/0xf0
[ 2612.860574]  ? lock_is_held_type+0xd7/0x130
[ 2612.861125]  __do_sys_clone3+0x1dd/0x2e0
[ 2612.861696]  ? __ia32_sys_clone+0x150/0x150
[ 2612.862269]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2612.862961]  ? vfs_write+0x188/0xae0
[ 2612.863444]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2612.864135]  ? fput+0x2a/0x50
[ 2612.864552]  ? syscall_enter_from_user_mode+0x1d/0x50
23:24:59 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
mmap(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2000000, 0x10, r0, 0x6790d000)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)

[ 2612.865211]  do_syscall_64+0x3b/0x90
[ 2612.865727]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2612.872372] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'.
[ 2612.873899] RIP: 0033:0x7f8893772b19
[ 2612.873931] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2612.877839] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2612.878844] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2612.879760] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2612.880714] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2612.881694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2612.882570] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2612.883472]  </TASK>
[ 2612.912052] loop4: detected capacity change from 0 to 256
[ 2612.933379] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2612.934426] loop6: detected capacity change from 0 to 67
23:24:59 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), 0x0)
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

[ 2612.971400] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2612.984095] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
23:24:59 executing program 3:
r0 = syz_io_uring_setup(0x401, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)

23:24:59 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 46)

23:24:59 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x866a, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:24:59 executing program 0:
perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r0=>0x0)
syz_io_uring_submit(0x0, r0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:24:59 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x28000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2613.143480] FAULT_INJECTION: forcing a failure.
[ 2613.143480] name failslab, interval 1, probability 0, space 0, times 0
[ 2613.145069] CPU: 0 PID: 12921 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2613.146237] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2613.147807] Call Trace:
[ 2613.148154]  <TASK>
[ 2613.148615]  dump_stack_lvl+0x8b/0xb3
[ 2613.149140]  should_fail.cold+0x5/0xa
[ 2613.149717]  ? create_object.isra.0+0x3a/0xa20
[ 2613.150351]  should_failslab+0x5/0x10
[ 2613.150855]  kmem_cache_alloc+0x5b/0x480
[ 2613.151429]  create_object.isra.0+0x3a/0xa20
[ 2613.152003]  ? kasan_unpoison+0x23/0x50
[ 2613.152535]  __kmalloc_track_caller+0x25e/0x420
[ 2613.153136]  ? kstrdup_const+0x53/0x80
[ 2613.153693]  kstrdup+0x36/0x70
[ 2613.154117]  kstrdup_const+0x53/0x80
[ 2613.154606]  alloc_vfsmnt+0xb5/0x6b0
[ 2613.155082]  clone_mnt+0x6d/0xdc0
[ 2613.155509]  copy_tree+0x3ac/0xa50
[ 2613.155973]  copy_mnt_ns+0x1a5/0xa90
[ 2613.156468]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2613.157097]  ? kmem_cache_alloc+0x332/0x480
[ 2613.157721]  create_new_namespaces+0xd6/0xb30
[ 2613.158320]  copy_namespaces+0x391/0x450
[ 2613.158848]  copy_process+0x27f2/0x6cb0
[ 2613.159365]  ? lock_is_held_type+0xd7/0x130
[ 2613.159917]  ? find_held_lock+0x2c/0x110
[ 2613.160450]  ? __cleanup_sighand+0xb0/0xb0
[ 2613.160987]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2613.161851]  ? _copy_from_user+0x139/0x170
[ 2613.162407]  ? kernel_clone+0x2f8/0xa60
[ 2613.162948]  kernel_clone+0xe7/0xa60
[ 2613.163045] loop6: detected capacity change from 0 to 67
[ 2613.163500]  ? lock_is_held_type+0xd7/0x130
[ 2613.163529]  ? create_io_thread+0xf0/0xf0
[ 2613.165313]  ? lock_is_held_type+0xd7/0x130
[ 2613.165933]  __do_sys_clone3+0x1dd/0x2e0
[ 2613.166486]  ? __ia32_sys_clone+0x150/0x150
[ 2613.167091]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2613.167828]  ? vfs_write+0x188/0xae0
[ 2613.168340]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2613.169076]  ? fput+0x2a/0x50
[ 2613.169572]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2613.170275]  do_syscall_64+0x3b/0x90
[ 2613.170800]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2613.171491] RIP: 0033:0x7f8893772b19
[ 2613.171988] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2613.174417] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2613.175399] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2613.176341] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2613.177284] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2613.178280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2613.179221] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2613.180185]  </TASK>
[ 2613.181236] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.7'.
[ 2613.188653] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2613.194855] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
[ 2613.305119] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:25:16 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), 0x0)
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:25:16 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 47)

23:25:16 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x28070000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:25:16 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x866b, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:25:16 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x600000000000000)

23:25:16 executing program 3:
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000080), 0x420080, 0x0)
r1 = syz_io_uring_setup(0x28b3, &(0x7f0000000180)={0x0, 0x0, 0x20, 0x1, 0x4, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000040))
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000000)=[r2, 0xffffffffffffffff, r1], 0x3)

23:25:16 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x117, 0x40}]}, 0x24}}, 0x0)

23:25:16 executing program 0:
perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r0=>0x0)
syz_io_uring_submit(0x0, r0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

[ 2629.811696] loop4: detected capacity change from 0 to 256
[ 2629.831179] loop6: detected capacity change from 0 to 67
[ 2629.839966] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2629.851965] FAULT_INJECTION: forcing a failure.
[ 2629.851965] name failslab, interval 1, probability 0, space 0, times 0
[ 2629.853623] CPU: 0 PID: 12953 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2629.854773] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2629.856237] Call Trace:
[ 2629.856582]  <TASK>
[ 2629.856882]  dump_stack_lvl+0x8b/0xb3
[ 2629.857407]  should_fail.cold+0x5/0xa
[ 2629.857967]  ? create_object.isra.0+0x3a/0xa20
[ 2629.858590]  should_failslab+0x5/0x10
[ 2629.859126]  kmem_cache_alloc+0x5b/0x480
[ 2629.859679]  create_object.isra.0+0x3a/0xa20
[ 2629.860174] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2629.860276]  kmemleak_alloc_percpu+0xa0/0x100
[ 2629.861923]  pcpu_alloc+0x7bf/0x1060
[ 2629.862452]  alloc_vfsmnt+0xfd/0x6b0
[ 2629.862989]  clone_mnt+0x6d/0xdc0
[ 2629.863474]  copy_tree+0x3ac/0xa50
[ 2629.863979]  copy_mnt_ns+0x1a5/0xa90
[ 2629.864493]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2629.865135]  ? kmem_cache_alloc+0x332/0x480
[ 2629.865744]  create_new_namespaces+0xd6/0xb30
[ 2629.866414]  copy_namespaces+0x391/0x450
[ 2629.867008]  copy_process+0x27f2/0x6cb0
[ 2629.867547]  ? lock_is_held_type+0xd7/0x130
[ 2629.868135]  ? find_held_lock+0x2c/0x110
[ 2629.868694]  ? __cleanup_sighand+0xb0/0xb0
[ 2629.869274]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2629.870083]  ? _copy_from_user+0x139/0x170
[ 2629.870658]  ? kernel_clone+0x2f8/0xa60
[ 2629.871232]  kernel_clone+0xe7/0xa60
[ 2629.871741]  ? lock_is_held_type+0xd7/0x130
[ 2629.872314]  ? create_io_thread+0xf0/0xf0
[ 2629.872893]  ? lock_is_held_type+0xd7/0x130
[ 2629.873474]  __do_sys_clone3+0x1dd/0x2e0
[ 2629.874056]  ? __ia32_sys_clone+0x150/0x150
[ 2629.874658]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2629.875390]  ? vfs_write+0x188/0xae0
[ 2629.875889]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2629.876619]  ? fput+0x2a/0x50
[ 2629.877064]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2629.877792]  do_syscall_64+0x3b/0x90
[ 2629.878309]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2629.878978] RIP: 0033:0x7f8893772b19
[ 2629.879465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2629.881836] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2629.882832] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2629.883754] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2629.884677] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2629.885600] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2629.886559] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2629.887505]  </TASK>
23:25:16 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), 0x0)
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:25:16 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r6 = accept4$inet(0xffffffffffffffff, 0x0, &(0x7f00000009c0), 0x800)
ioctl$BTRFS_IOC_SUBVOL_CREATE(r6, 0x5000940e, &(0x7f0000000a00)={{r2}, "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"})
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r5, 0x0, 0x0}, 0x0)
r7 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder-control\x00', 0x800, 0x0)
syz_io_uring_setup(0x6950, &(0x7f0000001a00)={0x0, 0x3c16, 0x4, 0x1, 0x57}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000001a80), &(0x7f0000001ac0))
r8 = syz_open_dev$rtc(&(0x7f0000000180), 0x2, 0x11000)
r9 = syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', 0x7ff, 0x7, &(0x7f0000000800)=[{&(0x7f0000000240)="38db53bc303a2f7bde971e8117ed6e4ede033e4d84058808c88c5466ca73659a60749af288a6100d1f903efcdb2c10573aecc22cf9d853cd8384bb5d56e6c34fbf5a6fd7cb9674f810114baa8a5ae93ea9179fad520749b2f9909864f02a459e7336f628579ba0fd593a959e185ea96946f94e7d3e3dbed972b804c8f3a902208ca3db763255c90253cec4", 0x8b, 0x3f}, {&(0x7f0000000300)="b8152e302fe5c4c6484c6d157bf4630df0473ba46ce8d6fe6e51586252e3bc4141f7cab9ab94587f10daffcf3c1007df3d11249b90bd429ac231b83ff69f8eb6a89dfb674ecdc3400123ca2c492c07f986ba857bf2e0ffca3c916d79f8c685641320a42cb6351701f92c2142bc0dbb237e8cdbe4722c2e8f8b61601b654e939e79c2ad2860b533c7bd842f0b18d18ece4b23a0185f0d9b02d50bfe7b6b7b5786629ed518040e8bff5de8212bfe19e149b9b5c936cf8257f3b64db11ee08f1a6d75162594c43d6a93805774dee04cf3269cdc5e149b622efc9180d1eb4a93e076b50bbeb1", 0xe4, 0x488f}, {&(0x7f0000000400)="271b5083e165b03f60d2241fdb41b2103bc11beed9acd634e416ea496ba34c41ee3f62895cf20cdd09", 0x29, 0x1}, {&(0x7f0000000440)="b9153a554656086d5d149516208b7630f25e23127d690427453197af6b6c2c04087e7a9592ebd27a62ac7361631ac579e8ae03a772185761ed547371e6cf7371614d0825bd5527eff7c7a4100a529dc7e717f1d06ec7b99c167e368c05fcf1fff8f1b51c48f541ad71c81985905ce11407fcfdbc1db00a62e3ac4e5006c98e5ad7f9a1e220b1d19e781f3a50108afbc50eaad5af99e4aac144a49ea38e389a6091c7d0c3f9827b516da388d9e9f9344b4aa7a592032ce3be8180efa653e11f99782b24e426a0f0c8f870f71b3160e585691dc518dd420eabdc1f1de35377bf7123ff6f1e0666200d96479574df36b08adbd13613fe", 0xf5}, {&(0x7f0000000540)="8242fa93f5881582ed8b70ce34667cc9c478964c54b637af80eca785bbbdfe5c1adaf46e2f1dfd84356ecd1bee33b83c0f48a2365d487de861aff6d7b00640560df7a931fddd34d657dc1da939c289edda328161a888ac91a52b265e491f0662ee0fde09dee1aa7b032038adf07d05c81503d13c091651ac0637db6fa281597b2feb98bca4f7640aea734a6306767a9a33d087e1927e1cd500b19cdb098cb449d70f60d82e4e0165cffbabbb70c5e1609cf4bdde1ea3b53525b10bdcce04a43f388cd2c40c55cdf3b95faa7c05b0fabf246fede49bcc3d44343cf29d046f7386adb76be707f2de1ceccd0d09c54048e16d59", 0xf2, 0x1}, {&(0x7f0000000640)="bd14c4e4f8b4556e501efff2f7cad83c568b0117b3dd083e7669966f549db1e51b87024f0652c75ca4ef4c571367075e82deb411d549fba1430110bfb2fe623575cfa03f0e0ff9ee1f8463514b2229bf95940cc2fa71e3a24fe6e894873a27e335e63f878f500b5ccfeb969cfecf029912893af35f4092d91f013d2df15f14802b656a45a0e972f519", 0x89, 0x12}, {&(0x7f0000000700)="03e47440a9d346c04c6a7d614c609fd7785c4a0ea431d5e9b73b71fdf0a963801a9707e69ff777caffbdc91f6b1229f2fdcbdd529becaf943aecaa76d222d4f6539400204d93cec2c9727dfd1c4357cb56b7c34d7f47e7867eecee16d3b512d85480fd8272c516bdb68cc2c7ae12b1a769ce817cceebd1fc9cc22869da2ab74cbee2ad89ba9ac6a484fbf6bbfbd70cf1bd07bf28d7ee95ba547a3ea1ae13f7fa6a37b2ace10d0c1270f1aa150a5ffdd2f529c0bb1267017fddb96483430c1635b4ed45aa78fb569a654a0d214054d30cebecf4269ce3dc71a90927b253041aa50459", 0xe2, 0x7fffffff}], 0x80, &(0x7f00000008c0)=ANY=[@ANYBLOB='nodots,euid<', @ANYRESDEC, @ANYBLOB=',fsmagic=0x00000 000000001f,obj_role=\x00,\x00'])
io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, &(0x7f0000000980)={0xffffffe9, 0x0, &(0x7f0000000940)=[r5, r0, r7, r8, r9]}, 0x5)

23:25:16 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x0, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r0=>0x0)
syz_io_uring_submit(0x0, r0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

[ 2629.961866] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
23:25:16 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x0, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:25:16 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x30000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:25:16 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x135, 0x40}]}, 0x24}}, 0x0)

23:25:16 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x866c, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

[ 2630.177475] loop6: detected capacity change from 0 to 67
[ 2630.188000] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2630.194625] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
[ 2630.199938] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:25:33 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x0, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r0=>0x0)
syz_io_uring_submit(0x0, r0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:25:33 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0xf}}, 0x0)

23:25:33 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x8680, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:25:33 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000180)={0x0, 0x0, 0x10}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0xc, 0x100010, r0, 0x0)
pipe(&(0x7f0000000040)={<r2=>0xffffffffffffffff})
syz_io_uring_setup(0x2334, &(0x7f0000000080)={0x0, 0xc675, 0x1, 0x2, 0x54, 0x0, r2}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000200), &(0x7f0000000240))

23:25:33 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x700000000000000)

23:25:33 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x0, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:25:33 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x30070000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:25:33 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 48)

