1f4753bcc833ede2cbfc223ed5e9a559073e78db08fad0bf8e7af5b03fd498d6784549b9678c82bf7850074f8cbd41e483d968e906e640b628c33bef0a71d5df156c02382272498e502274ec815c8ad2d5ef30dd075166bdd17970e1949729ee4c0c32e0a6701beaa33a1493c5940d03bdc19c380e3a8f54e1aed84bef46986161e5e0fea13c7f8c43ce671aa5459a073642e9e991fe2b599bf86941f94a4075111b7d5e3c8504361e76b17eab59d369499850f5728439e034bc3bc555ed4cb85c366a3ab2f7d1bf4fcc801d01e3c3f54a8296d16960ebf3d8e5a128a10e68ec3c6fd88fc3eb1afc0844cf10cf07f84bea4026835b0a64c92784ad47e95c0f84b3bb1340ffe083befa50b2214043642808e42396e596a9b6bf25069f92fba99a47859fc30df6e4ed5784f124c7d2593889b1cda1160fecd15b14bca312b6caa24042bf19600e083838e5fc700eb4880b2eacd6ab4de5d45c8bbff87e65b8166ffa75cdfd68810143a50b08d7fbdbdee62003dc77f1532d04d13264f31d57bd77d9e7fe7e596cd42fc0b5d2931448d5441be7b9d1e4320c245abc858ceeaf64163a38bdc925345a4e1a8fd2b334ac72a6939cfaf623261fc40a8889d065063e40ada485b45b4a4370013ba5cedfe67b64767281ff0aa84f24decedc8d43d2be72683034f3fc0d49242765dbab2330f07aa0fe5fa92ac3077aedb41573b9ed65a79fa675abd625d510351b8716cef5c6a90e1626a356322e577ebcc98157f0e6c034622cce1e8688c8994ae3752ad7df6ad0714337a81cbd35591570dcabe785a0082c6b6b46ce23fc1f84bf4dd237639ea542cf60173766ec90de7799103446974272599eef3bc89048adfece580b112d9e6350c6e849408fbe9acb48ac84b2473b79cd440484029554d871e1a05f4c415142c10554aa130ce30ca4ed04ea17fab02e2fec543db06c46df9906d9797239f57b05c51a8bf23bb78b71774a6e8abeb2c67da1663f10b30e2f2c4f646219ec1249dc83feea9f252ee97795056847ed4a5761232b8a2482f345d981c2ede9f4b54219d6f21756d52c90a7c4e573b601862e5c9c2e3ef925f19f32c0cd8d56bf3fe09bf820101619cc70d0dcf41bbe22ef6850e99b27f17e240ed9db652be63142db43963f0a8a51ae4a73847383c41bdab8f10722c318c58a18363fe4a4236fe02eafb675bb974b70bcdca899e1cc2749b893cf509ae6514d42ffb7ec845c5f7b76093f2588f277c55f4d81ba01a558a33e265ebdcd269804bfcf931af5cd3bf9091ad353e1556dba118b84a86b018c84005c31036cd25be2ef7ca3918cf5469786d97dc2388a3c1c4f5dfeceffd96cbfb3687e562bdf9746c0636d532954aac29f4e7ef48343e1f5631239a721e9e3c400b835f0c30a6feaf17c8bedeabc63c4f439555537be7f3f88c2c8212704243d731b4f0b4c6571650f43dc61581a59ae71147fb24e02f3be7b7f97c6fbddf453c5a4e73273801745723fa0c36f70349571575b81ea5cc04d009c2dbe239e4e6187cf3f93783eb1b779e596b563fe751a2a521bca2a3df6799f9bf01d5a4bc30665da75ec4acbcc5707c3ab9e609aca3d606bea017ee2651e06c447a8d34480c1a84427c5be418bb2a8d46859997c85d9f665de7b7b028fbd759c6b7a90a5c5586474519177ed64f2695f6dcc0c09b6df536063686a49632a6a888ce7e82447b8e115b8a98ac8d2ea0b1da609d02d67d0108a40b796ab8e3202091ff2056080148fe35303072898ca6744c298e3733b2685061cd003dffd6c8fee8175f5d56c81f4d09d931594055ed88fac319360f99f333835cafd882d0cd6869e3afc16dd201c128abec2f10122dabae3f9e0d7e03e304993d1c1a8bf00bd0745190b4cca8c069482e5a66d400626825f1b981843908b5eb156fa4d6b426f4edb0a7b75849376b6705ac3402f95ac50598d64098bb3925e0a95f254884d27e4b7c75c938a329e5a0711f2fd1673e7d239639f04976c054e7332500fffc6362d47fc2db5473ecb0d88a194308c97f3b5710fae0095f4081aea1d28b36e21cf01f94f9823437f7312b10e5ecb86b62a1275014447afbdc2204b319bf29e32279cd7b7af38d0a6066f381dee3eb03df1952415cf4169893f6337345864e2ba45fbfd3d9a70074b82c61979b26fc2ecd933801e6b3c6ce36b6292c61d51b044acc75e9c1b0010bcf7b19e519a94ceed6043d9b78f96e97c7e9b171df2b4f66435146215e3d49bf0f6764a66ec3183b07d48e52fc57f11bec56bf9ca9425acc8c8eea3861fbc45b6bbca5a0dbc6bb26a963ba03324c513f5b7e678ce5db70eab154427555b685d415889907e2619a9fa8cd8a827379138fb99f9ebe16eb33a170015805d01ed761f2b44d1eb7101c769bbcce2bbea92df6180e6c7b2ef8aba2c33e3d2cb5b7106fbde8e0734d8f51a65e57aa069ea5260b3db5d143ff0c3d98d8a61cb4855d50957f1f9f5f98327a547069fe671342502c70bd4eab3206dec35da6d1fc4bb84a9de0d90f4af21cd574c19a3c80937515f5aabf63e83c3259a2d65661b6832a2f55e09140c1d9ef03bcb6252c12ec982d021374879250d28c6d0f67045ef281fbb795fc1ae1e469b7f5db8f7ad45892f0b210713564e46d99e139efebeeaf53201069f62ff0f6e99747558752046f7194b88fee1955785e96888f12476ac4a01f5301842a53bcf5ee9e955f93e083d4ba69d9afc5b6226d51a56f1d1f1b374022d3f801cdf825ebec960a96f212875558df16decabdc38dc5426a886d76e316f36462801318b031f20667c8d7136d4d7249959d913f9996142424aad320cfd64850f0de27f072d0747c16fb3d56a5ced311e96752c460972fdeb744e8c14367b53ddc494867ef3bcf5dffb4b6ccdc55188a1f8e7ae2d628fef265e12f3502c7ac0c27d6cf48d4f49dbb44fda775fbfe260c77e5455a8103d2263584a0a70679a28d6907f665753bd66c8662a86052091a8eadc8705f6732955b559b63547c5806a9de7109d08be09c677471f0d2a2762156c6932391c612eee214ca7013b4717c6434a8d333fec54d6d8dccaec0633337e63db3f6097f0b5c32efdc81f21ecd93c9d13d5633793ba85979fe6f1c72285c0e2ab89e763b7fb87825f4cf540d4bb0c39bbc7ea6847eb46ea6258ba0c334564fe3c90cf8f4201ba35aa93e2ccaf22188d22ea573a13335bcf2ae2d4799e36501ef8e9c3ddca672e47d6e000d747c2fc5c6378509d47d0eca9a8570a76b705ece4c49c476609add929b3ce16c83edc4d572ff02c77228ce5d490fe7cddb29d2e9c2f819ce55128d756260b22dd24c93a62c1644dd8dfb57428f34ecb4ea57a5134bb8b2286b54ff3312585ff4199ca6fa67bd13627b3da756f6911bf6c9924eb16841594502e48273bed62874fdd1cb02e80754fd80c9cea40740dd5dabe2748fd8bb3b23058b325dd5912aa0415feacce25794da73360038c26ab1d9840e7fa33b06a23aa1121ce14965ec1f6f9238c50559a89560d3c70eff78f83ec5a20440b1b411f7041b074381ed8f5040e28858d30d1dc8eee3beb003ee8ac101845cfa3897e4c7e1f3d9a5da12c96487bbb65e03bd87c129c83d7d7b70818762cc5c45a490f4499799c0795308fc53be5ed4c04e5f6275a752a0445b72504eb9f6375a72033f9c5d864cf2081c2fb7a42379c2c7e9e98c9fc98ea3719fb658fba65d7c0d7edba575bcda0e8778f52f1ba094825c9320a1633bb1fee8c9243c493126c589e19fe98a792f0c3825c61ebd769f7587388a2d3aa0a0c670654c237323de43e72d62d50052f00329a8e8e3d64e70de97ce20b15fdcf8b9bf7ef27daa5ced979552b7fc0d089155d325bf2d328bb75e1544d72d1b3e7a90533a378e9691e9ff5828ea6fa74eb5dbd9708badb0410739e985e710bd518894102faef38378c8c50bca179cd34a15ae8d84e1a88e944e2d378ecb5e02894c53a44a2e3c8ce3cae116a234c341e24162714ac48ed31390f802223678c74b08669edea9bf8815adb8895a585795c2f6fbee9a9f1a41db7f09891777e0d093433fa13564c99a0a2569516427c63312ae0c1271ad2bd52b6b23b39388b02283877494f71f60a07a6ee0cc2109803c41ce4d3aca36a8290e0699c48ba9111258d7791b20f3a1478f60616ea107e03fc716022723921f6f06ca0a5a2c0befd157948038155cd33a7c61bb9749f78c055f100b121e720b1a50565554a8b4323ab45f88e6ee1b88bf813c20a06e89da129eb138667baf34606294d106ad256b3875f3bc1cb6cd379024d1dff424a9ed9befae5e263ad0ef536e44ab1da0a48ad2d383d7183e5e65b60e388934d9c96d701f6b96b890699dcec5a9cf3abf37949608f041da6a898931d85442ac131a3b94ce8e89542e2ee9a1106d81c5a622473a5473f9e9785ba1", 0x1000, 0x7, 0x0, 0x2688d06dc5d1dbf8, r0}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x5, 0x4, r1, &(0x7f0000000040)="7419dc8a431d88409624add5e796e12bb8cb9cae1c118796083919dc44792e9fb5ff6dbdb12caa0bd4c8b23ed155ef754acc38631e6c70d9182cc43ada233d2df22a8e784d0004ae7eb2476a758933dd9452e062c9516e95ddb10a4b9c672a96627b1717f8197354239e13402c86f3425391e77c3b2191cf21f727894815acec44f83663da88fd557bbee9c5fac623975444d38ed7a2937cc9f18c73e9d09415eaef328d61f1097f82693dde02cdef3098ea61e846b2009a651ec50aea49285c9427992326", 0xc5, 0x7, 0x0, 0x1}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x7, 0x8, r0, &(0x7f0000000180)="d019dae3c48ff880642485314535e58bc368afec968da4c56dd246604f9fc21257c9777a91c0", 0x26, 0x4, 0x0, 0x1, r2}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x3, 0x101, r3, &(0x7f0000001340)="5e378fc6f957e342ccfa939d4a8e5544e076902e01d893c7c637c21a1bf9dc8767e2c46d905ec6d4897b6ee789243249782940ae01e566c3c647653232190bacc7d3bd373e9625e319252b31437e4fde456d4845b1c72bdca8728d48d43318be7b4ef98ee38a6d74d2827e3f66c90c074ecbf5e1bab38c1b813e9da5fcbfc053311b4d3d6143506c33feda02720b845e7f0e5f4a952245a3d527c503852fe4e7d5b408e48745243d276cc6f36b81e40ea6dfd6c338015d14fdbdf2df353a95238784299d12078f4eb62a05c78ec73b993536b4ae1674e01e0e47f1", 0xdb, 0x7a9e, 0x0, 0x1, r0}, &(0x7f00000014c0)={0x0, 0x0, 0x0, 0x2, 0x1, r4, &(0x7f0000001440)="3bcb99c68d298c914bf315fd0933136d1abb5df5fd6f122e6aa40b96fc0c7f020699cc67522e880bc8d898997eff80950475028eca2c771f2334eb0291d6bbd851dace45366b609ff1aa2a75b984f8e079cfd43d", 0x54, 0x5, 0x0, 0x0, r0}, &(0x7f0000001540)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000001500)="ead227cefcaba41ab28c238c2769b9f59509ce6a1e4af539a52085099fb559a2831a7714fada3d9aa1cb2c8cda57", 0x2e, 0x6, 0x0, 0x2, r0}]) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) 01:40:02 executing program 0: recvmmsg(0xffffffffffffffff, &(0x7f00000032c0)=[{{&(0x7f0000000180)=@l2tp={0x2, 0x0, @private}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000480)=""/192, 0xc0}, {&(0x7f0000000540)=""/208, 0xd0}], 0x2}, 0xffff}, {{&(0x7f0000000240)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000bc0)=[{&(0x7f0000000640)=""/179, 0xb3}, {&(0x7f0000000100)=""/38, 0x26}, {&(0x7f0000000700)=""/235, 0xeb}, {&(0x7f0000000400)}, {&(0x7f0000000900)=""/225, 0xe1}, {&(0x7f0000000800)=""/74, 0x4a}, {&(0x7f0000000a00)=""/204, 0xcc}, {&(0x7f0000000880)=""/17, 0x11}, {&(0x7f0000000b00)=""/4, 0x4}, {&(0x7f0000000b40)=""/91, 0x5b}], 0xa, &(0x7f0000000c80)=""/4096, 0x1000}, 0xfffffffc}, {{&(0x7f0000001c80)=@can, 0x80, &(0x7f0000002100)=[{&(0x7f0000001d00)=""/121, 0x79}, {&(0x7f0000001e00)=""/150, 0x96}, {&(0x7f0000001ec0)=""/214, 0xd6}, {&(0x7f0000001fc0)=""/169, 0xa9}, {&(0x7f0000002080)=""/88, 0x58}], 0x5, &(0x7f0000002180)=""/97, 0x61}, 0x1}, {{&(0x7f0000002200)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}}}, 0x80, &(0x7f0000002340)=[{&(0x7f0000002280)=""/119, 0x77}, {&(0x7f0000002300)=""/52, 0x34}], 0x2, &(0x7f0000002380)=""/176, 0xb0}, 0x400}, {{&(0x7f0000002440)=@in6={0xa, 0x0, 0x0, @private0}, 0x80, &(0x7f0000002c40)=[{&(0x7f00000024c0)=""/92, 0x5c}, {&(0x7f0000002540)=""/102, 0x66}, {&(0x7f00000025c0)=""/181, 0xb5}, {&(0x7f0000002680)=""/243, 0xf3}, {&(0x7f0000002780)=""/83, 0x53}, {&(0x7f0000002800)=""/108, 0x6c}, {&(0x7f0000002880)=""/178, 0xb2}, {&(0x7f0000002940)=""/223, 0xdf}, {&(0x7f0000002a40)=""/197, 0xc5}, {&(0x7f0000002b40)=""/214, 0xd6}], 0xa, &(0x7f0000003600)=""/4096, 0x1000}, 0x800}, {{&(0x7f0000002d00)=@pptp={0x18, 0x2, {0x0, @multicast1}}, 0x80, &(0x7f0000003100)=[{&(0x7f0000002d80)=""/246, 0xf6}, {&(0x7f0000002e80)=""/27, 0x1b}, {&(0x7f0000002ec0)=""/238, 0xee}, {&(0x7f0000004600)=""/4096, 0x1000}, {&(0x7f0000005600)=""/4096, 0x1000}, {&(0x7f0000002fc0)=""/4, 0x4}, {&(0x7f0000006600)=""/4096, 0x1000}, {&(0x7f0000003000)=""/219, 0xdb}, {&(0x7f0000007600)=""/4096, 0x1000}], 0x9, &(0x7f00000031c0)=""/220, 0xdc}, 0x9}], 0x6, 0x242, &(0x7f0000003440)={0x0, 0x989680}) ioctl$sock_SIOCGIFCONF(r0, 0x8912, &(0x7f00000034c0)=@req={0x28, &(0x7f0000003480)={'vlan0\x00', @ifru_map}}) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000080)=ANY=[]) r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r1, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:40:02 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) (fail_nth: 9) [ 606.135150] 9pnet: Insufficient options for proto=fd 01:40:02 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x2) [ 606.175795] FAULT_INJECTION: forcing a failure. [ 606.175795] name failslab, interval 1, probability 0, space 0, times 0 [ 606.179013] CPU: 0 PID: 5648 Comm: syz-executor.3 Not tainted 5.10.230 #1 [ 606.180723] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 606.182786] Call Trace: [ 606.183418] dump_stack+0x107/0x167 [ 606.184288] should_fail.cold+0x5/0xa [ 606.185228] ? ext4_find_extent+0xa77/0xd70 [ 606.186269] should_failslab+0x5/0x20 [ 606.187201] __kmalloc+0x72/0x390 [ 606.188067] ext4_find_extent+0xa77/0xd70 [ 606.189083] ? kfree+0xd7/0x340 [ 606.189903] ext4_ext_map_blocks+0x1c8/0x5830 [ 606.191028] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 606.192323] ? perf_trace_lock+0xac/0x490 [ 606.193352] ? ext4_ext_release+0x10/0x10 [ 606.194375] ? ext4_map_blocks+0x5cd/0x1910 [ 606.195453] ? lock_release+0x680/0x680 [ 606.196430] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 606.197594] ? find_held_lock+0x2c/0x110 [ 606.198610] ? down_write+0xe0/0x160 [ 606.199535] ? down_write_killable+0x180/0x180 [ 606.200673] ext4_map_blocks+0x63f/0x1910 [ 606.201697] ? kmem_cache_alloc+0x2a6/0x310 [ 606.202751] ? jbd2__journal_start+0xf3/0x7e0 [ 606.203860] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 606.204960] ? jbd2__journal_start+0xf3/0x7e0 [ 606.206068] ? __ext4_journal_start_sb+0x214/0x390 [ 606.207269] ? __ext4_journal_start_sb+0x1db/0x390 [ 606.208486] ext4_alloc_file_blocks.isra.0+0x2eb/0xb40 01:40:02 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfd', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) [ 606.209783] ? ext4_iomap_xattr_begin+0x530/0x530 [ 606.211124] ? down_write_killable+0x180/0x180 [ 606.212244] ext4_fallocate+0x415/0x3880 [ 606.213225] ? __x64_sys_fallocate+0xcf/0x140 [ 606.214316] ? lock_release+0x680/0x680 [ 606.215289] ? ext4_ext_truncate+0x250/0x250 [ 606.216352] ? selinux_file_permission+0x92/0x520 [ 606.217516] ? ext4_ext_truncate+0x250/0x250 [ 606.218582] vfs_fallocate+0x48f/0xda0 [ 606.219534] __x64_sys_fallocate+0xcf/0x140 [ 606.220594] do_syscall_64+0x33/0x40 [ 606.221487] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 606.222724] RIP: 0033:0x7f40b6085b19 [ 606.223627] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 606.228080] RSP: 002b:00007f40b35fb188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 606.229916] RAX: ffffffffffffffda RBX: 00007f40b6198f60 RCX: 00007f40b6085b19 [ 606.231650] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 606.233373] RBP: 00007f40b35fb1d0 R08: 0000000000000000 R09: 0000000000000000 [ 606.235099] R10: 000000000000fdef R11: 0000000000000246 R12: 0000000000000001 [ 606.236843] R13: 00007ffcad50a47f R14: 00007f40b35fb300 R15: 0000000000022000 01:40:02 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="f81ae27f6a5c6a47403536c38412de2791c899972b207ec360a0a997870000"], 0x0) 01:40:02 executing program 5: r0 = syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) [ 606.258090] 9pnet: Insufficient options for proto=fd 01:40:02 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x0) 01:40:02 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="fed0d5dc9548948769c780f4656dae1d1311b4da825486c2d006b052ffb2a07a1f169602ea1faeff0a707191718d762c02"], 0x0) 01:40:02 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfd', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) 01:40:02 executing program 7: recvmmsg(0xffffffffffffffff, &(0x7f00000032c0)=[{{&(0x7f0000000180)=@l2tp={0x2, 0x0, @private}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000480)=""/192, 0xc0}, {&(0x7f0000000540)=""/208, 0xd0}], 0x2}, 0xffff}, {{&(0x7f0000000240)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000bc0)=[{&(0x7f0000000640)=""/179, 0xb3}, {&(0x7f0000000100)=""/38, 0x26}, {&(0x7f0000000700)=""/235, 0xeb}, {&(0x7f0000000400)}, {&(0x7f0000000900)=""/225, 0xe1}, {&(0x7f0000000800)=""/74, 0x4a}, {&(0x7f0000000a00)=""/204, 0xcc}, {&(0x7f0000000880)=""/17, 0x11}, {&(0x7f0000000b00)=""/4, 0x4}, {&(0x7f0000000b40)=""/91, 0x5b}], 0xa, &(0x7f0000000c80)=""/4096, 0x1000}, 0xfffffffc}, {{&(0x7f0000001c80)=@can, 0x80, &(0x7f0000002100)=[{&(0x7f0000001d00)=""/121, 0x79}, {&(0x7f0000001e00)=""/150, 0x96}, {&(0x7f0000001ec0)=""/214, 0xd6}, {&(0x7f0000001fc0)=""/169, 0xa9}, {&(0x7f0000002080)=""/88, 0x58}], 0x5, &(0x7f0000002180)=""/97, 0x61}, 0x1}, {{&(0x7f0000002200)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}}}, 0x80, &(0x7f0000002340)=[{&(0x7f0000002280)=""/119, 0x77}, {&(0x7f0000002300)=""/52, 0x34}], 0x2, &(0x7f0000002380)=""/176, 0xb0}, 0x400}, {{&(0x7f0000002440)=@in6={0xa, 0x0, 0x0, @private0}, 0x80, &(0x7f0000002c40)=[{&(0x7f00000024c0)=""/92, 0x5c}, {&(0x7f0000002540)=""/102, 0x66}, {&(0x7f00000025c0)=""/181, 0xb5}, {&(0x7f0000002680)=""/243, 0xf3}, {&(0x7f0000002780)=""/83, 0x53}, {&(0x7f0000002800)=""/108, 0x6c}, {&(0x7f0000002880)=""/178, 0xb2}, {&(0x7f0000002940)=""/223, 0xdf}, {&(0x7f0000002a40)=""/197, 0xc5}, {&(0x7f0000002b40)=""/214, 0xd6}], 0xa, &(0x7f0000003600)=""/4096, 0x1000}, 0x800}, {{&(0x7f0000002d00)=@pptp={0x18, 0x2, {0x0, @multicast1}}, 0x80, &(0x7f0000003100)=[{&(0x7f0000002d80)=""/246, 0xf6}, {&(0x7f0000002e80)=""/27, 0x1b}, {&(0x7f0000002ec0)=""/238, 0xee}, {&(0x7f0000004600)=""/4096, 0x1000}, {&(0x7f0000005600)=""/4096, 0x1000}, {&(0x7f0000002fc0)=""/4, 0x4}, {&(0x7f0000006600)=""/4096, 0x1000}, {&(0x7f0000003000)=""/219, 0xdb}, {&(0x7f0000007600)=""/4096, 0x1000}], 0x9, &(0x7f00000031c0)=""/220, 0xdc}, 0x9}], 0x6, 0x242, &(0x7f0000003440)={0x0, 0x989680}) ioctl$sock_SIOCGIFCONF(r0, 0x8912, &(0x7f00000034c0)=@req={0x28, &(0x7f0000003480)={'vlan0\x00', @ifru_map}}) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000080)=ANY=[]) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:40:03 executing program 0: recvmmsg(0xffffffffffffffff, &(0x7f00000032c0)=[{{&(0x7f0000000180)=@l2tp={0x2, 0x0, @private}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000480)=""/192, 0xc0}, {&(0x7f0000000540)=""/208, 0xd0}], 0x2}, 0xffff}, {{&(0x7f0000000240)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000bc0)=[{&(0x7f0000000640)=""/179, 0xb3}, {&(0x7f0000000100)=""/38, 0x26}, {&(0x7f0000000700)=""/235, 0xeb}, {&(0x7f0000000400)}, {&(0x7f0000000900)=""/225, 0xe1}, {&(0x7f0000000800)=""/74, 0x4a}, {&(0x7f0000000a00)=""/204, 0xcc}, {&(0x7f0000000880)=""/17, 0x11}, {&(0x7f0000000b00)=""/4, 0x4}, {&(0x7f0000000b40)=""/91, 0x5b}], 0xa, &(0x7f0000000c80)=""/4096, 0x1000}, 0xfffffffc}, {{&(0x7f0000001c80)=@can, 0x80, &(0x7f0000002100)=[{&(0x7f0000001d00)=""/121, 0x79}, {&(0x7f0000001e00)=""/150, 0x96}, {&(0x7f0000001ec0)=""/214, 0xd6}, {&(0x7f0000001fc0)=""/169, 0xa9}, {&(0x7f0000002080)=""/88, 0x58}], 0x5, &(0x7f0000002180)=""/97, 0x61}, 0x1}, {{&(0x7f0000002200)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}}}, 0x80, &(0x7f0000002340)=[{&(0x7f0000002280)=""/119, 0x77}, {&(0x7f0000002300)=""/52, 0x34}], 0x2, &(0x7f0000002380)=""/176, 0xb0}, 0x400}, {{&(0x7f0000002440)=@in6={0xa, 0x0, 0x0, @private0}, 0x80, &(0x7f0000002c40)=[{&(0x7f00000024c0)=""/92, 0x5c}, {&(0x7f0000002540)=""/102, 0x66}, {&(0x7f00000025c0)=""/181, 0xb5}, {&(0x7f0000002680)=""/243, 0xf3}, {&(0x7f0000002780)=""/83, 0x53}, {&(0x7f0000002800)=""/108, 0x6c}, {&(0x7f0000002880)=""/178, 0xb2}, {&(0x7f0000002940)=""/223, 0xdf}, {&(0x7f0000002a40)=""/197, 0xc5}, {&(0x7f0000002b40)=""/214, 0xd6}], 0xa, &(0x7f0000003600)=""/4096, 0x1000}, 0x800}, {{&(0x7f0000002d00)=@pptp={0x18, 0x2, {0x0, @multicast1}}, 0x80, &(0x7f0000003100)=[{&(0x7f0000002d80)=""/246, 0xf6}, {&(0x7f0000002e80)=""/27, 0x1b}, {&(0x7f0000002ec0)=""/238, 0xee}, {&(0x7f0000004600)=""/4096, 0x1000}, {&(0x7f0000005600)=""/4096, 0x1000}, {&(0x7f0000002fc0)=""/4, 0x4}, {&(0x7f0000006600)=""/4096, 0x1000}, {&(0x7f0000003000)=""/219, 0xdb}, {&(0x7f0000007600)=""/4096, 0x1000}], 0x9, &(0x7f00000031c0)=""/220, 0xdc}, 0x9}], 0x6, 0x242, &(0x7f0000003440)={0x0, 0x989680}) ioctl$sock_SIOCGIFCONF(r0, 0x8912, &(0x7f00000034c0)=@req={0x28, &(0x7f0000003480)={'vlan0\x00', @ifru_map}}) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000080)=ANY=[]) r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r1, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:40:03 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x0) [ 606.343142] 9pnet: Insufficient options for proto=fd [ 606.432057] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.433429] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 606.435840] Buffer I/O error on dev sr0, logical block 0, async page read [ 606.437662] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.438992] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 606.441393] Buffer I/O error on dev sr0, logical block 1, async page read [ 606.443192] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.444527] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 606.446903] Buffer I/O error on dev sr0, logical block 2, async page read [ 606.448706] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.450031] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 606.452428] Buffer I/O error on dev sr0, logical block 3, async page read [ 606.454413] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.455912] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 606.458286] Buffer I/O error on dev sr0, logical block 4, async page read [ 606.460090] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.461430] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 606.463844] Buffer I/O error on dev sr0, logical block 5, async page read [ 606.465642] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.466980] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 606.469406] Buffer I/O error on dev sr0, logical block 6, async page read [ 606.471216] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.472567] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 606.474968] Buffer I/O error on dev sr0, logical block 7, async page read [ 606.476808] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.478145] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 606.480593] Buffer I/O error on dev sr0, logical block 0, async page read [ 606.482552] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.483235] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 606.484792] Buffer I/O error on dev sr0, logical block 1, async page read [ 606.486004] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.487211] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.487914] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.488621] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.489290] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.490013] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.490728] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.491663] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.492341] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.493244] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.493951] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.494706] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.495424] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.496151] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.496927] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.497646] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.498319] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.499077] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.499807] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.500541] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.501226] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.501947] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.502685] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.503433] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.504117] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.504856] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.505574] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.506284] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.507020] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.507763] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.508503] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.509198] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.509904] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.510638] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.511309] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.512037] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.512776] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.513516] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.514191] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.514941] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.515656] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.516408] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.517083] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.517825] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.518552] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.519264] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.519993] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.520736] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.521441] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.522143] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.522869] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.525857] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.526604] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.527274] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.528691] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.530687] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.532834] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.534587] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.536647] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.538474] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.540210] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.542047] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.543844] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.545694] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.547575] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.549746] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.552002] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.553980] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.555710] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.557667] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.559645] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.561469] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.563186] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.564905] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.566743] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.568563] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.570268] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.571974] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.573830] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.575591] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.577249] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.578924] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.580658] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.582637] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.584356] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.586247] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.588226] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.590057] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.591751] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.593640] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.595552] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.597260] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.598899] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.600600] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.602357] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.604116] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.605770] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.607613] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.609314] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.610971] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.612806] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.614627] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.616364] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.618242] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.620163] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.621997] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.623846] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.625716] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.631630] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.634051] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.635894] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.637899] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.639541] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.642306] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.643255] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.644076] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.644908] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.646123] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.646869] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.647594] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 606.648282] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 01:40:17 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) 01:40:17 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) syz_io_uring_setup(0x1d, &(0x7f0000000100), &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000280)=0x0) syz_memcpy_off$IO_URING_METADATA_FLAGS(r1, 0x118, &(0x7f0000000200)=0x1, 0x0, 0x4) syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x9}, 0x0) r3 = syz_io_uring_complete(r1) syz_io_uring_setup(0x1d, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x118, 0x0, r3}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f00000000c0)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x9}, 0x0) syz_io_uring_submit(r1, r5, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x1, 0x0, @fd_index=0x5, 0x1, 0x0, 0x2}, 0x7) 01:40:17 executing program 0: recvmmsg(0xffffffffffffffff, &(0x7f00000032c0)=[{{&(0x7f0000000180)=@l2tp={0x2, 0x0, @private}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000480)=""/192, 0xc0}, {&(0x7f0000000540)=""/208, 0xd0}], 0x2}, 0xffff}, {{&(0x7f0000000240)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000bc0)=[{&(0x7f0000000640)=""/179, 0xb3}, {&(0x7f0000000100)=""/38, 0x26}, {&(0x7f0000000700)=""/235, 0xeb}, {&(0x7f0000000400)}, {&(0x7f0000000900)=""/225, 0xe1}, {&(0x7f0000000800)=""/74, 0x4a}, {&(0x7f0000000a00)=""/204, 0xcc}, {&(0x7f0000000880)=""/17, 0x11}, {&(0x7f0000000b00)=""/4, 0x4}, {&(0x7f0000000b40)=""/91, 0x5b}], 0xa, &(0x7f0000000c80)=""/4096, 0x1000}, 0xfffffffc}, {{&(0x7f0000001c80)=@can, 0x80, &(0x7f0000002100)=[{&(0x7f0000001d00)=""/121, 0x79}, {&(0x7f0000001e00)=""/150, 0x96}, {&(0x7f0000001ec0)=""/214, 0xd6}, {&(0x7f0000001fc0)=""/169, 0xa9}, {&(0x7f0000002080)=""/88, 0x58}], 0x5, &(0x7f0000002180)=""/97, 0x61}, 0x1}, {{&(0x7f0000002200)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}}}, 0x80, &(0x7f0000002340)=[{&(0x7f0000002280)=""/119, 0x77}, {&(0x7f0000002300)=""/52, 0x34}], 0x2, &(0x7f0000002380)=""/176, 0xb0}, 0x400}, {{&(0x7f0000002440)=@in6={0xa, 0x0, 0x0, @private0}, 0x80, &(0x7f0000002c40)=[{&(0x7f00000024c0)=""/92, 0x5c}, {&(0x7f0000002540)=""/102, 0x66}, {&(0x7f00000025c0)=""/181, 0xb5}, {&(0x7f0000002680)=""/243, 0xf3}, {&(0x7f0000002780)=""/83, 0x53}, {&(0x7f0000002800)=""/108, 0x6c}, {&(0x7f0000002880)=""/178, 0xb2}, {&(0x7f0000002940)=""/223, 0xdf}, {&(0x7f0000002a40)=""/197, 0xc5}, {&(0x7f0000002b40)=""/214, 0xd6}], 0xa, &(0x7f0000003600)=""/4096, 0x1000}, 0x800}, {{&(0x7f0000002d00)=@pptp={0x18, 0x2, {0x0, @multicast1}}, 0x80, &(0x7f0000003100)=[{&(0x7f0000002d80)=""/246, 0xf6}, {&(0x7f0000002e80)=""/27, 0x1b}, {&(0x7f0000002ec0)=""/238, 0xee}, {&(0x7f0000004600)=""/4096, 0x1000}, {&(0x7f0000005600)=""/4096, 0x1000}, {&(0x7f0000002fc0)=""/4, 0x4}, {&(0x7f0000006600)=""/4096, 0x1000}, {&(0x7f0000003000)=""/219, 0xdb}, {&(0x7f0000007600)=""/4096, 0x1000}], 0x9, &(0x7f00000031c0)=""/220, 0xdc}, 0x9}], 0x6, 0x242, &(0x7f0000003440)={0x0, 0x989680}) ioctl$sock_SIOCGIFCONF(r0, 0x8912, &(0x7f00000034c0)=@req={0x28, &(0x7f0000003480)={'vlan0\x00', @ifru_map}}) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000080)=ANY=[]) r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r1, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:40:17 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) (fail_nth: 10) 01:40:17 executing program 5: r0 = syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:40:17 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x0) 01:40:17 executing program 7: recvmmsg(0xffffffffffffffff, &(0x7f00000032c0)=[{{&(0x7f0000000180)=@l2tp={0x2, 0x0, @private}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000480)=""/192, 0xc0}, {&(0x7f0000000540)=""/208, 0xd0}], 0x2}, 0xffff}, {{&(0x7f0000000240)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000bc0)=[{&(0x7f0000000640)=""/179, 0xb3}, {&(0x7f0000000100)=""/38, 0x26}, {&(0x7f0000000700)=""/235, 0xeb}, {&(0x7f0000000400)}, {&(0x7f0000000900)=""/225, 0xe1}, {&(0x7f0000000800)=""/74, 0x4a}, {&(0x7f0000000a00)=""/204, 0xcc}, {&(0x7f0000000880)=""/17, 0x11}, {&(0x7f0000000b00)=""/4, 