[ 2646.829350] loop4: detected capacity change from 0 to 256
[ 2646.832993] loop6: detected capacity change from 0 to 67
[ 2646.841736] FAULT_INJECTION: forcing a failure.
[ 2646.841736] name failslab, interval 1, probability 0, space 0, times 0
[ 2646.843659] CPU: 1 PID: 13005 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2646.844993] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2646.846784] Call Trace:
[ 2646.847191]  <TASK>
[ 2646.847551]  dump_stack_lvl+0x8b/0xb3
[ 2646.848188]  should_fail.cold+0x5/0xa
[ 2646.848814]  ? create_object.isra.0+0x3a/0xa20
[ 2646.849575]  should_failslab+0x5/0x10
[ 2646.850230]  kmem_cache_alloc+0x5b/0x480
[ 2646.850876]  ? mark_held_locks+0x9e/0xe0
[ 2646.851542]  create_object.isra.0+0x3a/0xa20
[ 2646.852288]  kmemleak_alloc_percpu+0xa0/0x100
[ 2646.853012]  pcpu_alloc+0x7bf/0x1060
[ 2646.853645]  alloc_vfsmnt+0xfd/0x6b0
[ 2646.854245]  clone_mnt+0x6d/0xdc0
[ 2646.854730]  copy_tree+0x3ac/0xa50
[ 2646.855236]  copy_mnt_ns+0x1a5/0xa90
[ 2646.855752]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2646.856412]  ? kmem_cache_alloc+0x332/0x480
[ 2646.857003]  create_new_namespaces+0xd6/0xb30
[ 2646.857621]  copy_namespaces+0x391/0x450
[ 2646.858255]  copy_process+0x27f2/0x6cb0
[ 2646.858811]  ? lock_is_held_type+0xd7/0x130
[ 2646.859383]  ? find_held_lock+0x2c/0x110
[ 2646.859947]  ? __cleanup_sighand+0xb0/0xb0
[ 2646.860528]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2646.861272]  ? _copy_from_user+0x139/0x170
[ 2646.861847]  ? kernel_clone+0x2f8/0xa60
[ 2646.862711]  kernel_clone+0xe7/0xa60
[ 2646.863718]  ? lock_is_held_type+0xd7/0x130
[ 2646.864796]  ? create_io_thread+0xf0/0xf0
[ 2646.865902]  ? lock_is_held_type+0xd7/0x130
[ 2646.867273]  __do_sys_clone3+0x1dd/0x2e0
[ 2646.868285]  ? __ia32_sys_clone+0x150/0x150
[ 2646.869407]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2646.870472]  ? vfs_write+0x188/0xae0
[ 2646.871016]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2646.871750]  ? fput+0x2a/0x50
[ 2646.872182]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2646.872876]  do_syscall_64+0x3b/0x90
[ 2646.873388]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2646.874158] RIP: 0033:0x7f8893772b19
[ 2646.874648] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2646.877044] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2646.878182] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2646.879996] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2646.881835] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2646.883976] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2646.885733] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2646.886825]  </TASK>
[ 2646.896998] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2646.902537] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
23:25:33 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x0, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r0=>0x0)
syz_io_uring_submit(0x0, r0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:25:33 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r4 = openat(r1, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r4, 0x0, 0x0}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000000040)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r5=>r1, @ANYBLOB="0400007c39a0b4db0000000000002000"])
r6 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r6, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r7, r8, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r9 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r9, 0x0, 0x0}, 0x0)
r10 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000180), 0x440000, 0x0)
r11 = openat$cgroup_freezer_state(r1, &(0x7f00000001c0), 0x2, 0x0)
socketpair(0x8, 0x1, 0x800, &(0x7f0000000200)={0xffffffffffffffff, <r12=>0xffffffffffffffff})
io_uring_register$IORING_REGISTER_FILES(r4, 0x2, &(0x7f0000000240)=[r5, r0, r6, r9, r10, r1, r11, r1, r12], 0x9)

[ 2646.979603] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:25:33 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x0, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:25:33 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x86c0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:25:33 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 49)

23:25:33 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x38000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2647.111162] loop6: detected capacity change from 0 to 67
23:25:33 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x14}}, 0x0)

[ 2647.148685] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2647.160026] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
[ 2647.175493] FAULT_INJECTION: forcing a failure.
[ 2647.175493] name failslab, interval 1, probability 0, space 0, times 0
[ 2647.199133] CPU: 1 PID: 13032 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2647.200235] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2647.201753] Call Trace:
[ 2647.210187]  <TASK>
[ 2647.210501]  dump_stack_lvl+0x8b/0xb3
[ 2647.211035]  should_fail.cold+0x5/0xa
[ 2647.211557]  ? alloc_vfsmnt+0x23/0x6b0
[ 2647.212079]  should_failslab+0x5/0x10
[ 2647.212596]  kmem_cache_alloc+0x5b/0x480
[ 2647.213130]  ? lock_release+0x3b2/0x6f0
[ 2647.213668]  alloc_vfsmnt+0x23/0x6b0
[ 2647.218274]  clone_mnt+0x6d/0xdc0
[ 2647.218772]  copy_tree+0x3ac/0xa50
[ 2647.219293]  copy_mnt_ns+0x1a5/0xa90
[ 2647.219812]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2647.226389]  ? kmem_cache_alloc+0x332/0x480
[ 2647.226939]  create_new_namespaces+0xd6/0xb30
[ 2647.227476]  copy_namespaces+0x391/0x450
[ 2647.227979]  copy_process+0x27f2/0x6cb0
[ 2647.228491]  ? lock_is_held_type+0xd7/0x130
[ 2647.229038]  ? find_held_lock+0x2c/0x110
[ 2647.229580]  ? __cleanup_sighand+0xb0/0xb0
[ 2647.234169]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2647.234904]  ? _copy_from_user+0x139/0x170
[ 2647.235468]  ? kernel_clone+0x2f8/0xa60
[ 2647.235994]  kernel_clone+0xe7/0xa60
[ 2647.236498]  ? lock_is_held_type+0xd7/0x130
[ 2647.237059]  ? create_io_thread+0xf0/0xf0
[ 2647.237621]  ? lock_is_held_type+0xd7/0x130
[ 2647.238233]  __do_sys_clone3+0x1dd/0x2e0
[ 2647.238777]  ? __ia32_sys_clone+0x150/0x150
[ 2647.239343]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2647.239979]  ? vfs_write+0x188/0xae0
[ 2647.240449]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2647.241275]  ? fput+0x2a/0x50
[ 2647.241714]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2647.242404]  do_syscall_64+0x3b/0x90
[ 2647.242902]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2647.243537] RIP: 0033:0x7f8893772b19
[ 2647.243981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2647.246211] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2647.247135] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2647.248024] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2647.248910] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2647.249798] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2647.250742] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2647.251627]  </TASK>
23:25:33 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r0=>0x0)
syz_io_uring_submit(0x0, r0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:25:33 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x800000000000000)

23:25:33 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0x0, 0x0, &(0x7f0000000180), 0x8)

23:25:49 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x900000000000000)

23:25:49 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x86de, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:25:49 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0x0, 0x0, &(0x7f0000000180), 0x8)

23:25:49 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x38070000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2663.555375] loop4: detected capacity change from 0 to 256
[ 2663.561275] loop6: detected capacity change from 0 to 67
23:25:49 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
accept4$unix(r1, &(0x7f0000000180), &(0x7f0000000040)=0x6e, 0x80800)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000), 0x0)

23:25:49 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r0=>0x0)
syz_io_uring_submit(0x0, r0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:25:49 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 50)

23:25:49 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x28}}, 0x0)

[ 2663.582110] FAULT_INJECTION: forcing a failure.
[ 2663.582110] name failslab, interval 1, probability 0, space 0, times 0
[ 2663.583745] CPU: 1 PID: 13066 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2663.584777] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2663.586230] Call Trace:
[ 2663.592980]  <TASK>
[ 2663.593297]  dump_stack_lvl+0x8b/0xb3
[ 2663.593880]  should_fail.cold+0x5/0xa
[ 2663.594490]  ? create_object.isra.0+0x3a/0xa20
[ 2663.595122]  should_failslab+0x5/0x10
[ 2663.595611]  kmem_cache_alloc+0x5b/0x480
[ 2663.596121]  create_object.isra.0+0x3a/0xa20
[ 2663.596704]  ? kasan_unpoison+0x23/0x50
[ 2663.597197]  kmem_cache_alloc+0x239/0x480
[ 2663.597763]  alloc_vfsmnt+0x23/0x6b0
[ 2663.598299]  clone_mnt+0x6d/0xdc0
[ 2663.598804]  copy_tree+0x3ac/0xa50
[ 2663.599301]  copy_mnt_ns+0x1a5/0xa90
[ 2663.599818]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2663.600460]  ? kmem_cache_alloc+0x332/0x480
[ 2663.601042]  create_new_namespaces+0xd6/0xb30
[ 2663.601658]  copy_namespaces+0x391/0x450
[ 2663.602215]  copy_process+0x27f2/0x6cb0
[ 2663.602955]  ? lock_is_held_type+0xd7/0x130
[ 2663.603521]  ? find_held_lock+0x2c/0x110
[ 2663.604078]  ? __cleanup_sighand+0xb0/0xb0
[ 2663.604657]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2663.605391]  ? _copy_from_user+0x139/0x170
[ 2663.605976]  ? kernel_clone+0x2f8/0xa60
[ 2663.606736]  kernel_clone+0xe7/0xa60
[ 2663.607226]  ? lock_is_held_type+0xd7/0x130
[ 2663.607809]  ? create_io_thread+0xf0/0xf0
[ 2663.608391]  ? lock_is_held_type+0xd7/0x130
[ 2663.608984]  __do_sys_clone3+0x1dd/0x2e0
[ 2663.609534]  ? __ia32_sys_clone+0x150/0x150
[ 2663.610132]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2663.611016]  ? vfs_write+0x188/0xae0
[ 2663.611588]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2663.612334]  ? fput+0x2a/0x50
[ 2663.612784]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2663.613492]  do_syscall_64+0x3b/0x90
[ 2663.614011]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2663.614734] RIP: 0033:0x7f8893772b19
[ 2663.615233] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2663.617605] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2663.619584] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2663.620569] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2663.621489] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2663.622454] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2663.623397] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2663.624367]  </TASK>
[ 2663.625531] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2663.628537] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
[ 2663.630061] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:25:50 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0x0, 0x0, &(0x7f0000000180), 0x8)

23:25:50 executing program 3:
lremovexattr(&(0x7f0000000040)='./file1\x00', &(0x7f0000000180)=@random={'user.', '@{:#-.$\xb1:\x00'})
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x500d, &(0x7f00000001c0)={0x0, 0x41db, 0x8, 0x1, 0x36d, 0x0, r3}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r4, 0xffffffffffffffff, r0], 0x3)

23:25:50 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r0=>0x0)
syz_io_uring_submit(0x0, r0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:25:50 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x86df, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:25:50 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x40000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2663.768828] loop6: detected capacity change from 0 to 67
[ 2663.780406] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2663.784399] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
23:25:50 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r0=>0x0)
syz_io_uring_submit(0x0, r0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:25:50 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x33}}, 0x0)

23:25:50 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, 0x0, 0x0)

23:26:06 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x20}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000280)=@IORING_OP_STATX={0x15, 0x1, 0x0, 0xffffffffffffff9c, &(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x40, 0x100, 0x1}, 0x8)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r3, 0xffffffffffffffff, r0], 0x3)

23:26:06 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 51)

23:26:06 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x3b}}, 0x0)

23:26:06 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, 0x0, 0x0)

23:26:06 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xa00000000000000)

23:26:06 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r0=>0x0)
syz_io_uring_submit(0x0, r0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:26:06 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x40070000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:26:06 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x86e0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

[ 2680.256601] loop4: detected capacity change from 0 to 256
[ 2680.279426] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2680.281536] loop6: detected capacity change from 0 to 67
[ 2680.308789] FAULT_INJECTION: forcing a failure.
[ 2680.308789] name failslab, interval 1, probability 0, space 0, times 0
[ 2680.308842] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2680.311739] CPU: 0 PID: 13126 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2680.315536] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2680.318290] Call Trace:
[ 2680.318936]  <TASK>
[ 2680.319497]  dump_stack_lvl+0x8b/0xb3
[ 2680.320445]  should_fail.cold+0x5/0xa
[ 2680.321386]  should_failslab+0x5/0x10
[ 2680.322310]  __kmalloc_track_caller+0x79/0x420
[ 2680.323477]  ? kstrdup_const+0x53/0x80
[ 2680.324438]  kstrdup+0x36/0x70
[ 2680.325220]  kstrdup_const+0x53/0x80
[ 2680.326126]  alloc_vfsmnt+0xb5/0x6b0
[ 2680.327074]  clone_mnt+0x6d/0xdc0
[ 2680.327945]  copy_tree+0x3ac/0xa50
[ 2680.328838]  copy_mnt_ns+0x1a5/0xa90
[ 2680.329750]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2680.330933]  ? kmem_cache_alloc+0x332/0x480
[ 2680.332063]  create_new_namespaces+0xd6/0xb30
[ 2680.333208]  copy_namespaces+0x391/0x450
[ 2680.334236]  copy_process+0x27f2/0x6cb0
[ 2680.335215]  ? lock_is_held_type+0xd7/0x130
[ 2680.336253]  ? find_held_lock+0x2c/0x110
[ 2680.337297]  ? __cleanup_sighand+0xb0/0xb0
[ 2680.338344]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2680.339750]  ? _copy_from_user+0x139/0x170
[ 2680.340819]  ? kernel_clone+0x2f8/0xa60
[ 2680.341793]  kernel_clone+0xe7/0xa60
[ 2680.342718]  ? lock_is_held_type+0xd7/0x130
[ 2680.343768]  ? create_io_thread+0xf0/0xf0
[ 2680.344817]  ? lock_is_held_type+0xd7/0x130
[ 2680.345855]  __do_sys_clone3+0x1dd/0x2e0
[ 2680.346848]  ? __ia32_sys_clone+0x150/0x150
[ 2680.348009]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2680.349547]  ? vfs_write+0x188/0xae0
[ 2680.350582]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2680.352061]  ? fput+0x2a/0x50
[ 2680.352919]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2680.354315]  do_syscall_64+0x3b/0x90
[ 2680.355379]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2680.356758] RIP: 0033:0x7f8893772b19
[ 2680.357773] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2680.362786] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2680.364843] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2680.366810] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2680.368721] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2680.370687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2680.372626] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2680.374675]  </TASK>
23:26:06 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, 0x0, 0x0)

23:26:06 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r0=>0x0)
syz_io_uring_submit(0x0, r0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:26:06 executing program 3:
lremovexattr(&(0x7f0000000040)='./file1\x00', &(0x7f0000000180)=@random={'user.', '@{:#-.$\xb1:\x00'})
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r3, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x500d, &(0x7f00000001c0)={0x0, 0x41db, 0x8, 0x1, 0x36d, 0x0, r3}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000000240), &(0x7f0000000280))
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r4, 0xffffffffffffffff, r0], 0x3)

23:26:06 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0xc0}}, 0x0)

23:26:06 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x48000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2680.533073] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
23:26:06 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 52)

23:26:07 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, 0x0, 0x0)

[ 2680.658421] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2680.670576] FAULT_INJECTION: forcing a failure.
[ 2680.670576] name failslab, interval 1, probability 0, space 0, times 0
[ 2680.673154] CPU: 1 PID: 13149 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2680.674343] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2680.677678] Call Trace:
[ 2680.678078]  <TASK>
[ 2680.678742]  dump_stack_lvl+0x8b/0xb3
[ 2680.679305]  should_fail.cold+0x5/0xa
[ 2680.680351]  ? create_object.isra.0+0x3a/0xa20
[ 2680.681044]  should_failslab+0x5/0x10
[ 2680.682084]  kmem_cache_alloc+0x5b/0x480
[ 2680.683222]  create_object.isra.0+0x3a/0xa20
[ 2680.684515]  ? kasan_unpoison+0x23/0x50
[ 2680.685639]  __kmalloc_track_caller+0x25e/0x420
[ 2680.687055]  ? kstrdup_const+0x53/0x80
[ 2680.688235]  kstrdup+0x36/0x70
[ 2680.689138]  kstrdup_const+0x53/0x80
[ 2680.690176]  alloc_vfsmnt+0xb5/0x6b0
[ 2680.691236]  clone_mnt+0x6d/0xdc0
[ 2680.692229]  copy_tree+0x3ac/0xa50
[ 2680.693266]  copy_mnt_ns+0x1a5/0xa90
[ 2680.694372]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2680.695727]  ? kmem_cache_alloc+0x332/0x480
[ 2680.696961]  create_new_namespaces+0xd6/0xb30
[ 2680.698276]  copy_namespaces+0x391/0x450
[ 2680.699471]  copy_process+0x27f2/0x6cb0
[ 2680.700597]  ? lock_is_held_type+0xd7/0x130
[ 2680.701841]  ? find_held_lock+0x2c/0x110
[ 2680.703027]  ? __cleanup_sighand+0xb0/0xb0
[ 2680.704223]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2680.705825]  ? _copy_from_user+0x139/0x170
[ 2680.707081]  ? kernel_clone+0x2f8/0xa60
[ 2680.708263]  kernel_clone+0xe7/0xa60
[ 2680.709355]  ? lock_is_held_type+0xd7/0x130
[ 2680.710620]  ? create_io_thread+0xf0/0xf0
[ 2680.711854]  ? lock_is_held_type+0xd7/0x130
[ 2680.713105]  __do_sys_clone3+0x1dd/0x2e0
[ 2680.714307]  ? __ia32_sys_clone+0x150/0x150
[ 2680.715573]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2680.717180]  ? vfs_write+0x188/0xae0
[ 2680.718269]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2680.719889]  ? fput+0x2a/0x50
[ 2680.720817]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2680.722315]  do_syscall_64+0x3b/0x90
[ 2680.723404]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2680.724845] RIP: 0033:0x7f8893772b19
[ 2680.725862] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2680.730771] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2680.732700] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2680.734530] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2680.736394] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2680.738189] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2680.740058] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2680.741880]  </TASK>
23:26:23 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r0=>0x0)
syz_io_uring_submit(0x0, r0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:26:23 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0xec0}}, 0x0)

23:26:23 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 53)

23:26:23 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xb00000000000000)

23:26:23 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x86f3, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:26:23 executing program 3:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x38070000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:26:23 executing program 5:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xa00000000000000)

23:26:23 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x48070000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2697.193521] loop4: detected capacity change from 0 to 256
[ 2697.221841] loop6: detected capacity change from 0 to 67
[ 2697.222553] FAULT_INJECTION: forcing a failure.
[ 2697.222553] name failslab, interval 1, probability 0, space 0, times 0
[ 2697.224183] CPU: 1 PID: 13161 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2697.225273] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2697.226744] Call Trace:
[ 2697.227110]  <TASK>
[ 2697.227414]  dump_stack_lvl+0x8b/0xb3
[ 2697.227945]  should_fail.cold+0x5/0xa
[ 2697.228466]  ? create_object.isra.0+0x3a/0xa20
[ 2697.229089]  should_failslab+0x5/0x10
[ 2697.229598]  kmem_cache_alloc+0x5b/0x480
[ 2697.230158]  create_object.isra.0+0x3a/0xa20
[ 2697.230765]  kmemleak_alloc_percpu+0xa0/0x100
[ 2697.231433]  pcpu_alloc+0x7bf/0x1060
[ 2697.231966]  alloc_vfsmnt+0xfd/0x6b0
[ 2697.232482]  clone_mnt+0x6d/0xdc0
[ 2697.232970]  copy_tree+0x3ac/0xa50
[ 2697.233473]  copy_mnt_ns+0x1a5/0xa90
[ 2697.233986]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2697.234625]  ? kmem_cache_alloc+0x332/0x480
[ 2697.235243]  create_new_namespaces+0xd6/0xb30
[ 2697.235862]  copy_namespaces+0x391/0x450
[ 2697.236422]  copy_process+0x27f2/0x6cb0
[ 2697.236976]  ? lock_is_held_type+0xd7/0x130
[ 2697.237562]  ? find_held_lock+0x2c/0x110
[ 2697.238135]  ? __cleanup_sighand+0xb0/0xb0
[ 2697.238725]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2697.239501]  ? _copy_from_user+0x139/0x170
[ 2697.240087]  ? kernel_clone+0x2f8/0xa60
[ 2697.240638]  kernel_clone+0xe7/0xa60
[ 2697.241156]  ? lock_is_held_type+0xd7/0x130
[ 2697.241747]  ? create_io_thread+0xf0/0xf0
[ 2697.242334]  ? lock_is_held_type+0xd7/0x130
[ 2697.242939]  __do_sys_clone3+0x1dd/0x2e0
[ 2697.243493]  ? __ia32_sys_clone+0x150/0x150
[ 2697.244132]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2697.244870]  ? vfs_write+0x188/0xae0
[ 2697.245388]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2697.246136]  ? fput+0x2a/0x50
[ 2697.246582]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2697.247304]  do_syscall_64+0x3b/0x90
[ 2697.247823]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2697.248519] RIP: 0033:0x7f8893772b19
[ 2697.249067] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2697.251538] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2697.252547] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2697.253495] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2697.254437] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2697.255426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2697.256376] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2697.257337]  </TASK>
[ 2697.279478] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2697.287420] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
23:26:23 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r0=>0x0)
syz_io_uring_submit(0x0, r0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

[ 2697.350576] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:26:23 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x50000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:26:23 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x86f4, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:26:23 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 54)

23:26:23 executing program 3:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x800000000000000)

23:26:23 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x86c0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:26:23 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x33fe0}}, 0x0)

23:26:23 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000000140)=<r0=>0x0)
syz_io_uring_submit(0x0, r0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

[ 2697.513843] loop6: detected capacity change from 0 to 67
[ 2697.521918] FAULT_INJECTION: forcing a failure.
[ 2697.521918] name failslab, interval 1, probability 0, space 0, times 0
[ 2697.524241] CPU: 1 PID: 13197 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2697.525321] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2697.526763] Call Trace:
[ 2697.527123]  <TASK>
[ 2697.527419]  dump_stack_lvl+0x8b/0xb3
[ 2697.527943]  should_fail.cold+0x5/0xa
[ 2697.528453]  ? create_object.isra.0+0x3a/0xa20
[ 2697.529065]  should_failslab+0x5/0x10
[ 2697.529560]  kmem_cache_alloc+0x5b/0x480
[ 2697.530134]  ? mark_held_locks+0x9e/0xe0
[ 2697.530718]  create_object.isra.0+0x3a/0xa20
[ 2697.531393]  kmemleak_alloc_percpu+0xa0/0x100
[ 2697.532052]  pcpu_alloc+0x7bf/0x1060
[ 2697.532629]  alloc_vfsmnt+0xfd/0x6b0
[ 2697.533192]  clone_mnt+0x6d/0xdc0
[ 2697.533727]  copy_tree+0x3ac/0xa50
[ 2697.534272]  copy_mnt_ns+0x1a5/0xa90
[ 2697.534856]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2697.535558]  ? kmem_cache_alloc+0x332/0x480
[ 2697.536189]  create_new_namespaces+0xd6/0xb30
[ 2697.536864]  copy_namespaces+0x391/0x450
[ 2697.537460]  copy_process+0x27f2/0x6cb0
[ 2697.538038]  ? lock_is_held_type+0xd7/0x130
[ 2697.538654]  ? find_held_lock+0x2c/0x110
[ 2697.539294]  ? __cleanup_sighand+0xb0/0xb0
[ 2697.539932]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2697.540736]  ? _copy_from_user+0x139/0x170
[ 2697.541376]  ? kernel_clone+0x2f8/0xa60
[ 2697.542015]  kernel_clone+0xe7/0xa60
[ 2697.542602]  ? lock_is_held_type+0xd7/0x130
[ 2697.543261]  ? create_io_thread+0xf0/0xf0
[ 2697.543893]  ? lock_is_held_type+0xd7/0x130
[ 2697.544535]  __do_sys_clone3+0x1dd/0x2e0
[ 2697.545158]  ? __ia32_sys_clone+0x150/0x150
[ 2697.545773]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2697.546501]  ? vfs_write+0x188/0xae0
[ 2697.547028]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2697.547839]  ? fput+0x2a/0x50
[ 2697.548298]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2697.549051]  do_syscall_64+0x3b/0x90
[ 2697.549609]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2697.550594] RIP: 0033:0x7f8893772b19
[ 2697.551684] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2697.556284] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2697.558066] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2697.559971] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2697.561283] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2697.562323] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2697.563511] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2697.564518]  </TASK>
23:26:24 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xc00000000000000)

23:26:24 executing program 5:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x30070000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2697.586355] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2697.601750] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
23:26:24 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x50070000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:26:24 executing program 3:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x50000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2697.776814] loop4: detected capacity change from 0 to 256
[ 2697.796422] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2697.972890] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:26:40 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x86fe, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:26:40 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xd00000000000000)

23:26:40 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x58000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:26:40 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 55)

23:26:40 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x20000124}}, 0x0)

23:26:40 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000000140)=<r0=>0x0)
syz_io_uring_submit(0x0, r0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:26:40 executing program 5:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000000140)=<r0=>0x0)
syz_io_uring_submit(0x0, r0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:26:40 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x33fe0}}, 0x0)

[ 2714.483812] FAULT_INJECTION: forcing a failure.
[ 2714.483812] name failslab, interval 1, probability 0, space 0, times 0
[ 2714.485386] CPU: 1 PID: 13228 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2714.486484] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2714.487995] Call Trace:
[ 2714.488345]  <TASK>
[ 2714.488646]  dump_stack_lvl+0x8b/0xb3
[ 2714.489185]  should_fail.cold+0x5/0xa
[ 2714.489713]  ? alloc_vfsmnt+0x23/0x6b0
[ 2714.490242]  should_failslab+0x5/0x10
[ 2714.490758]  kmem_cache_alloc+0x5b/0x480
[ 2714.491303]  ? lock_release+0x3b2/0x6f0
[ 2714.491852]  alloc_vfsmnt+0x23/0x6b0
[ 2714.492352]  clone_mnt+0x6d/0xdc0
[ 2714.492833]  copy_tree+0x3ac/0xa50
[ 2714.493331]  copy_mnt_ns+0x1a5/0xa90
[ 2714.493830]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2714.494478]  ? kmem_cache_alloc+0x332/0x480
[ 2714.494959] loop4: detected capacity change from 0 to 256
[ 2714.495053]  create_new_namespaces+0xd6/0xb30
[ 2714.496460]  copy_namespaces+0x391/0x450
[ 2714.497014]  copy_process+0x27f2/0x6cb0
[ 2714.497552]  ? lock_is_held_type+0xd7/0x130
[ 2714.498117]  ? find_held_lock+0x2c/0x110
[ 2714.498698]  ? __cleanup_sighand+0xb0/0xb0
[ 2714.499306]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2714.500055]  ? _copy_from_user+0x139/0x170
[ 2714.500641]  ? kernel_clone+0x2f8/0xa60
[ 2714.501196]  kernel_clone+0xe7/0xa60
[ 2714.501730]  ? lock_is_held_type+0xd7/0x130
[ 2714.502314]  ? create_io_thread+0xf0/0xf0
[ 2714.502910]  ? lock_is_held_type+0xd7/0x130
[ 2714.503528]  __do_sys_clone3+0x1dd/0x2e0
[ 2714.504102]  ? __ia32_sys_clone+0x150/0x150
[ 2714.504718]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2714.505465]  ? vfs_write+0x188/0xae0
[ 2714.505955]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2714.506671]  ? fput+0x2a/0x50
[ 2714.511175]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2714.511871]  do_syscall_64+0x3b/0x90
[ 2714.512363]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2714.513040] RIP: 0033:0x7f8893772b19
[ 2714.513511] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2714.515868] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2714.516868] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2714.517808] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2714.518740] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2714.519712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2714.520670] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2714.521635]  </TASK>
[ 2714.527568] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2714.548571] loop6: detected capacity change from 0 to 67
[ 2714.567804] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2714.598331] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (8 blocks)
23:26:41 executing program 3:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xc00000000000000)

[ 2714.837995] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:26:57 executing program 5:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000000140)=<r0=>0x0)
syz_io_uring_submit(0x0, r0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:26:57 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x1000000000000000)

23:26:57 executing program 3:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x58000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:26:57 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000000140)=<r0=>0x0)
syz_io_uring_submit(0x0, r0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:26:57 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x58070000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:26:57 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0xad2d, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:26:57 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 56)

23:26:57 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x7ffff000}}, 0x0)

[ 2731.363753] loop4: detected capacity change from 0 to 256
[ 2731.365573] loop6: detected capacity change from 0 to 86
[ 2731.369111] FAULT_INJECTION: forcing a failure.
[ 2731.369111] name failslab, interval 1, probability 0, space 0, times 0
[ 2731.370663] CPU: 1 PID: 13269 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2731.371760] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2731.373182] Call Trace:
[ 2731.373523]  <TASK>
[ 2731.373812]  dump_stack_lvl+0x8b/0xb3
[ 2731.374319]  should_fail.cold+0x5/0xa
[ 2731.374942]  ? create_object.isra.0+0x3a/0xa20
[ 2731.375600]  should_failslab+0x5/0x10
[ 2731.376107]  kmem_cache_alloc+0x5b/0x480
[ 2731.376700]  create_object.isra.0+0x3a/0xa20
[ 2731.377287]  ? kasan_unpoison+0x23/0x50
[ 2731.377811]  kmem_cache_alloc+0x239/0x480
[ 2731.378344]  alloc_vfsmnt+0x23/0x6b0
[ 2731.378831]  clone_mnt+0x6d/0xdc0
[ 2731.379319]  copy_tree+0x3ac/0xa50
[ 2731.379840]  copy_mnt_ns+0x1a5/0xa90
[ 2731.380360]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2731.380995]  ? kmem_cache_alloc+0x332/0x480
[ 2731.381578]  create_new_namespaces+0xd6/0xb30
[ 2731.382195]  copy_namespaces+0x391/0x450
[ 2731.382741]  copy_process+0x27f2/0x6cb0
[ 2731.383277]  ? lock_is_held_type+0xd7/0x130
[ 2731.383840] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2731.384825]  ? find_held_lock+0x2c/0x110
[ 2731.385379]  ? __cleanup_sighand+0xb0/0xb0
[ 2731.385947]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2731.386704]  ? _copy_from_user+0x139/0x170
[ 2731.387286]  ? kernel_clone+0x2f8/0xa60
[ 2731.387854]  kernel_clone+0xe7/0xa60
[ 2731.388361]  ? lock_is_held_type+0xd7/0x130
[ 2731.388936]  ? create_io_thread+0xf0/0xf0
[ 2731.389509]  ? lock_is_held_type+0xd7/0x130
[ 2731.390101]  __do_sys_clone3+0x1dd/0x2e0
[ 2731.390669]  ? __ia32_sys_clone+0x150/0x150
[ 2731.391270]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2731.392038]  ? vfs_write+0x188/0xae0
[ 2731.392553]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2731.393289]  ? fput+0x2a/0x50
[ 2731.393743]  ? lock_is_held_type+0xd7/0x130
[ 2731.394337]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2731.394986]  do_syscall_64+0x3b/0x90
[ 2731.395556]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2731.396260] RIP: 0033:0x7f8893772b19
[ 2731.396749] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2731.399099] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2731.400140] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2731.401090] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2731.402037] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2731.402984] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2731.404768] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2731.406606]  </TASK>
[ 2731.426922] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:26:57 executing program 5:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, 0x0, &(0x7f0000000140)=<r0=>0x0)
syz_io_uring_submit(0x0, r0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:26:57 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r0}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