0x4}, {&(0x7f0000000b40)=""/91, 0x5b}], 0xa, &(0x7f0000000c80)=""/4096, 0x1000}, 0xfffffffc}, {{&(0x7f0000001c80)=@can, 0x80, &(0x7f0000002100)=[{&(0x7f0000001d00)=""/121, 0x79}, {&(0x7f0000001e00)=""/150, 0x96}, {&(0x7f0000001ec0)=""/214, 0xd6}, {&(0x7f0000001fc0)=""/169, 0xa9}, {&(0x7f0000002080)=""/88, 0x58}], 0x5, &(0x7f0000002180)=""/97, 0x61}, 0x1}, {{&(0x7f0000002200)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}}}, 0x80, &(0x7f0000002340)=[{&(0x7f0000002280)=""/119, 0x77}, {&(0x7f0000002300)=""/52, 0x34}], 0x2, &(0x7f0000002380)=""/176, 0xb0}, 0x400}, {{&(0x7f0000002440)=@in6={0xa, 0x0, 0x0, @private0}, 0x80, &(0x7f0000002c40)=[{&(0x7f00000024c0)=""/92, 0x5c}, {&(0x7f0000002540)=""/102, 0x66}, {&(0x7f00000025c0)=""/181, 0xb5}, {&(0x7f0000002680)=""/243, 0xf3}, {&(0x7f0000002780)=""/83, 0x53}, {&(0x7f0000002800)=""/108, 0x6c}, {&(0x7f0000002880)=""/178, 0xb2}, {&(0x7f0000002940)=""/223, 0xdf}, {&(0x7f0000002a40)=""/197, 0xc5}, {&(0x7f0000002b40)=""/214, 0xd6}], 0xa, &(0x7f0000003600)=""/4096, 0x1000}, 0x800}, {{&(0x7f0000002d00)=@pptp={0x18, 0x2, {0x0, @multicast1}}, 0x80, &(0x7f0000003100)=[{&(0x7f0000002d80)=""/246, 0xf6}, {&(0x7f0000002e80)=""/27, 0x1b}, {&(0x7f0000002ec0)=""/238, 0xee}, {&(0x7f0000004600)=""/4096, 0x1000}, {&(0x7f0000005600)=""/4096, 0x1000}, {&(0x7f0000002fc0)=""/4, 0x4}, {&(0x7f0000006600)=""/4096, 0x1000}, {&(0x7f0000003000)=""/219, 0xdb}, {&(0x7f0000007600)=""/4096, 0x1000}], 0x9, &(0x7f00000031c0)=""/220, 0xdc}, 0x9}], 0x6, 0x242, &(0x7f0000003440)={0x0, 0x989680}) ioctl$sock_SIOCGIFCONF(r0, 0x8912, &(0x7f00000034c0)=@req={0x28, &(0x7f0000003480)={'vlan0\x00', @ifru_map}}) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000080)=ANY=[]) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:40:17 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x3) [ 621.021656] FAULT_INJECTION: forcing a failure. [ 621.021656] name failslab, interval 1, probability 0, space 0, times 0 [ 621.023129] CPU: 0 PID: 5689 Comm: syz-executor.3 Not tainted 5.10.230 #1 [ 621.023969] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 621.024979] Call Trace: [ 621.025302] dump_stack+0x107/0x167 [ 621.025752] should_fail.cold+0x5/0xa [ 621.026219] ? create_object.isra.0+0x3a/0xa20 [ 621.026786] should_failslab+0x5/0x20 [ 621.027251] kmem_cache_alloc+0x5b/0x310 [ 621.027752] create_object.isra.0+0x3a/0xa20 [ 621.028293] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 621.028921] __kmalloc+0x16e/0x390 [ 621.029372] ext4_find_extent+0xa77/0xd70 [ 621.029876] ? kfree+0xd7/0x340 [ 621.030287] ext4_ext_map_blocks+0x1c8/0x5830 [ 621.030854] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 621.031495] ? perf_trace_lock+0xac/0x490 [ 621.032014] ? ext4_ext_release+0x10/0x10 [ 621.032519] ? ext4_map_blocks+0x5cd/0x1910 [ 621.033041] ? lock_release+0x680/0x680 [ 621.033472] 9pnet: Insufficient options for proto=fd [ 621.033535] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 621.035282] ? find_held_lock+0x2c/0x110 [ 621.035784] ? down_write+0xe0/0x160 [ 621.036244] ? down_write_killable+0x180/0x180 [ 621.036806] ext4_map_blocks+0x63f/0x1910 [ 621.037309] ? kmem_cache_alloc+0x2a6/0x310 [ 621.037831] ? jbd2__journal_start+0xf3/0x7e0 [ 621.038377] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 621.038919] ? jbd2__journal_start+0xf3/0x7e0 [ 621.039467] ? __ext4_journal_start_sb+0x214/0x390 [ 621.040073] ? __ext4_journal_start_sb+0x1db/0x390 [ 621.040673] ext4_alloc_file_blocks.isra.0+0x2eb/0xb40 [ 621.041320] ? ext4_iomap_xattr_begin+0x530/0x530 [ 621.041913] ? down_write_killable+0x180/0x180 [ 621.042469] ext4_fallocate+0x415/0x3880 [ 621.042971] ? __x64_sys_fallocate+0xcf/0x140 [ 621.043515] ? lock_release+0x680/0x680 [ 621.044012] ? ext4_ext_truncate+0x250/0x250 [ 621.044545] ? selinux_file_permission+0x92/0x520 [ 621.045140] ? ext4_ext_truncate+0x250/0x250 [ 621.045670] vfs_fallocate+0x48f/0xda0 [ 621.046152] __x64_sys_fallocate+0xcf/0x140 [ 621.046675] do_syscall_64+0x33/0x40 [ 621.047126] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 621.047743] RIP: 0033:0x7f40b6085b19 [ 621.048198] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 621.050421] RSP: 002b:00007f40b35fb188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 621.051339] RAX: ffffffffffffffda RBX: 00007f40b6198f60 RCX: 00007f40b6085b19 [ 621.052235] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 621.053093] RBP: 00007f40b35fb1d0 R08: 0000000000000000 R09: 0000000000000000 [ 621.053957] R10: 000000000000fdef R11: 0000000000000246 R12: 0000000000000002 [ 621.054817] R13: 00007ffcad50a47f R14: 00007f40b35fb300 R15: 0000000000022000 01:40:17 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) 01:40:17 executing program 7: recvmmsg(0xffffffffffffffff, &(0x7f00000032c0)=[{{&(0x7f0000000180)=@l2tp={0x2, 0x0, @private}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000480)=""/192, 0xc0}, {&(0x7f0000000540)=""/208, 0xd0}], 0x2}, 0xffff}, {{&(0x7f0000000240)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000bc0)=[{&(0x7f0000000640)=""/179, 0xb3}, {&(0x7f0000000100)=""/38, 0x26}, {&(0x7f0000000700)=""/235, 0xeb}, {&(0x7f0000000400)}, {&(0x7f0000000900)=""/225, 0xe1}, {&(0x7f0000000800)=""/74, 0x4a}, {&(0x7f0000000a00)=""/204, 0xcc}, {&(0x7f0000000880)=""/17, 0x11}, {&(0x7f0000000b00)=""/4, 0x4}, {&(0x7f0000000b40)=""/91, 0x5b}], 0xa, &(0x7f0000000c80)=""/4096, 0x1000}, 0xfffffffc}, {{&(0x7f0000001c80)=@can, 0x80, &(0x7f0000002100)=[{&(0x7f0000001d00)=""/121, 0x79}, {&(0x7f0000001e00)=""/150, 0x96}, {&(0x7f0000001ec0)=""/214, 0xd6}, {&(0x7f0000001fc0)=""/169, 0xa9}, {&(0x7f0000002080)=""/88, 0x58}], 0x5, &(0x7f0000002180)=""/97, 0x61}, 0x1}, {{&(0x7f0000002200)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}}}, 0x80, &(0x7f0000002340)=[{&(0x7f0000002280)=""/119, 0x77}, {&(0x7f0000002300)=""/52, 0x34}], 0x2, &(0x7f0000002380)=""/176, 0xb0}, 0x400}, {{&(0x7f0000002440)=@in6={0xa, 0x0, 0x0, @private0}, 0x80, &(0x7f0000002c40)=[{&(0x7f00000024c0)=""/92, 0x5c}, {&(0x7f0000002540)=""/102, 0x66}, {&(0x7f00000025c0)=""/181, 0xb5}, {&(0x7f0000002680)=""/243, 0xf3}, {&(0x7f0000002780)=""/83, 0x53}, {&(0x7f0000002800)=""/108, 0x6c}, {&(0x7f0000002880)=""/178, 0xb2}, {&(0x7f0000002940)=""/223, 0xdf}, {&(0x7f0000002a40)=""/197, 0xc5}, {&(0x7f0000002b40)=""/214, 0xd6}], 0xa, &(0x7f0000003600)=""/4096, 0x1000}, 0x800}, {{&(0x7f0000002d00)=@pptp={0x18, 0x2, {0x0, @multicast1}}, 0x80, &(0x7f0000003100)=[{&(0x7f0000002d80)=""/246, 0xf6}, {&(0x7f0000002e80)=""/27, 0x1b}, {&(0x7f0000002ec0)=""/238, 0xee}, {&(0x7f0000004600)=""/4096, 0x1000}, {&(0x7f0000005600)=""/4096, 0x1000}, {&(0x7f0000002fc0)=""/4, 0x4}, {&(0x7f0000006600)=""/4096, 0x1000}, {&(0x7f0000003000)=""/219, 0xdb}, {&(0x7f0000007600)=""/4096, 0x1000}], 0x9, &(0x7f00000031c0)=""/220, 0xdc}, 0x9}], 0x6, 0x242, &(0x7f0000003440)={0x0, 0x989680}) ioctl$sock_SIOCGIFCONF(r0, 0x8912, &(0x7f00000034c0)=@req={0x28, &(0x7f0000003480)={'vlan0\x00', @ifru_map}}) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000080)=ANY=[]) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:40:17 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, &(0x7f0000001100)=""/4095, 0x20001be3, 0x0) 01:40:17 executing program 5: r0 = syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) [ 621.138006] 9pnet: Insufficient options for proto=fd 01:40:17 executing program 0: recvmmsg(0xffffffffffffffff, &(0x7f00000032c0)=[{{&(0x7f0000000180)=@l2tp={0x2, 0x0, @private}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000480)=""/192, 0xc0}, {&(0x7f0000000540)=""/208, 0xd0}], 0x2}, 0xffff}, {{&(0x7f0000000240)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000bc0)=[{&(0x7f0000000640)=""/179, 0xb3}, {&(0x7f0000000100)=""/38, 0x26}, {&(0x7f0000000700)=""/235, 0xeb}, {&(0x7f0000000400)}, {&(0x7f0000000900)=""/225, 0xe1}, {&(0x7f0000000800)=""/74, 0x4a}, {&(0x7f0000000a00)=""/204, 0xcc}, {&(0x7f0000000880)=""/17, 0x11}, {&(0x7f0000000b00)=""/4, 0x4}, {&(0x7f0000000b40)=""/91, 0x5b}], 0xa, &(0x7f0000000c80)=""/4096, 0x1000}, 0xfffffffc}, {{&(0x7f0000001c80)=@can, 0x80, &(0x7f0000002100)=[{&(0x7f0000001d00)=""/121, 0x79}, {&(0x7f0000001e00)=""/150, 0x96}, {&(0x7f0000001ec0)=""/214, 0xd6}, {&(0x7f0000001fc0)=""/169, 0xa9}, {&(0x7f0000002080)=""/88, 0x58}], 0x5, &(0x7f0000002180)=""/97, 0x61}, 0x1}, {{&(0x7f0000002200)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}}}, 0x80, &(0x7f0000002340)=[{&(0x7f0000002280)=""/119, 0x77}, {&(0x7f0000002300)=""/52, 0x34}], 0x2, &(0x7f0000002380)=""/176, 0xb0}, 0x400}, {{&(0x7f0000002440)=@in6={0xa, 0x0, 0x0, @private0}, 0x80, &(0x7f0000002c40)=[{&(0x7f00000024c0)=""/92, 0x5c}, {&(0x7f0000002540)=""/102, 0x66}, {&(0x7f00000025c0)=""/181, 0xb5}, {&(0x7f0000002680)=""/243, 0xf3}, {&(0x7f0000002780)=""/83, 0x53}, {&(0x7f0000002800)=""/108, 0x6c}, {&(0x7f0000002880)=""/178, 0xb2}, {&(0x7f0000002940)=""/223, 0xdf}, {&(0x7f0000002a40)=""/197, 0xc5}, {&(0x7f0000002b40)=""/214, 0xd6}], 0xa, &(0x7f0000003600)=""/4096, 0x1000}, 0x800}, {{&(0x7f0000002d00)=@pptp={0x18, 0x2, {0x0, @multicast1}}, 0x80, &(0x7f0000003100)=[{&(0x7f0000002d80)=""/246, 0xf6}, {&(0x7f0000002e80)=""/27, 0x1b}, {&(0x7f0000002ec0)=""/238, 0xee}, {&(0x7f0000004600)=""/4096, 0x1000}, {&(0x7f0000005600)=""/4096, 0x1000}, {&(0x7f0000002fc0)=""/4, 0x4}, {&(0x7f0000006600)=""/4096, 0x1000}, {&(0x7f0000003000)=""/219, 0xdb}, {&(0x7f0000007600)=""/4096, 0x1000}], 0x9, &(0x7f00000031c0)=""/220, 0xdc}, 0x9}], 0x6, 0x242, &(0x7f0000003440)={0x0, 0x989680}) ioctl$sock_SIOCGIFCONF(r0, 0x8912, &(0x7f00000034c0)=@req={0x28, &(0x7f0000003480)={'vlan0\x00', @ifru_map}}) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000080)=ANY=[]) r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r1, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:40:17 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x4) 01:40:17 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r1, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) r2 = syz_open_procfs(0x0, &(0x7f0000000140)='net\x00') syz_io_uring_setup(0x5b70, &(0x7f0000000200)={0x0, 0x13c7, 0x20, 0x1, 0x203, 0x0, r2}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000180), &(0x7f0000000280)) inotify_add_watch(r1, &(0x7f0000000000)='./cgroup/cgroup.procs\x00', 0x10000000) open_by_handle_at(r0, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x0) r3 = signalfd(0xffffffffffffffff, &(0x7f00000002c0)={[0x8]}, 0x8) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r3, 0x4008240b, &(0x7f0000000340)={0x0, 0x80, 0x8, 0x20, 0x5, 0x8, 0x0, 0x3, 0xe2380, 0x2, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0xfe92, 0x4, @perf_bp={&(0x7f0000000300), 0xa}, 0x10000, 0x81c1, 0x3, 0x4, 0x0, 0x800, 0x1f, 0x0, 0xd27, 0x0, 0xfffffffffffffff9}) statfs(&(0x7f0000000040)='./cgroup/cgroup.procs\x00', &(0x7f00000000c0)=""/94) 01:40:17 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) (fail_nth: 11) 01:40:17 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) [ 621.182919] 9pnet: Insufficient options for proto=fd [ 621.218845] FAULT_INJECTION: forcing a failure. [ 621.218845] name failslab, interval 1, probability 0, space 0, times 0 [ 621.220264] CPU: 0 PID: 5719 Comm: syz-executor.3 Not tainted 5.10.230 #1 [ 621.221096] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 621.222096] Call Trace: [ 621.222421] dump_stack+0x107/0x167 [ 621.222863] should_fail.cold+0x5/0xa [ 621.223325] ? ext4_mb_new_blocks+0x698/0x45c0 [ 621.223887] should_failslab+0x5/0x20 [ 621.224346] kmem_cache_alloc+0x5b/0x310 [ 621.224841] ext4_mb_new_blocks+0x698/0x45c0 [ 621.225386] ? trace_hardirqs_on+0x5b/0x180 [ 621.225911] ? kasan_unpoison_shadow+0x33/0x50 [ 621.226456] ? ext4_cache_extents+0x68/0x2d0 [ 621.226991] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 621.227606] ? ext4_discard_preallocations+0xd80/0xd80 [ 621.228246] ? ext4_ext_search_right+0x2e3/0xbd0 [ 621.228816] ? ext4_inode_to_goal_block+0x320/0x430 [ 621.229425] ext4_ext_map_blocks+0x1d49/0x5830 [ 621.229992] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 621.230623] ? SOFTIRQ_verbose+0x10/0x10 [ 621.231110] ? perf_trace_lock+0xac/0x490 [ 621.231606] ? SOFTIRQ_verbose+0x10/0x10 [ 621.232107] ? ext4_ext_release+0x10/0x10 [ 621.232615] ? ext4_map_blocks+0x5cd/0x1910 [ 621.233135] ? lock_release+0x680/0x680 [ 621.233618] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 621.234186] ? find_held_lock+0x2c/0x110 [ 621.234696] ? down_write_killable+0x180/0x180 [ 621.235254] ext4_map_blocks+0x63f/0x1910 [ 621.235769] ? kmem_cache_alloc+0x2a6/0x310 [ 621.236295] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 621.236843] ? jbd2__journal_start+0xf3/0x7e0 [ 621.237388] ? __ext4_journal_start_sb+0x214/0x390 [ 621.237991] ? __ext4_journal_start_sb+0x1db/0x390 [ 621.238583] ext4_alloc_file_blocks.isra.0+0x2eb/0xb40 [ 621.239220] ? ext4_iomap_xattr_begin+0x530/0x530 [ 621.239803] ? down_write_killable+0x180/0x180 [ 621.240374] ext4_fallocate+0x415/0x3880 [ 621.240865] ? __x64_sys_fallocate+0xcf/0x140 [ 621.241411] ? lock_release+0x680/0x680 [ 621.241891] ? ext4_ext_truncate+0x250/0x250 [ 621.242423] ? selinux_file_permission+0x92/0x520 [ 621.243006] ? ext4_ext_truncate+0x250/0x250 [ 621.243540] vfs_fallocate+0x48f/0xda0 [ 621.244024] __x64_sys_fallocate+0xcf/0x140 [ 621.244545] do_syscall_64+0x33/0x40 [ 621.244990] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 621.245611] RIP: 0033:0x7f40b6085b19 [ 621.246062] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 621.248285] RSP: 002b:00007f40b35fb188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 621.249209] RAX: ffffffffffffffda RBX: 00007f40b6198f60 RCX: 00007f40b6085b19 [ 621.250066] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 621.250928] RBP: 00007f40b35fb1d0 R08: 0000000000000000 R09: 0000000000000000 [ 621.251793] R10: 000000000000fdef R11: 0000000000000246 R12: 0000000000000002 [ 621.252662] R13: 00007ffcad50a47f R14: 00007f40b35fb300 R15: 0000000000022000 01:40:31 executing program 2: r0 = creat(&(0x7f0000000000)='./cgroup/cgroup.procs\x00', 0x1a7) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r1, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0}, './cgroup/cgroup.procs\x00'}) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) 01:40:31 executing program 5: r0 = syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:40:31 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x5) [ 634.383788] 9pnet: Insufficient options for proto=fd 01:40:31 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) (fail_nth: 12) 01:40:31 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, &(0x7f0000001100)=""/4095, 0x20001be3, 0x0) 01:40:31 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYBLOB=',wfdno=', @ANYRESHEX=r0, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) 01:40:31 executing program 7: recvmmsg(0xffffffffffffffff, &(0x7f00000032c0)=[{{&(0x7f0000000180)=@l2tp={0x2, 0x0, @private}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000480)=""/192, 0xc0}, {&(0x7f0000000540)=""/208, 0xd0}], 0x2}, 0xffff}, {{&(0x7f0000000240)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000bc0)=[{&(0x7f0000000640)=""/179, 0xb3}, {&(0x7f0000000100)=""/38, 0x26}, {&(0x7f0000000700)=""/235, 0xeb}, {&(0x7f0000000400)}, {&(0x7f0000000900)=""/225, 0xe1}, {&(0x7f0000000800)=""/74, 0x4a}, {&(0x7f0000000a00)=""/204, 0xcc}, {&(0x7f0000000880)=""/17, 0x11}, {&(0x7f0000000b00)=""/4, 0x4}, {&(0x7f0000000b40)=""/91, 0x5b}], 0xa, &(0x7f0000000c80)=""/4096, 0x1000}, 0xfffffffc}, {{&(0x7f0000001c80)=@can, 0x80, &(0x7f0000002100)=[{&(0x7f0000001d00)=""/121, 0x79}, {&(0x7f0000001e00)=""/150, 0x96}, {&(0x7f0000001ec0)=""/214, 0xd6}, {&(0x7f0000001fc0)=""/169, 0xa9}, {&(0x7f0000002080)=""/88, 0x58}], 0x5, &(0x7f0000002180)=""/97, 0x61}, 0x1}, {{&(0x7f0000002200)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}}}, 0x80, &(0x7f0000002340)=[{&(0x7f0000002280)=""/119, 0x77}, {&(0x7f0000002300)=""/52, 0x34}], 0x2, &(0x7f0000002380)=""/176, 0xb0}, 0x400}, {{&(0x7f0000002440)=@in6={0xa, 0x0, 0x0, @private0}, 0x80, &(0x7f0000002c40)=[{&(0x7f00000024c0)=""/92, 0x5c}, {&(0x7f0000002540)=""/102, 0x66}, {&(0x7f00000025c0)=""/181, 0xb5}, {&(0x7f0000002680)=""/243, 0xf3}, {&(0x7f0000002780)=""/83, 0x53}, {&(0x7f0000002800)=""/108, 0x6c}, {&(0x7f0000002880)=""/178, 0xb2}, {&(0x7f0000002940)=""/223, 0xdf}, {&(0x7f0000002a40)=""/197, 0xc5}, {&(0x7f0000002b40)=""/214, 0xd6}], 0xa, &(0x7f0000003600)=""/4096, 0x1000}, 0x800}, {{&(0x7f0000002d00)=@pptp={0x18, 0x2, {0x0, @multicast1}}, 0x80, &(0x7f0000003100)=[{&(0x7f0000002d80)=""/246, 0xf6}, {&(0x7f0000002e80)=""/27, 0x1b}, {&(0x7f0000002ec0)=""/238, 0xee}, {&(0x7f0000004600)=""/4096, 0x1000}, {&(0x7f0000005600)=""/4096, 0x1000}, {&(0x7f0000002fc0)=""/4, 0x4}, {&(0x7f0000006600)=""/4096, 0x1000}, {&(0x7f0000003000)=""/219, 0xdb}, {&(0x7f0000007600)=""/4096, 0x1000}], 0x9, &(0x7f00000031c0)=""/220, 0xdc}, 0x9}], 0x6, 0x242, &(0x7f0000003440)={0x0, 0x989680}) ioctl$sock_SIOCGIFCONF(r0, 0x8912, &(0x7f00000034c0)=@req={0x28, &(0x7f0000003480)={'vlan0\x00', @ifru_map}}) r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r1, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:40:31 executing program 0: recvmmsg(0xffffffffffffffff, &(0x7f00000032c0)=[{{&(0x7f0000000180)=@l2tp={0x2, 0x0, @private}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000480)=""/192, 0xc0}, {&(0x7f0000000540)=""/208, 0xd0}], 0x2}, 0xffff}, {{&(0x7f0000000240)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000bc0)=[{&(0x7f0000000640)=""/179, 0xb3}, {&(0x7f0000000100)=""/38, 0x26}, {&(0x7f0000000700)=""/235, 0xeb}, {&(0x7f0000000400)}, {&(0x7f0000000900)=""/225, 0xe1}, {&(0x7f0000000800)=""/74, 0x4a}, {&(0x7f0000000a00)=""/204, 0xcc}, {&(0x7f0000000880)=""/17, 0x11}, {&(0x7f0000000b00)=""/4, 0x4}, {&(0x7f0000000b40)=""/91, 0x5b}], 0xa, &(0x7f0000000c80)=""/4096, 0x1000}, 0xfffffffc}, {{&(0x7f0000001c80)=@can, 0x80, &(0x7f0000002100)=[{&(0x7f0000001d00)=""/121, 0x79}, {&(0x7f0000001e00)=""/150, 0x96}, {&(0x7f0000001ec0)=""/214, 0xd6}, {&(0x7f0000001fc0)=""/169, 0xa9}, {&(0x7f0000002080)=""/88, 0x58}], 0x5, &(0x7f0000002180)=""/97, 0x61}, 0x1}, {{&(0x7f0000002200)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}}}, 0x80, &(0x7f0000002340)=[{&(0x7f0000002280)=""/119, 0x77}, {&(0x7f0000002300)=""/52, 0x34}], 0x2, &(0x7f0000002380)=""/176, 0xb0}, 0x400}, {{&(0x7f0000002440)=@in6={0xa, 0x0, 0x0, @private0}, 0x80, &(0x7f0000002c40)=[{&(0x7f00000024c0)=""/92, 0x5c}, {&(0x7f0000002540)=""/102, 0x66}, {&(0x7f00000025c0)=""/181, 0xb5}, {&(0x7f0000002680)=""/243, 0xf3}, {&(0x7f0000002780)=""/83, 0x53}, {&(0x7f0000002800)=""/108, 0x6c}, {&(0x7f0000002880)=""/178, 0xb2}, {&(0x7f0000002940)=""/223, 0xdf}, {&(0x7f0000002a40)=""/197, 0xc5}, {&(0x7f0000002b40)=""/214, 0xd6}], 0xa, &(0x7f0000003600)=""/4096, 0x1000}, 0x800}, {{&(0x7f0000002d00)=@pptp={0x18, 0x2, {0x0, @multicast1}}, 0x80, &(0x7f0000003100)=[{&(0x7f0000002d80)=""/246, 0xf6}, {&(0x7f0000002e80)=""/27, 0x1b}, {&(0x7f0000002ec0)=""/238, 0xee}, {&(0x7f0000004600)=""/4096, 0x1000}, {&(0x7f0000005600)=""/4096, 0x1000}, {&(0x7f0000002fc0)=""/4, 0x4}, {&(0x7f0000006600)=""/4096, 0x1000}, {&(0x7f0000003000)=""/219, 0xdb}, {&(0x7f0000007600)=""/4096, 0x1000}], 0x9, &(0x7f00000031c0)=""/220, 0xdc}, 0x9}], 0x6, 0x242, &(0x7f0000003440)={0x0, 0x989680}) ioctl$sock_SIOCGIFCONF(r0, 0x8912, &(0x7f00000034c0)=@req={0x28, &(0x7f0000003480)={'vlan0\x00', @ifru_map}}) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000080)=ANY=[]) r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r1, 0x58ab, 0x0, 0x3, 0x0, 0x0) [ 634.411979] FAULT_INJECTION: forcing a failure. [ 634.411979] name failslab, interval 1, probability 0, space 0, times 0 [ 634.414415] CPU: 1 PID: 5742 Comm: syz-executor.3 Not tainted 5.10.230 #1 [ 634.415858] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 634.417603] Call Trace: [ 634.418140] dump_stack+0x107/0x167 [ 634.418915] should_fail.cold+0x5/0xa [ 634.419716] ? create_object.isra.0+0x3a/0xa20 [ 634.420689] should_failslab+0x5/0x20 [ 634.421487] kmem_cache_alloc+0x5b/0x310 [ 634.422344] create_object.isra.0+0x3a/0xa20 [ 634.423264] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 634.424334] kmem_cache_alloc+0x159/0x310 [ 634.425229] ext4_mb_new_blocks+0x698/0x45c0 [ 634.426166] ? trace_hardirqs_on+0x5b/0x180 [ 634.427073] ? kasan_unpoison_shadow+0x33/0x50 [ 634.428027] ? ext4_cache_extents+0x68/0x2d0 [ 634.428950] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 01:40:31 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYBLOB=',wfdno=', @ANYRESHEX=r0, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) [ 634.430010] ? ext4_discard_preallocations+0xd80/0xd80 [ 634.431308] ? ext4_ext_search_right+0x2e3/0xbd0 [ 634.432277] ? ext4_inode_to_goal_block+0x320/0x430 [ 634.433326] ext4_ext_map_blocks+0x1d49/0x5830 [ 634.434267] ? mark_held_locks+0x9e/0xe0 [ 634.435117] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 634.436201] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 634.437289] ? _raw_spin_unlock_irq+0x1f/0x30 [ 634.438198] ? trace_hardirqs_on+0x5b/0x180 [ 634.439075] ? _raw_spin_unlock_irq+0x1f/0x30 [ 634.439989] ? finish_task_switch+0x126/0x5d0 [ 634.440903] ? ext4_ext_release+0x10/0x10 [ 634.441754] ? ext4_map_blocks+0x5cd/0x1910 [ 634.442650] ? lock_release+0x680/0x680 [ 634.443461] ? io_schedule_timeout+0x140/0x140 [ 634.444443] ? down_write_killable+0x180/0x180 [ 634.445386] ext4_map_blocks+0x63f/0x1910 [ 634.446234] ? kmem_cache_alloc+0x2a6/0x310 [ 634.447114] ? jbd2__journal_start+0xf3/0x7e0 [ 634.448058] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 634.448985] ? jbd2__journal_start+0xf3/0x7e0 [ 634.449916] ? __ext4_journal_start_sb+0x214/0x390 [ 634.450922] ? __ext4_journal_start_sb+0x1db/0x390 [ 634.451935] ext4_alloc_file_blocks.isra.0+0x2eb/0xb40 [ 634.453098] ? ext4_iomap_xattr_begin+0x530/0x530 [ 634.454127] ? down_write_killable+0x180/0x180 [ 634.455107] ext4_fallocate+0x415/0x3880 [ 634.455947] ? __x64_sys_fallocate+0xcf/0x140 [ 634.456873] ? lock_release+0x680/0x680 [ 634.457693] ? ext4_ext_truncate+0x250/0x250 [ 634.458599] ? selinux_file_permission+0x92/0x520 [ 634.459586] ? ext4_ext_truncate+0x250/0x250 [ 634.460501] vfs_fallocate+0x48f/0xda0 [ 634.461302] __x64_sys_fallocate+0xcf/0x140 [ 634.462184] do_syscall_64+0x33/0x40 [ 634.462942] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 634.463996] RIP: 0033:0x7f40b6085b19 [ 634.464753] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 634.468531] RSP: 002b:00007f40b35fb188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 634.470110] RAX: ffffffffffffffda RBX: 00007f40b6198f60 RCX: 00007f40b6085b19 [ 634.471564] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 634.473054] RBP: 00007f40b35fb1d0 R08: 0000000000000000 R09: 0000000000000000 [ 634.474513] R10: 000000000000fdef R11: 0000000000000246 R12: 0000000000000002 [ 634.475994] R13: 00007ffcad50a47f R14: 00007f40b35fb300 R15: 0000000000022000 01:40:31 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) r1 = syz_io_uring_complete(0x0) ioctl$F2FS_IOC_FLUSH_DEVICE(r1, 0x4008f50a, &(0x7f0000000140)={0x10001, 0x9}) sendfile(r1, r0, &(0x7f0000000100)=0x6, 0x8) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x2, 0x7, 0x5, 0x0, 0x0, {0xf, 0x0, 0x7}, [@NFACCT_FILTER={0xc, 0x7, 0x0, 0x1, [@NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x9}]}, @NFACCT_FLAGS={0x8, 0x5, 0x1, 0x0, 0x3}]}, 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x40) 01:40:31 executing program 5: r0 = syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:40:31 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x6) [ 634.531113] 9pnet: Insufficient options for proto=fd [ 634.533419] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 634.534108] print_req_error: 121 callbacks suppressed [ 634.534119] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 634.536100] buffer_io_error: 126 callbacks suppressed [ 634.536107] Buffer I/O error on dev sr0, logical block 0, async page read [ 634.537793] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 634.538742] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 634.540044] Buffer I/O error on dev sr0, logical block 1, async page read [ 634.541049] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 634.542053] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 634.543359] Buffer I/O error on dev sr0, logical block 2, async page read [ 634.544333] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 634.545083] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 634.546370] Buffer I/O error on dev sr0, logical block 3, async page read [ 634.547324] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 634.548060] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 634.549341] Buffer I/O error on dev sr0, logical block 4, async page read [ 634.550385] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 634.551082] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 634.552376] Buffer I/O error on dev sr0, logical block 5, async page read [ 634.553383] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 634.554060] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 634.555327] Buffer I/O error on dev sr0, logical block 6, async page read [ 634.556294] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 634.557017] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 634.558274] Buffer I/O error on dev sr0, logical block 7, async page read 01:40:31 executing program 0: recvmmsg(0xffffffffffffffff, &(0x7f00000032c0)=[{{&(0x7f0000000180)=@l2tp={0x2, 0x0, @private}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000480)=""/192, 0xc0}, {&(0x7f0000000540)=""/208, 0xd0}], 0x2}, 0xffff}, {{&(0x7f0000000240)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000bc0)=[{&(0x7f0000000640)=""/179, 0xb3}, {&(0x7f0000000100)=""/38, 0x26}, {&(0x7f0000000700)=""/235, 0xeb}, {&(0x7f0000000400)}, {&(0x7f0000000900)=""/225, 0xe1}, {&(0x7f0000000800)=""/74, 0x4a}, {&(0x7f0000000a00)=""/204, 0xcc}, {&(0x7f0000000880)=""/17, 0x11}, {&(0x7f0000000b00)=""/4, 0x4}, {&(0x7f0000000b40)=""/91, 0x5b}], 0xa, &(0x7f0000000c80)=""/4096, 0x1000}, 0xfffffffc}, {{&(0x7f0000001c80)=@can, 0x80, &(0x7f0000002100)=[{&(0x7f0000001d00)=""/121, 0x79}, {&(0x7f0000001e00)=""/150, 0x96}, {&(0x7f0000001ec0)=""/214, 0xd6}, {&(0x7f0000001fc0)=""/169, 0xa9}, {&(0x7f0000002080)=""/88, 0x58}], 0x5, &(0x7f0000002180)=""/97, 0x61}, 0x1}, {{&(0x7f0000002200)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}}}, 0x80, &(0x7f0000002340)=[{&(0x7f0000002280)=""/119, 0x77}, {&(0x7f0000002300)=""/52, 0x34}], 0x2, &(0x7f0000002380)=""/176, 0xb0}, 0x400}, {{&(0x7f0000002440)=@in6={0xa, 0x0, 0x0, @private0}, 0x80, &(0x7f0000002c40)=[{&(0x7f00000024c0)=""/92, 0x5c}, {&(0x7f0000002540)=""/102, 0x66}, {&(0x7f00000025c0)=""/181, 0xb5}, {&(0x7f0000002680)=""/243, 0xf3}, {&(0x7f0000002780)=""/83, 0x53}, {&(0x7f0000002800)=""/108, 0x6c}, {&(0x7f0000002880)=""/178, 0xb2}, {&(0x7f0000002940)=""/223, 0xdf}, {&(0x7f0000002a40)=""/197, 0xc5}, {&(0x7f0000002b40)=""/214, 0xd6}], 0xa, &(0x7f0000003600)=""/4096, 0x1000}, 0x800}, {{&(0x7f0000002d00)=@pptp={0x18, 0x2, {0x0, @multicast1}}, 0x80, &(0x7f0000003100)=[{&(0x7f0000002d80)=""/246, 0xf6}, {&(0x7f0000002e80)=""/27, 0x1b}, {&(0x7f0000002ec0)=""/238, 0xee}, {&(0x7f0000004600)=""/4096, 0x1000}, {&(0x7f0000005600)=""/4096, 0x1000}, {&(0x7f0000002fc0)=""/4, 0x4}, {&(0x7f0000006600)=""/4096, 0x1000}, {&(0x7f0000003000)=""/219, 0xdb}, {&(0x7f0000007600)=""/4096, 0x1000}], 0x9, &(0x7f00000031c0)=""/220, 0xdc}, 0x9}], 0x6, 0x242, &(0x7f0000003440)={0x0, 0x989680}) ioctl$sock_SIOCGIFCONF(r0, 0x8912, &(0x7f00000034c0)=@req={0x28, &(0x7f0000003480)={'vlan0\x00', @ifru_map}}) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000080)=ANY=[]) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x3, 0x0, 0x0) [ 634.605126] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 634.606401] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 634.607226] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 634.608063] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 02 00 [ 634.609018] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 8 prio class 0 [ 634.610260] Buffer I/O error on dev sr0, logical block 0, async page read [ 634.611153] Buffer I/O error on dev sr0, logical block 1, async page read 01:40:31 executing program 4: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, &(0x7f0000001100)=""/4095, 0x20001be3, 0x0) 01:40:31 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) (fail_nth: 13) 01:40:31 executing program 7: recvmmsg(0xffffffffffffffff, &(0x7f00000032c0)=[{{&(0x7f0000000180)=@l2tp={0x2, 0x0, @private}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000480)=""/192, 0xc0}, {&(0x7f0000000540)=""/208, 0xd0}], 0x2}, 0xffff}, {{&(0x7f0000000240)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000bc0)=[{&(0x7f0000000640)=""/179, 0xb3}, {&(0x7f0000000100)=""/38, 0x26}, {&(0x7f0000000700)=""/235, 0xeb}, {&(0x7f0000000400)}, {&(0x7f0000000900)=""/225, 0xe1}, {&(0x7f0000000800)=""/74, 0x4a}, {&(0x7f0000000a00)=""/204, 0xcc}, {&(0x7f0000000880)=""/17, 0x11}, {&(0x7f0000000b00)=""/4, 0x4}, {&(0x7f0000000b40)=""/91, 0x5b}], 0xa, &(0x7f0000000c80)=""/4096, 0x1000}, 0xfffffffc}, {{&(0x7f0000001c80)=@can, 0x80, &(0x7f0000002100)=[{&(0x7f0000001d00)=""/121, 0x79}, {&(0x7f0000001e00)=""/150, 0x96}, {&(0x7f0000001ec0)=""/214, 0xd6}, {&(0x7f0000001fc0)=""/169, 0xa9}, {&(0x7f0000002080)=""/88, 0x58}], 0x5, &(0x7f0000002180)=""/97, 0x61}, 0x1}, {{&(0x7f0000002200)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}}}, 0x80, &(0x7f0000002340)=[{&(0x7f0000002280)=""/119, 0x77}, {&(0x7f0000002300)=""/52, 0x34}], 0x2, &(0x7f0000002380)=""/176, 0xb0}, 0x400}, {{&(0x7f0000002440)=@in6={0xa, 0x0, 0x0, @private0}, 0x80, &(0x7f0000002c40)=[{&(0x7f00000024c0)=""/92, 0x5c}, {&(0x7f0000002540)=""/102, 0x66}, {&(0x7f00000025c0)=""/181, 0xb5}, {&(0x7f0000002680)=""/243, 0xf3}, {&(0x7f0000002780)=""/83, 0x53}, {&(0x7f0000002800)=""/108, 0x6c}, {&(0x7f0000002880)=""/178, 0xb2}, {&(0x7f0000002940)=""/223, 0xdf}, {&(0x7f0000002a40)=""/197, 0xc5}, {&(0x7f0000002b40)=""/214, 0xd6}], 0xa, &(0x7f0000003600)=""/4096, 0x1000}, 0x800}, {{&(0x7f0000002d00)=@pptp={0x18, 0x2, {0x0, @multicast1}}, 0x80, &(0x7f0000003100)=[{&(0x7f0000002d80)=""/246, 0xf6}, {&(0x7f0000002e80)=""/27, 0x1b}, {&(0x7f0000002ec0)=""/238, 0xee}, {&(0x7f0000004600)=""/4096, 0x1000}, {&(0x7f0000005600)=""/4096, 0x1000}, {&(0x7f0000002fc0)=""/4, 0x4}, {&(0x7f0000006600)=""/4096, 0x1000}, {&(0x7f0000003000)=""/219, 0xdb}, {&(0x7f0000007600)=""/4096, 0x1000}], 0x9, &(0x7f00000031c0)=""/220, 0xdc}, 0x9}], 0x6, 0x242, &(0x7f0000003440)={0x0, 0x989680}) r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:40:31 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYBLOB=',wfdno=', @ANYRESHEX=r0, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) 01:40:31 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x7) [ 634.720970] 9pnet: Insufficient options for proto=fd [ 634.723637] FAULT_INJECTION: forcing a failure. [ 634.723637] name failslab, interval 1, probability 0, space 0, times 0 [ 634.725022] CPU: 0 PID: 5776 Comm: syz-executor.3 Not tainted 5.10.230 #1 [ 634.725852] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 634.726854] Call Trace: [ 634.727176] dump_stack+0x107/0x167 [ 634.727621] should_fail.cold+0x5/0xa [ 634.728086] ? ext4_mb_new_blocks+0x1fd8/0x45c0 [ 634.728670] should_failslab+0x5/0x20 [ 634.729129] kmem_cache_alloc+0x5b/0x310 [ 634.729624] ext4_mb_new_blocks+0x1fd8/0x45c0 [ 634.730178] ? trace_hardirqs_on+0x5b/0x180 [ 634.730701] ? kasan_unpoison_shadow+0x33/0x50 [ 634.731253] ? ext4_cache_extents+0x68/0x2d0 [ 634.731787] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 634.732418] ? ext4_discard_preallocations+0xd80/0xd80 [ 634.733047] ? ext4_ext_search_right+0x2e3/0xbd0 [ 634.733621] ? ext4_inode_to_goal_block+0x320/0x430 [ 634.734227] ext4_ext_map_blocks+0x1d49/0x5830 [ 634.734794] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 634.735428] ? perf_trace_lock+0xac/0x490 [ 634.735931] ? ext4_ext_release+0x10/0x10 [ 634.736450] ? ext4_map_blocks+0x5cd/0x1910 [ 634.736974] ? lock_release+0x680/0x680 [ 634.737455] ? ext4_es_lookup_extent+0x48d/0xaa0 [ 634.738027] ? find_held_lock+0x2c/0x110 [ 634.738533] ? down_write_killable+0x180/0x180 [ 634.739091] ext4_map_blocks+0x63f/0x1910 [ 634.739598] ? kmem_cache_alloc+0x2a6/0x310 [ 634.740118] ? jbd2__journal_start+0xf3/0x7e0 [ 634.740665] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 634.741206] ? jbd2__journal_start+0xf3/0x7e0 [ 634.741759] ? __ext4_journal_start_sb+0x214/0x390 [ 634.742349] ? __ext4_journal_start_sb+0x1db/0x390 [ 634.742942] ext4_alloc_file_blocks.isra.0+0x2eb/0xb40 [ 634.743582] ? ext4_iomap_xattr_begin+0x530/0x530 [ 634.744168] ? down_write_killable+0x180/0x180 [ 634.744742] ext4_fallocate+0x415/0x3880 [ 634.745232] ? __x64_sys_fallocate+0xcf/0x140 [ 634.745779] ? lock_release+0x680/0x680 [ 634.746261] ? ext4_ext_truncate+0x250/0x250 [ 634.746796] ? selinux_file_permission+0x92/0x520 [ 634.747382] ? ext4_ext_truncate+0x250/0x250 [ 634.747917] vfs_fallocate+0x48f/0xda0 [ 634.748401] __x64_sys_fallocate+0xcf/0x140 [ 634.748927] do_syscall_64+0x33/0x40 [ 634.749377] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 634.750004] RIP: 0033:0x7f40b6085b19 [ 634.750453] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 634.752697] RSP: 002b:00007f40b35fb188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 634.753622] RAX: ffffffffffffffda RBX: 00007f40b6198f60 RCX: 00007f40b6085b19 [ 634.754479] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 634.755333] RBP: 00007f40b35fb1d0 R08: 0000000000000000 R09: 0000000000000000 [ 634.756186] R10: 000000000000fdef R11: 0000000000000246 R12: 0000000000000002 [ 634.757054] R13: 00007ffcad50a47f R14: 00007f40b35fb300 R15: 0000000000022000 [ 634.786576] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 634.787264] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 634.788592] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 634.789294] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 634.790752] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 634.791526] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 634.792224] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 634.793079] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 634.793873] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 634.794655] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 634.795400] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 634.796127] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 634.796896] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 634.797659] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 634.798432] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 634.799195] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 634.799987] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 634.800831] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 634.801547] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 634.802261] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 01:40:47 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) (fail_nth: 14) 01:40:47 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x8) 01:40:47 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:40:47 executing program 0: recvmmsg(0xffffffffffffffff, &(0x7f00000032c0)=[{{&(0x7f0000000180)=@l2tp={0x2, 0x0, @private}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000480)=""/192, 0xc0}, {&(0x7f0000000540)=""/208, 0xd0}], 0x2}, 0xffff}, {{&(0x7f0000000240)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000bc0)=[{&(0x7f0000000640)=""/179, 0xb3}, {&(0x7f0000000100)=""/38, 0x26}, {&(0x7f0000000700)=""/235, 0xeb}, {&(0x7f0000000400)}, {&(0x7f0000000900)=""/225, 0xe1}, {&(0x7f0000000800)=""/74, 0x4a}, {&(0x7f0000000a00)=""/204, 0xcc}, {&(0x7f0000000880)=""/17, 0x11}, {&(0x7f0000000b00)=""/4, 0x4}, {&(0x7f0000000b40)=""/91, 0x5b}], 0xa, &(0x7f0000000c80)=""/4096, 0x1000}, 0xfffffffc}, {{&(0x7f0000001c80)=@can, 0x80, &(0x7f0000002100)=[{&(0x7f0000001d00)=""/121, 0x79}, {&(0x7f0000001e00)=""/150, 0x96}, {&(0x7f0000001ec0)=""/214, 0xd6}, {&(0x7f0000001fc0)=""/169, 0xa9}, {&(0x7f0000002080)=""/88, 0x58}], 0x5, &(0x7f0000002180)=""/97, 0x61}, 0x1}, {{&(0x7f0000002200)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}}}, 0x80, &(0x7f0000002340)=[{&(0x7f0000002280)=""/119, 0x77}, {&(0x7f0000002300)=""/52, 0x34}], 0x2, &(0x7f0000002380)=""/176, 0xb0}, 0x400}, {{&(0x7f0000002440)=@in6={0xa, 0x0, 0x0, @private0}, 0x80, &(0x7f0000002c40)=[{&(0x7f00000024c0)=""/92, 0x5c}, {&(0x7f0000002540)=""/102, 0x66}, {&(0x7f00000025c0)=""/181, 0xb5}, {&(0x7f0000002680)=""/243, 0xf3}, {&(0x7f0000002780)=""/83, 0x53}, {&(0x7f0000002800)=""/108, 0x6c}, {&(0x7f0000002880)=""/178, 0xb2}, {&(0x7f0000002940)=""/223, 0xdf}, {&(0x7f0000002a40)=""/197, 0xc5}, {&(0x7f0000002b40)=""/214, 0xd6}], 0xa, &(0x7f0000003600)=""/4096, 0x1000}, 0x800}, {{&(0x7f0000002d00)=@pptp={0x18, 0x2, {0x0, @multicast1}}, 0x80, &(0x7f0000003100)=[{&(0x7f0000002d80)=""/246, 0xf6}, {&(0x7f0000002e80)=""/27, 0x1b}, {&(0x7f0000002ec0)=""/238, 0xee}, {&(0x7f0000004600)=""/4096, 0x1000}, {&(0x7f0000005600)=""/4096, 0x1000}, {&(0x7f0000002fc0)=""/4, 0x4}, {&(0x7f0000006600)=""/4096, 0x1000}, {&(0x7f0000003000)=""/219, 0xdb}, {&(0x7f0000007600)=""/4096, 0x1000}], 0x9, &(0x7f00000031c0)=""/220, 0xdc}, 0x9}], 0x6, 0x242, &(0x7f0000003440)={0x0, 0x989680}) ioctl$sock_SIOCGIFCONF(r0, 0x8912, &(0x7f00000034c0)=@req={0x28, &(0x7f0000003480)={'vlan0\x00', @ifru_map}}) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000080)=ANY=[]) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:40:47 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x109) open_by_handle_at(r0, &(0x7f0000000000)=ANY=[], 0x10002) 01:40:47 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x0) [ 650.879298] 9pnet: Insufficient options for proto=fd 01:40:47 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX=r0, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) 01:40:47 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) [ 650.907574] FAULT_INJECTION: forcing a failure. [ 650.907574] name failslab, interval 1, probability 0, space 0, times 0 [ 650.910612] CPU: 1 PID: 5787 Comm: syz-executor.3 Not tainted 5.10.230 #1 [ 650.912168] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 650.914076] Call Trace: [ 650.914686] dump_stack+0x107/0x167 [ 650.915525] should_fail.cold+0x5/0xa [ 650.916403] ? create_object.isra.0+0x3a/0xa20 [ 650.917487] should_failslab+0x5/0x20 [ 650.918363] kmem_cache_alloc+0x5b/0x310 [ 650.919301] create_object.isra.0+0x3a/0xa20 [ 650.920299] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 650.921518] kmem_cache_alloc+0x159/0x310 [ 650.922470] ext4_mb_new_blocks+0x1fd8/0x45c0 [ 650.923509] ? trace_hardirqs_on+0x5b/0x180 [ 650.924723] ? kasan_unpoison_shadow+0x33/0x50 [ 650.926051] ? ext4_cache_extents+0x68/0x2d0 [ 650.927101] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 650.928268] ? ext4_discard_preallocations+0xd80/0xd80 [ 650.929517] ? ext4_ext_search_right+0x2e3/0xbd0 [ 650.930615] ? ext4_inode_to_goal_block+0x320/0x430 [ 650.931770] ext4_ext_map_blocks+0x1d49/0x5830 [ 650.932835] ? mark_held_locks+0x9e/0xe0 [ 650.933791] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 650.934991] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 650.936192] ? _raw_spin_unlock_irq+0x1f/0x30 [ 650.937241] ? trace_hardirqs_on+0x5b/0x180 [ 650.938279] ? _raw_spin_unlock_irq+0x1f/0x30 [ 650.939330] ? finish_task_switch+0x126/0x5d0 [ 650.940363] ? ext4_ext_release+0x10/0x10 [ 650.941363] ? ext4_map_blocks+0x5cd/0x1910 [ 650.942377] ? lock_release+0x680/0x680 [ 650.943311] ? io_schedule_timeout+0x140/0x140 [ 650.944397] ? down_write_killable+0x180/0x180 [ 650.945496] ext4_map_blocks+0x63f/0x1910 [ 650.946480] ? kmem_cache_alloc+0x2a6/0x310 [ 650.947476] ? jbd2__journal_start+0xf3/0x7e0 [ 650.948517] ? ext4_issue_zeroout+0x1c0/0x1c0 [ 650.949594] ? jbd2__journal_start+0xf3/0x7e0 [ 650.950647] ? __ext4_journal_start_sb+0x214/0x390 [ 650.951781] ? __ext4_journal_start_sb+0x1db/0x390 [ 650.952940] ext4_alloc_file_blocks.isra.0+0x2eb/0xb40 [ 650.954184] ? ext4_iomap_xattr_begin+0x530/0x530 [ 650.955324] ? down_write_killable+0x180/0x180 [ 650.956400] ext4_fallocate+0x415/0x3880 [ 650.957384] ? __x64_sys_fallocate+0xcf/0x140 [ 650.958442] ? lock_release+0x680/0x680 [ 650.959371] ? ext4_ext_truncate+0x250/0x250 [ 650.960394] ? selinux_file_permission+0x92/0x520 [ 650.961540] ? ext4_ext_truncate+0x250/0x250 [ 650.962576] vfs_fallocate+0x48f/0xda0 [ 650.963497] __x64_sys_fallocate+0xcf/0x140 [ 650.964501] do_syscall_64+0x33/0x40 [ 650.965398] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 650.966569] RIP: 0033:0x7f40b6085b19 [ 650.967431] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 650.971725] RSP: 002b:00007f40b35fb188 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 650.973530] RAX: ffffffffffffffda RBX: 00007f40b6198f60 RCX: 00007f40b6085b19 [ 650.975191] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 650.976865] RBP: 00007f40b35fb1d0 R08: 0000000000000000 R09: 0000000000000000 [ 650.978607] R10: 000000000000fdef R11: 0000000000000246 R12: 0000000000000002 [ 650.980659] R13: 00007ffcad50a47f R14: 00007f40b35fb300 R15: 0000000000022000 01:40:47 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX=r0, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) 01:40:47 executing program 4: r0 = syz_open_procfs(0x0, 0x0) pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x0) [ 651.037883] 9pnet: Insufficient options for proto=fd 01:40:47 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) (fail_nth: 15) 01:40:47 executing program 4: r0 = syz_open_procfs(0x0, 0x0) pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x0) [ 651.132728] FAULT_INJECTION: forcing a failure. [ 651.132728] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 651.135566] CPU: 1 PID: 5814 Comm: syz-executor.3 Not tainted 5.10.230 #1 [ 651.137134] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 651.138993] Call Trace: [ 651.139582] dump_stack+0x107/0x167 [ 651.140400] should_fail.cold+0x5/0xa [ 651.141274] _copy_to_user+0x2e/0x180 [ 651.142142] simple_read_from_buffer+0xcc/0x160 [ 651.143202] proc_fail_nth_read+0x198/0x230 [ 651.144185] ? proc_sessionid_read+0x230/0x230 [ 651.145226] ? security_file_permission+0xb1/0xe0 [ 651.146333] ? proc_sessionid_read+0x230/0x230 [ 651.147375] vfs_read+0x228/0x620 [ 651.148156] ksys_read+0x12d/0x260 [ 651.148954] ? vfs_write+0xb10/0xb10 [ 651.149777] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 651.150928] ? syscall_enter_from_user_mode+0x1d/0x50 [ 651.152081] do_syscall_64+0x33/0x40 [ 651.152904] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 651.154056] RIP: 0033:0x7f40b603869c [ 651.154897] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 651.159028] RSP: 002b:00007f40b35fb170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 651.160724] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f40b603869c [ 651.162331] RDX: 000000000000000f RSI: 00007f40b35fb1e0 RDI: 0000000000000006 [ 651.163906] RBP: 00007f40b35fb1d0 R08: 0000000000000000 R09: 0000000000000000 [ 651.165495] R10: 000000000000fdef R11: 0000000000000246 R12: 0000000000000002 [ 651.167071] R13: 00007ffcad50a47f R14: 00007f40b35fb300 R15: 0000000000022000 01:41:00 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x0, 0xfdef) 01:41:00 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX=r0, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) 01:41:00 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:41:00 executing program 0: recvmmsg(0xffffffffffffffff, &(0x7f00000032c0)=[{{&(0x7f0000000180)=@l2tp={0x2, 0x0, @private}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000480)=""/192, 0xc0}, {&(0x7f0000000540)=""/208, 0xd0}], 0x2}, 0xffff}, {{&(0x7f0000000240)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000bc0)=[{&(0x7f0000000640)=""/179, 0xb3}, {&(0x7f0000000100)=""/38, 0x26}, {&(0x7f0000000700)=""/235, 0xeb}, {&(0x7f0000000400)}, {&(0x7f0000000900)=""/225, 0xe1}, {&(0x7f0000000800)=""/74, 0x4a}, {&(0x7f0000000a00)=""/204, 0xcc}, {&(0x7f0000000880)=""/17, 0x11}, {&(0x7f0000000b00)=""/4, 0x4}, {&(0x7f0000000b40)=""/91, 0x5b}], 0xa, &(0x7f0000000c80)=""/4096, 0x1000}, 0xfffffffc}, {{&(0x7f0000001c80)=@can, 0x80, &(0x7f0000002100)=[{&(0x7f0000001d00)=""/121, 0x79}, {&(0x7f0000001e00)=""/150, 0x96}, {&(0x7f0000001ec0)=""/214, 0xd6}, {&(0x7f0000001fc0)=""/169, 0xa9}, {&(0x7f0000002080)=""/88, 0x58}], 0x5, &(0x7f0000002180)=""/97, 0x61}, 0x1}, {{&(0x7f0000002200)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}}}, 0x80, &(0x7f0000002340)=[{&(0x7f0000002280)=""/119, 0x77}, {&(0x7f0000002300)=""/52, 0x34}], 0x2, &(0x7f0000002380)=""/176, 0xb0}, 0x400}, {{&(0x7f0000002440)=@in6={0xa, 0x0, 0x0, @private0}, 0x80, &(0x7f0000002c40)=[{&(0x7f00000024c0)=""/92, 0x5c}, {&(0x7f0000002540)=""/102, 0x66}, {&(0x7f00000025c0)=""/181, 0xb5}, {&(0x7f0000002680)=""/243, 0xf3}, {&(0x7f0000002780)=""/83, 0x53}, {&(0x7f0000002800)=""/108, 0x6c}, {&(0x7f0000002880)=""/178, 0xb2}, {&(0x7f0000002940)=""/223, 0xdf}, {&(0x7f0000002a40)=""/197, 0xc5}, {&(0x7f0000002b40)=""/214, 0xd6}], 0xa, &(0x7f0000003600)=""/4096, 0x1000}, 0x800}, {{&(0x7f0000002d00)=@pptp={0x18, 0x2, {0x0, @multicast1}}, 0x80, &(0x7f0000003100)=[{&(0x7f0000002d80)=""/246, 0xf6}, {&(0x7f0000002e80)=""/27, 0x1b}, {&(0x7f0000002ec0)=""/238, 0xee}, {&(0x7f0000004600)=""/4096, 0x1000}, {&(0x7f0000005600)=""/4096, 0x1000}, {&(0x7f0000002fc0)=""/4, 0x4}, {&(0x7f0000006600)=""/4096, 0x1000}, {&(0x7f0000003000)=""/219, 0xdb}, {&(0x7f0000007600)=""/4096, 0x1000}], 0x9, &(0x7f00000031c0)=""/220, 0xdc}, 0x9}], 0x6, 0x242, &(0x7f0000003440)={0x0, 0x989680}) ioctl$sock_SIOCGIFCONF(r0, 0x8912, &(0x7f00000034c0)=@req={0x28, &(0x7f0000003480)={'vlan0\x00', @ifru_map}}) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000080)=ANY=[]) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:41:00 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x9) 01:41:00 executing program 4: r0 = syz_open_procfs(0x0, 0x0) pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x0) 01:41:00 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:41:00 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[], 0x800) creat(&(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x40) readv(0xffffffffffffffff, &(0x7f00000006c0)=[{&(0x7f0000000080)=""/210, 0xd2}, {&(0x7f0000000200)=""/110, 0x6e}, {&(0x7f0000000000)=""/8, 0x8}, {&(0x7f0000000280)=""/67, 0x43}, {&(0x7f0000000300)=""/87, 0x57}, {&(0x7f0000000380)=""/222, 0xde}, {&(0x7f0000000480)=""/223, 0xdf}, {&(0x7f0000000580)=""/82, 0x52}, {&(0x7f0000000600)=""/170, 0xaa}], 0x9) [ 664.083316] 9pnet: Insufficient options for proto=fd 01:41:00 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:41:00 executing program 2: add_key(&(0x7f0000000000)='syzkaller\x00', &(0x7f0000000040)={'syz', 0x2}, &(0x7f0000000080)="02ccb7c7262c27ca00e981031ef5c5c1bf5dbd2aa3a9455389b6df295f8d66ea64ed7d4cc8f683d0148c3df260470061f6049af8731b7afbc68a5c53ae926d990d5fc1b2c428ec3c997cc6d1f316708409008ae45cb46690062e653f445ccbb38d28944de232a26927001bd61e7b14bdd02b49d38fdeaf361ce192989894c30f2dcff10d028818267d07201fdd7f0f85215796d19532621bfde916941ef3332d4e553a93bad48b1e568a210f5699ae237c2fc7d048c5cf224a296fcd86b749a6949cd1fcb43490cef57a514659e2bdf6cc73b9", 0xd3, 0xfffffffffffffff9) r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) 01:41:00 executing program 4: syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(0xffffffffffffffff, &(0x7f0000001100)=""/4095, 0x20001be3, 0x0) [ 664.137769] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 664.139073] print_req_error: 18 callbacks suppressed [ 664.139090] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 664.142518] buffer_io_error: 30 callbacks suppressed [ 664.142530] Buffer I/O error on dev sr0, logical block 0, async page read [ 664.145687] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 664.146963] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 664.149197] Buffer I/O error on dev sr0, logical block 1, async page read [ 664.151520] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 664.153157] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 5 prio class 0 [ 664.155421] Buffer I/O error on dev sr0, logical block 2, async page read [ 664.157044] Buffer I/O error on dev sr0, logical block 3, async page read [ 664.158634] Buffer I/O error on dev sr0, logical block 4, async page read [ 664.160219] Buffer I/O error on dev sr0, logical block 5, async page read [ 664.161814] Buffer I/O error on dev sr0, logical block 6, async page read [ 664.179200] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 664.180508] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 664.182802] Buffer I/O error on dev sr0, logical block 7, async page read 01:41:00 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x2, 0x0, 0xfdef) 01:41:00 executing program 2: r0 = syz_open_dev$vcsn(&(0x7f0000000040), 0x1, 0x90000) ioctl$RTC_UIE_ON(r0, 0x7003) r1 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x190) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r2, 0x0, 0x0) lseek(r2, 0xfffffffffffff014, 0x0) getdents64(r2, &(0x7f00000001c0)=""/251, 0xfb) close(r2) open_by_handle_at(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="7f"], 0x0) 01:41:00 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) 01:41:00 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:41:00 executing program 0: recvmmsg(0xffffffffffffffff, &(0x7f00000032c0)=[{{&(0x7f0000000180)=@l2tp={0x2, 0x0, @private}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000480)=""/192, 0xc0}, {&(0x7f0000000540)=""/208, 0xd0}], 0x2}, 0xffff}, {{&(0x7f0000000240)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000bc0)=[{&(0x7f0000000640)=""/179, 0xb3}, {&(0x7f0000000100)=""/38, 0x26}, {&(0x7f0000000700)=""/235, 0xeb}, {&(0x7f0000000400)}, {&(0x7f0000000900)=""/225, 0xe1}, {&(0x7f0000000800)=""/74, 0x4a}, {&(0x7f0000000a00)=""/204, 0xcc}, {&(0x7f0000000880)=""/17, 0x11}, {&(0x7f0000000b00)=""/4, 0x4}, {&(0x7f0000000b40)=""/91, 0x5b}], 0xa, &(0x7f0000000c80)=""/4096, 0x1000}, 0xfffffffc}, {{&(0x7f0000001c80)=@can, 0x80, &(0x7f0000002100)=[{&(0x7f0000001d00)=""/121, 0x79}, {&(0x7f0000001e00)=""/150, 0x96}, {&(0x7f0000001ec0)=""/214, 0xd6}, {&(0x7f0000001fc0)=""/169, 0xa9}, {&(0x7f0000002080)=""/88, 0x58}], 0x5, &(0x7f0000002180)=""/97, 0x61}, 0x1}, {{&(0x7f0000002200)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}}}, 0x80, &(0x7f0000002340)=[{&(0x7f0000002280)=""/119, 0x77}, {&(0x7f0000002300)=""/52, 0x34}], 0x2, &(0x7f0000002380)=""/176, 0xb0}, 0x400}, {{&(0x7f0000002440)=@in6={0xa, 0x0, 0x0, @private0}, 0x80, &(0x7f0000002c40)=[{&(0x7f00000024c0)=""/92, 0x5c}, {&(0x7f0000002540)=""/102, 0x66}, {&(0x7f00000025c0)=""/181, 0xb5}, {&(0x7f0000002680)=""/243, 0xf3}, {&(0x7f0000002780)=""/83, 0x53}, {&(0x7f0000002800)=""/108, 0x6c}, {&(0x7f0000002880)=""/178, 0xb2}, {&(0x7f0000002940)=""/223, 0xdf}, {&(0x7f0000002a40)=""/197, 0xc5}, {&(0x7f0000002b40)=""/214, 0xd6}], 0xa, &(0x7f0000003600)=""/4096, 0x1000}, 0x800}, {{&(0x7f0000002d00)=@pptp={0x18, 0x2, {0x0, @multicast1}}, 0x80, &(0x7f0000003100)=[{&(0x7f0000002d80)=""/246, 0xf6}, {&(0x7f0000002e80)=""/27, 0x1b}, {&(0x7f0000002ec0)=""/238, 0xee}, {&(0x7f0000004600)=""/4096, 0x1000}, {&(0x7f0000005600)=""/4096, 0x1000}, {&(0x7f0000002fc0)=""/4, 0x4}, {&(0x7f0000006600)=""/4096, 0x1000}, {&(0x7f0000003000)=""/219, 0xdb}, {&(0x7f0000007600)=""/4096, 0x1000}], 0x9, &(0x7f00000031c0)=""/220, 0xdc}, 0x9}], 0x6, 0x242, &(0x7f0000003440)={0x0, 0x989680}) ioctl$sock_SIOCGIFCONF(r0, 0x8912, &(0x7f00000034c0)=@req={0x28, &(0x7f0000003480)={'vlan0\x00', @ifru_map}}) r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r1, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:41:00 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0xa) 01:41:00 executing program 7: r0 = syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:41:00 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) 01:41:00 executing program 4: syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(0xffffffffffffffff, &(0x7f0000001100)=""/4095, 0x20001be3, 0x0) 01:41:00 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r1, 0x0, 0x0) lseek(r1, 0xfffffffffffff014, 0x0) getdents64(r1, &(0x7f00000001c0)=""/251, 0xfb) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) sendfile(r1, r2, &(0x7f0000000000)=0x7, 0x10001) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r3, 0x0, 0x0) lseek(r3, 0xfffffffffffff014, 0x0) getdents64(r3, &(0x7f00000001c0)=""/251, 0xfb) getdents64(r3, &(0x7f0000000040)=""/179, 0xb3) [ 664.338250] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 664.340483] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 664.342040] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 664.343532] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 02 00 [ 664.345236] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 8 prio class 0 [ 664.347445] Buffer I/O error on dev sr0, logical block 0, async page read [ 664.348995] Buffer I/O error on dev sr0, logical block 1, async page read 01:41:15 executing program 4: syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(0xffffffffffffffff, &(0x7f0000001100)=""/4095, 0x20001be3, 0x0) 01:41:15 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x3, 0x0, 0xfdef) 01:41:15 executing program 2: r0 = creat(&(0x7f00000000c0)='./cgroup/cgroup.procs\x00', 0x0) accept4$unix(r0, &(0x7f0000000000), &(0x7f0000000080)=0x6e, 0x80000) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) 01:41:15 executing program 7: r0 = syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:41:15 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x21) 01:41:15 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:41:15 executing program 0: recvmmsg(0xffffffffffffffff, &(0x7f00000032c0)=[{{&(0x7f0000000180)=@l2tp={0x2, 0x0, @private}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000480)=""/192, 0xc0}, {&(0x7f0000000540)=""/208, 0xd0}], 0x2}, 0xffff}, {{&(0x7f0000000240)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000bc0)=[{&(0x7f0000000640)=""/179, 0xb3}, {&(0x7f0000000100)=""/38, 0x26}, {&(0x7f0000000700)=""/235, 0xeb}, {&(0x7f0000000400)}, {&(0x7f0000000900)=""/225, 0xe1}, {&(0x7f0000000800)=""/74, 0x4a}, {&(0x7f0000000a00)=""/204, 0xcc}, {&(0x7f0000000880)=""/17, 0x11}, {&(0x7f0000000b00)=""/4, 0x4}, {&(0x7f0000000b40)=""/91, 0x5b}], 0xa, &(0x7f0000000c80)=""/4096, 0x1000}, 0xfffffffc}, {{&(0x7f0000001c80)=@can, 0x80, &(0x7f0000002100)=[{&(0x7f0000001d00)=""/121, 0x79}, {&(0x7f0000001e00)=""/150, 0x96}, {&(0x7f0000001ec0)=""/214, 0xd6}, {&(0x7f0000001fc0)=""/169, 0xa9}, {&(0x7f0000002080)=""/88, 0x58}], 0x5, &(0x7f0000002180)=""/97, 0x61}, 0x1}, {{&(0x7f0000002200)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}}}, 0x80, &(0x7f0000002340)=[{&(0x7f0000002280)=""/119, 0x77}, {&(0x7f0000002300)=""/52, 0x34}], 0x2, &(0x7f0000002380)=""/176, 0xb0}, 0x400}, {{&(0x7f0000002440)=@in6={0xa, 0x0, 0x0, @private0}, 0x80, &(0x7f0000002c40)=[{&(0x7f00000024c0)=""/92, 0x5c}, {&(0x7f0000002540)=""/102, 0x66}, {&(0x7f00000025c0)=""/181, 0xb5}, {&(0x7f0000002680)=""/243, 0xf3}, {&(0x7f0000002780)=""/83, 0x53}, {&(0x7f0000002800)=""/108, 0x6c}, {&(0x7f0000002880)=""/178, 0xb2}, {&(0x7f0000002940)=""/223, 0xdf}, {&(0x7f0000002a40)=""/197, 0xc5}, {&(0x7f0000002b40)=""/214, 0xd6}], 0xa, &(0x7f0000003600)=""/4096, 0x1000}, 0x800}, {{&(0x7f0000002d00)=@pptp={0x18, 0x2, {0x0, @multicast1}}, 0x80, &(0x7f0000003100)=[{&(0x7f0000002d80)=""/246, 0xf6}, {&(0x7f0000002e80)=""/27, 0x1b}, {&(0x7f0000002ec0)=""/238, 0xee}, {&(0x7f0000004600)=""/4096, 0x1000}, {&(0x7f0000005600)=""/4096, 0x1000}, {&(0x7f0000002fc0)=""/4, 0x4}, {&(0x7f0000006600)=""/4096, 0x1000}, {&(0x7f0000003000)=""/219, 0xdb}, {&(0x7f0000007600)=""/4096, 0x1000}], 0x9, &(0x7f00000031c0)=""/220, 0xdc}, 0x9}], 0x6, 0x242, &(0x7f0000003440)={0x0, 0x989680}) r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:41:15 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) 01:41:15 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, 0x0, 0x0, 0x0) [ 678.672692] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 678.673974] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 678.676554] buffer_io_error: 6 callbacks suppressed [ 678.676566] Buffer I/O error on dev sr0, logical block 0, async page read [ 678.681555] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 678.682791] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 678.684965] Buffer I/O error on dev sr0, logical block 1, async page read [ 678.686698] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 678.688064] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 678.690228] Buffer I/O error on dev sr0, logical block 2, async page read [ 678.693688] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 678.694947] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 678.697119] Buffer I/O error on dev sr0, logical block 3, async page read [ 678.698865] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 678.700454] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 678.702637] Buffer I/O error on dev sr0, logical block 4, async page read [ 678.706528] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 678.707918] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 678.710077] Buffer I/O error on dev sr0, logical block 5, async page read [ 678.711780] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 678.713603] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 678.717773] Buffer I/O error on dev sr0, logical block 6, async page read [ 678.721715] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 678.722976] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 678.725142] Buffer I/O error on dev sr0, logical block 7, async page read [ 678.726913] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 678.728936] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 678.731089] Buffer I/O error on dev sr0, logical block 0, async page read [ 678.732702] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 678.733915] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 7 prio class 0 [ 678.736046] Buffer I/O error on dev sr0, logical block 1, async page read 01:41:29 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="52e6ec4a3d480081c8560400eb034850eb94456b42401c845387f82da7c5af8a4311d37b47066723172b80bcf3bdca2b2060df09b5b94cdc33f902616348f87ab39d222fc9aea8971e3fda28b4b6ea9f386684eac8b5c742bf20bef6c5707754b657dfb17f8dbb4bf743d005488ebd8e143433261c14c53996ce0a36b59b45b7c6806b3e9294aa6790e197bac3bce51e9097a492838de289ccef2b623d57ab4b2adb88a29fa602b7901aa0f3217e8725"], 0x0) fcntl$setlease(r0, 0x400, 0x1) r1 = syz_open_dev$hiddev(&(0x7f00000000c0), 0x1000, 0x10ac0) fcntl$dupfd(r0, 0x0, r1) 01:41:29 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, 0x0, 0x0, 0x0) 01:41:29 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:41:29 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x48) 01:41:29 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x4, 0x0, 0xfdef) 01:41:29 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) 01:41:29 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:41:29 executing program 7: r0 = syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) [ 692.838960] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 692.839780] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 692.841176] buffer_io_error: 6 callbacks suppressed [ 692.841184] Buffer I/O error on dev sr0, logical block 0, async page read 01:41:29 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, 0x0, 0x0, 0x0) [ 692.843606] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 692.844662] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 692.846037] Buffer I/O error on dev sr0, logical block 1, async page read [ 692.850188] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 692.850981] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 692.852347] Buffer I/O error on dev sr0, logical block 2, async page read [ 692.878067] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 692.878856] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 692.880237] Buffer I/O error on dev sr0, logical block 3, async page read [ 692.881424] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 692.882150] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 692.883538] Buffer I/O error on dev sr0, logical block 4, async page read [ 692.904240] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 692.905593] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 692.907824] Buffer I/O error on dev sr0, logical block 5, async page read [ 692.909484] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 692.910726] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 2 prio class 0 [ 692.912991] Buffer I/O error on dev sr0, logical block 6, async page read [ 692.914604] Buffer I/O error on dev sr0, logical block 7, async page read 01:41:29 executing program 0: r0 = syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:41:29 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) 01:41:29 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) recvmsg$unix(r0, &(0x7f00000014c0)={&(0x7f00000000c0)=@abs, 0x6e, &(0x7f00000002c0)=[{&(0x7f0000000200)=""/162, 0xa2}, {&(0x7f0000000340)=""/4096, 0x1000}, {&(0x7f0000000140)=""/122, 0x7a}, {&(0x7f0000001340)=""/147, 0x93}], 0x4, &(0x7f0000001400)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xb8}, 0x2000) r2 = openat$null(0xffffffffffffff9c, &(0x7f0000001500), 0x4002, 0x0) perf_event_open$cgroup(&(0x7f0000000040)={0x3, 0x80, 0x19, 0xfc, 0x1f, 0x8, 0x0, 0x7f, 0x2, 0x2, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x8000, 0x0, @perf_bp={&(0x7f0000000000), 0x4}, 0x40080, 0x9, 0xffffff24, 0x2, 0x4, 0x7, 0xffff, 0x0, 0x1, 0x0, 0x1}, r1, 0x10, r2, 0x6) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) 01:41:29 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x4c) 01:41:29 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x5, 0x0, 0xfdef) 01:41:29 executing program 7: r0 = syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:41:29 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:41:29 executing program 0: r0 = syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:41:29 executing program 4: r0 = syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:41:29 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) 01:41:29 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x68) 01:41:46 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x6c) 01:41:46 executing program 0: r0 = syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:41:46 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) 01:41:46 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x6, 0x0, 0xfdef) 01:41:46 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:41:46 executing program 4: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r1, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) r2 = syz_open_procfs(0x0, &(0x7f0000000140)='net\x00') syz_io_uring_setup(0x5b70, &(0x7f0000000200)={0x0, 0x13c7, 0x20, 0x1, 0x203, 0x0, r2}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000180), &(0x7f0000000280)) inotify_add_watch(r1, &(0x7f0000000000)='./cgroup/cgroup.procs\x00', 0x10000000) open_by_handle_at(r0, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x0) r3 = signalfd(0xffffffffffffffff, &(0x7f00000002c0)={[0x8]}, 0x8) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r3, 0x4008240b, &(0x7f0000000340)={0x0, 0x80, 0x8, 0x20, 0x5, 0x8, 0x0, 0x3, 0xe2380, 0x2, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0xfe92, 0x4, @perf_bp={&(0x7f0000000300), 0xa}, 0x10000, 0x81c1, 0x3, 0x4, 0x0, 0x800, 0x1f, 0x0, 0xd27, 0x0, 0xfffffffffffffff9}) statfs(&(0x7f0000000040)='./cgroup/cgroup.procs\x00', &(0x7f00000000c0)=""/94) 01:41:46 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) r1 = creat(&(0x7f0000000000)='./cgroup/cgroup.procs\x00', 0xa5) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) r2 = getegid() keyctl$chown(0x4, 0x0, 0xee01, r2) fsetxattr$system_posix_acl(0xffffffffffffffff, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="02000000010001000000000002000300", @ANYRES32, @ANYBLOB="02000600", @ANYRES32, @ANYBLOB="040006000000000008000000", @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=r2, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="6679d9b400000004200207006c499ab704000000da92640590"], 0x4c, 0x2) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r3, 0x0, 0x0) lseek(r3, 0xfffffffffffff014, 0x0) getdents64(r3, &(0x7f00000001c0)=""/251, 0xfb) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = accept4$inet6(r1, &(0x7f0000001680)={0xa, 0x0, 0x0, @mcast2}, &(0x7f00000016c0)=0x1c, 0x80800) r7 = openat$cgroup_procs(r1, &(0x7f0000001700)='tasks\x00', 