[ 2731.498200] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (10 blocks)
23:26:57 executing program 3:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x50070000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:26:57 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x60000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:26:58 executing program 5:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x30070000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:26:58 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0xadd3, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:26:58 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 57)

23:26:58 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r0}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:26:58 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x1800000000000000)

23:26:58 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0xfffffdef}}, 0x0)

[ 2731.698840] FAULT_INJECTION: forcing a failure.
[ 2731.698840] name failslab, interval 1, probability 0, space 0, times 0
[ 2731.708630] CPU: 1 PID: 13299 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2731.709720] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2731.711133] Call Trace:
[ 2731.711544]  <TASK>
[ 2731.711843]  dump_stack_lvl+0x8b/0xb3
[ 2731.712361]  should_fail.cold+0x5/0xa
[ 2731.712875]  should_failslab+0x5/0x10
[ 2731.713381]  __kmalloc_track_caller+0x79/0x420
[ 2731.714104]  ? kstrdup_const+0x53/0x80
[ 2731.714623]  kstrdup+0x36/0x70
[ 2731.715048]  kstrdup_const+0x53/0x80
[ 2731.715548]  alloc_vfsmnt+0xb5/0x6b0
[ 2731.716056]  clone_mnt+0x6d/0xdc0
[ 2731.716525]  copy_tree+0x3ac/0xa50
[ 2731.717012]  copy_mnt_ns+0x1a5/0xa90
[ 2731.717509]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2731.718163]  ? kmem_cache_alloc+0x332/0x480
[ 2731.718725]  create_new_namespaces+0xd6/0xb30
[ 2731.719334]  copy_namespaces+0x391/0x450
[ 2731.719916]  copy_process+0x27f2/0x6cb0
[ 2731.720460]  ? lock_is_held_type+0xd7/0x130
[ 2731.721049]  ? find_held_lock+0x2c/0x110
[ 2731.721626]  ? __cleanup_sighand+0xb0/0xb0
[ 2731.722215]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2731.722945]  ? _copy_from_user+0x139/0x170
[ 2731.723555]  ? kernel_clone+0x2f8/0xa60
[ 2731.724158]  kernel_clone+0xe7/0xa60
[ 2731.724671]  ? lock_is_held_type+0xd7/0x130
[ 2731.725282]  ? create_io_thread+0xf0/0xf0
[ 2731.725863]  ? lock_is_held_type+0xd7/0x130
[ 2731.726449]  __do_sys_clone3+0x1dd/0x2e0
[ 2731.727164]  ? __ia32_sys_clone+0x150/0x150
[ 2731.728459]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2731.730131]  ? vfs_write+0x188/0xae0
[ 2731.731361]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2731.733035]  ? fput+0x2a/0x50
[ 2731.733975]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2731.735459]  do_syscall_64+0x3b/0x90
[ 2731.736606]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2731.738135] RIP: 0033:0x7f8893772b19
[ 2731.739249] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2731.745175] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2731.747685] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2731.750125] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2731.752557] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2731.755007] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2731.757526] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2731.759971]  </TASK>
[ 2731.791685] loop4: detected capacity change from 0 to 256
[ 2731.803942] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:26:58 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x60070000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2732.060225] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:27:14 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0xae00, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:27:14 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x68000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:27:14 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x2000000000000000)

23:27:14 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r0}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:27:14 executing program 3:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x30000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2748.354239] loop4: detected capacity change from 0 to 256
[ 2748.357995] loop6: detected capacity change from 0 to 87
23:27:14 executing program 5:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r6 = accept4$inet(0xffffffffffffffff, 0x0, &(0x7f00000009c0), 0x800)
ioctl$BTRFS_IOC_SUBVOL_CREATE(r6, 0x5000940e, &(0x7f0000000a00)={{r2}, "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"})
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r5, 0x0, 0x0}, 0x0)
r7 = openat$binderfs_ctrl(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder-control\x00', 0x800, 0x0)
syz_io_uring_setup(0x6950, &(0x7f0000001a00)={0x0, 0x3c16, 0x4, 0x1, 0x57}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000001a80), &(0x7f0000001ac0))
r8 = syz_open_dev$rtc(&(0x7f0000000180), 0x2, 0x11000)
r9 = syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000200)='./file1\x00', 0x7ff, 0x7, &(0x7f0000000800)=[{&(0x7f0000000240)="38db53bc303a2f7bde971e8117ed6e4ede033e4d84058808c88c5466ca73659a60749af288a6100d1f903efcdb2c10573aecc22cf9d853cd8384bb5d56e6c34fbf5a6fd7cb9674f810114baa8a5ae93ea9179fad520749b2f9909864f02a459e7336f628579ba0fd593a959e185ea96946f94e7d3e3dbed972b804c8f3a902208ca3db763255c90253cec4", 0x8b, 0x3f}, {&(0x7f0000000300)="b8152e302fe5c4c6484c6d157bf4630df0473ba46ce8d6fe6e51586252e3bc4141f7cab9ab94587f10daffcf3c1007df3d11249b90bd429ac231b83ff69f8eb6a89dfb674ecdc3400123ca2c492c07f986ba857bf2e0ffca3c916d79f8c685641320a42cb6351701f92c2142bc0dbb237e8cdbe4722c2e8f8b61601b654e939e79c2ad2860b533c7bd842f0b18d18ece4b23a0185f0d9b02d50bfe7b6b7b5786629ed518040e8bff5de8212bfe19e149b9b5c936cf8257f3b64db11ee08f1a6d75162594c43d6a93805774dee04cf3269cdc5e149b622efc9180d1eb4a93e076b50bbeb1", 0xe4, 0x488f}, {&(0x7f0000000400)="271b5083e165b03f60d2241fdb41b2103bc11beed9acd634e416ea496ba34c41ee3f62895cf20cdd09", 0x29, 0x1}, {&(0x7f0000000440)="b9153a554656086d5d149516208b7630f25e23127d690427453197af6b6c2c04087e7a9592ebd27a62ac7361631ac579e8ae03a772185761ed547371e6cf7371614d0825bd5527eff7c7a4100a529dc7e717f1d06ec7b99c167e368c05fcf1fff8f1b51c48f541ad71c81985905ce11407fcfdbc1db00a62e3ac4e5006c98e5ad7f9a1e220b1d19e781f3a50108afbc50eaad5af99e4aac144a49ea38e389a6091c7d0c3f9827b516da388d9e9f9344b4aa7a592032ce3be8180efa653e11f99782b24e426a0f0c8f870f71b3160e585691dc518dd420eabdc1f1de35377bf7123ff6f1e0666200d96479574df36b08adbd13613fe", 0xf5}, {&(0x7f0000000540)="8242fa93f5881582ed8b70ce34667cc9c478964c54b637af80eca785bbbdfe5c1adaf46e2f1dfd84356ecd1bee33b83c0f48a2365d487de861aff6d7b00640560df7a931fddd34d657dc1da939c289edda328161a888ac91a52b265e491f0662ee0fde09dee1aa7b032038adf07d05c81503d13c091651ac0637db6fa281597b2feb98bca4f7640aea734a6306767a9a33d087e1927e1cd500b19cdb098cb449d70f60d82e4e0165cffbabbb70c5e1609cf4bdde1ea3b53525b10bdcce04a43f388cd2c40c55cdf3b95faa7c05b0fabf246fede49bcc3d44343cf29d046f7386adb76be707f2de1ceccd0d09c54048e16d59", 0xf2, 0x1}, {&(0x7f0000000640)="bd14c4e4f8b4556e501efff2f7cad83c568b0117b3dd083e7669966f549db1e51b87024f0652c75ca4ef4c571367075e82deb411d549fba1430110bfb2fe623575cfa03f0e0ff9ee1f8463514b2229bf95940cc2fa71e3a24fe6e894873a27e335e63f878f500b5ccfeb969cfecf029912893af35f4092d91f013d2df15f14802b656a45a0e972f519", 0x89, 0x12}, {&(0x7f0000000700)="03e47440a9d346c04c6a7d614c609fd7785c4a0ea431d5e9b73b71fdf0a963801a9707e69ff777caffbdc91f6b1229f2fdcbdd529becaf943aecaa76d222d4f6539400204d93cec2c9727dfd1c4357cb56b7c34d7f47e7867eecee16d3b512d85480fd8272c516bdb68cc2c7ae12b1a769ce817cceebd1fc9cc22869da2ab74cbee2ad89ba9ac6a484fbf6bbfbd70cf1bd07bf28d7ee95ba547a3ea1ae13f7fa6a37b2ace10d0c1270f1aa150a5ffdd2f529c0bb1267017fddb96483430c1635b4ed45aa78fb569a654a0d214054d30cebecf4269ce3dc71a90927b253041aa50459", 0xe2, 0x7fffffff}], 0x80, &(0x7f00000008c0)=ANY=[@ANYBLOB='nodots,euid<', @ANYRESDEC, @ANYBLOB=',fsmagic=0x00000 000000001f,obj_role=\x00,\x00'])
io_uring_register$IORING_REGISTER_FILES_UPDATE(r0, 0x6, &(0x7f0000000980)={0xffffffe9, 0x0, &(0x7f0000000940)=[r5, r0, r7, r8, r9]}, 0x5)

23:27:14 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 58)

23:27:14 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}, 0x2}, 0x0)

[ 2748.390745] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2748.392348] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2748.395075] FAULT_INJECTION: forcing a failure.
[ 2748.395075] name failslab, interval 1, probability 0, space 0, times 0
[ 2748.396669] CPU: 1 PID: 13340 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2748.397725] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2748.399161] Call Trace:
[ 2748.399504]  <TASK>
[ 2748.399822]  dump_stack_lvl+0x8b/0xb3
[ 2748.400333]  should_fail.cold+0x5/0xa
[ 2748.400846]  ? create_object.isra.0+0x3a/0xa20
[ 2748.401453]  should_failslab+0x5/0x10
[ 2748.401950]  kmem_cache_alloc+0x5b/0x480
[ 2748.402488]  create_object.isra.0+0x3a/0xa20
[ 2748.402897] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (10 blocks)
[ 2748.403067]  ? kasan_unpoison+0x23/0x50
[ 2748.404741]  __kmalloc_track_caller+0x25e/0x420
[ 2748.405357]  ? kstrdup_const+0x53/0x80
[ 2748.405884]  kstrdup+0x36/0x70
[ 2748.406322]  kstrdup_const+0x53/0x80
[ 2748.406820]  alloc_vfsmnt+0xb5/0x6b0
[ 2748.407333]  clone_mnt+0x6d/0xdc0
[ 2748.407853]  copy_tree+0x3ac/0xa50
[ 2748.408333]  copy_mnt_ns+0x1a5/0xa90
[ 2748.408864]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2748.409494]  ? kmem_cache_alloc+0x332/0x480
[ 2748.410057]  create_new_namespaces+0xd6/0xb30
[ 2748.410666]  copy_namespaces+0x391/0x450
[ 2748.411209]  copy_process+0x27f2/0x6cb0
[ 2748.411775]  ? lock_is_held_type+0xd7/0x130
[ 2748.412344]  ? find_held_lock+0x2c/0x110
[ 2748.412893]  ? __cleanup_sighand+0xb0/0xb0
[ 2748.413459]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2748.414178]  ? _copy_from_user+0x139/0x170
[ 2748.414726]  ? kernel_clone+0x2f8/0xa60
[ 2748.415249]  kernel_clone+0xe7/0xa60
[ 2748.415800]  ? lock_is_held_type+0xd7/0x130
[ 2748.416365]  ? create_io_thread+0xf0/0xf0
[ 2748.416914]  ? lock_is_held_type+0xd7/0x130
[ 2748.417525]  __do_sys_clone3+0x1dd/0x2e0
[ 2748.418068]  ? __ia32_sys_clone+0x150/0x150
[ 2748.418669]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2748.419378]  ? vfs_write+0x188/0xae0
[ 2748.419902]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2748.420603]  ? fput+0x2a/0x50
[ 2748.421030]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2748.421700]  do_syscall_64+0x3b/0x90
[ 2748.422189]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2748.422854] RIP: 0033:0x7f8893772b19
[ 2748.423340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2748.425666] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2748.426658] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2748.427577] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2748.428537] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2748.429461] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2748.430373] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2748.431317]  </TASK>
23:27:14 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
syz_io_uring_submit(0x0, 0x0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r0}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:27:14 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x68070000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:27:14 executing program 3:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x60070000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:27:14 executing program 5:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x60070000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:27:14 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x20000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

[ 2748.625449] loop6: detected capacity change from 0 to 256
23:27:15 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
syz_io_uring_submit(0x0, 0x0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r0}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

[ 2748.640603] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
23:27:15 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 59)

[ 2748.657550] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (32 blocks)
23:27:15 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x3f00000000000000)

23:27:15 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}, 0x3}, 0x0)

[ 2748.721782] FAULT_INJECTION: forcing a failure.
[ 2748.721782] name failslab, interval 1, probability 0, space 0, times 0
[ 2748.723339] CPU: 1 PID: 13365 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2748.724440] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2748.725905] Call Trace:
[ 2748.726254]  <TASK>
[ 2748.726557]  dump_stack_lvl+0x8b/0xb3
[ 2748.727077]  should_fail.cold+0x5/0xa
[ 2748.727590]  ? create_object.isra.0+0x3a/0xa20
[ 2748.728229]  should_failslab+0x5/0x10
[ 2748.728726]  kmem_cache_alloc+0x5b/0x480
[ 2748.729265]  create_object.isra.0+0x3a/0xa20
[ 2748.729869]  kmemleak_alloc_percpu+0xa0/0x100
[ 2748.730472]  pcpu_alloc+0x7bf/0x1060
[ 2748.731001]  alloc_vfsmnt+0xfd/0x6b0
[ 2748.731523]  clone_mnt+0x6d/0xdc0
[ 2748.732072]  copy_tree+0x3ac/0xa50
[ 2748.732572]  copy_mnt_ns+0x1a5/0xa90
[ 2748.733074]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2748.733704]  ? kmem_cache_alloc+0x332/0x480
[ 2748.734300]  create_new_namespaces+0xd6/0xb30
[ 2748.734928]  copy_namespaces+0x391/0x450
[ 2748.735491]  copy_process+0x27f2/0x6cb0
[ 2748.736092]  ? lock_is_held_type+0xd7/0x130
[ 2748.736676]  ? find_held_lock+0x2c/0x110
[ 2748.737244]  ? __cleanup_sighand+0xb0/0xb0
[ 2748.737823]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2748.738568]  ? _copy_from_user+0x139/0x170
[ 2748.739148]  ? kernel_clone+0x2f8/0xa60
[ 2748.739717]  kernel_clone+0xe7/0xa60
[ 2748.740241]  ? lock_is_held_type+0xd7/0x130
[ 2748.740823]  ? create_io_thread+0xf0/0xf0
[ 2748.741394]  ? lock_is_held_type+0xd7/0x130
[ 2748.741957]  __do_sys_clone3+0x1dd/0x2e0
[ 2748.742509]  ? __ia32_sys_clone+0x150/0x150
[ 2748.743124]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2748.743881]  ? vfs_write+0x188/0xae0
[ 2748.744391]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2748.745124]  ? fput+0x2a/0x50
[ 2748.745547]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2748.746236]  do_syscall_64+0x3b/0x90
[ 2748.746740]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2748.747421] RIP: 0033:0x7f8893772b19
[ 2748.747939] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2748.750277] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2748.751278] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2748.752252] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2748.753176] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2748.754118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2748.755064] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2748.756059]  </TASK>
[ 2748.818827] loop4: detected capacity change from 0 to 256
[ 2748.831465] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2748.930136] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:27:31 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}, 0x3}, 0x0)