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001740)={0xffffffffffffffff, 0xffffffffffffffff}) r9 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r9, 0x0, 0x0) lseek(r9, 0xfffffffffffff014, 0x0) getdents64(r9, &(0x7f00000001c0)=""/251, 0xfb) sendmsg$unix(0xffffffffffffffff, &(0x7f0000001840)={&(0x7f0000000080)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f0000001500)=[{&(0x7f0000000100)="d91528a3ea29343f97e91df4605beb747d8815585439dc78fc4dd6492b9f18164eefb48d9af665ad37a6847a0e7c8946e5439668d3f1484e71e9e6f060a2515d8b2eab36d982e45c20b29c7c06d78884212d3bde075f76f5e24999", 0x5b}, {&(0x7f0000000180)="91f9e0ad5362", 0x6}, {&(0x7f0000000200)="1e6c38c4a9d46fdc99662aeed2135db0c28d1282d3125990dc79b91eb419a682923bf5eed711eb0177e8bf190358e27d5fabfcba27110af071529748ec37591f8f23b3b470c257ac88cda6abd3b24c5eca9512eb0444c5a1c85957d8ea08a06501b264bcc887238b34d01b18d48f8a6291583ed3c66a27ab1c275bcce4114d39", 0x80}, {&(0x7f0000000340)="a6e41d78ae357b84e97af7c279cb743bbba62d18073182d4548083677ea8d6291a9f3da1e78cdd57c4e4167817ffb5e4a5949b3bdc1917a551726b3d63cfa0ac3a5ece590bf20593a539855d6751ee227cb6d15a4289857ce512a20b1d3702c48da354ed7130d092d31da499ae8ee881688fcfd6c28d0d98f8a7ca54fa86747f290e254bb2e1076b8fb8adc2a605245f20cf19837c8f4e36431c5d7cb009476dc8e747f8", 0xa4}, {&(0x7f0000000400)="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", 0xfb}, {&(0x7f0000000500)="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", 0x1000}, {&(0x7f0000000280)="083501a688a2d67b6c898032f0a5d1d0a0fffb5b2ede2dab3c9a2a8936870dfd2a5ed8a1f0d77d3f01de43b45c579083f15e3a0a7b53", 0x36}], 0x7, &(0x7f0000001580)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="200000001c00000000000000012000007fe9691cae36b2447d3a4902000000e8b154501e1e4e61b0efe6e3fb85ee7a57d498a62a8b2b1f836e4a1db896b2df42d925ebb4ed26e82cf51d7cfd093e2230b908f439883899", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=r2, @ANYBLOB="0000000038000000000000000100000001000000", @ANYRES32=r3, @ANYRES32=r4, @ANYRES32=r5, @ANYRES32=r6, @ANYRES32=r7, @ANYRES32=r8, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="14000000000000000100000001000000", @ANYRES32=r9, @ANYBLOB='\x00\x00\x00\x00'], 0x90, 0x1}, 0x4080) 01:41:46 executing program 7: r0 = syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) [ 710.379073] 9pnet: Could not find request transport: fd0x0000000000000004 01:41:47 executing program 0: r0 = syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:41:47 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x74) 01:41:47 executing program 7: r0 = syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:41:47 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) 01:41:47 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x8, 0x0, 0xfdef) 01:41:47 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:41:47 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[], 0x80000) 01:41:47 executing program 0: r0 = syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) [ 710.589841] 9pnet: Could not find request transport: fd0x0000000000000004 01:41:47 executing program 4: recvmmsg(0xffffffffffffffff, &(0x7f00000032c0)=[{{&(0x7f0000000180)=@l2tp={0x2, 0x0, @private}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000480)=""/192, 0xc0}, {&(0x7f0000000540)=""/208, 0xd0}], 0x2}, 0xffff}, {{&(0x7f0000000240)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @multicast1}}}, 0x80, &(0x7f0000000bc0)=[{&(0x7f0000000640)=""/179, 0xb3}, {&(0x7f0000000100)=""/38, 0x26}, {&(0x7f0000000700)=""/235, 0xeb}, {&(0x7f0000000400)}, {&(0x7f0000000900)=""/225, 0xe1}, {&(0x7f0000000800)=""/74, 0x4a}, {&(0x7f0000000a00)=""/204, 0xcc}, {&(0x7f0000000880)=""/17, 0x11}, {&(0x7f0000000b00)=""/4, 0x4}, {&(0x7f0000000b40)=""/91, 0x5b}], 0xa, &(0x7f0000000c80)=""/4096, 0x1000}, 0xfffffffc}, {{&(0x7f0000001c80)=@can, 0x80, &(0x7f0000002100)=[{&(0x7f0000001d00)=""/121, 0x79}, {&(0x7f0000001e00)=""/150, 0x96}, {&(0x7f0000001ec0)=""/214, 0xd6}, {&(0x7f0000001fc0)=""/169, 0xa9}, {&(0x7f0000002080)=""/88, 0x58}], 0x5, &(0x7f0000002180)=""/97, 0x61}, 0x1}, {{&(0x7f0000002200)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @loopback}}}, 0x80, &(0x7f0000002340)=[{&(0x7f0000002280)=""/119, 0x77}, {&(0x7f0000002300)=""/52, 0x34}], 0x2, &(0x7f0000002380)=""/176, 0xb0}, 0x400}, {{&(0x7f0000002440)=@in6={0xa, 0x0, 0x0, @private0}, 0x80, &(0x7f0000002c40)=[{&(0x7f00000024c0)=""/92, 0x5c}, {&(0x7f0000002540)=""/102, 0x66}, {&(0x7f00000025c0)=""/181, 0xb5}, {&(0x7f0000002680)=""/243, 0xf3}, {&(0x7f0000002780)=""/83, 0x53}, {&(0x7f0000002800)=""/108, 0x6c}, {&(0x7f0000002880)=""/178, 0xb2}, {&(0x7f0000002940)=""/223, 0xdf}, {&(0x7f0000002a40)=""/197, 0xc5}, {&(0x7f0000002b40)=""/214, 0xd6}], 0xa, &(0x7f0000003600)=""/4096, 0x1000}, 0x800}, {{&(0x7f0000002d00)=@pptp={0x18, 0x2, {0x0, @multicast1}}, 0x80, &(0x7f0000003100)=[{&(0x7f0000002d80)=""/246, 0xf6}, {&(0x7f0000002e80)=""/27, 0x1b}, {&(0x7f0000002ec0)=""/238, 0xee}, {&(0x7f0000004600)=""/4096, 0x1000}, {&(0x7f0000005600)=""/4096, 0x1000}, {&(0x7f0000002fc0)=""/4, 0x4}, {&(0x7f0000006600)=""/4096, 0x1000}, {&(0x7f0000003000)=""/219, 0xdb}, {&(0x7f0000007600)=""/4096, 0x1000}], 0x9, &(0x7f00000031c0)=""/220, 0xdc}, 0x9}], 0x6, 0x242, &(0x7f0000003440)={0x0, 0x989680}) ioctl$sock_SIOCGIFCONF(r0, 0x8912, &(0x7f00000034c0)=@req={0x28, &(0x7f0000003480)={'vlan0\x00', @ifru_map}}) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000080)=ANY=[]) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:41:47 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x7a) 01:42:00 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xc, 0x0, 0xfdef) 01:42:00 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x300) 01:42:00 executing program 0: r0 = syz_io_uring_setup(0x4d4f, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:42:00 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) 01:42:00 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:42:00 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:42:00 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x8, 0x0, 0xfdef) 01:42:00 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r1, 0x0, 0x0) lseek(r1, 0xfffffffffffff014, 0x0) getdents64(r1, &(0x7f00000001c0)=""/251, 0xfb) open_by_handle_at(r1, &(0x7f00000002c0)=ANY=[@ANYRES16=r0, @ANYRES16=r1, @ANYRES32=r0, @ANYRES16, @ANYRESDEC=r1, @ANYRESHEX=r0, @ANYBLOB="5b6cfcc6137ec1d9ab549f45d81828f74297987d0d5f0f75a7170eae83eb6c8c03ca892189456373f024ad5934a6a401437c07508a9b2332200a2a3e6dee0d4ad987e11265019ff4a2e58466095b69a6e5e130849862b91a651d7aef92a1cc3d4e3c4be61c26eb1d27e4cb2e4dfd00a2598e774923a5c07b2f5520db1fe46ed25d232956598e5d90e2e6d38717152cf690b096220937360fdb39e93b4425fa2d541636ea", @ANYRESHEX=r0, @ANYRES32=r1, @ANYBLOB="b44813b0b2e3333e3ea9b2cf2e07e1a0a5c37e39a5702cf202b5a4c68dcb55a9aa3eb57f7f030000000000000099455040d754d048a0a21ba83f8752028899898df300"/82], 0x2001) [ 723.623529] 9pnet: Could not find request transport: fd0x0000000000000004 01:42:00 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:42:00 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xf, 0x0, 0xfdef) 01:42:00 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) sendmsg$TIPC_NL_NAME_TABLE_GET(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x18, 0x0, 0x10, 0x70bd29, 0x25dfdbfd, {}, [@TIPC_NLA_PUBL={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x20000080}, 0x48801) creat(&(0x7f0000000000)='./cgroup/cgroup.procs\x00', 0x100) ioctl$BTRFS_IOC_INO_LOOKUP(r0, 0xd0009412, &(0x7f0000000340)={0x0, 0x8001}) 01:42:00 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfd', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) 01:42:00 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x0) (fail_nth: 1) 01:42:00 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x500) [ 723.765539] 9pnet: Insufficient options for proto=fd [ 723.783408] FAULT_INJECTION: forcing a failure. [ 723.783408] name failslab, interval 1, probability 0, space 0, times 0 [ 723.785995] CPU: 0 PID: 6056 Comm: syz-executor.4 Not tainted 5.10.230 #1 [ 723.787523] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 723.789362] Call Trace: [ 723.789968] dump_stack+0x107/0x167 [ 723.790782] should_fail.cold+0x5/0xa [ 723.791668] ? kvmalloc_node+0x119/0x170 [ 723.792582] should_failslab+0x5/0x20 [ 723.793429] __kmalloc_node+0x76/0x420 [ 723.794303] kvmalloc_node+0x119/0x170 [ 723.795173] seq_read_iter+0x81c/0x12b0 [ 723.796076] ? perf_trace_lock+0xac/0x490 [ 723.797015] seq_read+0x3dd/0x5b0 [ 723.797795] ? seq_read_iter+0x12b0/0x12b0 [ 723.798748] ? fsnotify_perm.part.0+0x22d/0x620 [ 723.799804] ? security_file_permission+0xb1/0xe0 [ 723.800882] ? seq_read_iter+0x12b0/0x12b0 [ 723.801819] vfs_read+0x228/0x620 [ 723.802612] __x64_sys_pread64+0x201/0x260 [ 723.803574] ? ksys_pread64+0x1b0/0x1b0 [ 723.804467] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 723.805647] ? syscall_enter_from_user_mode+0x1d/0x50 [ 723.806807] do_syscall_64+0x33/0x40 [ 723.807651] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 723.808791] RIP: 0033:0x7f3b991deb19 [ 723.809619] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 723.813736] RSP: 002b:00007f3b96754188 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 723.815435] RAX: ffffffffffffffda RBX: 00007f3b992f1f60 RCX: 00007f3b991deb19 [ 723.817049] RDX: 0000000020001be3 RSI: 0000000020001100 RDI: 0000000000000003 [ 723.818641] RBP: 00007f3b967541d0 R08: 0000000000000000 R09: 0000000000000000 [ 723.820233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 723.821828] R13: 00007fff9073b37f R14: 00007f3b96754300 R15: 0000000000022000 [ 737.094885] FAULT_INJECTION: forcing a failure. [ 737.094885] name failslab, interval 1, probability 0, space 0, times 0 [ 737.097506] CPU: 1 PID: 6064 Comm: syz-executor.4 Not tainted 5.10.230 #1 01:42:13 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:42:13 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x0) (fail_nth: 2) 01:42:13 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfd', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) 01:42:13 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x10, 0x0, 0xfdef) 01:42:13 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:42:13 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:42:13 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x600) 01:42:13 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="ae6439117a3a7200076a8b8f3868ec6500"], 0x0) [ 737.098940] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 737.101061] Call Trace: [ 737.101623] dump_stack+0x107/0x167 [ 737.102391] should_fail.cold+0x5/0xa [ 737.103194] ? create_object.isra.0+0x3a/0xa20 [ 737.104163] should_failslab+0x5/0x20 [ 737.104963] kmem_cache_alloc+0x5b/0x310 [ 737.105819] create_object.isra.0+0x3a/0xa20 [ 737.106736] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 737.107806] __kmalloc_node+0x1ae/0x420 [ 737.108660] kvmalloc_node+0x119/0x170 [ 737.109477] seq_read_iter+0x81c/0x12b0 [ 737.110315] ? perf_trace_lock+0xac/0x490 [ 737.111201] seq_read+0x3dd/0x5b0 [ 737.111928] ? seq_read_iter+0x12b0/0x12b0 [ 737.112767] 9pnet: Insufficient options for proto=fd [ 737.112842] ? fsnotify_perm.part.0+0x22d/0x620 [ 737.114505] ? security_file_permission+0xb1/0xe0 [ 737.115525] ? seq_read_iter+0x12b0/0x12b0 [ 737.116418] vfs_read+0x228/0x620 [ 737.117160] __x64_sys_pread64+0x201/0x260 [ 737.118052] ? ksys_pread64+0x1b0/0x1b0 [ 737.118892] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 737.120005] ? syscall_enter_from_user_mode+0x1d/0x50 [ 737.121092] do_syscall_64+0x33/0x40 [ 737.121875] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 737.122948] RIP: 0033:0x7f3b991deb19 [ 737.123730] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 737.127660] RSP: 002b:00007f3b96754188 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 737.129273] RAX: ffffffffffffffda RBX: 00007f3b992f1f60 RCX: 00007f3b991deb19 [ 737.130771] RDX: 0000000020001be3 RSI: 0000000020001100 RDI: 0000000000000003 [ 737.132278] RBP: 00007f3b967541d0 R08: 0000000000000000 R09: 0000000000000000 [ 737.133780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 737.135274] R13: 00007fff9073b37f R14: 00007f3b96754300 R15: 0000000000022000 01:42:13 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfd', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) 01:42:13 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000200)={0x10000, 0x9, 0x16eb5dd9}) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x385581) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r1, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), r0) sendmsg$DEVLINK_CMD_TRAP_GET(r1, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000140)={&(0x7f0000000080)={0xc0, r2, 0x4, 0x70bd2a, 0x25dfdbff, {}, [{@pci={{0x8}, {0x11}}, {0x1c}}, {@pci={{0x8}, {0x11}}, {0x1c}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}}]}, 0xc0}, 0x1, 0x0, 0x0, 0x1}, 0x4000) r3 = socket$inet6(0xa, 0x80000, 0x5) fallocate(r3, 0x3, 0xb, 0x2) 01:42:13 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) [ 737.189047] 9pnet: Insufficient options for proto=fd 01:42:13 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x700) 01:42:13 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) 01:42:13 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x12, 0x0, 0xfdef) 01:42:13 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:42:13 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) [ 737.320016] 9pnet: Insufficient options for proto=fd 01:42:30 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, 0x0, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:42:30 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:42:30 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:42:30 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r1, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) ioctl$sock_SIOCSIFVLAN_DEL_VLAN_CMD(r0, 0x8983, &(0x7f0000000040)={0x1, 'veth1_macvtap\x00', {}, 0x3ff}) setsockopt$bt_BT_DEFER_SETUP(r1, 0x112, 0x7, &(0x7f0000000000), 0x4) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r2, 0x0, 0x0) lseek(r2, 0xfffffffffffff014, 0x0) getdents64(r2, &(0x7f00000001c0)=""/251, 0xfb) pread64(r2, &(0x7f00000000c0)=""/249, 0xf9, 0x3f) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='\a'], 0x0) 01:42:30 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x900) 01:42:30 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x0) (fail_nth: 3) 01:42:30 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x64, 0x0, 0xfdef) 01:42:30 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) [ 753.413191] 9pnet: Insufficient options for proto=fd [ 753.421445] FAULT_INJECTION: forcing a failure. [ 753.421445] name failslab, interval 1, probability 0, space 0, times 0 [ 753.423904] CPU: 1 PID: 6130 Comm: syz-executor.4 Not tainted 5.10.230 #1 [ 753.425400] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 753.427561] Call Trace: [ 753.428138] dump_stack+0x107/0x167 [ 753.428939] should_fail.cold+0x5/0xa [ 753.429763] ? memcg_alloc_page_obj_cgroups+0x73/0x100 [ 753.430907] should_failslab+0x5/0x20 [ 753.431731] __kmalloc_node+0x76/0x420 [ 753.432617] memcg_alloc_page_obj_cgroups+0x73/0x100 [ 753.433722] memcg_slab_post_alloc_hook+0x1f0/0x430 [ 753.434801] ? trace_hardirqs_on+0x5b/0x180 [ 753.435845] __kmalloc_node+0x1c6/0x420 [ 753.436780] kvmalloc_node+0x119/0x170 [ 753.437627] seq_read_iter+0x81c/0x12b0 [ 753.438487] ? perf_trace_lock+0xac/0x490 [ 753.439381] ? SOFTIRQ_verbose+0x10/0x10 [ 753.440282] seq_read+0x3dd/0x5b0 [ 753.441042] ? seq_read_iter+0x12b0/0x12b0 [ 753.441976] ? fsnotify_perm.part.0+0x22d/0x620 [ 753.442988] ? security_file_permission+0xb1/0xe0 [ 753.444039] ? seq_read_iter+0x12b0/0x12b0 [ 753.444960] vfs_read+0x228/0x620 [ 753.445722] __x64_sys_pread64+0x201/0x260 [ 753.446642] ? ksys_pread64+0x1b0/0x1b0 [ 753.447507] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 753.448650] ? syscall_enter_from_user_mode+0x1d/0x50 [ 753.449771] do_syscall_64+0x33/0x40 [ 753.450575] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 753.451681] RIP: 0033:0x7f3b991deb19 [ 753.452486] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 753.456449] RSP: 002b:00007f3b96754188 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 753.458075] RAX: ffffffffffffffda RBX: 00007f3b992f1f60 RCX: 00007f3b991deb19 [ 753.459595] RDX: 0000000020001be3 RSI: 0000000020001100 RDI: 0000000000000003 [ 753.461121] RBP: 00007f3b967541d0 R08: 0000000000000000 R09: 0000000000000000 [ 753.462637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 753.464157] R13: 00007fff9073b37f R14: 00007f3b96754300 R15: 0000000000022000 01:42:30 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x10b, 0x0, 0xfdef) 01:42:30 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x0) (fail_nth: 4) 01:42:30 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) 01:42:30 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0xa00) 01:42:30 executing program 2: ioctl$BLKTRACESTOP(0xffffffffffffffff, 0x1275, 0x0) r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x1ca) r1 = signalfd(r0, &(0x7f0000000000)={[0x51]}, 0x8) ioctl$BTRFS_IOC_LOGICAL_INO(r1, 0xc0389424, &(0x7f0000000080)={0x5, 0x10, '\x00', 0x0, &(0x7f0000000040)=[0x0, 0x0]}) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) [ 753.607036] FAULT_INJECTION: forcing a failure. 01:42:30 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:42:30 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, 0x0, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:42:30 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) [ 753.607036] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 753.610070] CPU: 0 PID: 6141 Comm: syz-executor.4 Not tainted 5.10.230 #1 [ 753.611651] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 753.613577] Call Trace: [ 753.614193] dump_stack+0x107/0x167 [ 753.615039] should_fail.cold+0x5/0xa [ 753.615926] __alloc_pages_nodemask+0x182/0x600 [ 753.617011] ? add_mm_counter_fast+0x220/0x220 [ 753.618070] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 753.619466] ? count_memcg_event_mm.part.0+0x10f/0x2f0 [ 753.620683] ? lock_downgrade+0x6d0/0x6d0 [ 753.621638] ? mark_held_locks+0x9e/0xe0 [ 753.622583] alloc_pages_vma+0xbb/0x410 [ 753.623511] handle_mm_fault+0x152f/0x3500 [ 753.624503] ? __pmd_alloc+0x5e0/0x5e0 [ 753.625602] ? vmacache_find+0x55/0x2a0 [ 753.626703] ? vmacache_update+0xce/0x140 [ 753.627735] do_user_addr_fault+0x56e/0xc60 [ 753.628767] exc_page_fault+0xa2/0x1a0 [ 753.629669] asm_exc_page_fault+0x1e/0x30 [ 753.630631] RIP: 0010:copy_user_generic_string+0x2c/0x40 [ 753.631874] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 03 ab 1d 02 0f 1f 00 0f 01 [ 753.636120] RSP: 0018:ffff88804c07fae8 EFLAGS: 00050202 [ 753.637349] RAX: 0000000000000001 RBX: 0000000000000f7c RCX: 00000000000001ef [ 753.638986] RDX: 0000000000000004 RSI: ffff88804654c000 RDI: 0000000020001100 [ 753.640639] RBP: 0000000020001100 R08: 0000000000000000 R09: ffff88804654cf7b [ 753.642273] R10: ffffed1008ca99ef R11: 0000000000000001 R12: ffff88804654c000 [ 753.643917] R13: 000000002000207c R14: 00007ffffffff000 R15: 0000000000000000 [ 753.645613] copyout.part.0+0x10b/0x140 [ 753.646535] _copy_to_iter+0x293/0x12d0 [ 753.647473] ? _down_write_nest_lock+0x160/0x160 [ 753.648576] ? _copy_from_iter_nocache+0xd60/0xd60 [ 753.649709] ? __virt_addr_valid+0x170/0x5d0 [ 753.650739] ? __check_object_size+0x319/0x440 [ 753.651801] seq_read_iter+0xdcb/0x12b0 [ 753.652751] seq_read+0x3dd/0x5b0 [ 753.653554] ? seq_read_iter+0x12b0/0x12b0 [ 753.654554] ? fsnotify_perm.part.0+0x22d/0x620 [ 753.655636] ? security_file_permission+0xb1/0xe0 [ 753.656784] ? seq_read_iter+0x12b0/0x12b0 [ 753.657762] vfs_read+0x228/0x620 [ 753.658571] __x64_sys_pread64+0x201/0x260 [ 753.659551] ? ksys_pread64+0x1b0/0x1b0 [ 753.660476] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 753.661689] ? syscall_enter_from_user_mode+0x1d/0x50 [ 753.662883] do_syscall_64+0x33/0x40 [ 753.663740] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 753.664928] RIP: 0033:0x7f3b991deb19 [ 753.665786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 753.670028] RSP: 002b:00007f3b96754188 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 753.671795] RAX: ffffffffffffffda RBX: 00007f3b992f1f60 RCX: 00007f3b991deb19 [ 753.673444] RDX: 0000000020001be3 RSI: 0000000020001100 RDI: 0000000000000003 [ 753.675091] RBP: 00007f3b967541d0 R08: 0000000000000000 R09: 0000000000000000 [ 753.676744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 753.678390] R13: 00007fff9073b37f R14: 00007f3b96754300 R15: 0000000000022000 [ 753.687782] 9pnet: Insufficient options for proto=fd 01:42:30 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x110, 0x0, 0xfdef) 01:42:42 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x281, 0x0, 0xfdef) 01:42:42 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x0) (fail_nth: 5) 01:42:42 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, 0x0, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:42:43 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r1, 0x0, 0x0) stat(&(0x7f0000000880)='./file0\x00', &(0x7f00000008c0)) lseek(r1, 0xfffffffffffff014, 0x0) getdents64(r1, &(0x7f00000001c0)=""/251, 0xfb) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r2, 0x0, 0x0) lseek(r2, 0xfffffffffffff014, 0x0) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r3, 0x0, 0x0) r4 = syz_mount_image$tmpfs(&(0x7f00000000c0), &(0x7f0000000100)='./file0/file0\x00', 0x5, 0x8, &(0x7f0000000740)=[{&(0x7f0000000140)="4dfe14df00c4f790a516779276f4bc5b212e742a66096a9ea61f33b01be923a2384790998f482024b88d3dbeb29c3740e4657ca582fa1a144b1e3463c613e8ab2e5819d05ec6e6136f92e5902e2214cffb14f0c0d622a41f5cf9839d49b3f24d72b9423e80320aa3bab4fd3c517ac04d27e35d04fdb730d69912", 0x7a, 0x627}, {&(0x7f00000002c0)="8b1dadd7df7d7fa5890d9d79585f9ea63ad5b9f3e2e516194682607aa3b1c341db6fa50d608b0612d0c959320a88bc5d949a3e4ce81f2ecd7b38ec5210a4e8", 0x3f, 0x2}, {&(0x7f0000000300)="3094fd1e29207baa86b85d7ee679f47015dfb8afe7426c6071658bab18283067e4aad247643dab4786aa0916a136495984d0cfef9003cce8ad04038cb90f6f8a63bf7ec9a45a4d8b3ab7610eeccc02ba732ddd4909c393c5bb5e9c486267", 0x5e, 0x6}, {&(0x7f0000000380)="ecfd7cad8c5b47a320382314a92800f411ad4790825c94966c326b96ba624900b046931b03aee7b1159971ccf98c9c9ea8cf63f4f0689f34dc4dfe84cd7fb1d24409300dd6df8dc6c3a2a47cf54197d5ce4636de7919cf3f816f4df96fab6b432f899ad1e4979988b1dc3d1c9ba4f9f847e0ba34463bbcf7008a98b90d8499fbb2ae280edf5c5f77456f1be067169982f65b4dd09844487a", 0x98, 0x20}, {&(0x7f0000000440)="bcf62f7752ea9e87ccb702aebc38d0d10110fff1038438ffbcf0467defc646254beca563299399e9a1753c5cf0a2335ac4c29e4cde44beaf22f18803dc887ffd0b", 0x41}, {&(0x7f00000004c0)="462aeebe04ce009317dfdd785db7d04cbd21923ed49ba1a89aca58e9dcd0cf4a065dd79effc25ae4e33479c6e69ecc2d49b27f85e9b93d209d290c3df237fef2aaf28455c44daf5b731bc7a6", 0x4c, 0x8}, {&(0x7f0000000540)="49f7bfd6438d5bf9d23ddafb80ae9fb6a3540b8b99c99c1fffb27e50df632e9279d8ba33c3dc617433e38ba0a4b0bf8394177187a26a30aa7dadf744c2cd4abeb8c9f45cd17a0b69dfdb53f90d3603c077e66e6bf1668f12670331f96d5831e1d7e6aadab851cd50751e149afd108114918305edda35bb94ffc27e054c5c8cbb59b228319fb63ac7bc771ae4d20a8c005040ead70f2d81d3cea0fa75a8880c264ad53ee3802033e71c90a7ce51bf043bc9db8fa2f32c231615419eddbce1434817df8079874c755ec3f25227e52c76d07a8041fb120e257571110d38b4f5d8a43bdcab0ae08eed4a1afc30f851fe", 0xee, 0xc580}, {&(0x7f0000000640)="4d62c262b129bb29af11d9e913d42ab3737a119f3fe18cf70c8b8491a12aa35c395b2a786980e44f8f5287392525e3c320eba164898b2f868a8501c44538f60a9f16f7375e120983445e05a3a519175b92476910bb59e65c60985751c1e3ab9dbc29527edbb5b593bbef9e79c8461dd82aa5d6766299c9b7a52de0b9316a9c8ff68e62946dbcec57c00c9fbfbfcd541cb19fbb22e70085b4a193e365e6f2f6bebd02b39ee08e26fc03ef12e6ee8ae14a141016550f9ea5a841308bb319647b62a52d964a7a", 0xc5, 0x4}], 0x1a, &(0x7f0000000a00)=ANY=[@ANYRES32=r3]) mknodat(r4, &(0x7f0000000840)='./cgroup/cgroup.procs\x00', 0x1000, 0x9) getdents64(r2, &(0x7f00000001c0)=""/251, 0xfb) r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r5, 0x0, 0x0) lseek(r5, 0xfffffffffffff014, 0x0) getdents64(r5, &(0x7f00000001c0)=""/251, 0xfb) open_by_handle_at(r0, &(0x7f0000000040)=ANY=[@ANYRES16=r5, @ANYRESOCT, @ANYRESOCT=r0, @ANYRESHEX=r1, @ANYRESDEC=r2], 0x0) fcntl$setlease(r0, 0x400, 0x2) 01:42:43 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:42:43 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:42:43 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x2000) 01:42:43 executing program 1: ioctl$BLKTRACESTOP(0xffffffffffffffff, 0x1275, 0x0) r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x1ca) r1 = signalfd(r0, &(0x7f0000000000)={[0x51]}, 0x8) ioctl$BTRFS_IOC_LOGICAL_INO(r1, 0xc0389424, &(0x7f0000000080)={0x5, 0x10, '\x00', 0x0, &(0x7f0000000040)=[0x0, 0x0]}) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) 01:42:43 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x300, 0x0, 0xfdef) [ 766.403463] FAULT_INJECTION: forcing a failure. [ 766.403463] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 766.405122] CPU: 0 PID: 6186 Comm: syz-executor.4 Not tainted 5.10.230 #1 [ 766.406025] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 766.407145] Call Trace: [ 766.407507] dump_stack+0x107/0x167 [ 766.407992] should_fail.cold+0x5/0xa [ 766.408509] __alloc_pages_nodemask+0x182/0x600 [ 766.409136] ? add_mm_counter_fast+0x220/0x220 [ 766.409738] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 766.410530] ? count_memcg_event_mm.part.0+0x10f/0x2f0 [ 766.411213] ? lock_downgrade+0x6d0/0x6d0 [ 766.411748] ? mark_held_locks+0x9e/0xe0 [ 766.412279] alloc_pages_vma+0xbb/0x410 [ 766.412812] handle_mm_fault+0x152f/0x3500 [ 766.413378] ? find_held_lock+0x2c/0x110 [ 766.413907] ? __pmd_alloc+0x5e0/0x5e0 [ 766.414416] ? vmacache_find+0x55/0x2a0 [ 766.414934] do_user_addr_fault+0x56e/0xc60 [ 766.415498] exc_page_fault+0xa2/0x1a0 [ 766.415998] asm_exc_page_fault+0x1e/0x30 [ 766.416532] RIP: 0010:copy_user_generic_string+0x2c/0x40 [ 766.417265] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 03 ab 1d 02 0f 1f 00 0f 01 [ 766.419636] RSP: 0018:ffff8880476a7ae8 EFLAGS: 00050202 [ 766.420337] RAX: 0000000000000001 RBX: 0000000000000f7c RCX: 000000000000000f [ 766.421280] RDX: 0000000000000004 RSI: ffff888049d02f00 RDI: 0000000020002000 [ 766.422202] RBP: 0000000020001100 R08: 0000000000000000 R09: ffff888049d02f7b [ 766.423138] R10: ffffed10093a05ef R11: 0000000000000001 R12: ffff888049d02000 [ 766.424065] R13: 000000002000207c R14: 00007ffffffff000 R15: 0000000000000000 [ 766.425020] copyout.part.0+0x10b/0x140 [ 766.425540] _copy_to_iter+0x293/0x12d0 [ 766.426060] ? _down_write_nest_lock+0x160/0x160 [ 766.426674] ? _copy_from_iter_nocache+0xd60/0xd60 [ 766.427311] ? __virt_addr_valid+0x170/0x5d0 [ 766.427881] ? __check_object_size+0x319/0x440 [ 766.428490] seq_read_iter+0xdcb/0x12b0 [ 766.429021] seq_read+0x3dd/0x5b0 [ 766.429472] ? seq_read_iter+0x12b0/0x12b0 [ 766.430034] ? fsnotify_perm.part.0+0x22d/0x620 [ 766.430637] ? security_file_permission+0xb1/0xe0 [ 766.431266] ? seq_read_iter+0x12b0/0x12b0 [ 766.431813] vfs_read+0x228/0x620 [ 766.432269] __x64_sys_pread64+0x201/0x260 [ 766.432826] ? ksys_pread64+0x1b0/0x1b0 [ 766.433346] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 766.434013] ? syscall_enter_from_user_mode+0x1d/0x50 [ 766.434674] do_syscall_64+0x33/0x40 [ 766.435152] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 766.435806] RIP: 0033:0x7f3b991deb19 [ 766.436280] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 766.438672] RSP: 002b:00007f3b96754188 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 766.439648] RAX: ffffffffffffffda RBX: 00007f3b992f1f60 RCX: 00007f3b991deb19 [ 766.440562] RDX: 0000000020001be3 RSI: 0000000020001100 RDI: 0000000000000003 [ 766.441487] RBP: 00007f3b967541d0 R08: 0000000000000000 R09: 0000000000000000 [ 766.442402] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 766.443315] R13: 00007fff9073b37f R14: 00007f3b96754300 R15: 0000000000022000 01:42:43 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 1) [ 766.483503] FAULT_INJECTION: forcing a failure. [ 766.483503] name failslab, interval 1, probability 0, space 0, times 0 [ 766.484977] CPU: 0 PID: 6191 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 766.485847] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 766.486887] Call Trace: [ 766.487221] dump_stack+0x107/0x167 [ 766.487676] should_fail.cold+0x5/0xa [ 766.488161] should_failslab+0x5/0x20 [ 766.488637] __kmalloc_track_caller+0x79/0x370 [ 766.489214] ? strndup_user+0x74/0xe0 [ 766.489693] memdup_user+0x22/0xd0 [ 766.490137] strndup_user+0x74/0xe0 [ 766.490594] __x64_sys_mount+0x133/0x300 [ 766.491100] ? copy_mnt_ns+0xa00/0xa00 [ 766.491593] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 766.492243] ? syscall_enter_from_user_mode+0x1d/0x50 [ 766.492892] do_syscall_64+0x33/0x40 [ 766.493365] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 766.494003] RIP: 0033:0x7f20beb15b19 [ 766.494469] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 766.496783] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 766.497741] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 766.498639] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 766.499534] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 766.500450] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 766.501353] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:42:43 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:42:43 executing program 2: r0 = creat(&(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x82) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) 01:42:43 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:42:43 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:42:43 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x321, 0x0, 0xfdef) 01:42:43 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000000)=ANY=[], 0x309281) 01:42:55 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 2) 01:42:55 executing program 2: r0 = creat(&(0x7f0000000080)='./cgroup/cgroup.procs\x00', 0x0) fsetxattr$security_selinux(r0, &(0x7f0000000000), &(0x7f0000000040)='system_u:object_r:vhost_device_t:s0\x00', 0x24, 0x2) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r1, 0x0, 0x0) lseek(r1, 0xfffffffffffff014, 0x0) getdents64(r1, &(0x7f00000001c0)=""/251, 0xfb) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r1, 0x400c6615, &(0x7f0000000140)={0x0, @aes128}) open_by_handle_at(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="185ecf35b5aa6b8b1f757cc8429f124fddf6b65c97ffdc545e9632e1954748daf387d656fecef51e636c00cbeb6c6ee43163d06643c32e04ff88ad3f0838322b8588b933d0081f0279fb8c8a9e0089c66aa67522be4a"], 0x0) 01:42:55 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x4800) 01:42:55 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:42:55 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:42:55 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x0) (fail_nth: 6) 01:42:55 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:42:55 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x500, 0x0, 0xfdef) [ 778.954684] audit: type=1400 audit(1732412575.629:108): avc: denied { relabelto } for pid=6224 comm="syz-executor.2" name="cgroup.procs" dev="cgroup2" ino=1310 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:vhost_device_t:s0 tclass=file permissive=1 [ 778.962519] audit: type=1400 audit(1732412575.630:109): avc: denied { associate } for pid=6224 comm="syz-executor.2" name="cgroup.procs" dev="cgroup2" ino=1310 scontext=system_u:object_r:vhost_device_t:s0 tcontext=system_u:object_r:cgroup_t:s0 tclass=filesystem permissive=1 [ 778.982182] FAULT_INJECTION: forcing a failure. [ 778.982182] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 778.984846] CPU: 0 PID: 6228 Comm: syz-executor.4 Not tainted 5.10.230 #1 [ 778.986384] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 778.988237] Call Trace: [ 778.988832] dump_stack+0x107/0x167 [ 778.989660] should_fail.cold+0x5/0xa [ 778.990519] _copy_to_user+0x2e/0x180 [ 778.991377] simple_read_from_buffer+0xcc/0x160 [ 778.992423] proc_fail_nth_read+0x198/0x230 [ 778.993393] ? proc_sessionid_read+0x230/0x230 [ 778.994421] ? security_file_permission+0xb1/0xe0 [ 778.995508] ? proc_sessionid_read+0x230/0x230 [ 778.996525] vfs_read+0x228/0x620 [ 778.997312] ksys_read+0x12d/0x260 [ 778.998114] ? vfs_write+0xb10/0xb10 [ 778.998950] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 779.000118] ? syscall_enter_from_user_mode+0x1d/0x50 [ 779.001272] do_syscall_64+0x33/0x40 [ 779.002111] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 779.003253] RIP: 0033:0x7f3b9919169c [ 779.003980] audit: type=1400 audit(1732412575.637:110): avc: denied { write } for pid=6224 comm="syz-executor.2" name="cgroup.procs" dev="cgroup2" ino=1310 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:vhost_device_t:s0 tclass=file permissive=1 [ 779.004088] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 779.009178] audit: type=1400 audit(1732412575.638:111): avc: denied { open } for pid=6224 comm="syz-executor.2" path="/syzcgroup/unified/syz2/cgroup.procs" dev="cgroup2" ino=1310 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:vhost_device_t:s0 tclass=file permissive=1 [ 779.013035] RSP: 002b:00007f3b96754170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 779.013061] RAX: ffffffffffffffda RBX: 0000000000000f7c RCX: 00007f3b9919169c [ 779.013071] RDX: 000000000000000f RSI: 00007f3b967541e0 RDI: 0000000000000004 [ 779.013081] RBP: 00007f3b967541d0 R08: 0000000000000000 R09: 0000000000000000 [ 779.013092] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 779.013102] R13: 00007fff9073b37f R14: 00007f3b96754300 R15: 0000000000022000 [ 779.025472] FAULT_INJECTION: forcing a failure. 01:42:55 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x600, 0x0, 0xfdef) [ 779.025472] name failslab, interval 1, probability 0, space 0, times 0 [ 779.029570] audit: type=1400 audit(1732412575.638:112): avc: denied { setattr } for pid=6224 comm="syz-executor.2" name="cgroup.procs" dev="cgroup2" ino=1310 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:vhost_device_t:s0 tclass=file permissive=1 [ 779.030505] CPU: 0 PID: 6229 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 779.036842] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 779.038723] Call Trace: [ 779.039316] dump_stack+0x107/0x167 [ 779.040135] should_fail.cold+0x5/0xa [ 779.040998] ? create_object.isra.0+0x3a/0xa20 [ 779.042034] should_failslab+0x5/0x20 [ 779.042889] kmem_cache_alloc+0x5b/0x310 [ 779.043811] create_object.isra.0+0x3a/0xa20 [ 779.044793] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 779.045946] __kmalloc_track_caller+0x177/0x370 [ 779.046981] ? strndup_user+0x74/0xe0 [ 779.047838] memdup_user+0x22/0xd0 [ 779.048633] strndup_user+0x74/0xe0 [ 779.049459] __x64_sys_mount+0x133/0x300 [ 779.050378] ? copy_mnt_ns+0xa00/0xa00 [ 779.051255] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 779.052425] ? syscall_enter_from_user_mode+0x1d/0x50 [ 779.053592] do_syscall_64+0x33/0x40 [ 779.054432] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 779.055576] RIP: 0033:0x7f20beb15b19 [ 779.056412] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 779.060560] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 779.062283] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 779.063871] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 779.065464] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 779.067061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 779.068661] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:42:55 executing program 2: r0 = creat(&(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/cgroup.procs\x00', 0x121100, 0x44) [ 779.134097] audit: type=1400 audit(1732412575.806:113): avc: denied { read } for pid=6234 comm="syz-executor.2" name="cgroup.procs" dev="cgroup2" ino=1310 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:vhost_device_t:s0 tclass=file permissive=1 01:42:55 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:42:55 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:42:55 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:42:55 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x0) 01:42:55 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x4c00) 01:42:55 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xb01, 0x0, 0xfdef) 01:43:10 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:43:10 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r1, 0x0, 0x0) lseek(r1, 0xfffffffffffff014, 0x0) getdents64(r1, &(0x7f00000001c0)=""/251, 0xfb) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r2, 0x0, 0x0) lseek(r2, 0xfffffffffffff014, 0x0) getdents64(r2, &(0x7f00000001c0)=""/251, 0xfb) open_by_handle_at(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="18", @ANYRESOCT=r2], 0x0) [ 793.824953] FAULT_INJECTION: forcing a failure. [ 793.824953] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 793.828254] CPU: 0 PID: 6267 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 793.830391] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 01:43:10 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) 01:43:10 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 3) 01:43:10 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:43:10 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xc00, 0x0, 0xfdef) 01:43:10 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x27e, 0x0) 01:43:10 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) [ 793.832554] Call Trace: [ 793.833448] dump_stack+0x107/0x167 [ 793.834434] should_fail.cold+0x5/0xa [ 793.835435] _copy_from_user+0x2e/0x1b0 [ 793.836462] memdup_user+0x65/0xd0 [ 793.837377] strndup_user+0x74/0xe0 [ 793.838337] __x64_sys_mount+0x133/0x300 [ 793.839392] ? copy_mnt_ns+0xa00/0xa00 [ 793.840404] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 793.841760] ? syscall_enter_from_user_mode+0x1d/0x50 [ 793.843113] do_syscall_64+0x33/0x40 [ 793.844074] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 793.845395] RIP: 0033:0x7f20beb15b19 [ 793.846359] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 793.851090] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 793.853045] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 793.854890] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 793.856719] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 793.858569] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 793.860389] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:43:10 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x508, 0x0) 01:43:10 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:43:10 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x786, 0x0) 01:43:10 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="90bffcbe38d98e71ef9a6c9e7d4bdce2bb"], 0x0) dup3(r0, r0, 0x0) 01:43:10 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:43:10 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:43:10 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xf00, 0x0, 0xfdef) 01:43:24 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 4) 01:43:24 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:43:24 executing program 2: r0 = add_key$fscrypt_v1(&(0x7f00000001c0), &(0x7f0000000200)={'fscrypt:', @desc1}, &(0x7f0000000240)={0x0, "15d399e4842fa1b361cb899e6317c815d5884bf550ff78dee47ad8a0f0a60eee5fe2ac20b7b4b76ee3210ed001310f51561dc6692ed177d7996ff735209b97a7"}, 0x48, 0xffffffffffffffff) keyctl$update(0x2, r0, 0x0, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r1, 0x0) r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff) fcntl$addseals(r2, 0x409, 0x9) r3 = getegid() keyctl$chown(0x4, 0x0, 0xee01, r3) keyctl$chown(0x4, r0, r1, r3) r4 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r4, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) 01:43:24 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x1001, 0x0, 0xfdef) 01:43:24 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x6c00) 01:43:24 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xa48, 0x0) 01:43:24 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, 0x0, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:43:24 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) [ 807.872673] FAULT_INJECTION: forcing a failure. [ 807.872673] name failslab, interval 1, probability 0, space 0, times 0 [ 807.875109] CPU: 1 PID: 6320 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 807.876546] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 807.878285] Call Trace: [ 807.878851] dump_stack+0x107/0x167 [ 807.879617] should_fail.cold+0x5/0xa [ 807.880417] ? copy_mount_options+0x55/0x180 [ 807.881340] should_failslab+0x5/0x20 [ 807.882145] kmem_cache_alloc_trace+0x55/0x320 [ 807.883114] ? _copy_from_user+0xfb/0x1b0 [ 807.883989] copy_mount_options+0x55/0x180 [ 807.884874] __x64_sys_mount+0x1a8/0x300 [ 807.885729] ? copy_mnt_ns+0xa00/0xa00 [ 807.886562] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 807.887656] ? syscall_enter_from_user_mode+0x1d/0x50 [ 807.888738] do_syscall_64+0x33/0x40 [ 807.889523] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 807.890604] RIP: 0033:0x7f20beb15b19 [ 807.891392] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 807.895150] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 807.896754] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 807.898211] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 807.899680] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 807.901156] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 807.902620] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:43:24 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xcf6, 0x0) 01:43:24 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:43:24 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, 0x0, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:43:24 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x7400) 01:43:24 executing program 2: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x1f, 0x3, 0x5, 0x8f, 0x0, 0x16, 0x1000, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, @perf_config_ext={0xe1, 0x2}, 0x28, 0x5, 0x6, 0x2, 0x1, 0x80000001, 0xffff, 0x0, 0x200, 0x0, 0x1ff}, 0x0, 0xf, 0xffffffffffffffff, 0xb) readv(r0, &(0x7f0000000180)=[{&(0x7f0000000080)=""/243, 0xf3}, {&(0x7f0000000200)=""/70, 0x46}], 0x2) r1 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) 01:43:24 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, 0x0, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:43:24 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x1200, 0x0, 0xfdef) 01:43:24 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:43:24 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 5) 01:43:24 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xf7c, 0x0) [ 808.059175] FAULT_INJECTION: forcing a failure. [ 808.059175] name failslab, interval 1, probability 0, space 0, times 0 [ 808.060645] CPU: 0 PID: 6347 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 808.061504] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 808.062515] Call Trace: [ 808.062849] dump_stack+0x107/0x167 [ 808.063299] should_fail.cold+0x5/0xa [ 808.063780] ? create_object.isra.0+0x3a/0xa20 [ 808.064351] should_failslab+0x5/0x20 [ 808.064823] kmem_cache_alloc+0x5b/0x310 [ 808.065335] create_object.isra.0+0x3a/0xa20 [ 808.065888] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 808.066543] kmem_cache_alloc_trace+0x151/0x320 [ 808.067136] ? _copy_from_user+0xfb/0x1b0 [ 808.067645] copy_mount_options+0x55/0x180 [ 808.068159] __x64_sys_mount+0x1a8/0x300 [ 808.068651] ? copy_mnt_ns+0xa00/0xa00 [ 808.069128] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 808.069763] ? syscall_enter_from_user_mode+0x1d/0x50 [ 808.070394] do_syscall_64+0x33/0x40 [ 808.070852] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 808.071476] RIP: 0033:0x7f20beb15b19 [ 808.071926] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 808.074154] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 808.075088] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 808.075951] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 808.076817] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 808.077680] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 808.078544] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:43:39 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, 0x0, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:43:39 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x7a00) 01:43:39 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 6) 01:43:39 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, 0x0, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:43:39 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) r1 = accept4$packet(r0, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14, 0x80000) r2 = syz_io_uring_setup(0x4448, &(0x7f0000000240)={0x0, 0x9862, 0x2, 0x1, 0x395, 0x0, r0}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000002c0), &(0x7f0000000300)=0x0) syz_io_uring_setup(0x1d, &(0x7f0000000100), &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000280)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x9}, 0x0) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r5, &(0x7f00000003c0)=@IORING_OP_LINK_TIMEOUT={0xf, 0x5, 0x0, 0x0, 0x0, &(0x7f0000000380), 0x1, 0x1, 0x0, {0x0, r6}}, 0xfff) syz_io_uring_submit(0x0, r3, &(0x7f0000000340)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x7) ioctl$AUTOFS_DEV_IOCTL_READY(r0, 0xc0189376, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r1, {0xb58d}}, './cgroup/cgroup.procs\x00'}) sendmsg$NL80211_CMD_GET_POWER_SAVE(r7, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800030}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x0, 0x2, 0x70bd26, 0x25dfdbfb, {{}, {@void, @void}}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x200040d4}, 0x811) open_by_handle_at(r0, &(0x7f0000000000)=ANY=[@ANYRES16=r0], 0x25201) 01:43:39 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x2103, 0x0, 0xfdef) 01:43:39 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x40002ce3, 0x0) 01:43:39 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:43:39 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) [ 822.733906] FAULT_INJECTION: forcing a failure. [ 822.733906] name fail_usercopy, interval 1, probability 0, space 0, times 0 01:43:39 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x3f00, 0x0, 0xfdef) [ 822.736451] CPU: 1 PID: 6374 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 822.738042] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 822.739808] Call Trace: [ 822.740374] dump_stack+0x107/0x167 [ 822.741151] should_fail.cold+0x5/0xa [ 822.741971] _copy_from_user+0x2e/0x1b0 [ 822.742823] copy_mount_options+0x76/0x180 [ 822.743726] __x64_sys_mount+0x1a8/0x300 [ 822.744582] ? copy_mnt_ns+0xa00/0xa00 [ 822.745413] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 822.746527] ? syscall_enter_from_user_mode+0x1d/0x50 [ 822.747634] do_syscall_64+0x33/0x40 [ 822.748430] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 822.749510] RIP: 0033:0x7f20beb15b19 [ 822.750296] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 822.754206] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 822.755830] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 822.757339] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 822.758848] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 822.760364] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 822.761871] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 [ 822.780092] audit: type=1400 audit(1732412619.455:114): avc: denied { ioctl } for pid=6370 comm="syz-executor.2" path="/syzcgroup/unified/syz2/cgroup.procs" dev="cgroup2" ino=1310 ioctlcmd=0x9376 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:vhost_device_t:s0 tclass=file permissive=1 01:43:39 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2) 01:43:39 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x6400, 0x0, 0xfdef) 01:43:54 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 7) 01:43:54 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{0x0}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:43:54 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x8102, 0x0, 0xfdef) 01:43:54 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:43:54 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x80000) 01:43:54 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, 0x0, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:43:54 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x3) 01:43:54 executing program 2: r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000100)={r2, 0x2, 0x5}, 0x10) [ 837.461666] FAULT_INJECTION: forcing a failure. [ 837.461666] name failslab, interval 1, probability 0, space 0, times 0 [ 837.463330] CPU: 0 PID: 6411 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 837.464302] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 837.465476] Call Trace: [ 837.465851] dump_stack+0x107/0x167 [ 837.466366] should_fail.cold+0x5/0xa [ 837.466910] ? getname_flags.part.0+0x50/0x4f0 [ 837.467570] should_failslab+0x5/0x20 [ 837.468114] kmem_cache_alloc+0x5b/0x310 [ 837.468693] getname_flags.part.0+0x50/0x4f0 [ 837.469321] ? _copy_from_user+0xfb/0x1b0 [ 837.469912] user_path_at_empty+0xa1/0x100 [ 837.470508] __x64_sys_mount+0x1e9/0x300 [ 837.471085] ? copy_mnt_ns+0xa00/0xa00 [ 837.471647] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 837.472395] ? syscall_enter_from_user_mode+0x1d/0x50 [ 837.473109] do_syscall_64+0x33/0x40 [ 837.473631] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 837.474347] RIP: 0033:0x7f20beb15b19 [ 837.474865] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 837.477441] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 837.478514] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 837.479520] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 837.480517] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 837.481508] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 837.482498] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 sendmmsg$inet6(0xffffffffffffffff, &(0x7f000000b0c0)=[{{&(0x7f0000000040)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @remote}, 0x1}, 0x1c, &(0x7f0000000140)=[{&(0x7f0000000340)="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", 0x1000}, {&(0x7f0000000080)="32f2ee22ef709243a28e9397dd5107dbb7e638bd5a", 0x15}, {&(0x7f00000000c0)="8e7fce2810788007f7c10263e0413aadb7bbb0aa364c425277a0ecc6cebcd6d05d892e5a862aacab39c9dad8ca733d6b74f0469de5d79ed014933f4fe829e8c995c0386cbd85c7c843454de5b68c429ede53466846186c552dbf05168c197f9923df85ccc58e4ed68357231adf4d", 0x6e}, {&(0x7f0000000200)="8bfa2f28a45fbd84af86a8e4cb7d615532566e5d6a7193bb37b96222072c39eec4380b48f1e44ecc3ef4d1394d8555ca90e158eb7cd78ac04a246e1428404c3e90b549e6bcb36f08963e6d4da1e38b3b173c106cf54749ee46e152282ba4a9b5059318d4b193507ac558f7d7cbb3b46f8d277ace4e6dccba260f55ec9885c6861cda9cbddf49869603c0ea2bba1190b33fa7fa39489af7e9c5b67049abdff0ad68eb06086475b3128af53cc903cd5f355c4ed60822e5b97b0c9b82b3d2f60813be41070433a99a653e89097f84f0abb7f7e8df", 0xd3}, {&(0x7f0000001340)="0a752d2dc749d70b9423e9976e015ade1de9a35d8eec91e118059f60c87d6d24464c9f6b46cdef2bd425177b4a280b8434f3819d491665fa04de9b664de18cc28ddb9095d7e93474869b7a32209357929b966115221553432c2e71995ce425c50de89e83ff1d526796f4e18e616532644dacb78da8852c147a8dfc69916c9e0e79247b7d5e4e2ecf346e2b47c2e72d7ce1e104164ddcede4fecb86d62411a795e725b88cd951f93728cd9e297713cfabb8b4", 0xb2}, {&(0x7f0000001400)="a4f58ffca98e708f4b583f280eac5eb0840e41b130fc73d177ea983f7d8867d590fb8e0452c769954d95c8208a71eca43e11e488109a9617a9f9ea6510b93b8d84fec0bc98c68258670e48dc8c5460787a11c892394b8fc530c74c6af0aeea87177f459913f111a7e68261d5dfec073ed0263f98d4b64a9715c0bf9ce738653903a4c0895d53710174d5b6bd", 0x8c}], 0x6, &(0x7f00000014c0)=[@hopopts_2292={{0x138, 0x29, 0x36, {0x3a, 0x23, '\x00', [@pad1, @ra={0x5, 0x2, 0x3}, @generic={0x4, 0xfe, "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"}, @calipso={0x7, 0x8, {0x1, 0x0, 0x7f, 0x1}}, @jumbo={0xc2, 0x4, 0xb9}, @padn={0x1, 0x1, [0x0]}, @pad1]}}}, @rthdr_2292={{0x58, 0x29, 0x39, {0x32, 0x8, 0x0, 0x81, 0x0, [@local, @ipv4={'\x00', '\xff\xff', @loopback}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @private1]}}}, @hopopts_2292={{0x40, 0x29, 0x36, {0x3a, 0x4, '\x00', [@hao={0xc9, 0x10, @mcast1}, @hao={0xc9, 0x10, @private1={0xfc, 0x1, '\x00', 0x1}}, @enc_lim={0x4, 0x1, 0x8}]}}}], 0x1d0}}, {{&(0x7f00000016c0)={0xa, 0x4e20, 0x8, @mcast2, 0x9b14}, 0x1c, &(0x7f0000001900)=[{&(0x7f0000001700)="593806239080b310c95fcfcaf7ef44f55a78ecc33cac68db219c08a8102ff40c43a0168a9cacb77de63370cadf09f1e5dbc80bfb71bcbabda71b93f23faf283311cf79645bac", 0x46}, {&(0x7f0000001780)="076dd54902ae9776d9a38b3efdc29a743dd17845b2bdb3a60a3cbe977dae2ec2fbc2ba6c9445b0d47cc0e64d7967e22626960f8b3a364ba35f8af4e4113f17ccb5459acaf6c2847dfafc705dff51ebb53f38d5f4a334c108427b81efd6f9a99ba57a120485296bac5a58f4817c43599c2845ae0c7752180c367f00f7723827bfccce6413f239ab1631e5c9c4abd63ba45dfeefbdb8fa8d7bd07b52033d83df94a8990086898a891b96d53cdffb6cd47dbab4ca1f3b", 0xb5}, {&(0x7f0000001840)="cdd0ccb6b931430318e2bd909b00104e41ded7f4fd76b7fdb16558f689251150eda197e79ed7346b4603cc43b55d4dce7cb9b0f1d501c0a5b9f6745dfe1fe7db3cef258437e3920ca8d443e953a3138e7cd252924061975f8294ccada04eae5fbe98f1a5ea4f2a34f2073e84247a7ce72d909b99277fe4d30505a79aaada26961761a44f11e85aa77a3cce24efa04e1048ecaa030c3749db148fb8fd092d74195cda49aee933dd8c3111191abdb1ff813e72229f2209f0198fa8790a1f9185", 0xbf}], 0x3, &(0x7f0000001940)=[@tclass={{0x14, 0x29, 0x43, 0xffffffc1}}, @rthdr_2292={{0x28, 0x29, 0x39, {0x2b, 0x2, 0x1, 0x2, 0x0, [@mcast1]}}}, @dstopts_2292={{0x30, 0x29, 0x4, {0x62, 0x2, '\x00', [@calipso={0x7, 0x10, {0x1, 0x2, 0x3f, 0x1ff, [0xfffffffffffffffc]}}]}}}, @dstopts={{0x1020, 0x29, 0x37, {0x32, 0x201, '\x00', [@padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}, @generic={0x1, 0x1000, "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"}]}}}], 0x1090}}, {{&(0x7f0000002a00)={0xa, 0x4e23, 0xbc, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x1}, 0x1c, &(0x7f0000002c00)=[{&(0x7f0000002a40)="e5c453a92ef5243acd321bf79fca0134f365087c1bc734ed9922da54e6d3aaaed44ee634e542bd3f3121f96ebf5f0d623c998501614d56275018d40317eeb2e0609de1c517eab1fe0dc81580e69e2e94468b", 0x52}, {&(0x7f0000002ac0)="5a14b32b360c9305f7e61882d46a6307fc05796d4b0d45615c8c733b721017604d892e91d2cce2cc026bcd3cdfb75e0d2b9c36b0da6f17ec9b210b203a4ac2cedbfb0d227c391c25cb1241d5e21ec21d709acc31e4cb7e130afe2ca3ec0e88024fed4be2", 0x64}, {&(0x7f0000002b40)="b3eaf7a9e993332101910c167e29b7595a7fb826725c2e7489a814bf68078023f7c83e4a1ab00920d0f5d33fe8859dc23e5cb54dd5a91b98acfbe1d337db656b2290a2739e2987bd252a1d1698b4c4a0cc180eebb9ebe786fe5032de4eeccc2ce0b13b211b6b6406247a07e0b62437daec830eca3a385cbb575586d2ea73830c83cebe36d4f34222b9db9c2809e5fc76ae03bf82f6ab8b0d841cc9908e35809ea935156d24e2e26169a90829f19da7420d0a37790d0c0ce2b48c", 0xba}], 0x3, &(0x7f0000002c40)=[@rthdr={{0x28, 0x29, 0x39, {0x6c, 0x2, 0x1, 0x1, 0x0, [@remote]}}}, @hoplimit={{0x14, 0x29, 0x34, 0x5}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x6}}, @hopopts={{0x20, 0x29, 0x36, {0x0, 0x0, '\x00', [@enc_lim={0x4, 0x1, 0x1}, @padn={0x1, 0x1, [0x0]}]}}}, @tclass={{0x14, 0x29, 0x43, 0x4}}], 0x90}}, {{&(0x7f0000002d00)={0xa, 0x4e20, 0x5, @rand_addr=' \x01\x00', 0xb3}, 0x1c, &(0x7f0000003380)=[{&(0x7f0000002d40)="1f06c4d2d0f272ff219bd572b2a039ae7e57f77f5eff536c109fdfaf9db3eb0880296335a080e78ab17794518dea8fb78c6afaffb67795985e5d3bc90fad93800778", 0x42}, {&(0x7f0000002dc0)="b4ae314bcbe82b469b4646cc81c385ef14939152f631d26a3af4d0fada3052c3b88cce2dee916be7ba9a4dbdc39e3d53ffa2a8b4528fed9410847ab3b5199a11990b8683809de51165d0d09574b6ca97a47be2afade055ec55a5474a54ba03a95696c3a92c1f68ab6908d22c5ffd289d97a14bccf28e16b8b90cc8f441f12571cc1487", 0x83}, {&(0x7f0000002e80)="6851c7942ca90c0ea37befae4a58d431ea7baf229001233a74fbd34136750aa576f681cef295980d0ba224ab2f7c2f3818aa3260070a66c19e8b2543a1075aa57a6711190a533766115cff8344cb0467d8dd80dc1965dd65231c94af2edb288c7bd0a9d4255342f73f31ada364c3ce9d5f64cebf71d54f876a9983a97964dd7045c83b517f8e907a1007cf96d61f057ed323ef85d97aee8254920693bd48ac51b18b90ad50ff6e63d866", 0xaa}, {&(0x7f0000002f40)="4f51e55aaa32d54a56de93931192e827457691eca2e1e52e954b62147be4d0e6eceea22d878404fa57529ae0e7ae3c30a65079f964d70f902ed0530a3587a5828fd60dd1a4cc847336338478307e4ec683a7de122482f34524af9846ac43b7870a46e87926889b886ecbc6e93fa4f99346ce8235a9fea6ce1c0ea8563d8b6176b614b4da8b64a5b1d5f701b713cc1549d7bf3c43", 0x94}, {&(0x7f0000003000)="6d13ec1a4e81f1653a8c109e0bd2fa3523b6a85c2f6f8e83545fc7cd379ad1a03a3cef263a568af439edb3f0790337f5f7ce04d068bf291e3f98e492b73d97", 0x3f}, {&(0x7f0000003040)="77d5333fef7dbebe81b80f225f7e708652624b037aceb872f47731735d9e0331716ee053e673a35d285bee", 0x2b}, {&(0x7f0000003080)="2d7a62a404594e0cd20ce3a2734439e962b451dd490aa62a46848040a09a3562eda75765e6c92a161bb2d41ae8c9cecbd17b1ad88af57b3f8f26d822e43359a8096a5e2316c2c256d2702141f58c3e1a4237d570d778d226021813947323a9fca6fb3e49aae0b8ca3a07a72bfadff75831fd25965d8dbb86a84127246f8b4e45f023d61251add44f0ba3d67d5f439337d211d3209f4fb518e1", 0x99}, {&(0x7f0000003140)="f4fc5dec33ae05118c1a95789e9f3778f0d26726df2fc44cd81f1ed9dc2890b249e6bd62a25e7764210d97c16a449329e7fad22a8b90dc0f738c6a599b6ed1fc3de99e9e7729ed1661588391841964fb1f203b69d2a7ed64bf4b87bf9abcd9cd55b2507604e196958a7402144ecce9a42c97399bec6f71a1d5b2fcb3cfa0aa43064104abbfb13bbb77cdb41f8f24f5c508dbebb5f07d22686db55f00352131a83dd84fa745bffe6f6a918838883b7789ae74e1a9a778ce368a99e357a623567beb2861887021ca68816960fa6b79aa00365509d892", 0xd5}, {&(0x7f0000003240)="c58fb19eb629aad5b37fe3f2b08497057e0bcaeb2cf9bb2189479adf74c176e048d85257dfe1b0a7212cc8076d05954b501d9d7b9c891978fa77efa211e3474cbed0d11d83e488b19f786eef95aaf5ae8c7c18", 0x53}, {&(0x7f00000032c0)="abc65b478c8b7eb006cda2ad6f0e787ef86eb44c9f84ff8292942340a2b3305aab144d61290bb264433b9753bdbd1e94b86fce19565f207a041cd34ecfdb1e618a106727538bb2f407d1eb15693c0202bc62a7648d306af040da61ffd03c4bb33361819eaec7d737876efb674a72de10dc04e8685a5c3b43e06d6be78318722a99631c9a7752d9b62ddec250042c95b19766ed240e0e240a1dd390d8a5b6638ac6c9c02512c43cc2ff1473", 0xab}], 0xa, &(0x7f0000003440)=[@rthdr_2292={{0x68, 0x29, 0x39, {0x88, 0xa, 0x0, 0x5, 0x0, [@ipv4={'\x00', '\xff\xff', @loopback}, @mcast1, @rand_addr=' \x01\x00', @private1={0xfc, 0x1, '\x00', 0x1}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01']}}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x3ff}}, @dstopts={{0x10f0, 0x29, 0x37, {0x3c, 0x21a, '\x00', [@generic={0x8, 0x46, "0b3e42756dc32243a094b01d8c9ca473959d4f2df12d769a0c252a10839097d19fedbb41533c4703c0f348d01a51aa8d7cae55c3587b76fc7ab14efc57b248837295d2a231e3"}, @generic={0x1f, 0x1000, "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"}, @generic={0x80, 0x64, "3b8827482da7fca09413b41e076435c1920b34c3e6f6965eaade3f2705d9e3dc162bf58f4ec6956641a149aa6f0b04befcdaae77398d896ca68b428003aacdf24599387bada807b51c9dbf7594ec88dd2da9172d8029456ba9ff1e534c1c04e1e9ac5b2f"}, @enc_lim={0x4, 0x1, 0xff}, @hao={0xc9, 0x10, @empty}, @hao={0xc9, 0x10, @local}]}}}, @hoplimit={{0x14, 0x29, 0x34, 0x2}}], 0x1188}}, {{&(0x7f0000004600)={0xa, 0x4e21, 0x0, @mcast1, 0x7}, 0x1c, &(0x7f0000004880)=[{&(0x7f0000004640)="065445dfcad04a120427ccc6c0ed89055bc63a5dfb6ca2461fc67bbb8f029f031ca0734223ee83bd95c30b6afd3a9df0278ccabe49957993bd0f76fab41d116cc1212e94a382532bf000e90ab1e6c317570fe841928a0e8cc2528df05200d2725c691798a1a0d8c6dcfa1f5a42d570b4b9870c4fc66edd5b3eeb63774fe1b4b15fc4939fa333718881810a9aa6a71bb409ba1f4e765e02f6a844b2501b77c3a12ec2ccac6de62e3fe6efe2a7c54fc6915ed3a4", 0xb3}, {&(0x7f0000004700)="e2569fbc6423d8bcf60e09623c6d55b8844404952bd54d3069affa03229e893712047ca1230dbb3a46", 0x29}, {&(0x7f0000004740)="28f233efeafdd4af4906da0eb71cb09e17f89962a0d2ba29727c896483bf1c8f47231617a48d74a3862f6e67cce4b4786a567b7446c95306806b59b63be43bce06bf8fc29320b09772dfedc1c6206067d6f778daf9fc117c70b714e041fdf1433f80eecee747cdcce550b6bcb7a331e4d9e87275bca607d4949d092cebdeb92679f1b872c94469505a40dbea436bff8959a42c7365e7", 0x96}, {&(0x7f0000004800)="da2c799f30aec265e1dd9b48d7de", 0xe}, {&(0x7f0000004840)="854587a5e5d2abef7ae2ade7dca36b703bb72232aae78539277c62cfb943295871b8e2ecae674b2a387d0a", 0x2b}], 0x5, &(0x7f0000004900)=[@dstopts_2292={{0x88, 0x29, 0x4, {0x84, 0xd, '\x00', [@pad1, @pad1, @calipso={0x7, 0x30, {0x3, 0xa, 0x40, 0x1ff, [0x3, 0x84d, 0xde, 0xffff, 0x8c]}}, @enc_lim={0x4, 0x1, 0x1f}, @pad1, @jumbo={0xc2, 0x4, 0xd86}, @enc_lim={0x4, 0x1, 0x1}, @generic={0x80, 0x4, "b6c8c3d0"}, @hao={0xc9, 0x10, @remote}, @padn={0x1, 0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}}}, @hopopts_2292={{0x68, 0x29, 0x36, {0x3c, 0x9, '\x00', [@calipso={0x7, 0x40, {0x0, 0xe, 0x0, 0x0, [0x0, 0x9, 0x0, 0x7fff, 0xdb5f, 0x7, 0x5]}}, @pad1, @jumbo={0xc2, 0x4, 0x401}]}}}, @dstopts={{0x50, 0x29, 0x37, {0x0, 0x6, '\x00', [@enc_lim={0x4, 0x1, 0x7f}, @jumbo={0xc2, 0x4, 0x6ef}, @ra={0x5, 0x2, 0x9}, @ra={0x5, 0x2, 0x3f}, @jumbo, @hao={0xc9, 0x10, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @ra={0x5, 0x2, 0x7}, @padn={0x1, 0x3, [0x0, 0x0, 0x0]}, @enc_lim={0x4, 0x1, 0xff}]}}}, @tclass={{0x14, 0x29, 0x43, 0x2}}, @rthdr_2292={{0x58, 0x29, 0x39, {0x3a, 0x8, 0x2, 0x7, 0x0, [@empty, @rand_addr=' \x01\x00', @loopback, @empty]}}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0xfffffff9}}], 0x1c8}}, {{&(0x7f0000004b00)={0xa, 0x4e21, 0x9, @mcast1, 0x3ff}, 0x1c, &(0x7f0000004dc0)=[{&(0x7f0000004b40)="504c5506d667e87d14208027001fdd312cb70b8536a6e3b2f0f0f8666fe56055af45877676b561abfdc2d7374ce585b0f99e6f396b40211dbe443c777149bdba89b8147e8ccadd6844af77423cd840231e7c550223efd5e7b02c2d0aeaad35fc19cfe8a836539660e10dfe1693b3f5da5d2518c1c99c87aa324f2d7d89533e63310d1e4788c77b142a201c847d0cbdfd0bc6f3e9796f2f3ba6fa55fb233762cc4018ff86dbc74d3ef40bc6776c15acb31238f17c687f7cc4f9ab099c4ec7e26a45578cad42771b6c68ec57c85b0afdfa6f7d5e9efbd3cca655", 0xd9}, {&(0x7f0000004c40)="e32ea1fdd9c42e7415717b64b84941de889fbb84e18a8c7a72757c8710679caf2ac8af6a2c6030f8edd13db70be861d160ce639db6eb952de57b", 0x3a}, {&(0x7f0000004c80)="5aa8", 0x2}, {&(0x7f0000004cc0)="caccac0f65f262da1253eda8132a10576a9a7c2ca75730badfb91db6a5c4e6b330afe876a8a4f6ef6d0d4ebc95b327fbd39b3234509002928f1c35ba4fd28bce61c5bd1b317adb3b391fc46392584cf0e61c81999d59579235e173772a20cf973ead1b57aa69ff3f957c201862a39714a0ce9458fa2cc0ce326e955e53928933d580cdc9e64d948bd22bff01ea000d81c7fba3e4d2b1f92ded20f769c7e345553fe2e1d62cddb90cd7bd3a5a83bec4b95f8de7ba262ab5d918d8042e4dd43d35ffac49cc822947070b5e2f6c43c03259f245", 0xd2}], 0x4, &(0x7f0000004e00)=[@tclass={{0x14, 0x29, 0x43, 0x2}}, @tclass={{0x14, 0x29, 0x43, 0x8001}}, @rthdrdstopts={{0x68, 0x29, 0x37, {0x3b, 0x9, '\x00', [@padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}, @padn={0x1, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @calipso={0x7, 0x18, {0x1, 0x4, 0x5, 0x9, [0x7, 0x0]}}, @jumbo={0xc2, 0x4, 0x5}, @padn={0x1, 0x7, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @pad1, @hao={0xc9, 0x10, @ipv4={'\x00', '\xff\xff', @multicast1}}]}}}, @dstopts={{0xc8, 0x29, 0x37, {0x4, 0x15, '\x00', [@padn={0x1, 0x3, [0x0, 0x0, 0x0]}, @generic={0x0, 0x6c, "a380835eb336cd7977ee5c1261e1e41aacb31c7af8ba8fd3d3cedbcfef6fa1b1e4d423e7883b26f8eb0fa43cb5e14ff169ff8e7dc9a06820beed2a10bdc9023dad459661090f130eb93e33a34bae76055447384b8b9015aa205d54c05d90d4ec55ce2a86a9d687f79d37771e"}, @jumbo={0xc2, 0x4, 0x8000}, @jumbo={0xc2, 0x4, 0x1}, @ra={0x5, 0x2, 0x2}, @hao={0xc9, 0x10, @private0={0xfc, 0x0, '\x00', 0x1}}, @hao={0xc9, 0x10, @private1={0xfc, 0x1, '\x00', 0x1}}, @enc_lim={0x4, 0x1, 0x7}]}}}], 0x160}}, {{&(0x7f0000004f80)={0xa, 0x4e24, 0x5, @private2, 0x14ae}, 0x1c, &(0x7f0000005240)=[{&(0x7f0000004fc0)="6867f79526325eb51c27b88f2701dcb6c3e89d2f2f3669d4b9abf5011b7b11d328a4c49e06da848a8ad3a3bf0e8e36239dad338dd4bf8f72ab166fe0e171b55fd4ef1f8f1e13dd6dee3473568c407aebcbff2d2728620dea2da842f6fefec3af110badca16e07caaf0a760118adac330c1cf6f14828b0f7db520a2c2ff12fee5dcee22bc36", 0x85}, {&(0x7f0000005080)="bb02423312dbd223e7da59a847c2c209603fcdee735be9480f952a36032faef42f8705172eab105610b8d0c0f1015ed639d91986b96c316ddf2c5dcb8f140e2e9da745768938e6e98559c5945ffe7a68e5e59b3a70024659164ff2d5e84bf4b26397360fbed722700a7021b1d1b2e99532c27d249f83a14cb23cffb57b00d4598b4a876ba242b3438576e8be90ca1730661555a5b01e6aa49a083ddd11110d96b273b8ccbf56d69591ec5e242bee94aab43facbc9713bc84f7dbe332391d8c129cf31d7b3e10ddf81f064912d4d4a9295e301c80277c8cf5744f7b50580b9f505fb2", 0xe2}, {&(0x7f0000005180)="c88a19abcda742f613bd0dd69449865b57af165951aabf2696992919c95bbda45dab0bd7ca0f5bd57526bce4962bca63bcc849b1547ed92ba575f8d6dab7bb4a86bdca2d2941de527e286983035ad4f3fe9b80f7c19ca5e3d9899afc", 0x5c}, {&(0x7f0000005200)="2bf62213bdd1965d590cdeaf96bd6532a099f5afebc2060b2ac0078a7bf49fd96d144df5d01ca339", 