23:27:31 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}, 0x5}, 0x0)

23:27:31 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x7f51010000000000)

23:27:31 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), 0x0)
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:27:31 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x70000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:27:31 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x30000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:27:31 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
syz_io_uring_submit(0x0, 0x0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r0}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:27:31 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 60)

[ 2765.335954] loop6: detected capacity change from 0 to 384
[ 2765.337070] loop4: detected capacity change from 0 to 256
[ 2765.350070] FAULT_INJECTION: forcing a failure.
[ 2765.350070] name failslab, interval 1, probability 0, space 0, times 0
[ 2765.351696] CPU: 0 PID: 13394 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2765.352857] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2765.354102] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2765.354371] Call Trace:
[ 2765.354381]  <TASK>
[ 2765.354390]  dump_stack_lvl+0x8b/0xb3
[ 2765.356547]  should_fail.cold+0x5/0xa
[ 2765.357074]  ? create_object.isra.0+0x3a/0xa20
[ 2765.357715]  should_failslab+0x5/0x10
[ 2765.358235]  kmem_cache_alloc+0x5b/0x480
[ 2765.358804]  ? mark_held_locks+0x9e/0xe0
[ 2765.359365]  create_object.isra.0+0x3a/0xa20
[ 2765.360136]  kmemleak_alloc_percpu+0xa0/0x100
[ 2765.360721]  pcpu_alloc+0x7bf/0x1060
[ 2765.361230]  alloc_vfsmnt+0xfd/0x6b0
[ 2765.361737]  clone_mnt+0x6d/0xdc0
[ 2765.362180]  copy_tree+0x3ac/0xa50
[ 2765.362678]  copy_mnt_ns+0x1a5/0xa90
[ 2765.363144]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2765.363741]  ? kmem_cache_alloc+0x332/0x480
[ 2765.364317]  create_new_namespaces+0xd6/0xb30
[ 2765.364894]  copy_namespaces+0x391/0x450
[ 2765.365413]  copy_process+0x27f2/0x6cb0
[ 2765.365920]  ? lock_is_held_type+0xd7/0x130
[ 2765.366468]  ? find_held_lock+0x2c/0x110
[ 2765.366992]  ? __cleanup_sighand+0xb0/0xb0
[ 2765.367543]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2765.368254]  ? _copy_from_user+0x139/0x170
[ 2765.368795]  ? kernel_clone+0x2f8/0xa60
[ 2765.369313]  kernel_clone+0xe7/0xa60
[ 2765.369782]  ? lock_is_held_type+0xd7/0x130
[ 2765.370321]  ? create_io_thread+0xf0/0xf0
[ 2765.370858]  ? lock_is_held_type+0xd7/0x130
[ 2765.371401]  __do_sys_clone3+0x1dd/0x2e0
[ 2765.371926]  ? __ia32_sys_clone+0x150/0x150
[ 2765.372497]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2765.373178]  ? vfs_write+0x188/0xae0
[ 2765.373660]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2765.374352]  ? fput+0x2a/0x50
[ 2765.374760]  ? lock_is_held_type+0xd7/0x130
[ 2765.375309]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2765.375914]  do_syscall_64+0x3b/0x90
[ 2765.376401]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2765.377063] RIP: 0033:0x7f8893772b19
[ 2765.377528] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2765.379813] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2765.380824] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2765.381845] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2765.382742] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2765.383693] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2765.384599] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2765.385566]  </TASK>
[ 2765.409569] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:27:31 executing program 5:
r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000080), 0x420080, 0x0)
r1 = syz_io_uring_setup(0x28b3, &(0x7f0000000180)={0x0, 0x0, 0x20, 0x1, 0x4, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000040))
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000000)=[r2, 0xffffffffffffffff, r1], 0x3)

23:27:31 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
syz_io_uring_submit(0x0, 0x0, 0x0, 0x800)
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r0}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

[ 2765.448791] EXT4-fs (loop6): bad geometry: block count 64 exceeds size of device (48 blocks)
23:27:31 executing program 3:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
syz_io_uring_submit(0x0, 0x0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r0}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:27:31 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x70070000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:27:32 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40002, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:27:32 executing program 5:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x28000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:27:32 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 61)

[ 2765.664481] loop6: detected capacity change from 0 to 512
[ 2765.683036] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2765.685870] FAULT_INJECTION: forcing a failure.
[ 2765.685870] name failslab, interval 1, probability 0, space 0, times 0
[ 2765.689245] CPU: 0 PID: 13422 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2765.691559] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2765.694885] Call Trace:
[ 2765.695643]  <TASK>
[ 2765.696346]  dump_stack_lvl+0x8b/0xb3
[ 2765.697506]  should_fail.cold+0x5/0xa
[ 2765.698621]  ? alloc_vfsmnt+0x23/0x6b0
[ 2765.699675]  should_failslab+0x5/0x10
[ 2765.701020]  kmem_cache_alloc+0x5b/0x480
[ 2765.702331]  ? lock_release+0x3b2/0x6f0
[ 2765.703632]  alloc_vfsmnt+0x23/0x6b0
[ 2765.704803]  clone_mnt+0x6d/0xdc0
[ 2765.705937]  copy_tree+0x3ac/0xa50
[ 2765.707101]  copy_mnt_ns+0x1a5/0xa90
[ 2765.708309]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2765.709846]  ? kmem_cache_alloc+0x332/0x480
[ 2765.711281]  create_new_namespaces+0xd6/0xb30
[ 2765.712727]  copy_namespaces+0x391/0x450
[ 2765.713987]  copy_process+0x27f2/0x6cb0
[ 2765.714716]  ? lock_is_held_type+0xd7/0x130
[ 2765.715485]  ? find_held_lock+0x2c/0x110
[ 2765.716809]  ? __cleanup_sighand+0xb0/0xb0
[ 2765.718151]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2765.719908]  ? _copy_from_user+0x139/0x170
[ 2765.721190]  ? kernel_clone+0x2f8/0xa60
[ 2765.722353]  kernel_clone+0xe7/0xa60
[ 2765.723569]  ? lock_is_held_type+0xd7/0x130
[ 2765.724872]  ? create_io_thread+0xf0/0xf0
[ 2765.726183]  ? lock_is_held_type+0xd7/0x130
[ 2765.727530]  __do_sys_clone3+0x1dd/0x2e0
[ 2765.728783]  ? __ia32_sys_clone+0x150/0x150
[ 2765.730176]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2765.731999]  ? vfs_write+0x188/0xae0
[ 2765.733150]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2765.734772]  ? fput+0x2a/0x50
[ 2765.735814]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2765.737457]  do_syscall_64+0x3b/0x90
[ 2765.738597]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2765.740166] RIP: 0033:0x7f8893772b19
[ 2765.741211] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2765.747023] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2765.749348] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2765.751579] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2765.753827] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2765.756101] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2765.758267] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2765.760551]  </TASK>
[ 2765.788611] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[ 2765.816040] I/O error, dev loop6, sector 24 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
23:27:48 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 62)

23:27:48 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
syz_io_uring_submit(0x0, 0x0, 0x0, 0x800)
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r0}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:27:48 executing program 5:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x300000000000000)

23:27:48 executing program 3:
perf_event_open$cgroup(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r0=>0x0)
syz_io_uring_submit(0x0, r0, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r1 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r1}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

[ 2782.355989] FAULT_INJECTION: forcing a failure.
[ 2782.355989] name failslab, interval 1, probability 0, space 0, times 0
[ 2782.359062] CPU: 0 PID: 13435 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2782.361335] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2782.364433] Call Trace:
[ 2782.364769]  <TASK>
[ 2782.365055]  dump_stack_lvl+0x8b/0xb3
[ 2782.365550]  should_fail.cold+0x5/0xa
[ 2782.366042]  ? create_object.isra.0+0x3a/0xa20
[ 2782.366636]  should_failslab+0x5/0x10
[ 2782.367129]  kmem_cache_alloc+0x5b/0x480
[ 2782.367677]  create_object.isra.0+0x3a/0xa20
[ 2782.368372]  ? kasan_unpoison+0x23/0x50
[ 2782.369330]  kmem_cache_alloc+0x239/0x480
[ 2782.370288]  alloc_vfsmnt+0x23/0x6b0
[ 2782.371177]  clone_mnt+0x6d/0xdc0
[ 2782.371985]  copy_tree+0x3ac/0xa50
[ 2782.374119]  copy_mnt_ns+0x1a5/0xa90
23:27:48 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xf6ffffff00000000)

23:27:48 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}, 0x6}, 0x0)

23:27:48 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x78000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:27:48 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40003, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

[ 2782.375242]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2782.376557]  ? kmem_cache_alloc+0x332/0x480
[ 2782.377118]  create_new_namespaces+0xd6/0xb30
[ 2782.377720]  copy_namespaces+0x391/0x450
[ 2782.378242]  copy_process+0x27f2/0x6cb0
[ 2782.378772]  ? lock_is_held_type+0xd7/0x130
[ 2782.379331]  ? find_held_lock+0x2c/0x110
[ 2782.379877]  ? __cleanup_sighand+0xb0/0xb0
[ 2782.384595]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2782.385310]  ? _copy_from_user+0x139/0x170
[ 2782.385862]  ? kernel_clone+0x2f8/0xa60
[ 2782.386391]  kernel_clone+0xe7/0xa60
[ 2782.386875]  ? lock_is_held_type+0xd7/0x130
[ 2782.387429]  ? create_io_thread+0xf0/0xf0
[ 2782.387979]  ? lock_is_held_type+0xd7/0x130
[ 2782.388564]  __do_sys_clone3+0x1dd/0x2e0
[ 2782.389089]  ? __ia32_sys_clone+0x150/0x150
[ 2782.389669]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2782.390389]  ? vfs_write+0x188/0xae0
[ 2782.390909]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2782.391660]  ? fput+0x2a/0x50
[ 2782.392083]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2782.392777]  do_syscall_64+0x3b/0x90
[ 2782.393267]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2782.393927] RIP: 0033:0x7f8893772b19
[ 2782.394415] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2782.397382] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2782.399294] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2782.401306] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2782.402954] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2782.404805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2782.406529] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2782.412400]  </TASK>
[ 2782.423161] loop4: detected capacity change from 0 to 256
[ 2782.429569] loop6: detected capacity change from 0 to 512
[ 2782.445001] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2782.463627] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[ 2782.470008] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:27:48 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x78070000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:27:48 executing program 3:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x18070000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:27:49 executing program 5:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x100000000000000)

23:27:49 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r0}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:27:49 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40004, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:27:49 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 63)

[ 2782.728381] loop6: detected capacity change from 0 to 512
[ 2782.731744] FAULT_INJECTION: forcing a failure.
[ 2782.731744] name failslab, interval 1, probability 0, space 0, times 0
[ 2782.734014] CPU: 1 PID: 13473 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2782.735074] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2782.736803] Call Trace:
[ 2782.737137]  <TASK>
[ 2782.737426]  dump_stack_lvl+0x8b/0xb3
[ 2782.737933]  should_fail.cold+0x5/0xa
[ 2782.738457]  should_failslab+0x5/0x10
[ 2782.738965]  __kmalloc_track_caller+0x79/0x420
[ 2782.739542]  ? kstrdup_const+0x53/0x80
[ 2782.740053]  kstrdup+0x36/0x70
[ 2782.740604]  kstrdup_const+0x53/0x80
[ 2782.741087]  alloc_vfsmnt+0xb5/0x6b0
[ 2782.741593]  clone_mnt+0x6d/0xdc0
[ 2782.742059]  copy_tree+0x3ac/0xa50
[ 2782.742554]  copy_mnt_ns+0x1a5/0xa90
[ 2782.743058]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2782.743686]  ? kmem_cache_alloc+0x332/0x480
[ 2782.748391]  create_new_namespaces+0xd6/0xb30
[ 2782.749004]  copy_namespaces+0x391/0x450
[ 2782.749553]  copy_process+0x27f2/0x6cb0
[ 2782.750075]  ? lock_is_held_type+0xd7/0x130
[ 2782.750643]  ? find_held_lock+0x2c/0x110
[ 2782.751204]  ? __cleanup_sighand+0xb0/0xb0
[ 2782.751776]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2782.756592]  ? _copy_from_user+0x139/0x170
[ 2782.757178]  ? kernel_clone+0x2f8/0xa60
[ 2782.757705]  kernel_clone+0xe7/0xa60
[ 2782.758202]  ? lock_is_held_type+0xd7/0x130
[ 2782.758762]  ? create_io_thread+0xf0/0xf0
[ 2782.759356]  ? lock_is_held_type+0xd7/0x130
[ 2782.759925]  __do_sys_clone3+0x1dd/0x2e0
[ 2782.761085]  ? __ia32_sys_clone+0x150/0x150
[ 2782.762443]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2782.763184]  ? vfs_write+0x188/0xae0
[ 2782.763682]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2782.764459]  ? fput+0x2a/0x50
[ 2782.764875]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2782.765533]  do_syscall_64+0x3b/0x90
[ 2782.766013]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2782.766660] RIP: 0033:0x7f8893772b19
[ 2782.767123] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2782.769498] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2782.770477] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2782.771405] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2782.772377] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2782.773315] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2782.774214] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2782.775139]  </TASK>
23:27:49 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}, 0x7}, 0x0)

23:27:49 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x80000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:27:49 executing program 3:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x78070000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2782.816533] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
23:27:49 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r0}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

[ 2782.827625] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[ 2782.859239] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:27:49 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xfeffffffffffffff)

[ 2782.896753] loop4: detected capacity change from 0 to 256
23:27:49 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 64)

[ 2782.924759] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2782.989007] FAULT_INJECTION: forcing a failure.
[ 2782.989007] name failslab, interval 1, probability 0, space 0, times 0
[ 2782.990690] CPU: 0 PID: 13493 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2782.991756] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2782.993187] Call Trace:
[ 2782.993509]  <TASK>
[ 2782.993786]  dump_stack_lvl+0x8b/0xb3
[ 2782.994280]  should_fail.cold+0x5/0xa
[ 2782.994760]  ? create_object.isra.0+0x3a/0xa20
[ 2782.995363]  should_failslab+0x5/0x10
[ 2782.995975]  kmem_cache_alloc+0x5b/0x480
[ 2782.996533]  create_object.isra.0+0x3a/0xa20
[ 2782.997116]  ? kasan_unpoison+0x23/0x50
[ 2782.997667]  __kmalloc_track_caller+0x25e/0x420
[ 2782.998294]  ? kstrdup_const+0x53/0x80
[ 2782.998823]  kstrdup+0x36/0x70
[ 2782.999255]  kstrdup_const+0x53/0x80
[ 2782.999804]  alloc_vfsmnt+0xb5/0x6b0
[ 2783.000333]  clone_mnt+0x6d/0xdc0
[ 2783.000813]  copy_tree+0x3ac/0xa50
[ 2783.001319]  copy_mnt_ns+0x1a5/0xa90
[ 2783.001830]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2783.002475]  ? kmem_cache_alloc+0x332/0x480
[ 2783.003077]  create_new_namespaces+0xd6/0xb30
[ 2783.003699]  copy_namespaces+0x391/0x450
[ 2783.004302]  copy_process+0x27f2/0x6cb0
[ 2783.004864]  ? lock_is_held_type+0xd7/0x130
[ 2783.005454]  ? find_held_lock+0x2c/0x110
[ 2783.006035]  ? __cleanup_sighand+0xb0/0xb0
[ 2783.006631]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2783.007307]  ? _copy_from_user+0x139/0x170
[ 2783.007882]  ? kernel_clone+0x2f8/0xa60
[ 2783.008465]  kernel_clone+0xe7/0xa60
[ 2783.008986]  ? lock_is_held_type+0xd7/0x130
[ 2783.009577]  ? create_io_thread+0xf0/0xf0
[ 2783.010156]  ? lock_is_held_type+0xd7/0x130
[ 2783.010746]  __do_sys_clone3+0x1dd/0x2e0
[ 2783.011306]  ? __ia32_sys_clone+0x150/0x150
[ 2783.011899]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2783.012654]  ? vfs_write+0x188/0xae0
[ 2783.013168]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2783.013912]  ? fput+0x2a/0x50
[ 2783.014357]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2783.015065]  do_syscall_64+0x3b/0x90
[ 2783.015584]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2783.016302] RIP: 0033:0x7f8893772b19
[ 2783.016794] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2783.019223] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2783.020250] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2783.021191] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2783.022132] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2783.023064] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2783.024026] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2783.025021]  </TASK>
[ 2783.118203] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:28:06 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 65)