0x28}], 0x4, &(0x7f0000005280)=[@hopopts={{0xe8, 0x29, 0x36, {0x6, 0x1a, '\x00', [@enc_lim={0x4, 0x1, 0x6}, @ra={0x5, 0x2, 0x8}, @calipso={0x7, 0x20, {0x3, 0x6, 0x6, 0x1f, [0x400000, 0x80000001, 0x0]}}, @generic={0x2, 0xa5, "8c2bb56fd6cdbdaea1a3ef7bb4c6f49659a6709bff90346f4fd8d5163dac5b420e3669602c9796465f179b7045338ac65116c04481043250dd127eab87c2df58fb54b41c406d9bb2be706cae1d7a9d47e179545815927a4dc38cde7e7fb609453f89a93c2e59bd80fbf6592e6fb3e314f058ecb80bdda79448de7ba63b3890a3a119d0b5ba0e35cfd5dbf357becf291810e414e5aeb72f5c4f67d61f31f2563fba9ff4c43a"}]}}}, @dontfrag={{0x14}}], 0x100}}, {{&(0x7f0000005380)={0xa, 0x4e20, 0x4, @ipv4={'\x00', '\xff\xff', @empty}, 0x2}, 0x1c, &(0x7f00000075c0)=[{&(0x7f00000053c0)="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", 0x1000}, {&(0x7f00000063c0)="74b721fcae5f62123571aef5f78708cc86fd3cb824a2fef9375fe6297529343b1a0b68c539bac85e67e709f8f4d2c4af34a6491fdb3a53d25a14ab96d141855700e99872acb2cdc5e0883a8e8ce86e8651fdf2c433bfba6a8f8de420bb2f327b921622039d8c2b14a9d320795defbb5c124630976e7a3b0d9383893e5edfaac740c4110c77f3d8d17b68930baa3ef91ec3f1b79a34c51ba48ec06cb80dec5d687652e938641555b10588082244902aa3ecd9454b7755fffbdcdd68191005dc5e725e5f40d365a4310e13ae229b6fc1c0e6b0b70c7b3dd2f908", 0xd9}, {&(0x7f00000064c0)="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", 0x1000}, {&(0x7f00000074c0)="bb1a7e75d34d0ab72f0878897bc67465dc2b900a1d2204845680cbacd4dd2349816166bbfad7a1e3d5360819d95dcd5e69f3c79a5e49cea5b49f7396ee75879277a40337595b2444e35839bae3e959771ae9cdb796728105556fcf9acef586c667e699c63e0ad36c06da56f5018f8beea2db6e17d11f0012b850915417bd6045da84a6be0b80881dc7af33f99c1f33144ad0145ca392a884fbae9b9224633f50a5bcc59c43d5718decc693e68cc1b48aab7301a31607c9babc2c0f11e0b979030cbc4a9f41b274996f4310a75c5020c94a85224457f135c5", 0xd8}], 0x4, &(0x7f0000007600)=ANY=[@ANYBLOB="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"], 0x320}}, {{&(0x7f0000007940)={0xa, 0x4e20, 0x7, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x3}, 0x1c, &(0x7f0000009d40)=[{&(0x7f0000007980)="ca66269d0c58d21fd922170c56215caf807dc052542a296a99582d43c4e8802e0364bc51f4e552c1d354252c3f2d49942b72c8ab2a0dc13e353a847705617df2a8e849e402fe2902490417bf97cea5f35ecf370e1cd21c7a16c5bb9a3d29774bcb2a33809bc985b30b4221e332325880faddd5197a0bf88d40cf1352fe05a3635bbcb01095a02ff2806038c5018d5d07bd79d3722b9849ed6e7e66f0ba2c34e15bf68931ba3ccc61c7bfbcc00ad4fe79939dc6c99e04946bfc5b11e826b775fe54c55addef", 0xc5}, {&(0x7f0000007a80)="cc8a08125d6086ad113a0c050511de416397aa2c8a445fadda7acfa8530ccee02dd36a47965b07dd15bb46b0d544588e1b586967a2658718e1efddc7ed", 0x3d}, {&(0x7f0000007ac0)="081804ac08cf2b8d18bfd840d66ca3ff8467352f2221929bd7901b1eb73d928c149773678d064932fda62180958f7937750a353ef5505196c6fc0d748452c49d1f67cc34da3ce74dca71a914a5dfcc471a2fece88fabf39059b12c76a5cb3a683574ab29c46d69be14f310cebb4b03d508dbef257187415e37d2d779d48c598f59eef757fff5d03bd98376db97706363a3d1318c2f9d6a755fcfb843e60456deab27a95ba24c4af02b40dde1b5b37d5bf605779c2b516bb5f8fdbdb232d720b60216c8281fa5f495a6e2038d59fc", 0xce}, {&(0x7f0000007bc0)="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", 0xff}, {&(0x7f0000007cc0)="c72ec3094f5257f3992e89efe6b2370f39c8167a8534bc239d53392b508a7761d94fcecbb1c4b3879dba53f4f285efc933f3320e507cda640416104edc83840e9eb41bc4396a0ba2c766af752e12a20c83c66bc21aa9000cfd30a9de1c4c6afc0c4f5c7272f1ab4a0a", 0x69}, {&(0x7f0000007d40)="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", 0x1000}, {&(0x7f0000008d40)="2651fbc26bd96fac01267899ea11e6949d036d9159cf75aa83730f5e75fcfc04e85abb973bcee95ecd789c31c80dedad0f615f3f7bbfad2846f2bfcf0aa762371660f390f8f16384479e474bcde75ba32fa3ef9aea0af076762c0c3af3a9e204b296e722bdae2d81492189df05ce83c500d70983f666ebd74edd8a98ee018c601e1c24c9a3320ff6f4be36a55a1bbdc4cf5ac69b700c18af9b51b2256ac38f652193335f8e9a572aad97924e381f88a4a839e6bf88a0add5c06b0597d9033e560d70047d9d39757098de00a42ccb81e4cf3cfa4c26d110a5374d13bf7d28edc8b44861e2010daada88508d51618d087cb648a6d6d1e66a2f7f538bd5629c3f31de312239b2afaa4db2a5149c7fb83edf7147ad3f049f2ea58f688f3c208d442a79e591794ae3c4a9a5195816ab086f3da405ab4e2ba458c0dcac3335c6967c95fb92319f6977da04975e6d9321c19876a017a400b339d83cc36284236c6b8b2e8a2847408d151e3bf2508b5df6054c4c4ee49a502e7534c872041bd1aff2076e46985ed024b7956d56d0076f738f243763bf3c55c3428109c929d14a1c1d2b91b9140dde426fb8c8373126030046a6da6570cd20eea540dfde1ffe50c7cb1a95fb02427de1507c7d8b955c22f9f6ec088d85ccc75b4a818f423a644b18a63d099cdcc891b86da70e612b2125fbadbfc3a50b21b886b7b2c0e54bc66c9361393fbba3f74f4943f3a0e6c9d1196786e27bcc3544dc8ff0ad1ebd8ed5b32a8655216402fbcbca70af374a0e46bc284430fb22c234dce19b2a101a9804297c839dff9acc8c04c4e1c44fb385832c142ac97ad2c34da36ee04ea3e855ab69c7a1a1bfc79bd90fda22e6d9633cfb6e3552ff2831f8b9a00f03bfa1af01af0059f30a35a70a7bd61f18d401400f35e3de9ca017cfa5d8da90d1dfdb6015a01217d6c63b97564f344727c7c8a811749e3177c05a34a9aff8e932e52ef5446c19ace24a59714c928bce1c27890068ff031f4b901a6d048539e4cd27ca5a152e4b2486560a25b24f6ffa6b40754d79dfbe67d56a0d646277389ed11c425f13518be88b12e056d96baf52dee260587799ff8b1b05e279a26280eff719b30bec61ab1ca5dcf0ecd0b2e216046046fdbe33027eab6a245e5f4f219cdb16e7845ecdc4e4160ce44483a536ea8c76b260a8ea66b685ff544740a25eeb2f1044a33e5ae5c9535ba7abf4fc0052192d0049fdf12b220581120675dbddaf08c77642f3781cfc797d790ec3710383d3ac65bb07185a09c931ae3a5259a77a78d9b0ae7444fc7a5a329ca9004541516bd5763acda8c1d3af4d66523c56036e1f648b2b2c34e009bca64a827ce93d0d076ed87e80a2631ff92f993d0c9dc10002e4998e1c39aef626b9d7b3ccd5a9f07a3b7d9b6285a1da49bdb9c9610812b27c740a9e1fc3fcdb926724227241baa7569a5474861651d28e66785123f9595593bdc07f56c860caa6b100e4bb2044d06b74a448680e5aa108ad6a76b8980e2c9793a380610a4ba8bbb5060026f1078f44e97713a683c971a4d9b1f0663b2bed9c4d5cfd26147dc7f0c4baf73f8feba1dfcff70e7458c16bacce28dcf0d18bf0ff38eb8f1fb01cb17726e5150140a64e5f3f128488afa1602c759f3b43a0539faee4c7fdc03095dda6c8cb7bc6571e883fc88c3631a1582643d5055ff6a3b321a00ebecbe6376f63756e14022c4c302654f8c7c7279a693309e5d7433c1df940cca91dda2e81fb57292ed6a3b9e2bcdad40325a9c300184b963d887d8ba6657acf559c923c749c77a18454101995503a7a451d1c12bdf5749bed9ccdd16a2aec8d858f99e1a0c3341ce7d7c4e4aec7757c1dbe287f5ae7ab5bc11f056af40412f736ceba77b433e0f813d21cc528927a6d0ce11d601f712113c81a69785e8fd9ac87498b64326c558485308b5b168e0acffca5d49625a099cdd33e5c59c07fe2bb92dbe36f1f7466479cbaf88fd2e78f514535a9c2212fc81c9c85456423dd816546c470524c94b76c11b922e1798adf15604470e826e71addfa100b1d24424d99846bcb90166aab82ea81fa5bf7f6cd4fa058bcbd115a75e488758add0afb39edcb3bba404396e3b082f39ab440a0cced326524f2888ac588d86829fd605c34b385b19aedbf7a737e32e789c2cdf8d05046906a3bfe484cc408d690661c046f9e06704950f3c7b21ae67018b60e77325a6504103b45c0bc64b624e362a5afc95a16abdb622d510e653374ebdb13e57f4e75d13040188e7c9eb2dc3425d8db0eef78ab00e05cfb048937ea8cab3206e67401fcd0a2b604fabbfcd65484b56b21c7907cfc9cf7f0464bceb7f97c9e90eb565fdb44f2cac17d14b21273909eff7f23f4c696b40ecaea7d239dab366cb2216bdd5a6bf41cbe38911e02205e0c67262c725e6b8565edd8df97f2509b09c6211d9092e0235282167aabc671cbe7e7f5053a30776ddac3d29cca9d77cb83595a790050c36ae1a3c35850be373b08df4fb0b52f25558766318d53532f801be99bfd40bce33b45e6bd488391dd2d76ef98df0e1276a2ab61bebbd90a03dd9743596866cd97e4ba27d098f129ac35b04e44dc783f3291379ce9ea3a5addc51e8084cd80bf6fdb7a79e74ceeb00091418eb5d4ea080ea5dd903000f3c2f6ca751256530c94bebed6d097f12505bcf6d51f936b049add7065eb21e293c1ba034b2be83f86b9fb5784a34c076ad321ee81b18821251a52f825aaba91e6ced89c23186d8b041126b62530ddb3978d1509c6455fa8b568bf9d607143bec1a95e36ec163722d246f49025ffbaab1df44c101aeb82b4f973010098b9cab235a35644b377383b3ae4f3989ca2e06e210f019aa805bea13d70a210fe9810d412739fb0c5e7f5aff525184b3ca2442c9e5f7154c369821f680b4dfaa5f169a7c97dedd523433e3937cbd088fc2045463063e80dd8d13024a3210ddb7b9ed7538b8cdeedd67c3c76419c32bb1cfc24c25364573e2253340a7f1bad2f55edf71a337773cd8a11defc6554430cee295438d7842913cee5b15cc455e5b18689ea7e613ebbca6e077af96f14d62231224fd707772460b21586ffeb611b29a892087f7c55ae35d300fffdf3555a6b87a2496c6e1bf4b0773107e63705f282b229b9159e24384810acba60a5860b75a25b2c4094152d13a20edec79fcee3ec816c4a88631771eaa10642e2903d65cbc215cd7cc5a934f444329a2d02d1980163871f030bcc456d4dca719cfca965becf37292fd732d1ac17eb14680d60aa7e391581dc1eeefa7a1be58712b1492e9f7cbc6c146e3b49d5bc1948796aaf38aa4bcebc0fe3a82f6c66334a3174678bef7f3ef62811c3c7e6cc252df1a666f1ba224d8a781583e47327be5074c76256f31513367bac11a4e9bd23f1ed0edbf6ee6dace42e43da61c156274d172a5c3aa0d85721dca80d736c19b2e4f239a2a60dbf1b0d8931e43d43e037e307bf5a3d96a290def62f7de7efc388d5e90501fb37fbb7a33c2f64e56ac3cd85137bf5c3c8524a1bde1a5b1a0e68a418bffb82f77060c33dbf024f18793f8a4d65809a26678fcd74b45c8505f29b292768fce3368b767ca7b34b9e45570cb2be9f3e2988be31413bb79120d60bb3ac732705bb46c53013f5ebd83568bec34e0ee6ae02f1d07df3c09ed06aff15669d9a8185b34ac658466fa1b8c47ffc4cf555835e5d48d54d2b3cdd1ee442d77225d587a217788a878f13099bb1738dcec2d52316beb22e5c667928d786d8a8dca9deb980145cfce57fbbfff999e6c72cfb5c29b8df63f20fb2f215922ce83992874cf1393837b53eb0aaad6986fa4ae85529258f6b5dc209e3dd61ee89235f96154262226c8992839aaa126ea24b7101a2843a3e490de96150ef7bc05878b34f752a4a6960a74a513dc87c1cd6258815e39d88d3d1a52893b09b443626afcb8fc58a39c79cc4cef9984cf1090bbad9f39a271bbd574fbd2dbfe915cf3f4fbd891498f5a431ab3ae8eb56dadbc969e6b86d0c18ad1030e9205c538a0006480acda215adb591ee723dc87c24b64255a01ba87f2bbeeb7e0cdc25c2354aecb9c32ee7225755f75fab5c6c2f47aa645190a2e4c1d13007d548c2b1beea3b6d5e8a78e22be383c13deb43dd429817d101f38d64bb9003aeb4d9b951942a3a426ea3e07575c6d8f18aafc1ccc2d5bdc1984f6ddcb8c059c527b6f434d8bc70316dc7701647cf8c8125800f945bf3e4d2fc4a1de78a09c579609fa6b9165623128c0894f38f931634387b95467e33562119cedb9d8d54a6a3017fa17219708a90423f3bfad6d62a79de6443a03acd297469900372cc49930432675fd88f7c6ef1fb7e62c8842d1db98e4a74d1fc1879b4a9128b0e2713ea68f9fe8503c97035f6d7d28ad02c089ba48091ac5d1c56d9198088951b079648dbf97e40b27cd8a9bb34f1ca43107c0ef576f58883d90dd38f43c675ec866180ddb591ec9724c0688070053c160bc68c77cc065bb79c971fa42b21d887c9d9e57591bbdf047c130317e7679128e541434d750d1f28f24ceeba3fbb9835f8d32321c6d7dbfea9e1ba00990b7442645ad7d14faf46083d746ee3be3b8a45395e8e3faf81e689bd337abc7bd9f3fca10a1e2276451e61b90ff00adab804f11c48737a27472e885c105f3e5bac55278ec68dde593f304b2083f784da2b94641f6542883be848200128564cd300a646d5efb61c97b60109eafd1eba62fc20e703c2762ba2f09a644cbc71f168f988b559917491b24b3c4d80e6475a7fedb5285800d940cc144248a2537c89e50f4e1f54ce330caaf2178ca386e36395288cf15fced35eb2a4b47298a84d224dccda0ee22b922c189e7c4271008ad2662872492eb8d6bd60ed62af419d9d68aef8c3ee357f6bd4e8cf835b28325558b703101153a42cc2595233e25d3d38a87e6da2bb8d4dca83cc22440a4653450c903bef36139561ad19116005f379e1cc6d371eb528bd1fcb2af25f2922d4057bb0093daf8ca4b9d2fb2f96b38bf4525fadbb2e7ab7f53afe29e913f05d19d2f88dc8880ee8e88bb4954e74090890b4644c4a41dc33ace667094b7ca413e6fb5297f1e830509a6817bc3d7018600e10aac2f7f0b07b19f7aea638361997a2de8bc04396150aff35751154be56be0a768999bae78bff837ab8a510b47c15ccc7e519e9811b69e7d3667409cba6081278dee2f7f1101e7c8862a82775b18a125df735d8db0222cc948c2b9da245b3a7f661a4f1f89f51c95c574e0d4b7f051bb71ef14413cb857e5b645328810034d1ee8a498146218d6299a3b7e2d50def31cd7c6ef45a281c0e2b8014b8ba69cbafd4b511cd51fafc9f0c2eb375c9fd9c121d0ded46bee88f0e32b1860af6db3d25ebece2423123f0cff22edf1b5789ff7aae911a46f1274ddb1600d604e7bdd2181a6b03020bec68bfb9db63dc56b27d767372a0d7907b3ac2eb96e9efd43ad88ea2762b8bed893a6ebdde5cdb9e29275118ea63c7e80df9ee931ff6d4c0922af7e03937156b25db97de8eb5429fded9b58f51b42e1e07f1410cb5a1ee30b6a46c199be5bf2f570a20046a1c7613b6a427ccdadb02def4d394a72b52438bc26dfc04c5f0be8d3493975e47d867ea222cfa02754f5a1a51a02b0a296b9055edd381a49d2d3f64679ab98b06576ab42487183583b3d573a6f060c04c486c546eb63d541a4849023c54af3a441f90fb2c6955813bde841680b3d35c6d1b16240b9b3a7bcc06b135f467fbe31b800a651f0e927ea3", 0x1000}], 0x7, &(0x7f0000009dc0)=[@dstopts_2292={{0x1158, 0x29, 0x4, {0x3c, 0x227, '\x00', [@hao={0xc9, 0x10, @loopback}, @pad1, @hao={0xc9, 0x10, @ipv4={'\x00', '\xff\xff', @private=0xa010100}}, @generic={0x0, 0x1000, "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"}, @generic={0x0, 0xdd, "c6458d4d7528ec8533fa437199227478e2d2455121508351508777b00afb43e581fad7ed4a96fe1ec9a879c51f74e4f7489bc61a6573c54912919e34a2932e5ddeb670b9a9a46f985065a86b2ea33481c2f8f26720edf0393cbbf4d68c2f5e30ac254d692ce2fe311e7c72a5ac84b4c1190077f54300b6b87947d8d6684e4d9a6e1f262a88f86770552ca831733843faf2b2497c7c66d5752ef9be6cadd5d0a59bf9c46e0f98159e5942bc79bd7c7448b236eab1bb0f93c6a1611c14a424651ac866c12c1a94c61d782aa17d114adb43fac69bddc9032cf93bdd460710"}, @padn={0x1, 0x2, [0x0, 0x0]}, @hao={0xc9, 0x10, @mcast2}, @generic={0x90, 0x12, "fc0e1ee9fe557d8fc871f4fd621f711c1ecb"}, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}]}}}, @tclass={{0x14, 0x29, 0x43, 0x7}}, @rthdr={{0x98, 0x29, 0x39, {0x3a, 0x10, 0x1, 0xff, 0x0, [@empty, @dev={0xfe, 0x80, '\x00', 0xf}, @mcast2, @rand_addr=' \x01\x00', @private0={0xfc, 0x0, '\x00', 0x1}, @local, @remote, @ipv4={'\x00', '\xff\xff', @multicast1}]}}}, @rthdr_2292={{0x88, 0x29, 0x39, {0x16, 0xe, 0x2, 0x1f, 0x0, [@remote, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @rand_addr=' \x01\x00', @local, @remote, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x24}}, @private2]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x1}}, @flowinfo={{0x14}}, @dontfrag={{0x14, 0x29, 0x3e, 0xada}}, @pktinfo={{0x24, 0x29, 0x32, {@dev={0xfe, 0x80, '\x00', 0x2c}, r2}}}], 0x1300}}], 0x9, 0x4000) r3 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) getpeername$inet6(r3, &(0x7f000000b300)={0xa, 0x0, 0x0, @private1}, &(0x7f000000b340)=0x1c) r4 = creat(&(0x7f0000000000)='./cgroup/cgroup.procs\x00', 0x139) ftruncate(r4, 0x6) 01:43:54 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x4) 01:43:54 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xeffd, 0x0, 0xfdef) 01:43:54 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r1, 0x0, 0x0) lseek(r1, 0xfffffffffffff014, 0x0) open_tree(r1, &(0x7f0000000080)='./cgroup/cgroup.procs\x00', 0x100) r2 = syz_mount_image$nfs4(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x6, 0x0, &(0x7f0000000140), 0xa00000, &(0x7f0000000180)={[{'\'%+*$-'}, {'[{\xda'}, {}], [{@dont_hash}, {@subj_user={'subj_user', 0x3d, ')'}}]}) getdents64(r2, &(0x7f00000002c0)=""/260, 0x104) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r3, 0x0, 0x0) getdents64(r3, &(0x7f00000001c0)=""/251, 0xfb) open_by_handle_at(r3, &(0x7f0000000040)=ANY=[@ANYRESHEX=r0, @ANYRES16=r1], 0xe000) [ 837.595653] nfs4: Unknown parameter ''%+*$-' 01:43:54 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x5) 01:43:54 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x200000) 01:43:54 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:43:54 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:43:54 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{0x0}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:43:54 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 8) 01:43:54 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xfdef, 0x0, 0xfdef) 01:43:54 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="cc5202c91c697efbaaebc5d418e1235c3afdc20344a319ddd8d0d060bca4c04d397fd71214edfa988752387d074ee04cce1dbc15788297f34a4d54007d4c11892a186dfbd80a8858bc27bc7a029688551e49f4efbbc3b74dedbb4e01578871227da41b931d0367128e9fe1fed73961e9e54c4f947979797ce7db6430140f631edea3117003801a3b792092fd25e38120f20aa5ccdb35f9b75b90ff28b2c259ef5ac77f8ea7eea58d3e80411b26e99a86855170df0844f62b77f80f7f5ab3559e8be7838856785da79f667c7cfeed18bacaa9c84de8bc3e7a730d67d662fe87abb0da71750859647f67aa6c07"], 0x0) [ 837.690097] FAULT_INJECTION: forcing a failure. [ 837.690097] name failslab, interval 1, probability 0, space 0, times 0 [ 837.691594] CPU: 0 PID: 6446 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 837.692475] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 837.693525] Call Trace: [ 837.693863] dump_stack+0x107/0x167 [ 837.694328] should_fail.cold+0x5/0xa [ 837.694820] ? create_object.isra.0+0x3a/0xa20 [ 837.695416] should_failslab+0x5/0x20 [ 837.695920] kmem_cache_alloc+0x5b/0x310 [ 837.696447] create_object.isra.0+0x3a/0xa20 [ 837.697011] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 837.697872] kmem_cache_alloc+0x159/0x310 [ 837.698410] getname_flags.part.0+0x50/0x4f0 [ 837.698975] ? _copy_from_user+0xfb/0x1b0 [ 837.699518] user_path_at_empty+0xa1/0x100 [ 837.700064] __x64_sys_mount+0x1e9/0x300 [ 837.700581] ? copy_mnt_ns+0xa00/0xa00 [ 837.701096] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 837.701775] ? syscall_enter_from_user_mode+0x1d/0x50 [ 837.702440] do_syscall_64+0x33/0x40 [ 837.702923] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 837.703597] RIP: 0033:0x7f20beb15b19 [ 837.704068] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 837.706426] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 837.707389] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 837.708299] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 837.709240] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 837.710149] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 837.711068] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:43:54 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x6) 01:43:54 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x7) 01:43:54 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) sendmsg$NL80211_CMD_NOTIFY_RADAR(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x30, 0x0, 0x200, 0x70bd2b, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x8, 0x2a}}}}, [@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x3b5}]}, 0x30}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) 01:43:54 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:43:54 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:43:54 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xff01, 0x0, 0xfdef) 01:44:10 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 9) 01:44:10 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0xf0ff1f) 01:44:10 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:44:10 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x8) 01:44:10 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{0x0}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:44:10 executing program 2: r0 = creat(&(0x7f0000000000)='./cgroup/cgroup.procs\x00', 0x105) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) 01:44:10 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:44:10 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xff0f, 0x0, 0xfdef) 01:44:10 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x50000, 0x0, 0xfdef) [ 854.110901] FAULT_INJECTION: forcing a failure. [ 854.110901] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 854.114173] CPU: 0 PID: 6479 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 854.116041] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 854.118196] Call Trace: [ 854.118812] dump_stack+0x107/0x167 [ 854.119652] should_fail.cold+0x5/0xa [ 854.120548] strncpy_from_user+0x34/0x470 [ 854.121668] getname_flags.part.0+0x95/0x4f0 [ 854.122683] ? _copy_from_user+0xfb/0x1b0 [ 854.123646] user_path_at_empty+0xa1/0x100 [ 854.124642] __x64_sys_mount+0x1e9/0x300 [ 854.125578] ? copy_mnt_ns+0xa00/0xa00 [ 854.126487] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 854.127698] ? syscall_enter_from_user_mode+0x1d/0x50 [ 854.128898] do_syscall_64+0x33/0x40 [ 854.129753] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 854.130929] RIP: 0033:0x7f20beb15b19 [ 854.131784] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 854.136177] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 854.137934] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 854.139575] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 854.141330] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 854.143079] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 854.144780] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:44:10 executing program 2: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000040)={&(0x7f0000000340)={0x1240, 0x2e, 0x1, 0x70bd28, 0x25dfdbff, {0x9}, [@generic="da1213c2694b119b73dc4810c463632bc5b89a275c6a686229e781cf1156b5e4353dfe149d1ef95b50616383df939c824385643da66ce7feee6e5fb307ba716d0dc71e1b12b05011532fa9a0740aa0d7811a683bdd91ad110ffc41d0b22a861f7a757a05de2749d2c569d20300352565117e90878b4bc9ac1ec00792d8413656a2446fba86d414a2a3c398163d2543295988fc0fa0ac82393a6c5a240d4ea4b4f0f245aff828ea0d859e993b99d96e35278a3a4d9de25d1bb8f12976a977955a42ecd5136747da90567a3bc4c7cf1f21a1c462ccffccd1e1846da1", @generic="612173336460226fdb5b3431144649a36709451ea7515378eaf1e15f1b519bba7800ab57da9049865d4c082428c1aa9f71fc2bc1ee78f37d5a75ba517f5981c8e47e663ed82c25814de9821bf2269bed8bae9b90cdfe3d4f0c464aaa28e2128682420f822377a32a", @generic="101748e3e2439dbb86bc01936f5dd5380fa9ab37fc5fbf", @generic="24fe281f86bc903d5cf6", @generic="a5cbe5590e221d754abe78525eb38ac4f1f80118de03a8714c843d8390c659f1214b0dbca242138f16b02a6f783baceed933fa7218fa1001a0e4d9625391e29148696bbe2c82808f98f77ce24895da9937f4101c9e7d772edddcbfeb1d6bd02ce1963ecd05b40f0e7d15b900fee9b3e6d0907957d9da4b7f8cc021a92fddb4d39a141e25fd4aaf970c9478eaec62617347e7d0c4da574fb8be1e0cd0e3b1584bf9e6ee500a1d381839936c21ceb8543cc7706e81ccccb3e7ca378f2aa429b980ef7c12f407036a6d749f4c2892cc2821fd312df9fa73e26a0b14d3bfdd6f1746ff9c6497465051b2019f59cdd493bd1db0cf49254ca40bd0b181206d0f9a282477bb9d668e668a486d3e5f4eb2ac80fa49a3e08278087d6dd6ad4257e5fb35ce4a5535a884c60297dfab37443d023467b93f67206df25466bec0509f7919132e09426ed703c60b20fde2b58b8cd9b15c07c26f4ae6755446f86bfa7c186efbeb17c77c9c67682a95efe46e982c54c273715151c4a21a57b2d2152bf62641120c6ecd9f19035b1385ece6e42ff7d491a5c6e0c3174de8583435a5cf12c35a9789fd82356da7377307a9e794b648790c9a38cffa5697e5ad8f93755733f0edd9f501293c6e4e9eae37556b82ec92054b2db354dd3563e35f9e9f89e596ccf9d56d40a5838071e564c4ca26666f7a566fc39dd92cae1ea49c5ad62a61046d4690e9df9e473ca3a719c52231daa136f4188e6350e8c3e7dc500c636065fb3c3e5a1c8b17a11dd2854ec818fe9055de683d45506dcdd9d210761aa8f7f41a26819fefee7640fa8fcbc88d76676c889cd9d834a313666dff234cc8b03a3eac2751e65628ec1c7d6c04ea9e0571bd5830a233ece418df5ba010da76192c67ff5e8645e3bf7e0ef407b6a96d62fc84a431d230ec40693fb814145db469c54938c1da66d90e319ff099ce78f12bb28818a89ef3ce7e0e9ed3eb1e6550e369d3b22118a6ee31769d000aa7f42ba54c76561ca4d4aa867a811648991d3af77714b2c947d9e541d179db7f137a6c331774d2f82e6c1d5510695dd8c19d23e2d6f74a21d2a269aa8c2a36cb56bdd6ed434b2fbcc18357594d1f1309568ee3fcb25c7fcbef74070b7644f0c7514ac5acb089f7c76460584db8109c91b5ef59ddebbe6ec4f6ae3ce1b505142924c377b901c4c9ade49e4fbe379b8d9f9a9c7a0e97d57b22c4fe50ef4179f4d3896bba061089f058a74b30fa086f9485ea71c14c47c9a25365717e421ac16321a2a7b9215070a50192eefe22279e7be65b1d672db39cfebd4500392eaf40437e1f345a961f50d51272366d9b7e7c8565ed15715c262ea087a3890b96faaa053c15b4553552010007e48c173f833b401a6159c641d1429c972fb04377269485725c1e0921dca60c865aed9fc605e8c7c4d747b0120229372c90b7699f8a7d11954bc9470b778d3fc42d6dda39a5e2c21c79e6504b44763c1d96b7848196bb6db1b78ee44e7f9eef84161c275ce8aba8d327f0e94e914655f19dd1a0fdd1398282f57ab980435b38c434ba4b160d6323b8c57e9aa11b0531103dcd7dee05733f34b860beace8380b703b5261a0d80561d12496cf1a6b0bc62fb3c3d7479c264219d4b389bfdc9ca70a90abc2ec0ff3947498bc4fb1166a9626a082dc7463212e46afe893cf993c38d79579a44d941c3f66cae7e595d5cb7726f8c95e59b8fbe989508c1ae2197e5e43bb8f6e2475564a16168bcd819d5160874cc74b964d7743f6c3cebcc3c675746ec81bf1acb6dea899cf1188ce6a1467e6ec33fcd165f582963cc873629a1bd1d6205e35783d5e682ffb9cadb0de29af586a1c9f51d6a5ec6910a58c9dc19a93e0f1403dfe02ac0406cef1865b633167375efb5ef9d5c32abb4e932300c3643f835dba26b0672e114420195c90778e7c0b679d64d740442f7a769b6cdded4ac2f3939526cb0d197c96c39c5d70086803fbe4435ed7e5c8ccb31be9427fa463d32a8f0b118f5839b7f7092e90757e4b609eb9cd8d77f1231cb8370f765176df187ac5f0411310f0c1c8e22af62ba4155ffcd5e669e6c689efc8d284eef51fc6231e7229c467c94d81d3fb11d862abbbd1c4b439d188e5d977edbdd0ad1ef14252f2754be97235c95e9e132afc705fc432b96f0249a0ecf95cc8ce2aa8a71f4027da1d5acf7a4dea5b6fabad2499903ba375602cf53022439a7ee450d1ffb2de3093e4825b238d16bf4dc3d7e65ddf5d32c29134b76392871e6025d813620270b7c124fec163e29d870203fea6262afb91cf3bc759b12d78c45c0d6724d31eb752aa7942d709ba0361a861c6e7b154296859aa1716bd877bca3324a7ebdc0ff7ed19170c9f46838d9cf3a30438d4c6fa5470fc2f09e2c9dbbbad71c3afd4d0b70f955805e39ada14dce237d1b19157a7ef564843de468750247a29a1d6df63b0859a4f378741eb285b145fa19f5901e5f5d6e24a70608e0b67568785d1b5ff53c662707726e17c794d0faa0d81c3898869f37552c04c9463100d87a7f996ac989cc833134fdebc2b6026b0b3c07d7296671fa37cb488753674acfcc6903d18ef7e5e04ce506a866d59b00ab1d16e5012657d5a3018a99ad00d831c809aacd354ccfbdd82e06e413b21ee72ada77e776a57a4f520cf27596433c4ca76614141fcd1b12e703f970f96a8bff9bb1802fdcd0fbcc61993adafa66d724ded64a84ce7095999e71618698c829925aa034f0d762f4b157505750aad48ea87c705fb38067db12a23df7011da1fdbc6ce5427634dc37632bcdd24df098f527ea4ae9edc199b83eb6e0eec6004e6e7168612df4767ab6adead0f6c09b8db76fda12143bcd41084e2f3d9c9994602708417fa50005ff1802ffdee17049932841f215ef7a3a2022ee3b666d13d562cf3387dd29eab0b9571af9cfa1667acf432ab9ea8df4396b5da4867e47dd5f70a6fbed4283bf9e9b43398d6573543fe5b1780b7d0c3b0a304dbc944a34e73f86f20ae18f1fa71060e3bfd2722cd689d03ef181a54c6be9e4475ffc59a1d11b5d3df72ef10f27ce57231de23a162daa9148c10cabacae12d60f43f213c21c46ff43149344a43067fa99b8e514aa8a088eda872390d05bfc5385349d7d9e71292af4be92eed30f6c9d5b97984d40de9d5372d42eba172deb5f73cb809c6972740b2f019655503c84473459a012c96682a380b8f016221d73581c2767df492f9a5ac7f7b3675e83d11440cb3ecd5a3a454f3743433eccb0710f549851398c92ce17b6a56d1b2b69f93f84a71c2fded2261d055940f5d364e31a6e4a936dde63ec3c053d44af8a9c5386d9724b9c872883c4d91f4908a278ec04c24aabeb7d3af910e0625027b594b1a967a2d8a9138b28306f6c8a8ae9e920dcf414f4c05def9c8c3b4a2d898c75c26bee8f1b34d10548561d0a5022d28e1fb4377002e8e27d0345a1e3ee2380bdc46abbb2458cbd6f2d1f210b2e4e01e98d27a871d6fbf8ce4c1775f5519b78570176a2d7319fe324b45567ac24b6f2f2dc87b0429b81be3a3919530e85bed9f3fed72bd564cb7763d95b300dd7d0ea1ead29e0c2cb11a9522ebc45db592517097068097387bf2fe40429034468132adeebbc26f2f935ce67dc430ba42885a4f19ca872706623777d3bb33f90e056f8fd03a16e4b980af5df10849e6dba7eea59dfa9c8492b8a2e69e1a3abef5f68eb57ed5bd508afe8361b98badd2a9efe08b8780417c2199d6bc6ce1162d2784f91ffb4e487a30935cce8ede763f749a465aaa277e7edd49626d8bedfb6e524bb8db5d12000750d53022085ef51fa4cd3d2712962edc4d5764d2262b4cdbd60ea5e9aee1227400c8a63ecf61f2a028a3de5124a60e77ae403c2829e8b18f7aaae07624b58c69f30e3610e71f24c86ad33dec159ffa5927cb1bf68db81da5fba225cfcca0e1b1df926e7ce531c6fc3428c11420946d2c5e775aba1e0f933697c3981035cf59ca6e12630591f08e7a6234b22977c4743cf303a046bcb5f272a5e4fb390511074031cdf95fb886ab4d5f630838d3437fb1e6e51617872913d8e83ec8c5da1fbd1202874b9c8c4b99b5f46adeccc6c2e1713c60a127b6acffe10696bbe89c7cc9c68fba63029de84c6cfeda3a99b2f499b93c2d817e305e340b4ed1d1958c500c28b4ba2fa1304b41d0b94af57d14cba924c11848b95f55f0e9af2ff4cce85ebad89a052b1363343171dd5167f103445b4ffe920058c1d657bb48d741715ef3e75dc4b31f35f0ed9c536812713d9de29e7d1c401f8b9649efcaca98fb1fe75816fa87b6f3eb2be7d65b8733ad0216775c0609aa69604dd74278e0154659e79b1b8a9b1e033e7c956ee94f4f4908289ffdcde46d45af4be76a50c5d264dff1f2c89ef50fe744d751e6dace93833b2777ce5d8de94337f56b8689ca6d05f20a7250ac62007b38034c87c96a39ae60cb5bb6f58ef5868bde1d7fe0372718cd878931110499461fece667426a61e5d4b323a4d028c73136bdd1e15a716e690ad3c9d9533aec8a7387794510b33c766f8f28d59fe157a0cebb6a0a36c647ff7353d11b3423447a01440c289ad990bb7c4c29dbdc7270c197f57a6259f5d77163404bbe8be35a618f373815cb558f32eb99dd71c5a72720aa23ec5cee9f21eecf4f9deaee534d6327ea8b68949708bf0eb515356452ec88191777c2ad6a2d1d5ce338ec5cceb0e939c140786b1cbf676a00f612c9cbd7462d262e25e89330c56dbdb408f0dc1b7e2dcf70b0d52402bf797feb4bf069100574fcf5f7e17df36250dc0829aef0fc652869bc68bbb18c822686779eae23bcbb9a4897821f8d034ae43025262508f1fa177b6c97e215e9508f91fcc52514a4df03d4de590d26659aeae5bb64d59d2227eabc691e40be7aa73d4d537bbf395004129d9b522e4e7b02518e4c3ad7272cf32d195520fea1a513c63635425794c46c31ae44ee2e30947857f816ef6a96d5735f7f41e760332f702358d905fbb964d991ee6b44639d2724be3ca606267fd7c951f664bc1539959f029af8c2ab079c07c37cda7518c48cd5a86d70eed0697dffec4d49e89fffd21e20a03e87ebeecf08ab0f19fbc1425e31c65ee853d77dea0d361ac3828efa056d634f5b312531fba61476bf3a7a6d2021a6d296e6d3a65cfc315bd3517f152bf578c8380f3359595cb300ab3549d0f8e669c1a2023acc27fb382fb780d26ed60b72842ef30a934da046ffe6bd5db479c94182599aba34fce9b755bab927a0aaa1c162b418f2bfe05a1c5642f2e9aec46cb1af9d00dec0b589075e2465bc68fddbcdad4542c9cdadb7d24a99355726ba739b4f674647f0dbe358181686588f16692c7b9ce61832c80b3130619c58cf9d3a44ed312d40e844d7600b337bf7a01496b4e71146e77d20a584bb009b835d3908f2d4b62de6ef829e4bcfa5754fa97f0822d1484c60412b14f566b0a2dd7670355e6c5fca6b454f5e40e324e45150754acba4cfadfbff9e95302376b221afe8d4bc003a4a85739522909fdf54d2832d2ed7bc07fa38bf2e7513a81e80bcac3287d9b1b495dee342931ef3781651093763e65fd46ccd1212542266559f13023443c9268d1ecf25117a70b6afbbe16074f3482dce4903cb3a70e5ad4c9c361b03fa7dca8c6309ee2409c3d9bffda47530eaf3284e4c249b7c4fd29ee143f2c0b2e20cf3d36a4abac8c5333ee27b4a40764a0497148d5aeccfdeb8367123adbe2a004fe7df72833b59b3c89a4fa25bd376da889868f16690ec57", @typed={0x8, 0x6c, 0x0, 0x0, @ipv4=@multicast2}, @generic="4dbed9dbff3d2971ff3e27170dc1aa5bb34d90bed3a5e322d60138c1b3e335b48a94374d11d50de7948e38725a84cf1ee14cab2888827875348672aaf52cd2c8ef8b95e08cecb64feb6fb5c3e552227a599f6b15f8185e58d59c47aad763b5bf1ac35c90bd7f8ecb532818399f84adec", @typed={0x4, 0x5}, @generic="6fe5e8e39a186f97932558b250cacb25f02ff1292901821ac5de13a1f060c76bccb8ffcbb162117bc2b6dabfbc634ad70a6f0e08ce9c5c9aab962b88194b96b47f891eb3b1c9cb2566"]}, 0x1240}, 0x1, 0x0, 0x0, 0x4000}, 0x814) r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r1, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) sendmsg$TIPC_NL_BEARER_GET(r1, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0x98, 0x0, 0x200, 0x70bd29, 0x25dfdbfd, {}, [@TIPC_NLA_MON={0x14, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x40}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x9}]}, @TIPC_NLA_LINK={0x44, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x101}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x1ff}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}, @TIPC_NLA_NET={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x4}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x6}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x2}, @TIPC_NLA_NET_NODEID_W1={0xc}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x2000c815}, 0x800) 01:44:28 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x9) 01:44:28 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x1000000) 01:44:28 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[], 0x0) 01:44:28 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 10) 01:44:28 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:44:28 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x80000, 0x0, 0xfdef) 01:44:28 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:44:28 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) [ 871.636763] FAULT_INJECTION: forcing a failure. [ 871.636763] name failslab, interval 1, probability 0, space 0, times 0 [ 871.639395] CPU: 1 PID: 6513 Comm: syz-executor.1 Not tainted 5.10.230 #1 01:44:28 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r0, 0xc0a85352, &(0x7f0000000000)={{0x42, 0x1}, 'port0\x00', 0x73, 0x60005, 0x4, 0x7, 0x2, 0x72, 0x4, 0x0, 0x4, 0x9}) [ 871.640953] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 871.643027] Call Trace: [ 871.643645] dump_stack+0x107/0x167 [ 871.644493] should_fail.cold+0x5/0xa [ 871.645401] ? alloc_fs_context+0x57/0x840 [ 871.646390] should_failslab+0x5/0x20 [ 871.647279] kmem_cache_alloc_trace+0x55/0x320 [ 871.648351] alloc_fs_context+0x57/0x840 [ 871.649316] path_mount+0xaa3/0x2120 [ 871.650190] ? strncpy_from_user+0x9e/0x470 [ 871.651193] ? finish_automount+0xa90/0xa90 [ 871.652197] ? getname_flags.part.0+0x1dd/0x4f0 [ 871.653287] ? _copy_from_user+0xfb/0x1b0 [ 871.654259] __x64_sys_mount+0x282/0x300 [ 871.655200] ? copy_mnt_ns+0xa00/0xa00 [ 871.656111] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 871.657338] ? syscall_enter_from_user_mode+0x1d/0x50 [ 871.658538] do_syscall_64+0x33/0x40 [ 871.659402] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 871.660594] RIP: 0033:0x7f20beb15b19 [ 871.661467] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 871.665732] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 871.667488] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 871.669140] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 01:44:28 executing program 2: r0 = creat(&(0x7f0000000000)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) [ 871.670831] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 871.672627] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 871.674286] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:44:28 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x100000, 0x0, 0xfdef) 01:44:28 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0xa) 01:44:28 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:44:28 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x2000000) 01:44:28 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:44:28 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:44:28 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 11) [ 871.843813] FAULT_INJECTION: forcing a failure. [ 871.843813] name failslab, interval 1, probability 0, space 0, times 0 [ 871.845613] CPU: 0 PID: 6543 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 871.846667] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 871.847961] Call Trace: [ 871.848374] dump_stack+0x107/0x167 [ 871.848949] should_fail.cold+0x5/0xa [ 871.849545] ? create_object.isra.0+0x3a/0xa20 [ 871.850267] should_failslab+0x5/0x20 [ 871.850860] kmem_cache_alloc+0x5b/0x310 [ 871.851500] create_object.isra.0+0x3a/0xa20 [ 871.852179] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 871.852988] kmem_cache_alloc_trace+0x151/0x320 [ 871.853726] alloc_fs_context+0x57/0x840 [ 871.854365] path_mount+0xaa3/0x2120 [ 871.854947] ? strncpy_from_user+0x9e/0x470 [ 871.855617] ? finish_automount+0xa90/0xa90 [ 871.856289] ? getname_flags.part.0+0x1dd/0x4f0 [ 871.857021] ? _copy_from_user+0xfb/0x1b0 [ 871.857671] __x64_sys_mount+0x282/0x300 [ 871.858305] ? copy_mnt_ns+0xa00/0xa00 [ 871.858912] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 871.859722] ? syscall_enter_from_user_mode+0x1d/0x50 [ 871.860517] do_syscall_64+0x33/0x40 [ 871.861091] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 871.861882] RIP: 0033:0x7f20beb15b19 [ 871.862456] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 871.865288] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 871.866445] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 871.867528] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 871.868619] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 871.869726] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 871.870823] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:44:44 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 12) 01:44:44 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x3000000) 01:44:44 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:44:44 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) r1 = fork() r2 = fork() ptrace(0x10, r2) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r3, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r2) r4 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r5, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) ioctl$sock_SIOCDELRT(r4, 0x890c, &(0x7f0000000140)={0x0, @tipc=@name={0x1e, 0x2, 0x2, {{0x42, 0x1}}}, @phonet={0x23, 0x40, 0x2, 0x80}, @ax25={0x3, @null, 0x3}, 0x8000, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000100)='ip6gretap0\x00', 0x876, 0x4, 0x5}) bind$inet6(r5, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r5, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendfile(r5, r4, 0x0, 0x9bbb) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x3, 0x3f, 0x5, 0x8, 0x0, 0x7, 0x88008, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x3, @perf_bp={&(0x7f0000000040), 0x1}, 0x4800, 0x100000000, 0x8, 0x1, 0xc3, 0x584, 0x800, 0x0, 0x3, 0x0, 0x9}, r1, 0x5, r4, 0x0) perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x1, 0x0, 0x5, 0x3e, 0x0, 0x9f61, 0x4000, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0xfffeffff, 0x4, @perf_config_ext={0xe8b, 0xffffffff}, 0x8000, 0xfbe, 0x3, 0x2, 0x7, 0x2, 0x8, 0x0, 0x7ff, 0x0, 0x5}, r1, 0x4, r0, 0x3) 01:44:44 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x800000, 0x0, 0xfdef) 01:44:44 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x21) 01:44:44 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:44:44 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) [ 887.580588] FAULT_INJECTION: forcing a failure. [ 887.580588] name failslab, interval 1, probability 0, space 0, times 0 [ 887.583594] CPU: 1 PID: 6558 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 887.585337] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 887.587495] Call Trace: [ 887.588168] dump_stack+0x107/0x167 [ 887.589089] should_fail.cold+0x5/0xa [ 887.590078] ? legacy_init_fs_context+0x44/0xe0 [ 887.591361] should_failslab+0x5/0x20 [ 887.592361] kmem_cache_alloc_trace+0x55/0x320 [ 887.593535] ? lockdep_init_map_type+0x2c7/0x780 [ 887.594767] legacy_init_fs_context+0x44/0xe0 [ 887.595913] ? generic_parse_monolithic+0x1f0/0x1f0 [ 887.597178] alloc_fs_context+0x4fd/0x840 [ 887.598271] path_mount+0xaa3/0x2120 [ 887.599225] ? strncpy_from_user+0x9e/0x470 [ 887.600332] ? finish_automount+0xa90/0xa90 [ 887.601432] ? getname_flags.part.0+0x1dd/0x4f0 [ 887.602628] ? _copy_from_user+0xfb/0x1b0 [ 887.603709] __x64_sys_mount+0x282/0x300 [ 887.604751] ? copy_mnt_ns+0xa00/0xa00 [ 887.605766] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 887.606960] ? syscall_enter_from_user_mode+0x1d/0x50 [ 887.608120] do_syscall_64+0x33/0x40 [ 887.608960] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 887.610125] RIP: 0033:0x7f20beb15b19 [ 887.610963] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 887.615115] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 887.616825] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 887.618438] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 887.620043] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 887.621671] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 887.623275] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:44:44 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x48) 01:44:44 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x4000000) 01:44:44 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 13) 01:44:44 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:44:44 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:44:44 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x1000000, 0x0, 0xfdef) 01:44:44 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) [ 887.830779] FAULT_INJECTION: forcing a failure. [ 887.830779] name failslab, interval 1, probability 0, space 0, times 0 [ 887.833496] CPU: 1 PID: 6588 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 887.835035] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 887.836945] Call Trace: [ 887.837761] dump_stack+0x107/0x167 [ 887.838583] should_fail.cold+0x5/0xa [ 887.839439] ? create_object.isra.0+0x3a/0xa20 [ 887.840462] should_failslab+0x5/0x20 [ 887.841330] kmem_cache_alloc+0x5b/0x310 [ 887.842252] create_object.isra.0+0x3a/0xa20 [ 887.843240] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 887.844388] kmem_cache_alloc_trace+0x151/0x320 [ 887.845443] ? lockdep_init_map_type+0x2c7/0x780 [ 887.846521] legacy_init_fs_context+0x44/0xe0 [ 887.847527] ? generic_parse_monolithic+0x1f0/0x1f0 [ 887.848643] alloc_fs_context+0x4fd/0x840 [ 887.849601] path_mount+0xaa3/0x2120 [ 887.850448] ? strncpy_from_user+0x9e/0x470 [ 887.851416] ? finish_automount+0xa90/0xa90 [ 887.852394] ? getname_flags.part.0+0x1dd/0x4f0 [ 887.853444] ? _copy_from_user+0xfb/0x1b0 [ 887.854391] __x64_sys_mount+0x282/0x300 [ 887.855304] ? copy_mnt_ns+0xa00/0xa00 [ 887.856185] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 887.857375] ? syscall_enter_from_user_mode+0x1d/0x50 [ 887.858543] do_syscall_64+0x33/0x40 [ 887.859379] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 887.860528] RIP: 0033:0x7f20beb15b19 [ 887.861380] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 887.865529] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 887.867235] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 887.868836] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 887.870461] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 887.872071] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 887.873691] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:44:58 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x4c) 01:44:58 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x5000000) 01:44:58 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:44:58 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000900), r2) sendmsg$IEEE802154_ADD_IFACE(r1, &(0x7f0000000180)={0x0, 0xfffffffffffffe9a, &(0x7f0000000040)={&(0x7f00000000c0)={0x34, r3, 0xae99, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wpan3\x00', 0x0}) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wpan1\x00', 0x0}) r7 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), 0xffffffffffffffff) sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r5, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000540)=ANY=[@ANYBLOB="94c2880a737f9b6e9e1d64139882be82d751a22a57191153f88ab99fc6543ea14f935b0f5790c3e6ddc624286546edab5c48386cdf3542ec68d57469aba2de8a127bbb812b2f0bfe4b220f04cd04203082f2980a6bba159236ba89ab9892590b04589bbe2c1e9ae160e98bdf85ffd6377e216d7c42964206ff771919ee10675800"/139, @ANYRES16=r7, @ANYBLOB="030000b7d6ffffd7a8000800000000000000", @ANYRES32=r6], 0x24}}, 0x0) sendmsg$IEEE802154_LLSEC_GETPARAMS(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x30, r3, 0x4, 0x70bd2a, 0x25dfdbfc, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r4}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r6}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x880}, 0x8010) r8 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r8, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) fcntl$addseals(r8, 0x409, 0x0) 01:44:58 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x1100000, 0x0, 0xfdef) 01:44:58 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:44:58 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 14) 01:44:58 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) [ 901.540475] FAULT_INJECTION: forcing a failure. [ 901.540475] name failslab, interval 1, probability 0, space 0, times 0 [ 901.542231] CPU: 1 PID: 6618 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 901.543213] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 901.544460] Call Trace: [ 901.544868] dump_stack+0x107/0x167 [ 901.545419] should_fail.cold+0x5/0xa [ 901.545995] ? legacy_init_fs_context+0x44/0xe0 [ 901.546728] should_failslab+0x5/0x20 [ 901.547308] kmem_cache_alloc_trace+0x55/0x320 [ 901.547975] ? lockdep_init_map_type+0x2c7/0x780 [ 901.548663] legacy_init_fs_context+0x44/0xe0 [ 901.549322] ? generic_parse_monolithic+0x1f0/0x1f0 [ 901.550050] alloc_fs_context+0x4fd/0x840 [ 901.550655] path_mount+0xaa3/0x2120 [ 901.551198] ? strncpy_from_user+0x9e/0x470 [ 901.551828] ? finish_automount+0xa90/0xa90 [ 901.552482] ? getname_flags.part.0+0x1dd/0x4f0 [ 901.553167] ? _copy_from_user+0xfb/0x1b0 [ 901.553797] __x64_sys_mount+0x282/0x300 [ 901.554410] ? copy_mnt_ns+0xa00/0xa00 [ 901.554983] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 901.555748] ? syscall_enter_from_user_mode+0x1d/0x50 [ 901.556514] do_syscall_64+0x33/0x40 [ 901.557058] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 901.557824] RIP: 0033:0x7f20beb15b19 [ 901.558370] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 901.561039] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 901.562187] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 901.563233] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 901.564266] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 901.565293] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 901.566363] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:44:58 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:44:58 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x68) 01:44:58 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{0x0}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:44:58 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x2000000, 0x0, 0xfdef) 01:44:58 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:44:58 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{0x0}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:44:58 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 15) 01:44:58 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{0x0}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) [ 901.756075] FAULT_INJECTION: forcing a failure. [ 901.756075] name failslab, interval 1, probability 0, space 0, times 0 [ 901.757697] CPU: 1 PID: 6639 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 901.758622] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 901.759709] Call Trace: [ 901.760066] dump_stack+0x107/0x167 [ 901.760546] should_fail.cold+0x5/0xa [ 901.761057] ? create_object.isra.0+0x3a/0xa20 [ 901.761672] should_failslab+0x5/0x20 [ 901.762188] kmem_cache_alloc+0x5b/0x310 [ 901.762740] ? cred_has_capability.isra.0+0x152/0x2b0 [ 901.763422] create_object.isra.0+0x3a/0xa20 [ 901.763996] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 901.764683] kmem_cache_alloc_trace+0x151/0x320 [ 901.765303] ? v9fs_write_inode+0x60/0x60 [ 901.765861] v9fs_mount+0x5a/0x8f0 [ 901.766340] ? v9fs_write_inode+0x60/0x60 [ 901.766895] legacy_get_tree+0x105/0x220 [ 901.767434] vfs_get_tree+0x8e/0x300 [ 901.767924] path_mount+0x1429/0x2120 [ 901.768437] ? strncpy_from_user+0x9e/0x470 [ 901.769009] ? finish_automount+0xa90/0xa90 [ 901.769592] ? getname_flags.part.0+0x1dd/0x4f0 [ 901.770210] ? _copy_from_user+0xfb/0x1b0 [ 901.770766] __x64_sys_mount+0x282/0x300 [ 901.771319] ? copy_mnt_ns+0xa00/0xa00 [ 901.771834] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 901.772529] ? syscall_enter_from_user_mode+0x1d/0x50 [ 901.773205] do_syscall_64+0x33/0x40 [ 901.773694] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 901.774372] RIP: 0033:0x7f20beb15b19 [ 901.774865] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 901.777271] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 901.778275] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 901.779226] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 901.780178] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 901.781144] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 901.782106] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:45:11 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{0x0}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:45:11 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 16) 01:45:11 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) r1 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) ioctl$FITRIM(r1, 0xc0185879, &(0x7f0000000040)={0x67, 0x4, 0x1000}) 01:45:11 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x6c) 01:45:11 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{0x0}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:45:11 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x6000000) 01:45:11 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, 0x0) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:45:11 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x3000000, 0x0, 0xfdef) [ 914.621256] FAULT_INJECTION: forcing a failure. [ 914.621256] name failslab, interval 1, probability 0, space 0, times 0 [ 914.623815] CPU: 1 PID: 6672 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 914.625317] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 914.627105] Call Trace: [ 914.627673] dump_stack+0x107/0x167 [ 914.628454] should_fail.cold+0x5/0xa [ 914.629383] should_failslab+0x5/0x20 [ 914.630213] __kmalloc_track_caller+0x79/0x370 [ 914.631222] ? v9fs_session_init+0xa7/0x1680 [ 914.632160] ? kernel_text_address+0xf2/0x120 [ 914.633119] kstrdup+0x36/0x70 [ 914.633803] v9fs_session_init+0xa7/0x1680 [ 914.634760] ? lock_release+0x680/0x680 [ 914.635608] ? find_held_lock+0x2c/0x110 [ 914.636477] ? kmem_cache_alloc_trace+0x151/0x320 [ 914.637482] ? v9fs_show_options+0x690/0x690 [ 914.638443] ? trace_hardirqs_on+0x5b/0x180 [ 914.639398] ? kasan_unpoison_shadow+0x33/0x50 [ 914.640370] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 914.641472] v9fs_mount+0x79/0x8f0 [ 914.642246] ? v9fs_write_inode+0x60/0x60 [ 914.643152] legacy_get_tree+0x105/0x220 [ 914.644020] vfs_get_tree+0x8e/0x300 [ 914.644813] path_mount+0x1429/0x2120 [ 914.645637] ? strncpy_from_user+0x9e/0x470 [ 914.646562] ? finish_automount+0xa90/0xa90 [ 914.647481] ? getname_flags.part.0+0x1dd/0x4f0 [ 914.648453] ? _copy_from_user+0xfb/0x1b0 [ 914.649343] __x64_sys_mount+0x282/0x300 [ 914.650213] ? copy_mnt_ns+0xa00/0xa00 [ 914.651048] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 914.652163] ? syscall_enter_from_user_mode+0x1d/0x50 [ 914.653263] do_syscall_64+0x33/0x40 [ 914.654055] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 914.655154] RIP: 0033:0x7f20beb15b19 [ 914.655946] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 914.659907] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 914.661540] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 914.663087] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 914.664621] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 914.666149] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 914.667794] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:45:11 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x74) 01:45:11 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) ioctl$HDIO_GETGEO(r0, 0x301, &(0x7f0000000040)) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r1, 0x0, 0x0) lseek(r1, 0xfffffffffffff014, 0x0) r2 = syz_open_procfs$namespace(0x0, &(0x7f0000000080)='ns/cgroup\x00') fsetxattr$trusted_overlay_nlink(r2, &(0x7f00000000c0), &(0x7f0000000100)={'L+', 0x6}, 0x16, 0x3) getdents64(r1, &(0x7f00000001c0)=""/251, 0xfb) openat(r1, &(0x7f0000000000)='./cgroup/cgroup.procs/file0\x00', 0x1, 0x18e) 01:45:11 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x7a) 01:45:11 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, 0x0) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:45:11 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:45:11 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 17) [ 914.882610] FAULT_INJECTION: forcing a failure. [ 914.882610] name failslab, interval 1, probability 0, space 0, times 0 [ 914.885326] CPU: 0 PID: 6702 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 914.886879] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 914.888765] Call Trace: [ 914.889378] dump_stack+0x107/0x167 [ 914.890225] should_fail.cold+0x5/0xa [ 914.891211] ? create_object.isra.0+0x3a/0xa20 [ 914.892251] should_failslab+0x5/0x20 [ 914.893120] kmem_cache_alloc+0x5b/0x310 [ 914.894043] create_object.isra.0+0x3a/0xa20 [ 914.895045] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 914.896195] __kmalloc_track_caller+0x177/0x370 [ 914.897247] ? v9fs_session_init+0xa7/0x1680 [ 914.898266] ? kernel_text_address+0xf2/0x120 [ 914.899287] kstrdup+0x36/0x70 [ 914.900019] v9fs_session_init+0xa7/0x1680 [ 914.900986] ? lock_release+0x680/0x680 [ 914.901883] ? find_held_lock+0x2c/0x110 [ 914.902823] ? kmem_cache_alloc_trace+0x151/0x320 [ 914.903906] ? v9fs_show_options+0x690/0x690 [ 914.904912] ? trace_hardirqs_on+0x5b/0x180 [ 914.905894] ? kasan_unpoison_shadow+0x33/0x50 [ 914.906934] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 914.908080] v9fs_mount+0x79/0x8f0 [ 914.908897] ? v9fs_write_inode+0x60/0x60 [ 914.909834] legacy_get_tree+0x105/0x220 [ 914.910774] vfs_get_tree+0x8e/0x300 [ 914.911632] path_mount+0x1429/0x2120 [ 914.912506] ? strncpy_from_user+0x9e/0x470 [ 914.913477] ? finish_automount+0xa90/0xa90 [ 914.914470] ? getname_flags.part.0+0x1dd/0x4f0 [ 914.915513] ? _copy_from_user+0xfb/0x1b0 [ 914.916458] __x64_sys_mount+0x282/0x300 [ 914.917376] ? copy_mnt_ns+0xa00/0xa00 [ 914.918276] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 914.919471] ? syscall_enter_from_user_mode+0x1d/0x50 [ 914.920644] do_syscall_64+0x33/0x40 [ 914.921490] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 914.922652] RIP: 0033:0x7f20beb15b19 [ 914.923490] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 914.927638] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 914.929362] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 914.930985] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 914.932620] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 914.934249] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 914.935869] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:45:25 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 18) 01:45:25 executing program 2: r0 = creat(&(0x7f0000000000)='./cgroup/cgroup.procs/file0\x00', 0x6b) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r1, 0x0, 0x0) lseek(r1, 0xfffffffffffff014, 0x0) r2 = epoll_create(0x9) ioctl$FIBMAP(r2, 0x1, &(0x7f00000000c0)=0xa93) getdents64(r1, &(0x7f00000001c0)=""/251, 0xfb) openat(r1, &(0x7f0000000080)='./cgroup/cgroup.procs/file0\x00', 0xa4080, 0x0) open_by_handle_at(r0, &(0x7f0000000040)=ANY=[@ANYRESHEX=r0], 0x101800) 01:45:25 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, 0x0) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:45:25 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x7000000) 01:45:25 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x4000000, 0x0, 0xfdef) 01:45:25 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{0x0}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:45:25 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x300) 01:45:25 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) [ 929.345718] FAULT_INJECTION: forcing a failure. [ 929.345718] name failslab, interval 1, probability 0, space 0, times 0 [ 929.348498] CPU: 0 PID: 6720 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 929.350110] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 929.352076] Call Trace: [ 929.352721] dump_stack+0x107/0x167 [ 929.353589] should_fail.cold+0x5/0xa [ 929.354493] ? create_object.isra.0+0x3a/0xa20 [ 929.355589] should_failslab+0x5/0x20 [ 929.356499] kmem_cache_alloc+0x5b/0x310 [ 929.357465] ? cred_has_capability.isra.0+0x152/0x2b0 [ 929.358689] create_object.isra.0+0x3a/0xa20 [ 929.359744] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 929.360962] kmem_cache_alloc_trace+0x151/0x320 [ 929.362068] ? v9fs_write_inode+0x60/0x60 [ 929.363061] v9fs_mount+0x5a/0x8f0 [ 929.363911] ? v9fs_write_inode+0x60/0x60 [ 929.364888] legacy_get_tree+0x105/0x220 [ 929.365852] vfs_get_tree+0x8e/0x300 [ 929.366743] path_mount+0x1429/0x2120 [ 929.367645] ? strncpy_from_user+0x9e/0x470 [ 929.368844] ? finish_automount+0xa90/0xa90 [ 929.369871] ? getname_flags.part.0+0x1dd/0x4f0 [ 929.370984] ? _copy_from_user+0xfb/0x1b0 [ 929.371972] __x64_sys_mount+0x282/0x300 [ 929.372928] ? copy_mnt_ns+0xa00/0xa00 [ 929.373854] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 929.375235] ? syscall_enter_from_user_mode+0x1d/0x50 [ 929.376468] do_syscall_64+0x33/0x40 [ 929.377351] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 929.378561] RIP: 0033:0x7f20beb15b19 [ 929.379459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 929.383798] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 929.385594] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 929.387285] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 929.388971] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 929.390645] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 929.392348] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:45:26 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x500) 01:45:26 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000000)=[r0], 0x1) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) mmap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x800002, 0x30, r0, 0x99182000) 01:45:26 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x5000000, 0x0, 0xfdef) 01:45:26 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:45:26 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x9000000) 01:45:26 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:45:26 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(0x0, 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:45:26 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="fe"], 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r1, 0x0, 0x0) lseek(r1, 0xfffffffffffff014, 0x0) getdents64(r1, &(0x7f00000001c0)=""/251, 0xfb) ioctl$FS_IOC_GETFLAGS(r1, 0x80086601, &(0x7f0000000000)) 01:45:26 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 19) 01:45:26 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x600) 01:45:26 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:45:26 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x6000000, 0x0, 0xfdef) [ 929.723048] FAULT_INJECTION: forcing a failure. [ 929.723048] name failslab, interval 1, probability 0, space 0, times 0 [ 929.725727] CPU: 0 PID: 6755 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 929.727261] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 929.729105] Call Trace: [ 929.729700] dump_stack+0x107/0x167 [ 929.730510] should_fail.cold+0x5/0xa [ 929.731360] ? create_object.isra.0+0x3a/0xa20 [ 929.732367] should_failslab+0x5/0x20 [ 929.733199] kmem_cache_alloc+0x5b/0x310 [ 929.734100] create_object.isra.0+0x3a/0xa20 [ 929.735078] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 929.736197] __kmalloc_track_caller+0x177/0x370 [ 929.737213] ? v9fs_session_init+0xe9/0x1680 [ 929.738175] ? kernel_text_address+0xf2/0x120 [ 929.739177] kstrdup+0x36/0x70 [ 929.739884] v9fs_session_init+0xe9/0x1680 [ 929.740811] ? lock_release+0x680/0x680 [ 929.741681] ? find_held_lock+0x2c/0x110 [ 929.742576] ? kmem_cache_alloc_trace+0x151/0x320 [ 929.743639] ? v9fs_show_options+0x690/0x690 [ 929.744609] ? trace_hardirqs_on+0x5b/0x180 [ 929.745554] ? kasan_unpoison_shadow+0x33/0x50 [ 929.746557] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 929.747687] v9fs_mount+0x79/0x8f0 [ 929.748472] ? v9fs_write_inode+0x60/0x60 [ 929.749386] legacy_get_tree+0x105/0x220 [ 929.750277] vfs_get_tree+0x8e/0x300 [ 929.751189] path_mount+0x1429/0x2120 [ 929.752166] ? strncpy_from_user+0x9e/0x470 [ 929.753118] ? finish_automount+0xa90/0xa90 [ 929.754073] ? getname_flags.part.0+0x1dd/0x4f0 [ 929.755212] ? _copy_from_user+0xfb/0x1b0 [ 929.756131] __x64_sys_mount+0x282/0x300 [ 929.757019] ? copy_mnt_ns+0xa00/0xa00 [ 929.757880] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 929.759045] ? syscall_enter_from_user_mode+0x1d/0x50 [ 929.760178] do_syscall_64+0x33/0x40 [ 929.760998] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 929.762128] RIP: 0033:0x7f20beb15b19 [ 929.762955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 929.767241] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 929.768900] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 929.770456] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 929.772014] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 929.773568] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 929.775135] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:45:42 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0xa000000) 01:45:42 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 20) 01:45:42 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x8000000, 0x0, 0xfdef) 01:45:42 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(0x0, 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:45:42 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f00000000c0)=[r0], 0x1) setxattr$trusted_overlay_origin(&(0x7f0000000000)='./cgroup/cgroup.procs\x00', &(0x7f0000000040), &(0x7f0000000080), 0x2, 0x2) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './cgroup/cgroup.procs\x00'}) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r2, 0x0, 0x0) lseek(r2, 0xfffffffffffff014, 0x0) getdents64(r2, &(0x7f00000001c0)=""/251, 0xfb) io_uring_register$IORING_REGISTER_FILES_UPDATE(r1, 0x6, &(0x7f0000000180)={0xe198, 0x0, &(0x7f0000000140)=[0xffffffffffffffff, r2, r0]}, 0x3) 01:45:42 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:45:42 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x700) 01:45:42 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) [ 945.425998] FAULT_INJECTION: forcing a failure. [ 945.425998] name failslab, interval 1, probability 0, space 0, times 0 [ 945.428613] CPU: 0 PID: 6781 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 945.430149] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 945.432038] Call Trace: [ 945.432642] dump_stack+0x107/0x167 [ 945.433469] should_fail.cold+0x5/0xa [ 945.434336] ? p9_client_create+0xaf/0x1230 [ 945.435330] should_failslab+0x5/0x20 [ 945.436193] kmem_cache_alloc_trace+0x55/0x320 [ 945.437224] ? find_held_lock+0x2c/0x110 [ 945.438147] p9_client_create+0xaf/0x1230 [ 945.439082] ? lock_downgrade+0x6d0/0x6d0 [ 945.440037] ? p9_client_flush+0x430/0x430 [ 945.440997] ? trace_hardirqs_on+0x5b/0x180 [ 945.441972] ? lockdep_init_map_type+0x2c7/0x780 [ 945.443046] ? __raw_spin_lock_init+0x36/0x110 [ 945.444091] v9fs_session_init+0x1dd/0x1680 [ 945.445065] ? lock_release+0x680/0x680 [ 945.445971] ? kmem_cache_alloc_trace+0x151/0x320 [ 945.447056] ? v9fs_show_options+0x690/0x690 [ 945.448070] ? trace_hardirqs_on+0x5b/0x180 [ 945.449041] ? kasan_unpoison_shadow+0x33/0x50 [ 945.450067] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 945.451225] v9fs_mount+0x79/0x8f0 [ 945.452036] ? v9fs_write_inode+0x60/0x60 [ 945.452976] legacy_get_tree+0x105/0x220 [ 945.453896] vfs_get_tree+0x8e/0x300 [ 945.454734] path_mount+0x1429/0x2120 [ 945.455609] ? strncpy_from_user+0x9e/0x470 [ 945.456582] ? finish_automount+0xa90/0xa90 [ 945.457552] ? getname_flags.part.0+0x1dd/0x4f0 [ 945.458605] ? _copy_from_user+0xfb/0x1b0 [ 945.459562] __x64_sys_mount+0x282/0x300 [ 945.460473] ? copy_mnt_ns+0xa00/0xa00 [ 945.461351] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 945.462541] ? syscall_enter_from_user_mode+0x1d/0x50 [ 945.463723] do_syscall_64+0x33/0x40 [ 945.464558] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 945.465725] RIP: 0033:0x7f20beb15b19 [ 945.466578] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 945.470749] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 945.472493] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 945.474100] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 945.475718] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 945.477335] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 945.479108] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:45:42 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='\r'], 0x0) 01:45:42 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x900) 01:45:42 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x17) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r1, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) ioctl$SNDRV_SEQ_IOCTL_PVERSION(r1, 0x80045300, &(0x7f0000000000)) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r2, 0x0, 0x0) lseek(r2, 0xfffffffffffff014, 0x0) getdents64(r2, &(0x7f00000001c0)=""/251, 0xfb) fcntl$setlease(r2, 0x400, 0x0) 01:45:42 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:45:42 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x1ffff000) 01:45:42 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(0x0, 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:45:42 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0xa00) 01:45:57 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 21) 01:45:57 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:45:57 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x20000000) 01:45:57 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:45:57 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r1, 0x0, 0x0) lseek(r1, 0x10001, 0x0) getdents64(r1, &(0x7f00000001c0)=""/251, 0xfb) futimesat(r1, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', &(0x7f0000000080)={{0x77359400}, {0x77359400}}) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000000)=0x2000) 01:45:57 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2000) 01:45:57 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, 0x0) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:45:57 