23:28:06 executing program 5:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x78070000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:28:06 executing program 3:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x80000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:28:06 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r0}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:28:06 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40005, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:28:06 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x80070000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:28:06 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}, 0x8}, 0x0)

23:28:06 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xfff7ffff00000000)

[ 2799.690429] FAULT_INJECTION: forcing a failure.
[ 2799.690429] name failslab, interval 1, probability 0, space 0, times 0
[ 2799.691993] CPU: 1 PID: 13508 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2799.697105] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2799.698547] Call Trace:
[ 2799.698883]  <TASK>
[ 2799.699189]  dump_stack_lvl+0x8b/0xb3
[ 2799.699693]  should_fail.cold+0x5/0xa
[ 2799.700194]  ? create_object.isra.0+0x3a/0xa20
[ 2799.700847]  should_failslab+0x5/0x10
[ 2799.701347]  kmem_cache_alloc+0x5b/0x480
[ 2799.701891]  create_object.isra.0+0x3a/0xa20
[ 2799.702486]  kmemleak_alloc_percpu+0xa0/0x100
[ 2799.703091]  pcpu_alloc+0x7bf/0x1060
[ 2799.703610]  alloc_vfsmnt+0xfd/0x6b0
[ 2799.704118]  clone_mnt+0x6d/0xdc0
[ 2799.704634]  copy_tree+0x3ac/0xa50
[ 2799.705143]  copy_mnt_ns+0x1a5/0xa90
[ 2799.705660]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2799.706319]  ? kmem_cache_alloc+0x332/0x480
[ 2799.706910]  create_new_namespaces+0xd6/0xb30
[ 2799.707533]  copy_namespaces+0x391/0x450
[ 2799.708102]  copy_process+0x27f2/0x6cb0
[ 2799.708686]  ? lock_is_held_type+0xd7/0x130
[ 2799.709283]  ? find_held_lock+0x2c/0x110
[ 2799.709858]  ? __cleanup_sighand+0xb0/0xb0
[ 2799.710444]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2799.711186]  ? _copy_from_user+0x139/0x170
[ 2799.711771]  ? kernel_clone+0x2f8/0xa60
[ 2799.712316]  kernel_clone+0xe7/0xa60
[ 2799.712853]  ? lock_is_held_type+0xd7/0x130
[ 2799.713427]  ? create_io_thread+0xf0/0xf0
[ 2799.714012]  ? lock_is_held_type+0xd7/0x130
[ 2799.714595]  __do_sys_clone3+0x1dd/0x2e0
[ 2799.715170]  ? __ia32_sys_clone+0x150/0x150
[ 2799.715775]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2799.716565]  ? vfs_write+0x188/0xae0
[ 2799.717037]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2799.717732]  ? fput+0x2a/0x50
[ 2799.718162]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2799.718837]  do_syscall_64+0x3b/0x90
[ 2799.719377]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2799.720048] RIP: 0033:0x7f8893772b19
[ 2799.720576] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2799.722868] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2799.723884] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2799.724826] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2799.725759] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2799.726666] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2799.727581] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2799.728612]  </TASK>
[ 2799.733382] loop4: detected capacity change from 0 to 256
[ 2799.733751] loop6: detected capacity change from 0 to 512
[ 2799.753953] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2799.762727] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2799.789968] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
23:28:06 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x88070000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:28:06 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}, 0x6}, 0x0)

23:28:06 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
syz_io_uring_submit(0x0, 0x0, 0x0, 0x800)
r0 = syz_open_procfs$namespace(0xffffffffffffffff, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r0}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:28:06 executing program 3:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x10070000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:28:22 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}, 0x9}, 0x0)

23:28:22 executing program 5:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xd0000000000000)

23:28:22 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x100000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:28:22 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
syz_io_uring_submit(0x0, 0x0, 0x0, 0x800)
syz_open_procfs$namespace(0xffffffffffffffff, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, 0x0, 0x4000)
rmdir(0x0)

23:28:22 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xffffffff00000000)

23:28:22 executing program 3:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(0x0, r1, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r2 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r2}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:28:22 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40006, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:28:22 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 66)

[ 2816.561158] loop4: detected capacity change from 0 to 256
[ 2816.578512] FAULT_INJECTION: forcing a failure.
[ 2816.578512] name failslab, interval 1, probability 0, space 0, times 0
[ 2816.580523] CPU: 0 PID: 13562 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2816.582967] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2816.585367] Call Trace:
[ 2816.585714]  <TASK>
[ 2816.586045]  dump_stack_lvl+0x8b/0xb3
[ 2816.586075] loop6: detected capacity change from 0 to 512
[ 2816.586607]  should_fail.cold+0x5/0xa
[ 2816.586641]  ? create_object.isra.0+0x3a/0xa20
[ 2816.588451]  should_failslab+0x5/0x10
[ 2816.589011]  kmem_cache_alloc+0x5b/0x480
[ 2816.589547]  ? mark_held_locks+0x9e/0xe0
[ 2816.590133]  create_object.isra.0+0x3a/0xa20
[ 2816.590740]  kmemleak_alloc_percpu+0xa0/0x100
[ 2816.591361]  pcpu_alloc+0x7bf/0x1060
[ 2816.591930]  alloc_vfsmnt+0xfd/0x6b0
[ 2816.592466]  clone_mnt+0x6d/0xdc0
[ 2816.592996]  copy_tree+0x3ac/0xa50
[ 2816.593494]  copy_mnt_ns+0x1a5/0xa90
[ 2816.594026]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2816.594675]  ? kmem_cache_alloc+0x332/0x480
[ 2816.595279]  create_new_namespaces+0xd6/0xb30
[ 2816.595942]  copy_namespaces+0x391/0x450
[ 2816.596526]  copy_process+0x27f2/0x6cb0
[ 2816.597097]  ? lock_is_held_type+0xd7/0x130
[ 2816.597687]  ? find_held_lock+0x2c/0x110
[ 2816.598293]  ? __cleanup_sighand+0xb0/0xb0
[ 2816.598890]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2816.599622]  ? _copy_from_user+0x139/0x170
[ 2816.600206]  ? kernel_clone+0x2f8/0xa60
[ 2816.600760]  kernel_clone+0xe7/0xa60
[ 2816.601272]  ? create_io_thread+0xf0/0xf0
[ 2816.601849]  __do_sys_clone3+0x1dd/0x2e0
[ 2816.602375]  ? __ia32_sys_clone+0x150/0x150
[ 2816.602928]  ? finish_task_switch.isra.0+0x226/0x870
[ 2816.603603]  ? perf_trace_run_bpf_submit+0xf5/0x1d0
[ 2816.604274]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2816.605038]  ? perf_trace_run_bpf_submit+0xf5/0x1d0
[ 2816.605707]  ? lock_is_held_type+0xd7/0x130
[ 2816.606296]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2816.606996]  do_syscall_64+0x3b/0x90
[ 2816.607516]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2816.608209] RIP: 0033:0x7f8893772b19
[ 2816.608746] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2816.611192] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2816.612249] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2816.613207] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2816.614153] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2816.615127] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2816.616075] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2816.617080]  </TASK>
[ 2816.633128] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2816.655811] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
23:28:23 executing program 3:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(0x0, r1, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r2 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r2}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:28:23 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
syz_io_uring_submit(0x0, 0x0, 0x0, 0x800)
syz_open_procfs$namespace(0xffffffffffffffff, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, 0x0, 0x0)
rmdir(0x0)

23:28:23 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x200000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:28:23 executing program 5:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
syz_io_uring_submit(0x0, 0x0, 0x0, 0x800)
syz_open_procfs$namespace(0xffffffffffffffff, 0x0)
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, 0x0, 0x4000)
rmdir(0x0)

[ 2816.773605] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:28:23 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 67)

23:28:23 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40007, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

[ 2816.878418] FAULT_INJECTION: forcing a failure.
[ 2816.878418] name failslab, interval 1, probability 0, space 0, times 0
[ 2816.880100] CPU: 0 PID: 13589 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2816.881802] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2816.886984] loop6: detected capacity change from 0 to 512
[ 2816.893320] Call Trace:
[ 2816.893339]  <TASK>
[ 2816.893350]  dump_stack_lvl+0x8b/0xb3
[ 2816.893393]  should_fail.cold+0x5/0xa
[ 2816.893427]  ? alloc_vfsmnt+0x23/0x6b0
[ 2816.897623]  should_failslab+0x5/0x10
[ 2816.898213]  kmem_cache_alloc+0x5b/0x480
[ 2816.898835]  ? lock_release+0x3b2/0x6f0
[ 2816.899465]  alloc_vfsmnt+0x23/0x6b0
[ 2816.900053]  clone_mnt+0x6d/0xdc0
[ 2816.900596]  copy_tree+0x3ac/0xa50
[ 2816.901160]  copy_mnt_ns+0x1a5/0xa90
[ 2816.901705]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2816.902394]  ? kmem_cache_alloc+0x332/0x480
[ 2816.903024]  create_new_namespaces+0xd6/0xb30
[ 2816.903694]  copy_namespaces+0x391/0x450
[ 2816.904305]  copy_process+0x27f2/0x6cb0
[ 2816.904919]  ? lock_is_held_type+0xd7/0x130
[ 2816.905673]  ? find_held_lock+0x2c/0x110
[ 2816.906302]  ? __cleanup_sighand+0xb0/0xb0
[ 2816.906970]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2816.907810]  ? _copy_from_user+0x139/0x170
[ 2816.908442]  ? kernel_clone+0x2f8/0xa60
[ 2816.909061]  kernel_clone+0xe7/0xa60
[ 2816.909614]  ? lock_is_held_type+0xd7/0x130
[ 2816.910247]  ? create_io_thread+0xf0/0xf0
[ 2816.910881]  ? lock_is_held_type+0xd7/0x130
[ 2816.911529]  __do_sys_clone3+0x1dd/0x2e0
[ 2816.912133]  ? __ia32_sys_clone+0x150/0x150
[ 2816.916839]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2816.917721]  ? vfs_write+0x188/0xae0
[ 2816.918317]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2816.919188]  ? fput+0x2a/0x50
[ 2816.919689]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2816.920501]  do_syscall_64+0x3b/0x90
[ 2816.921066]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2816.921822] RIP: 0033:0x7f8893772b19
[ 2816.922372] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2816.925085] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
23:28:23 executing program 3:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(0x0, r1, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r2 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r2}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

[ 2816.926194] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2816.931127] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2816.932031] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2816.932944] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2816.933831] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2816.934758]  </TASK>
[ 2816.970208] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
23:28:23 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xfffffffffffffffe)

[ 2816.996438] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
23:28:40 executing program 5:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(0x0, r1, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r2 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r2}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:28:40 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x300000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:28:40 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0xffffffffffffffff)

23:28:40 executing program 3:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(0x0, r1, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r2 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r2}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:28:40 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40008, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:28:40 executing program 0:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(0x0, r1, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r2 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r2}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:28:40 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 68)

23:28:40 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}, 0xc}, 0x0)

[ 2833.669854] loop6: detected capacity change from 0 to 512
[ 2833.677740] loop4: detected capacity change from 0 to 256
[ 2833.684424] FAULT_INJECTION: forcing a failure.
[ 2833.684424] name failslab, interval 1, probability 0, space 0, times 0
[ 2833.685989] CPU: 1 PID: 13613 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2833.687066] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2833.688525] Call Trace:
[ 2833.688867]  <TASK>
[ 2833.689237]  dump_stack_lvl+0x8b/0xb3
[ 2833.689747]  should_fail.cold+0x5/0xa
[ 2833.689887] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2833.690250]  ? create_object.isra.0+0x3a/0xa20
[ 2833.690284]  should_failslab+0x5/0x10
[ 2833.692327]  kmem_cache_alloc+0x5b/0x480
[ 2833.692875]  create_object.isra.0+0x3a/0xa20
[ 2833.693502]  ? kasan_unpoison+0x23/0x50
[ 2833.694032]  kmem_cache_alloc+0x239/0x480
[ 2833.694584]  alloc_vfsmnt+0x23/0x6b0
[ 2833.695079]  clone_mnt+0x6d/0xdc0
[ 2833.695538]  copy_tree+0x3ac/0xa50
[ 2833.696017]  copy_mnt_ns+0x1a5/0xa90
[ 2833.696504]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2833.697139]  ? kmem_cache_alloc+0x332/0x480
[ 2833.697709]  create_new_namespaces+0xd6/0xb30
[ 2833.698309]  copy_namespaces+0x391/0x450
[ 2833.698838]  copy_process+0x27f2/0x6cb0
[ 2833.699365]  ? lock_is_held_type+0xd7/0x130
[ 2833.699910]  ? find_held_lock+0x2c/0x110
[ 2833.700467]  ? __cleanup_sighand+0xb0/0xb0
[ 2833.701078]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2833.701774]  ? _copy_from_user+0x139/0x170
[ 2833.702322]  ? kernel_clone+0x2f8/0xa60
[ 2833.702834]  kernel_clone+0xe7/0xa60
[ 2833.703340]  ? lock_is_held_type+0xd7/0x130
[ 2833.703922]  ? create_io_thread+0xf0/0xf0
[ 2833.704486]  ? lock_is_held_type+0xd7/0x130
[ 2833.705101]  __do_sys_clone3+0x1dd/0x2e0
[ 2833.705658]  ? __ia32_sys_clone+0x150/0x150
[ 2833.706261]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2833.706999]  ? vfs_write+0x188/0xae0
[ 2833.707554]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2833.708329]  ? fput+0x2a/0x50
[ 2833.708765]  ? lock_is_held_type+0xd7/0x130
[ 2833.709361]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2833.710008]  do_syscall_64+0x3b/0x90
[ 2833.710574]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2833.711298] RIP: 0033:0x7f8893772b19
[ 2833.711796] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2833.714295] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2833.715284] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2833.716216] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2833.717187] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2833.718139] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2833.719090] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2833.720046]  </TASK>
[ 2833.731971] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:28:40 executing program 5:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x200000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:28:40 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x400000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:28:40 executing program 0:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x300000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2833.822870] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
23:28:40 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0xffffffff, 0x8}, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat2(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', &(0x7f0000000180)={0x280000, 0x10, 0x10}, 0x18)
syz_io_uring_submit(r1, r2, &(0x7f0000000280)=@IORING_OP_MADVISE={0x19, 0x2, 0x0, 0x0, 0x0, &(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x12, 0x1}, 0x6)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(0xffffffffffffffff, 0xc400941d, &(0x7f0000000400)={0x0, 0x1, 0x1, 0x1})
r4 = syz_io_uring_setup(0x1, &(0x7f0000000000), &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000080)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f00000001c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000200)={0x4849c1}, &(0x7f0000000180)='./file0\x00', 0x18, 0x0, 0x0, {0x0, r7}}, 0x0)
syz_io_uring_setup(0x1098, &(0x7f00000002c0)={0x0, 0xa98e, 0x0, 0x2, 0x248, 0x0, r0}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000340)=<r8=>0x0, &(0x7f0000000380))
r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_io_uring_submit(r8, 0x0, &(0x7f00000003c0)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r3, 0x0, 0x0, 0x0, {0x91413d086a57910a}, 0x0, {0x0, r9}}, 0x8)
syz_io_uring_submit(r1, r2, &(0x7f0000000240)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@l2tp={0x2, 0x0, @broadcast, 0x3}, 0x0, 0x0, 0x0, {0x0, r7}}, 0x200)
r10 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r10, 0xffffffffffffffff, r0], 0x3)

[ 2833.920162] loop0: detected capacity change from 0 to 256
[ 2833.959297] FAT-fs (loop0): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:28:40 executing program 3:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x8000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:28:40 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 69)

23:28:40 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}, 0xd}, 0x0)

23:28:40 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x40009, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:28:40 executing program 4:
r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
openat$incfs(r0, &(0x7f0000000080)='.pending_reads\x00', 0x10000, 0x40)
chdir(&(0x7f0000000140)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r1, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:28:40 executing program 5:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(0x0, r2, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r3 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r3}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

[ 2834.087542] FAULT_INJECTION: forcing a failure.
[ 2834.087542] name failslab, interval 1, probability 0, space 0, times 0
23:28:40 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x500000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2834.089150] CPU: 1 PID: 13649 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2834.090248] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2834.091726] Call Trace:
[ 2834.092070]  <TASK>
[ 2834.092371]  dump_stack_lvl+0x8b/0xb3
[ 2834.092891]  should_fail.cold+0x5/0xa
[ 2834.093432]  should_failslab+0x5/0x10
[ 2834.093944]  __kmalloc_track_caller+0x79/0x420
[ 2834.094552]  ? kstrdup_const+0x53/0x80
[ 2834.095083]  kstrdup+0x36/0x70
[ 2834.095517]  kstrdup_const+0x53/0x80
[ 2834.096024]  alloc_vfsmnt+0xb5/0x6b0
[ 2834.096543]  clone_mnt+0x6d/0xdc0
[ 2834.097056]  copy_tree+0x3ac/0xa50
[ 2834.097560]  copy_mnt_ns+0x1a5/0xa90
[ 2834.098090]  create_new_namespaces+0xd6/0xb30
[ 2834.098685]  copy_namespaces+0x391/0x450
[ 2834.099259]  copy_process+0x27f2/0x6cb0
[ 2834.099794]  ? lock_is_held_type+0xd7/0x130
[ 2834.100369]  ? find_held_lock+0x2c/0x110
[ 2834.100928]  ? __cleanup_sighand+0xb0/0xb0
[ 2834.101090] loop4: detected capacity change from 0 to 256
[ 2834.101544]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2834.101575]  ? _copy_from_user+0x139/0x170
[ 2834.103560]  ? kernel_clone+0x2f8/0xa60
[ 2834.104109]  kernel_clone+0xe7/0xa60
[ 2834.104618]  ? lock_is_held_type+0xd7/0x130
[ 2834.105218]  ? create_io_thread+0xf0/0xf0
[ 2834.105778]  ? lock_is_held_type+0xd7/0x130
[ 2834.106347]  __do_sys_clone3+0x1dd/0x2e0
[ 2834.106890]  ? __ia32_sys_clone+0x150/0x150
[ 2834.107472]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2834.108202]  ? vfs_write+0x188/0xae0
[ 2834.108692]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2834.109482]  ? fput+0x2a/0x50
[ 2834.109918]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2834.110596]  do_syscall_64+0x3b/0x90
[ 2834.111104]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2834.111774] RIP: 0033:0x7f8893772b19
[ 2834.112266] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2834.114902] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2834.115883] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2834.116840] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2834.117775] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2834.118696] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2834.119631] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2834.120572]  </TASK>
[ 2834.124193] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:28:40 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x4000a, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:28:40 executing program 3:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x80300, 0x1a0)

[ 2834.271880] loop6: detected capacity change from 0 to 512
23:28:40 executing program 5:
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

[ 2834.294061] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2834.305092] FAT-fs (loop0): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2834.323258] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[ 2834.436636] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:28:57 executing program 0:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x300000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:28:57 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x4000b, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:28:57 executing program 5:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, r3, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3}, 0x800)
r4 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r4}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

23:28:57 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}, 0xe}, 0x0)

23:28:57 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 70)

23:28:57 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x600000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:28:57 executing program 4:
r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x1000000, 0x0, &(0x7f0000000200), 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r1=>0xffffffffffffffff}, './file1\x00'})
openat(r1, &(0x7f0000000180)='./file0\x00', 0x480200, 0x18)
openat(r0, &(0x7f0000000080)='./file0\x00', 0x105002, 0x44)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r2, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:28:57 executing program 3:
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

[ 2850.697767] FAULT_INJECTION: forcing a failure.
[ 2850.697767] name failslab, interval 1, probability 0, space 0, times 0
[ 2850.700417] loop0: detected capacity change from 0 to 256
[ 2850.701906] CPU: 1 PID: 13689 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2850.704273] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2850.705745] Call Trace:
[ 2850.706080]  <TASK>
[ 2850.706368]  dump_stack_lvl+0x8b/0xb3
[ 2850.706873]  should_fail.cold+0x5/0xa
[ 2850.707372]  ? create_object.isra.0+0x3a/0xa20
[ 2850.707966]  should_failslab+0x5/0x10
[ 2850.708454]  kmem_cache_alloc+0x5b/0x480
[ 2850.708998]  create_object.isra.0+0x3a/0xa20
[ 2850.709616]  ? kasan_unpoison+0x23/0x50
[ 2850.710149]  __kmalloc_track_caller+0x25e/0x420
[ 2850.710751]  ? kstrdup_const+0x53/0x80
[ 2850.711268]  kstrdup+0x36/0x70
[ 2850.711697]  kstrdup_const+0x53/0x80
[ 2850.712189]  alloc_vfsmnt+0xb5/0x6b0
[ 2850.712690]  clone_mnt+0x6d/0xdc0
[ 2850.713159]  copy_tree+0x3ac/0xa50
[ 2850.714095]  copy_mnt_ns+0x1a5/0xa90
[ 2850.714995]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2850.716143]  ? kmem_cache_alloc+0x332/0x480
[ 2850.717156]  create_new_namespaces+0xd6/0xb30
[ 2850.717882]  copy_namespaces+0x391/0x450
[ 2850.718868]  copy_process+0x27f2/0x6cb0
[ 2850.719895]  ? lock_is_held_type+0xd7/0x130
[ 2850.720398] loop4: detected capacity change from 0 to 32768
[ 2850.721183]  ? find_held_lock+0x2c/0x110
[ 2850.723302]  ? __cleanup_sighand+0xb0/0xb0
[ 2850.724564]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2850.726306]  ? _copy_from_user+0x139/0x170
[ 2850.727648]  ? kernel_clone+0x2f8/0xa60
[ 2850.728804]  kernel_clone+0xe7/0xa60
[ 2850.729958]  ? lock_is_held_type+0xd7/0x130
[ 2850.731255]  ? create_io_thread+0xf0/0xf0
[ 2850.732479]  ? lock_is_held_type+0xd7/0x130
[ 2850.733770]  __do_sys_clone3+0x1dd/0x2e0
[ 2850.734967]  ? __ia32_sys_clone+0x150/0x150
[ 2850.736257]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2850.737887]  ? vfs_write+0x188/0xae0
[ 2850.739005]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2850.740597]  ? fput+0x2a/0x50
[ 2850.741533]  ? lock_is_held_type+0xd7/0x130
[ 2850.742769]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2850.744156]  do_syscall_64+0x3b/0x90
[ 2850.745197]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2850.746678] RIP: 0033:0x7f8893772b19
[ 2850.747770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2850.753204] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2850.755494] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2850.757655] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2850.759611] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2850.761552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2850.763393] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2850.765293]  </TASK>
[ 2850.772098] loop6: detected capacity change from 0 to 512
[ 2850.785585] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2850.803205] FAT-fs (loop4): bogus number of reserved sectors
[ 2850.803601] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[ 2850.804084] FAT-fs (loop4): Can't find a valid FAT filesystem
23:28:57 executing program 3:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xff770000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

[ 2850.879631] loop4: detected capacity change from 0 to 32768
[ 2850.881495] FAT-fs (loop0): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
23:28:57 executing program 5:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
ioctl$VFAT_IOCTL_READDIR_BOTH(r1, 0x82307201, &(0x7f0000000180)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r2, 0x6c64, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_selinux(r2, &(0x7f0000000040), &(0x7f00000003c0)='system_u:object_r:file_context_t:s0\x00', 0x24, 0x2)

23:28:57 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x700000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:28:57 executing program 3:
perf_event_open$cgroup(&(0x7f00000000c0)={0x2, 0x80, 0x9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = ioctl$NS_GET_PARENT(r0, 0xb702, 0x0)
pwrite64(r1, &(0x7f0000000000)="c49660df381d931f77ada14d10d98358069fbf4702f4eca7467a48d8a1eab8970c873bb302da2a460af53f739ffd18e5af5ce4d48dba0f4d2de8a5e435", 0x3d, 0x9)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(0xffffffffffffffff, 0x4008240b, 0x0)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd, 0x1d3, 0x0, 0x4, 0x3, 0x0, {0x0, r5}}, 0x800)
r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/asound/seq/clients\x00', 0x0, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r6, 0x40082406, &(0x7f0000000380)='^\x80^-\x00')
r7 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000140)='ns/pid_for_children\x00')
sendmsg$GTP_CMD_DELPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x2c, 0x0, 0x4, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_NET_NS_FD={0x8, 0x7, r7}, @GTPA_I_TEI={0x8, 0x8, 0x4}, @GTPA_NET_NS_FD={0x8, 0x7, r0}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x4000)
rmdir(0x0)

[ 2850.928446] FAT-fs (loop4): bogus number of reserved sectors
[ 2850.930398] FAT-fs (loop4): Can't find a valid FAT filesystem
23:28:57 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2, 0x80)
chdir(&(0x7f00000000c0)='./file0\x00')
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0x0, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:28:57 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}, 0x21}, 0x0)

23:28:57 executing program 5:
r0 = syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
ioctl$VFAT_IOCTL_READDIR_BOTH(r1, 0x82307201, &(0x7f0000000180)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}])
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r1, 0xffffffffffffffff, r0], 0x3)
r2 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r2, 0x6c64, 0x0, 0x0, 0x0, 0x0)
fsetxattr$security_selinux(r2, &(0x7f0000000040), &(0x7f00000003c0)='system_u:object_r:file_context_t:s0\x00', 0x24, 0x2)

23:28:57 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x4000c, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

23:28:57 executing program 0:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

[ 2851.152683] loop6: detected capacity change from 0 to 512
[ 2851.165390] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2851.190612] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
23:29:14 executing program 2:
ioprio_set$pid(0x1, 0x0, 0x2000)
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) (fail_nth: 71)

23:29:14 executing program 7:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000100)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SCAN_FLAGS={0x8, 0x9e, 0x40}]}, 0x24}, 0x28}, 0x0)

23:29:14 executing program 4:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x1, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r0=>0x0, &(0x7f0000000140)=<r1=>0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r0, r1, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r2, 0x0, 0x0}, 0x0)
syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x5, 0x0, 0xffffffffffffff9c, 0x0, 0x0}, 0xffffffff)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0x2, 0x0, r5, 0x0, 0x0}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x800000, &(0x7f0000000240)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[{@fscache}, {@posixacl}, {@access_user}, {@debug={'debug', 0x3d, 0xffffffffffffe665}}, {@uname={'uname', 0x3d, '\\'}}, {@mmap}, {@access_client}, {@access_any}], [{@hash}, {@seclabel}, {@fscontext={'fscontext', 0x3d, 'root'}}, {@fsuuid={'fsuuid', 0x3d, {[0x64, 0x38, 0x33, 0x63, 0x65, 0x35, 0x65, 0x30], 0x2d, [0x66, 0xd0, 0x38, 0x39], 0x2d, [0x64, 0x1, 0x5d, 0x34], 0x2d, [0x64, 0x65, 0x65, 0x62], 0x2d, [0x31, 0x63, 0x34, 0x31, 0x61, 0x37, 0x34, 0x39]}}}, {@dont_hash}]}})
chdir(&(0x7f0000000140)='./file0\x00')
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r6, 0x0, 0x0, 0x8800000)
r7 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x800, 0x51)
fcntl$F_SET_RW_HINT(r7, 0x40c, &(0x7f00000000c0)=0x4)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:29:14 executing program 5:
r0 = syz_io_uring_setup(0x4f02, &(0x7f00000002c0), &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(r0, 0x6c64, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080), &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140))
io_uring_enter(0xffffffffffffffff, 0x7e72, 0xdad6, 0x0, &(0x7f0000000180), 0x8)

23:29:14 executing program 3:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xff1f0000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:29:14 executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736689254300080120000400004000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x10000}], 0x800010, &(0x7f0000011200)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
fallocate(r0, 0xc00000000000000, 0x0, 0x8800000)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141200, 0x0)

23:29:14 executing program 0:
io_setup(0x1, &(0x7f0000000000)=<r0=>0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x802, 0x0)
io_submit(r0, 0x1, &(0x7f00000008c0)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0xfe}])
io_cancel(r0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x401, 0xffffffffffffffff, &(0x7f00000001c0)="3954a27a17b43d39a65961fb9749f0c6e5eafb6975e7e9a0034c4402cd78afcb49abda74329ac73e85a3104db1333b3cd37c78d3efef67dfbae668d2ecd7fc280d857064311010d40ada811cf8dce649fa538cc8116d15eb46840df231da05cd04b7f96970668bb626a517712f58441baadf0a5cedcb535c0e729f27a11a9f7597f0efafb4f78af0b0628e24849cf8b96be945287b3baea3bdf2b70612762198aa897c34ef8f91fbf94aa4e8a9db7582f41f63fc3fe763050722b85300606b74420678033aa68c32d9f597539386b51d605b0611b37c4ffb654c3910cb106e133a", 0xe1, 0x7f2}, &(0x7f00000002c0))
r2 = syz_io_uring_setup(0xd8c, &(0x7f0000000080)={0x0, 0x357e, 0x20}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180))
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r2, 0x2, &(0x7f0000000000)=[r3, 0xffffffffffffffff, r2], 0x3)

23:29:14 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file1\x00', 0x4000d, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000320000000f000000000000000200000002000000008000000080000020000000d4f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010300)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012500)="ed41000000100000d4f4655fd4f4655fd4f4655f000000000000040008", 0x1d, 0x4100}], 0x0, &(0x7f0000000740)=ANY=[])

[ 2867.656057] FAULT_INJECTION: forcing a failure.
[ 2867.656057] name failslab, interval 1, probability 0, space 0, times 0
[ 2867.658082] CPU: 0 PID: 13748 Comm: syz-executor.2 Not tainted 5.17.0-rc2-next-20220131 #1
[ 2867.659151] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 2867.661564] Call Trace:
[ 2867.661943]  <TASK>
[ 2867.662574]  dump_stack_lvl+0x8b/0xb3
[ 2867.663149]  should_fail.cold+0x5/0xa
[ 2867.664375]  ? create_object.isra.0+0x3a/0xa20
[ 2867.665244]  should_failslab+0x5/0x10
[ 2867.665916]  kmem_cache_alloc+0x5b/0x480
[ 2867.666622]  create_object.isra.0+0x3a/0xa20
[ 2867.667396]  kmemleak_alloc_percpu+0xa0/0x100
[ 2867.668173]  pcpu_alloc+0x7bf/0x1060
[ 2867.668843]  alloc_vfsmnt+0xfd/0x6b0
[ 2867.669486]  clone_mnt+0x6d/0xdc0
[ 2867.670098]  copy_tree+0x3ac/0xa50
[ 2867.670722]  copy_mnt_ns+0x1a5/0xa90
[ 2867.671380]  ? rcu_read_lock_sched_held+0x3a/0x70
[ 2867.672211]  ? kmem_cache_alloc+0x332/0x480
[ 2867.672960]  create_new_namespaces+0xd6/0xb30
[ 2867.673800]  copy_namespaces+0x391/0x450
[ 2867.674501]  copy_process+0x27f2/0x6cb0
[ 2867.675191]  ? lock_is_held_type+0xd7/0x130
[ 2867.675866]  ? find_held_lock+0x2c/0x110
[ 2867.676440]  ? __cleanup_sighand+0xb0/0xb0
[ 2867.677068]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 2867.677921]  ? _copy_from_user+0x139/0x170
[ 2867.678569]  ? kernel_clone+0x2f8/0xa60
[ 2867.679154]  kernel_clone+0xe7/0xa60
[ 2867.679700]  ? lock_is_held_type+0xd7/0x130
[ 2867.680326]  ? create_io_thread+0xf0/0xf0
[ 2867.680940]  ? lock_is_held_type+0xd7/0x130
[ 2867.681583]  __do_sys_clone3+0x1dd/0x2e0
[ 2867.682175]  ? __ia32_sys_clone+0x150/0x150
[ 2867.682826]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 2867.683610]  ? vfs_write+0x188/0xae0
[ 2867.684154]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 2867.684949]  ? fput+0x2a/0x50
[ 2867.685408]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 2867.686172]  do_syscall_64+0x3b/0x90
[ 2867.686721]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 2867.687487] RIP: 0033:0x7f8893772b19
[ 2867.688016] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 2867.690624] RSP: 002b:00007f8890ce8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[ 2867.691792] RAX: ffffffffffffffda RBX: 00007f8893885f60 RCX: 00007f8893772b19
[ 2867.692825] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[ 2867.693829] RBP: 00007f8890ce81d0 R08: 0000000000000000 R09: 0000000000000000
[ 2867.694948] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 2867.695949] R13: 00007ffec149b91f R14: 00007f8890ce8300 R15: 0000000000022000
[ 2867.696977]  </TASK>
[ 2867.700466] loop6: detected capacity change from 0 to 512
[ 2867.712509] loop4: detected capacity change from 0 to 256
[ 2867.715315] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[ 2867.730577] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 2867.746807] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
23:29:14 executing program 3:
io_setup(0x1, &(0x7f0000000000)=<r0=>0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x802, 0x0)
io_submit(r0, 0x1, &(0x7f00000008c0)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0xfe}])
io_cancel(r0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x401, 0xffffffffffffffff, &(0x7f00000001c0)="3954a27a17b43d39a65961fb9749f0c6e5eafb6975e7e9a0034c4402cd78afcb49abda74329ac73e85a3104db1333b3cd37c78d3efef67dfbae668d2ecd7fc280d857064311010d40ada811cf8dce649fa538cc8116d15eb46840df231da05cd04b7f96970668bb626a517712f58441baadf0a5cedcb535c0e729f27a11a9f7597f0efafb4f78af0b0628e24849cf8b96be945287b3baea3bdf2b70612762198aa897c34ef8f91fbf94aa4e8a9db7582f41f63fc3fe763050722b85300606b74420678033aa68c32d9f597539386b51d605b0611b37c4ffb654c3910cb106e133a", 0xe1, 0x7f2}, &(0x7f00000002c0))
r2 = syz_io_uring_setup(0xd8c, &(0x7f0000000080)={0x0, 0x357e, 0x20}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180))
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r2, 0x2, &(0x7f0000000000)=[r3, 0xffffffffffffffff, r2], 0x3)

23:29:14 executing program 0:
io_setup(0x1, &(0x7f0000000000)=<r0=>0x0)
r1 = openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x802, 0x0)
io_submit(r0, 0x1, &(0x7f00000008c0)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0xfe}])
io_cancel(r0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x401, 0xffffffffffffffff, &(0x7f00000001c0)="3954a27a17b43d39a65961fb9749f0c6e5eafb6975e7e9a0034c4402cd78afcb49abda74329ac73e85a3104db1333b3cd37c78d3efef67dfbae668d2ecd7fc280d857064311010d40ada811cf8dce649fa538cc8116d15eb46840df231da05cd04b7f96970668bb626a517712f58441baadf0a5cedcb535c0e729f27a11a9f7597f0efafb4f78af0b0628e24849cf8b96be945287b3baea3bdf2b70612762198aa897c34ef8f91fbf94aa4e8a9db7582f41f63fc3fe763050722b85300606b74420678033aa68c32d9f597539386b51d605b0611b37c4ffb654c3910cb106e133a", 0xe1, 0x7f2}, &(0x7f00000002c0))
r2 = syz_io_uring_setup(0xd8c, &(0x7f0000000080)={0x0, 0x357e, 0x20}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180))
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
io_uring_register$IORING_REGISTER_FILES(r2, 0x2, &(0x7f0000000000)=[r3, 0xffffffffffffffff, r2], 0x3)

[ 2867.853673] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[ 2867.855168] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] 
[ 2867.856252] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present
[ 2867.857271] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 08 00
[ 2867.858369] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 3 prio class 0
[ 2867.860754] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[ 2867.861585] I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 2867.862859] Buffer I/O error on dev sr0, logical block 0, async page read
[ 2867.870514] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[ 2867.871269] I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 2867.873023] Buffer I/O error on dev sr0, logical block 1, async page read
[ 2867.874753] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[ 2867.876345] I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 2867.879078] Buffer I/O error on dev sr0, logical block 2, async page read
[ 2867.881616] sr 1:0:0:0: [sr0] tag#0 unaligned transfer
[ 2867.883284] I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 2867.886072] Buffer I/O error on dev sr0, logical block 3, async page read
[ 2867.905887] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[ 2867.907821] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] 
[ 2867.908956] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present
[ 2867.910042] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 01 00 00 01 00
[ 2867.911403] I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 4 prio class 0
[ 2867.912804] Buffer I/O error on dev sr0, logical block 4, async page read
[ 2867.914109] Buffer I/O error on dev sr0, logical block 5, async page read
[ 2867.915244] Buffer I/O error on dev sr0, logical block 6, async page read
[ 2867.916356] Buffer I/O error on dev sr0, logical block 7, async page read
[ 2872.742362] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1)
[ 3023.780230] INFO: task kworker/u4:2:33 blocked for more than 143 seconds.
[ 3023.781143]       Not tainted 5.17.0-rc2-next-20220131 #1
[ 3023.781878] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3023.782921] task:kworker/u4:2    state:D stack:24408 pid:   33 ppid:     2 flags:0x00004000
[ 3023.784036] Workqueue: events_unbound io_ring_exit_work
[ 3023.784805] Call Trace:
[ 3023.785135]  <TASK>
[ 3023.785454]  __schedule+0x882/0x2190
[ 3023.785939]  ? io_schedule_timeout+0x180/0x180
[ 3023.786544]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 3023.787266]  schedule+0xd2/0x260
[ 3023.787698]  schedule_timeout+0x1c5/0x280
[ 3023.788382]  ? usleep_range_state+0x1b0/0x1b0
[ 3023.789580]  ? wait_for_completion+0x16c/0x270
[ 3023.790825]  ? mark_held_locks+0x9e/0xe0
[ 3023.791908]  ? rwlock_bug.part.0+0x90/0x90
[ 3023.792637]  ? _raw_spin_unlock_irq+0x1f/0x40
[ 3023.793227]  wait_for_completion+0x174/0x270
[ 3023.793778]  ? rwlock_bug.part.0+0x90/0x90
[ 3023.794328]  ? bit_wait_io_timeout+0x160/0x160
[ 3023.794902]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 3023.795604]  ? task_work_add+0xa6/0x190
[ 3023.796195]  io_ring_exit_work+0x49b/0xc50
[ 3023.796804]  ? io_req_caches_free+0x1e6/0x1e6
[ 3023.797452]  ? lock_acquire+0x1b2/0x4d0
[ 3023.798000]  ? io_uring_del_tctx_node+0x24d/0x24d
[ 3023.798691]  ? lock_is_held_type+0xd7/0x130
[ 3023.799314]  process_one_work+0xa1c/0x16a0
[ 3023.799950]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[ 3023.801182]  ? rwlock_bug.part.0+0x90/0x90
[ 3023.802467]  ? _raw_spin_lock_irq+0x41/0x50
[ 3023.803771]  worker_thread+0x637/0x1260
[ 3023.808605]  ? process_one_work+0x16a0/0x16a0
[ 3023.809250]  kthread+0x2f0/0x3a0
[ 3023.809717]  ? kthread_complete_and_exit+0x40/0x40
[ 3023.810408]  ret_from_fork+0x22/0x30
[ 3023.810937]  </TASK>
[ 3023.811356] INFO: task kworker/u4:1:13382 blocked for more than 143 seconds.
[ 3023.812355]       Not tainted 5.17.0-rc2-next-20220131 #1
[ 3023.813069] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 3023.814131] task:kworker/u4:1    state:D stack:27856 pid:13382 ppid:     2 flags:0x00004000
[ 3023.815293] Workqueue: events_unbound io_ring_exit_work
[ 3023.816001] Call Trace:
[ 3023.816424]  <TASK>
[ 3023.816737]  __schedule+0x882/0x2190
[ 3023.817293]  ? io_schedule_timeout+0x180/0x180
[ 3023.817928]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 3023.818736]  schedule+0xd2/0x260
[ 3023.819248]  schedule_timeout+0x1c5/0x280
[ 3023.819818]  ? usleep_range_state+0x1b0/0x1b0
[ 3023.820498]  ? wait_for_completion+0x16c/0x270
[ 3023.821123]  ? mark_held_locks+0x9e/0xe0
[ 3023.821692]  ? rwlock_bug.part.0+0x90/0x90
[ 3023.822302]  ? _raw_spin_unlock_irq+0x1f/0x40
[ 3023.822969]  wait_for_completion+0x174/0x270
[ 3023.823617]  ? rwlock_bug.part.0+0x90/0x90
[ 3023.832356]  ? bit_wait_io_timeout+0x160/0x160
[ 3023.832999]  ? task_work_add+0xa6/0x190
[ 3023.833578]  io_ring_exit_work+0x49b/0xc50
[ 3023.834145]  ? io_req_caches_free+0x1e6/0x1e6
[ 3023.834770]  ? lock_acquire+0x1b2/0x4d0
[ 3023.835334]  ? io_uring_del_tctx_node+0x24d/0x24d
[ 3023.835984]  ? lock_is_held_type+0xd7/0x130
[ 3023.840688]  process_one_work+0xa1c/0x16a0
[ 3023.841324]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[ 3023.841970]  ? rwlock_bug.part.0+0x90/0x90
[ 3023.842574]  ? _raw_spin_lock_irq+0x41/0x50
[ 3023.843212]  worker_thread+0x637/0x1260
[ 3023.843768]  ? __kthread_parkme+0x15a/0x220
[ 3023.848490]  ? process_one_work+0x16a0/0x16a0
[ 3023.849138]  kthread+0x2f0/0x3a0
[ 3023.849628]  ? kthread_complete_and_exit+0x40/0x40
[ 3023.850441]  ret_from_fork+0x22/0x30
[ 3023.850939]  </TASK>
[ 3023.851273] 
[ 3023.851273] Showing all locks held in the system:
[ 3023.852096] 1 lock held by khungtaskd/24:
[ 3023.852687]  #0: ffffffff85202400 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260
[ 3023.853972] 2 locks held by kworker/u4:2/33:
[ 3023.854561]  #0: ffff888007861138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0
[ 3023.855922]  #1: ffff88800b567db0 ((work_completion)(&ctx->exit_work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0
[ 3023.857383] 1 lock held by in:imklog/186:
[ 3023.858525]  #0: ffff88800d2520f0 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0xe9/0x100
[ 3023.859814] 2 locks held by kworker/u4:1/13382:
[ 3023.864615]  #0: ffff888007861138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0
[ 3023.866008]  #1: ffff88803483fdb0 ((work_completion)(&ctx->exit_work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0
[ 3023.867506] 
[ 3023.867766] =============================================
[ 3023.867766] 

VM DIAGNOSIS:
23:31:50  Registers:
info registers vcpu 0
RAX=ffffffff840a1cc0 RBX=ffffffff85032600 RCX=ffffffff84084551 RDX=0000000000000000
RSI=0000000000000001 RDI=0000000000000000 RBP=0000000000000000 RSP=ffffffff85007e40
R8 =0000000000000001 R9 =ffff88806ce38b93 R10=ffffed100d9c7172 R11=0000000000000001
R12=fffffbfff0a064c0 R13=ffffffff858c7510 R14=0000000000000000 R15=dffffc0000000000
RIP=ffffffff840a1ccb RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f42e227a628 CR3=000000000e9ac000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 3f160aff0e21e2a1 81412399dba186c5
YMM02=0000000000000000 0000000000000000 6b1e99b806172e3b 00000000000aea20
YMM03=0000000000000000 0000000000000000 80f09f19808d26a3 00000000000aec60
YMM04=0000000000000000 0000000000000000 465fc2363fd236c8 0000000000228ea0
YMM05=0000000000000000 0000000000000000 d3fdd5f48436fbd7 00000000000aeac8
YMM06=0000000000000000 0000000000000000 6575ee4313b26811 00000000000ae980
YMM07=0000000000000000 0000000000000000 a1fcdcf819d7e1e5 00000000000ae728
YMM08=0000000000000000 0000000000000000 44495f474f4c5359 530069253d595449
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000020000020 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff823690bc RDI=ffffffff8739a3e0 RBP=ffffffff8739a3a0 RSP=ffff888008b779c8
R8 =0000000000000033 R9 =000000000000006b R10=ffffffff8235077b R11=000000000000000a
R12=0000000000000020 R13=fffffbfff0e734c7 R14=fffffbfff0e7347e R15=dffffc0000000000
RIP=ffffffff82369110 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f94d20e4648 CR3=0000000037cf2000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 7465677261742e79 636e656772656d65
YMM02=0000000000000000 0000000000000000 ffffffffffffff0f 0e0d0c0b0a090807
YMM03=0000000000000000 0000000000000000 0000000000000061 0065636976726573
YMM04=0000000000000000 0000000000000000 2e2e2e2e2e2e2e2e 2e2e2e2e2e2e2e2e
YMM05=0000000000000000 0000000000000000 00ff0100000000ff 0000000200000004
YMM06=0000000000000000 0000000000000000 0000000000000021 0000000000000000
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 732f6563696c732e 6d65747379732f3a
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000