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xb010000, 0x0, 0xfdef) 01:45:57 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xc000000, 0x0, 0xfdef) [ 960.488753] FAULT_INJECTION: forcing a failure. [ 960.488753] name failslab, interval 1, probability 0, space 0, times 0 [ 960.491303] CPU: 1 PID: 6835 Comm: syz-executor.1 Not tainted 5.10.230 #1 01:45:57 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, 0x0) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) [ 960.492796] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 960.494720] Call Trace: [ 960.495297] dump_stack+0x107/0x167 [ 960.496103] should_fail.cold+0x5/0xa [ 960.496936] ? create_object.isra.0+0x3a/0xa20 [ 960.497930] should_failslab+0x5/0x20 [ 960.498756] kmem_cache_alloc+0x5b/0x310 [ 960.499633] ? kernel_text_address+0xf2/0x120 [ 960.500625] create_object.isra.0+0x3a/0xa20 [ 960.501573] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 960.502674] kmem_cache_alloc_trace+0x151/0x320 [ 960.503672] ? find_held_lock+0x2c/0x110 [ 960.504563] p9_client_create+0xaf/0x1230 [ 960.505456] ? lock_downgrade+0x6d0/0x6d0 [ 960.506364] ? p9_client_flush+0x430/0x430 [ 960.507285] ? trace_hardirqs_on+0x5b/0x180 [ 960.508228] ? lockdep_init_map_type+0x2c7/0x780 [ 960.509255] ? __raw_spin_lock_init+0x36/0x110 [ 960.510250] v9fs_session_init+0x1dd/0x1680 [ 960.511183] ? lock_release+0x680/0x680 [ 960.512061] ? kmem_cache_alloc_trace+0x151/0x320 [ 960.513105] ? v9fs_show_options+0x690/0x690 [ 960.514064] ? trace_hardirqs_on+0x5b/0x180 [ 960.514998] ? kasan_unpoison_shadow+0x33/0x50 [ 960.515989] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 960.517095] v9fs_mount+0x79/0x8f0 [ 960.517869] ? v9fs_write_inode+0x60/0x60 [ 960.518767] legacy_get_tree+0x105/0x220 [ 960.519646] vfs_get_tree+0x8e/0x300 [ 960.520459] path_mount+0x1429/0x2120 [ 960.521290] ? strncpy_from_user+0x9e/0x470 [ 960.522222] ? finish_automount+0xa90/0xa90 [ 960.523314] ? getname_flags.part.0+0x1dd/0x4f0 [ 960.524327] ? _copy_from_user+0xfb/0x1b0 [ 960.525239] __x64_sys_mount+0x282/0x300 [ 960.526114] ? copy_mnt_ns+0xa00/0xa00 [ 960.526960] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 960.528102] ? syscall_enter_from_user_mode+0x1d/0x50 [ 960.529216] do_syscall_64+0x33/0x40 [ 960.530020] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 960.531126] RIP: 0033:0x7f20beb15b19 [ 960.531935] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 960.535917] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 960.537561] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 960.539096] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 960.540643] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 960.542180] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 960.543718] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:45:57 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x4800) 01:45:57 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) [ 975.898996] FAULT_INJECTION: forcing a failure. [ 975.898996] name failslab, interval 1, probability 0, space 0, times 0 01:46:12 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 22) 01:46:12 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xf000000, 0x0, 0xfdef) 01:46:12 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x21000000) 01:46:12 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) [ 975.901681] CPU: 0 PID: 6857 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 975.903449] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 975.905708] Call Trace: [ 975.906420] dump_stack+0x107/0x167 [ 975.907562] should_fail.cold+0x5/0xa [ 975.908614] should_failslab+0x5/0x20 [ 975.909646] __kmalloc_track_caller+0x79/0x370 [ 975.910882] ? p9_client_create+0x41d/0x1230 [ 975.912075] kstrdup+0x36/0x70 [ 975.913086] p9_client_create+0x41d/0x1230 [ 975.914243] ? lock_downgrade+0x6d0/0x6d0 [ 975.915391] ? p9_client_flush+0x430/0x430 [ 975.916558] ? trace_hardirqs_on+0x5b/0x180 [ 975.917759] ? lockdep_init_map_type+0x2c7/0x780 [ 975.919046] ? __raw_spin_lock_init+0x36/0x110 [ 975.920293] v9fs_session_init+0x1dd/0x1680 [ 975.921477] ? lock_release+0x680/0x680 [ 975.922568] ? kmem_cache_alloc_trace+0x151/0x320 [ 975.923862] ? v9fs_show_options+0x690/0x690 [ 975.925064] ? trace_hardirqs_on+0x5b/0x180 [ 975.926231] ? kasan_unpoison_shadow+0x33/0x50 [ 975.927463] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 975.928850] v9fs_mount+0x79/0x8f0 [ 975.929827] ? v9fs_write_inode+0x60/0x60 [ 975.930965] legacy_get_tree+0x105/0x220 [ 975.932086] vfs_get_tree+0x8e/0x300 [ 975.933120] path_mount+0x1429/0x2120 [ 975.934182] ? strncpy_from_user+0x9e/0x470 [ 975.935374] ? finish_automount+0xa90/0xa90 [ 975.936597] ? getname_flags.part.0+0x1dd/0x4f0 [ 975.937879] ? _copy_from_user+0xfb/0x1b0 [ 975.939046] __x64_sys_mount+0x282/0x300 [ 975.940173] ? copy_mnt_ns+0xa00/0xa00 [ 975.941260] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 975.942714] ? syscall_enter_from_user_mode+0x1d/0x50 [ 975.944137] do_syscall_64+0x33/0x40 [ 975.945176] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 975.946587] RIP: 0033:0x7f20beb15b19 [ 975.947613] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 975.952723] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 975.954839] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 975.956818] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 975.958788] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 975.960717] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 975.962336] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:46:12 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:46:12 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, 0x0) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:46:12 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x3c) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) 01:46:12 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x4c00) 01:46:12 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:46:12 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x10000000, 0x0, 0xfdef) 01:46:12 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x48000000) 01:46:12 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:46:12 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(0x0, 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:46:12 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:46:12 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x6800) 01:46:12 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) r1 = mmap$IORING_OFF_SQES(&(0x7f0000001000/0x2000)=nil, 0x2000, 0xc, 0x50, r0, 0x10000000) r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) ioctl$BTRFS_IOC_BALANCE_V2(r0, 0xc4009420, &(0x7f0000000300)={0x14, 0x1, {0x4, @struct={0x3, 0x6}, 0x0, 0x1, 0x7fff, 0x100000001, 0x20, 0x2, 0x7dc5d31336960652, @struct={0x2, 0x80000000}, 0x80000001, 0x4, [0x81, 0x7, 0x4, 0x6, 0x0, 0x1]}, {0xffffffff, @usage=0x800, 0x0, 0x0, 0x0, 0x1, 0x200, 0x4, 0xef, @usage=0x67d, 0x2, 0x0, [0x8b, 0x0, 0x10001, 0x9, 0x0, 0x5]}, {0x8, @usage=0x97c, 0x0, 0x0, 0x3, 0xdd0, 0xff, 0x9, 0x14, @struct={0x7ff}, 0x7fff, 0x6, [0xd99, 0xf06, 0xa9d, 0xc79, 0x5, 0xfffffffffffffffc]}, {0x9, 0x4, 0x5}}) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r2, 0xc400941d, &(0x7f0000000700)={r3, 0x3, 0xfffffffffffffc01}) r4 = syz_io_uring_setup(0x3ca3, &(0x7f0000000080), &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000488000/0x4000)=nil, 0x4000, 0x800003, 0x12, r2, 0x8000000) syz_io_uring_submit(r7, r6, &(0x7f00000002c0)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x2, 0x0, @fd_index=0x5, 0x3f, 0x0, 0x100, 0x6}, 0x0) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index=0x1, 0x0, 0x0, 0x0, 0x3, 0x0, {0x0, r8}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x4, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, {0x3, r8}}, 0xb6) r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000001, 0x10013, r4, 0x0) syz_io_uring_submit(r9, r6, &(0x7f0000000200)=@IORING_OP_WRITE_FIXED={0x5, 0x4, 0x4004, @fd, 0x6, 0x10000, 0x9, 0x1, 0x0, {0x3, r8}}, 0x1) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r0, 0x402c5342, &(0x7f0000000140)={0x1, 0x3ff, 0x9, {0x5, 0x6}, 0x400, 0x91a}) syz_io_uring_submit(0x0, r1, &(0x7f00000000c0)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x2, 0x0, r2, 0x0, &(0x7f0000000040)="8737c8100b5683ea074c63b4ccc69002b5345ceffb5564ab482995148076f3b85912661bf446c87c0caf30487fdd6f31fe504ddc3aa5deaca293fb5f72fdf6af257f2ee4600bb9f412b436119942c602c6a2d63472888cf3e03cd934db1e82", 0x5f, 0x40000140, 0x1, {0x0, r8}}, 0x7) open_by_handle_at(r0, &(0x7f0000000240)=ANY=[@ANYBLOB='\x00\x00\x00'], 0x0) [ 976.209933] audit: type=1400 audit(1732412772.884:115): avc: denied { map } for pid=6895 comm="syz-executor.2" path="/syzcgroup/unified/syz2/cgroup.procs" dev="cgroup2" ino=1310 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:vhost_device_t:s0 tclass=file permissive=1 [ 976.213428] audit: type=1400 audit(1732412772.884:116): avc: denied { execute } for pid=6895 comm="syz-executor.2" path="/syzcgroup/unified/syz2/cgroup.procs" dev="cgroup2" ino=1310 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:vhost_device_t:s0 tclass=file permissive=1 01:46:29 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x4c000000) 01:46:29 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x6c00) 01:46:29 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x12000000, 0x0, 0xfdef) 01:46:29 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(0x0, 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:46:29 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) pivot_root(&(0x7f0000000000)='./cgroup/cgroup.procs\x00', &(0x7f0000000040)='./cgroup/cgroup.procs\x00') open_by_handle_at(r0, &(0x7f0000000080)=ANY=[@ANYBLOB="18991f57b79edf416ad4ad5e09173f60cc45c2851c0427d25e778d5446404c4d66b8acc51588f242949c579d2fc711b0c98cb10f18d3d372d207379ead1c1c1fc9f7c6caf1c7de65c32f4de51bcdc3b6162ae9f5d01645"], 0x0) r1 = accept$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @private1}, &(0x7f0000000140)=0x1c) fsetxattr$security_capability(r1, &(0x7f0000000180), &(0x7f0000000200)=@v1={0x1000000, [{0x81, 0x3}]}, 0xc, 0x2) 01:46:29 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 23) 01:46:29 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:46:29 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, 0x0) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) [ 992.707559] FAULT_INJECTION: forcing a failure. [ 992.707559] name failslab, interval 1, probability 0, space 0, times 0 [ 992.710372] CPU: 0 PID: 6918 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 992.711959] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 992.713896] Call Trace: [ 992.714505] dump_stack+0x107/0x167 [ 992.715346] should_fail.cold+0x5/0xa [ 992.716229] ? create_object.isra.0+0x3a/0xa20 [ 992.717293] should_failslab+0x5/0x20 [ 992.718170] kmem_cache_alloc+0x5b/0x310 [ 992.719105] ? lock_downgrade+0x6d0/0x6d0 [ 992.720065] create_object.isra.0+0x3a/0xa20 [ 992.721086] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 992.722421] __kmalloc_track_caller+0x177/0x370 [ 992.723500] ? p9_client_create+0x41d/0x1230 [ 992.724526] kstrdup+0x36/0x70 [ 992.725285] p9_client_create+0x41d/0x1230 [ 992.726261] ? lock_downgrade+0x6d0/0x6d0 [ 992.727228] ? p9_client_flush+0x430/0x430 [ 992.728207] ? trace_hardirqs_on+0x5b/0x180 [ 992.729219] ? lockdep_init_map_type+0x2c7/0x780 [ 992.730320] ? __raw_spin_lock_init+0x36/0x110 [ 992.731385] v9fs_session_init+0x1dd/0x1680 [ 992.732386] ? lock_release+0x680/0x680 [ 992.733326] ? kmem_cache_alloc_trace+0x151/0x320 [ 992.734443] ? v9fs_show_options+0x690/0x690 [ 992.735478] ? trace_hardirqs_on+0x5b/0x180 [ 992.736480] ? kasan_unpoison_shadow+0x33/0x50 [ 992.737547] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 992.738730] v9fs_mount+0x79/0x8f0 [ 992.739561] ? v9fs_write_inode+0x60/0x60 [ 992.740524] legacy_get_tree+0x105/0x220 [ 992.741479] vfs_get_tree+0x8e/0x300 [ 992.742342] path_mount+0x1429/0x2120 [ 992.743234] ? strncpy_from_user+0x9e/0x470 [ 992.744235] ? finish_automount+0xa90/0xa90 [ 992.745245] ? getname_flags.part.0+0x1dd/0x4f0 [ 992.746327] ? _copy_from_user+0xfb/0x1b0 [ 992.747303] __x64_sys_mount+0x282/0x300 [ 992.748244] ? copy_mnt_ns+0xa00/0xa00 [ 992.749161] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 992.750376] ? syscall_enter_from_user_mode+0x1d/0x50 [ 992.751576] do_syscall_64+0x33/0x40 [ 992.752439] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 992.753636] RIP: 0033:0x7f20beb15b19 [ 992.754498] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 992.758770] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 992.760539] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 992.762201] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 992.763856] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 992.765521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 992.767174] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:46:29 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x21030000, 0x0, 0xfdef) 01:46:29 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x7400) 01:46:29 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r1, 0x0, 0x0) lseek(r1, 0xfffffffffffff014, 0x0) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r2, 0x0, 0x0) lseek(r2, 0xfffffffffffff014, 0x0) getdents64(r2, &(0x7f00000001c0)=""/251, 0xfb) getdents64(r2, &(0x7f0000000040)=""/243, 0xfcf7) r3 = getpid() fcntl$lock(r1, 0x26, &(0x7f0000000000)={0x0, 0x0, 0x2, 0x5, r3}) r4 = io_uring_setup(0x755f, &(0x7f00000002c0)={0x0, 0xd26e, 0x2, 0x0, 0x2e3, 0x0, r0}) open_by_handle_at(r4, &(0x7f0000000140)=ANY=[@ANYRESOCT], 0x0) 01:46:29 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:46:29 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, 0x0) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:46:29 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(0x0, 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:46:29 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="76c2bf00000600e8660474fc7b5d18"], 0x0) 01:46:29 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x3f000000, 0x0, 0xfdef) 01:46:29 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x68000000) 01:46:29 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x7a00) 01:46:29 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:46:29 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:46:29 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) write$P9_ROPEN(r0, &(0x7f0000000180)={0x18, 0x71, 0x1, {{0x0, 0x1, 0x1}, 0x1200}}, 0x18) write$P9_RCLUNK(r0, &(0x7f0000000280)={0x7, 0x79, 0x2}, 0x7) pwrite64(r0, &(0x7f0000000100)="01cd5f1ecc2ede8e13ca4d6d6fb112345adc7d6d46817a121bd8e8b8af4741b21332d2192a1a75bc0a53bdde5e0567369b2ad344be1134fbcdfe5e5df9d7613a80c88fcbd4330d9b658448de87d2525fec9af8c086381900aa271ebba4fa2c42c830d98bf1", 0x65, 0xffffffffffffffe0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') getdents64(0xffffffffffffffff, 0x0, 0x0) lseek(0xffffffffffffffff, 0xfffffffffffff014, 0x0) getdents64(0xffffffffffffffff, &(0x7f00000001c0)=""/251, 0xfb) preadv(0xffffffffffffffff, &(0x7f0000000700)=[{&(0x7f0000000340)=""/222, 0xde}, {&(0x7f0000000440)=""/102, 0x66}, {&(0x7f0000002100)=""/4096, 0x1000}, {&(0x7f00000004c0)=""/168, 0xa8}, {&(0x7f0000000580)=""/210, 0xd2}, {&(0x7f0000003100)=""/4096, 0x1000}, {&(0x7f0000000680)=""/114, 0x72}, {&(0x7f0000004100)=""/4096, 0x1000}], 0x8, 0x8, 0x1) pread64(r1, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) write$P9_RCREATE(r1, &(0x7f0000000240)={0x18, 0x73, 0x2, {{0x4, 0x3, 0x2}, 0x7fff}}, 0x18) open_by_handle_at(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="f8f16393d542bbd73c9dd8ee9bf387f29376face84c9d0dddc5621091f44a75654c9feda4b50213d3135151a7300200f53b689f93baf961a201e9d4907e19eb859b956896285a419577ae22631855a19a1c9bbb77d6254e5307c9928329bdc93379b7978bf61d2ad6ce7b66c102e794a316a0c19693c7e72db57418fdde923a66002abac40935b7e452be5a3d65d0eaf335bb8943b9d860e506043e943ab107358fa2222ca3ed27017e779332251ecf0fff656fd3250d1d29841dd320b825b166258b9aab4f892d1518be7bf1d3e4b8859136be00582089050f2083b3e52039f0c77f19dea072283a98e00"/244], 0x0) flock(r0, 0xe) r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000002c0), 0x208000, 0x0) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r3, 0x0, 0x0) lseek(r3, 0xfffffffffffff014, 0x0) getdents64(r3, &(0x7f00000001c0)=""/251, 0xfb) ioctl$INCFS_IOC_PERMIT_FILL(r2, 0x40046721, &(0x7f0000000300)={r3}) sendfile(r0, r0, &(0x7f0000000200)=0x4, 0x8) 01:46:45 executing program 5: syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:46:45 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:46:45 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, 0x0) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:46:45 executing program 2: ioctl$BTRFS_IOC_LOGICAL_INO(0xffffffffffffffff, 0xc0389424, &(0x7f0000000100)={0xfc87, 0x20, '\x00', 0x0, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0]}) r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="e0"], 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r1, 0x0, 0x0) lseek(r1, 0xfffffffffffff014, 0x0) getdents64(r1, &(0x7f00000001c0)=""/251, 0xfb) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r2, 0x0, 0x0) lseek(r2, 0xfffffffffffff014, 0x0) getdents64(r2, &(0x7f00000001c0)=""/251, 0xfb) ioctl$F2FS_IOC_WRITE_CHECKPOINT(r2, 0xf507, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x200000, 0x1a8) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) umount2(&(0x7f0000000080)='./cgroup/cgroup.procs\x00', 0x4) getdents64(r3, 0x0, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000140)=0x1cc1) lseek(r3, 0xfffffffffffff014, 0x0) dup2(r1, r3) 01:46:45 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x80000) 01:46:45 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x64000000, 0x0, 0xfdef) 01:46:45 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x6c000000) 01:46:45 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 24) [ 1009.120153] FAULT_INJECTION: forcing a failure. [ 1009.120153] name failslab, interval 1, probability 0, space 0, times 0 [ 1009.122895] CPU: 0 PID: 6983 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1009.124442] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1009.126321] Call Trace: [ 1009.126917] dump_stack+0x107/0x167 [ 1009.127738] should_fail.cold+0x5/0xa [ 1009.128600] should_failslab+0x5/0x20 [ 1009.129455] __kmalloc_track_caller+0x79/0x370 [ 1009.130488] ? p9_client_create+0x51e/0x1230 [ 1009.131486] kmemdup_nul+0x2d/0xa0 [ 1009.132283] p9_client_create+0x51e/0x1230 [ 1009.133243] ? p9_client_flush+0x430/0x430 [ 1009.134210] ? trace_hardirqs_on+0x5b/0x180 [ 1009.135185] ? lockdep_init_map_type+0x2c7/0x780 [ 1009.136259] ? __raw_spin_lock_init+0x36/0x110 [ 1009.137297] v9fs_session_init+0x1dd/0x1680 [ 1009.138284] ? lock_release+0x680/0x680 [ 1009.139188] ? asm_sysvec_call_function_single+0x12/0x20 [ 1009.140401] ? trace_hardirqs_on+0x5b/0x180 [ 1009.141373] ? v9fs_show_options+0x690/0x690 [ 1009.142386] ? _raw_spin_unlock_irqrestore+0x25/0x40 [ 1009.143526] ? kasan_unpoison_shadow+0x33/0x50 [ 1009.144549] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1009.145708] v9fs_mount+0x79/0x8f0 [ 1009.146511] ? v9fs_write_inode+0x60/0x60 [ 1009.147449] legacy_get_tree+0x105/0x220 [ 1009.148376] vfs_get_tree+0x8e/0x300 [ 1009.149209] path_mount+0x1429/0x2120 [ 1009.150080] ? strncpy_from_user+0x9e/0x470 [ 1009.151048] ? finish_automount+0xa90/0xa90 [ 1009.152017] ? getname_flags.part.0+0x1dd/0x4f0 [ 1009.153059] ? _copy_from_user+0xfb/0x1b0 [ 1009.154012] __x64_sys_mount+0x282/0x300 [ 1009.154924] ? copy_mnt_ns+0xa00/0xa00 [ 1009.155810] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1009.156985] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1009.158155] do_syscall_64+0x33/0x40 [ 1009.158992] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1009.160145] RIP: 0033:0x7f20beb15b19 [ 1009.160984] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1009.165108] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1009.166822] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1009.168421] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1009.170027] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1009.171624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1009.173217] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 [ 1009.182392] audit: type=1400 audit(1732412805.856:117): avc: denied { getattr } for pid=6973 comm="syz-executor.2" path="/syzcgroup/unified/syz2/cgroup.procs" dev="cgroup2" ino=1310 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:vhost_device_t:s0 tclass=file permissive=1 01:46:45 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:46:45 executing program 5: syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x3, 0x0, 0x0) [ 1024.088693] FAULT_INJECTION: forcing a failure. [ 1024.088693] name failslab, interval 1, probability 0, space 0, times 0 [ 1024.091512] CPU: 0 PID: 7005 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1024.093191] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1024.095244] Call Trace: [ 1024.095891] dump_stack+0x107/0x167 [ 1024.096784] should_fail.cold+0x5/0xa [ 1024.097718] should_failslab+0x5/0x20 [ 1024.098665] __kmalloc_track_caller+0x79/0x370 [ 1024.099802] ? p9_client_create+0x41d/0x1230 [ 1024.100892] kstrdup+0x36/0x70 [ 1024.101676] p9_client_create+0x41d/0x1230 [ 1024.102721] ? lock_downgrade+0x6d0/0x6d0 [ 1024.103744] ? p9_client_flush+0x430/0x430 [ 1024.104781] ? trace_hardirqs_on+0x5b/0x180 [ 1024.105846] ? lockdep_init_map_type+0x2c7/0x780 [ 1024.107018] ? __raw_spin_lock_init+0x36/0x110 [ 1024.108162] v9fs_session_init+0x1dd/0x1680 [ 1024.109222] ? lock_release+0x680/0x680 [ 1024.110214] ? kmem_cache_alloc_trace+0x151/0x320 [ 1024.111407] ? v9fs_show_options+0x690/0x690 [ 1024.112511] ? trace_hardirqs_on+0x5b/0x180 [ 1024.113567] ? kasan_unpoison_shadow+0x33/0x50 [ 1024.114681] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1024.115951] v9fs_mount+0x79/0x8f0 [ 1024.116821] ? v9fs_write_inode+0x60/0x60 [ 1024.117839] legacy_get_tree+0x105/0x220 [ 1024.118851] vfs_get_tree+0x8e/0x300 [ 1024.119774] path_mount+0x1429/0x2120 [ 1024.120727] ? strncpy_from_user+0x9e/0x470 [ 1024.121770] ? finish_automount+0xa90/0xa90 [ 1024.122847] ? getname_flags.part.0+0x1dd/0x4f0 [ 1024.123991] ? _copy_from_user+0xfb/0x1b0 [ 1024.125016] __x64_sys_mount+0x282/0x300 [ 1024.126134] ? copy_mnt_ns+0xa00/0xa00 [ 1024.127115] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1024.128470] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1024.129901] do_syscall_64+0x33/0x40 01:47:00 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 25) 01:47:00 executing program 5: syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:47:00 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:47:00 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(0x0, 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:47:00 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB], 0x0) 01:47:00 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x81020000, 0x0, 0xfdef) 01:47:00 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x200000) 01:47:00 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x74000000) [ 1024.130816] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1024.132254] RIP: 0033:0x7f20beb15b19 [ 1024.133152] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1024.137651] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1024.139531] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1024.141288] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1024.143038] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1024.144779] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1024.146533] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:47:00 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xeffd0000, 0x0, 0xfdef) 01:47:00 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0xf0ff1f) 01:47:00 executing program 2: r0 = signalfd(0xffffffffffffffff, &(0x7f0000000000)={[0x1]}, 0x8) r1 = dup3(0xffffffffffffffff, r0, 0x0) r2 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r3, 0x0, 0x0) lseek(r3, 0xfffffffffffff014, 0x0) getdents64(r3, &(0x7f00000001c0)=""/251, 0xfb) r4 = openat(r0, &(0x7f00000002c0)='./file1\x00', 0x0, 0x2) sendfile(0xffffffffffffffff, r4, &(0x7f0000003c80), 0x8) recvmmsg$unix(r1, &(0x7f0000003a40)=[{{&(0x7f0000000040), 0x6e, &(0x7f0000000200)=[{&(0x7f00000000c0)=""/79, 0x4f}, {&(0x7f0000000140)=""/72, 0x48}], 0x2, &(0x7f0000003cc0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRESDEC=r1, @ANYBLOB="0300000024000000000000000100004001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00'], 0x48}}, {{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)}, {&(0x7f0000000340)=""/222, 0xde}, {&(0x7f0000000440)=""/81, 0x51}, {&(0x7f00000004c0)=""/124, 0x7c}], 0x4, &(0x7f0000000580)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xd0}}, {{0x0, 0x0, &(0x7f0000001700)=[{&(0x7f0000000680)=""/4096, 0x1000}, {&(0x7f0000001680)=""/102, 0x66}], 0x2, &(0x7f0000001740)=[@cred={{0x1c}}], 0x20}}, {{0x0, 0x0, &(0x7f0000001b40)=[{&(0x7f0000001780)=""/167, 0xa7}, {&(0x7f0000001840)=""/180, 0xb4}, {&(0x7f0000001900)=""/213, 0xd5}, {&(0x7f0000001a00)=""/234, 0xea}, {&(0x7f0000001b00)=""/53, 0x35}], 0x5, &(0x7f0000001bc0)=[@cred={{0x1c}}], 0x20}}, {{&(0x7f0000001c00)=@abs, 0x6e, &(0x7f0000001f00)=[{&(0x7f0000001c80)=""/181, 0xb5}, {&(0x7f0000001d40)=""/75, 0x4b}, {&(0x7f0000001dc0)=""/237, 0xed}, {&(0x7f0000001ec0)=""/40, 0x28}], 0x4, &(0x7f0000001f40)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xe0}}, {{&(0x7f0000002040)=@abs, 0x6e, &(0x7f0000002400)=[{&(0x7f00000020c0)=""/136, 0x88}, {&(0x7f0000003d40)=""/15, 0xf}, {&(0x7f00000021c0)=""/214, 0xd6}, {&(0x7f00000022c0)=""/221, 0xdd}, {&(0x7f00000023c0)=""/53, 0x35}], 0x5, &(0x7f00000038c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x88}}, {{&(0x7f0000002540), 0x6e, &(0x7f00000036c0)=[{&(0x7f00000025c0)=""/89, 0x59}, {&(0x7f0000002640)=""/4096, 0x1000}, {&(0x7f0000003640)=""/88, 0x58}], 0x3, &(0x7f0000003700)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x10}}], 0xa8}}, {{&(0x7f00000037c0), 0x6e, &(0x7f0000003880)=[{&(0x7f0000003840)=""/10, 0xa}], 0x1, &(0x7f0000003d80)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x180}}], 0x8, 0x20, &(0x7f0000003c40)) fcntl$setown(r3, 0x8, r5) 01:47:00 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:47:00 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x0, 0x0, 0x3, 0x0, 0x0) 01:47:00 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x7a000000) 01:47:00 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(0x0, 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:47:01 executing program 2: fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x16, 0x1) r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) ioctl$INCFS_IOC_GET_FILLED_BLOCKS(r0, 0x80286722, &(0x7f00000000c0)={&(0x7f0000000080)=""/20, 0x14, 0x20, 0x7}) 01:47:01 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 26) 01:47:01 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xf4ffffff, 0x0, 0xfdef) 01:47:01 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x1000000) 01:47:01 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) [ 1024.556479] FAULT_INJECTION: forcing a failure. [ 1024.556479] name failslab, interval 1, probability 0, space 0, times 0 [ 1024.558633] CPU: 1 PID: 7055 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1024.559903] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1024.561417] Call Trace: [ 1024.561907] dump_stack+0x107/0x167 [ 1024.562584] should_fail.cold+0x5/0xa [ 1024.563301] should_failslab+0x5/0x20 [ 1024.564020] __kmalloc_track_caller+0x79/0x370 [ 1024.564871] ? parse_opts.part.0+0x8e/0x340 [ 1024.565665] kstrdup+0x36/0x70 [ 1024.566281] parse_opts.part.0+0x8e/0x340 [ 1024.567088] ? p9_fd_show_options+0x1c0/0x1c0 [ 1024.567944] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1024.568908] ? quarantine_put+0x8b/0x1a0 [ 1024.569653] ? trace_hardirqs_on+0x5b/0x180 [ 1024.570456] ? kfree+0xd7/0x340 [ 1024.571076] p9_fd_create+0x98/0x4a0 [ 1024.571795] ? p9_conn_create+0x510/0x510 [ 1024.572582] ? p9_client_create+0x798/0x1230 [ 1024.573416] ? kfree+0xd7/0x340 [ 1024.574045] ? do_raw_spin_unlock+0x4f/0x220 [ 1024.574877] p9_client_create+0x7ff/0x1230 [ 1024.575689] ? p9_client_flush+0x430/0x430 [ 1024.576504] ? trace_hardirqs_on+0x5b/0x180 [ 1024.577337] ? lockdep_init_map_type+0x2c7/0x780 [ 1024.578223] ? __raw_spin_lock_init+0x36/0x110 [ 1024.579096] v9fs_session_init+0x1dd/0x1680 [ 1024.579941] ? lock_release+0x680/0x680 [ 1024.580688] ? kmem_cache_alloc_trace+0x151/0x320 [ 1024.581621] ? v9fs_show_options+0x690/0x690 [ 1024.582444] ? trace_hardirqs_on+0x5b/0x180 [ 1024.583229] ? kasan_unpoison_shadow+0x33/0x50 [ 1024.584071] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1024.585008] v9fs_mount+0x79/0x8f0 [ 1024.585655] ? v9fs_write_inode+0x60/0x60 [ 1024.586432] legacy_get_tree+0x105/0x220 [ 1024.587205] vfs_get_tree+0x8e/0x300 [ 1024.587916] path_mount+0x1429/0x2120 [ 1024.588635] ? strncpy_from_user+0x9e/0x470 [ 1024.589561] ? finish_automount+0xa90/0xa90 [ 1024.590360] ? getname_flags.part.0+0x1dd/0x4f0 [ 1024.591255] ? _copy_from_user+0xfb/0x1b0 [ 1024.592052] __x64_sys_mount+0x282/0x300 [ 1024.592821] ? copy_mnt_ns+0xa00/0xa00 [ 1024.593543] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1024.594543] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1024.595483] do_syscall_64+0x33/0x40 [ 1024.596163] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1024.597088] RIP: 0033:0x7f20beb15b19 [ 1024.597755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1024.601095] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1024.602480] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1024.603813] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1024.605106] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1024.606440] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1024.607777] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 [ 1024.609453] 9pnet: Insufficient options for proto=fd 01:47:15 executing program 7: syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:47:15 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x2000000000) 01:47:15 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 27) 01:47:15 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xfbffffff, 0x0, 0xfdef) 01:47:15 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(0x0, 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:47:15 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x0, 0x0, 0x3, 0x0, 0x0) 01:47:15 executing program 2: getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0xc) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) r2 = getegid() keyctl$chown(0x4, 0x0, 0xee01, r2) fsetxattr$system_posix_acl(r1, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="02000000010001000000000002000300", @ANYRES32, @ANYBLOB="02000600", @ANYRES32, @ANYBLOB="040006000000000008000000", @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=r2, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="6679d9b400000004200207006c499ab704000000da92640590"], 0x4c, 0x2) lstat(&(0x7f00000003c0)='./cgroup/cgroup.procs\x00', &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0}) r4 = fork() ptrace(0x10, r4) r5 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r6, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r6, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r6, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendfile(r6, r5, 0x0, 0x9bbb) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x3, 0x3f, 0x5, 0x8, 0x0, 0x7, 0x88008, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x3, @perf_bp={&(0x7f0000000040), 0x1}, 0x4800, 0x100000000, 0x8, 0x1, 0xc3, 0x584, 0x800, 0x0, 0x3, 0x0, 0x9}, r4, 0x5, r5, 0x0) shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000480)={{0x0, r0, r2, r3, 0xee00, 0x101, 0x4}, 0x6, 0x3, 0x10000, 0x7, r4, 0xffffffffffffffff, 0x7f}) r7 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r7, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) 01:47:15 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2000000) [ 1038.763250] FAULT_INJECTION: forcing a failure. [ 1038.763250] name failslab, interval 1, probability 0, space 0, times 0 [ 1038.766158] CPU: 0 PID: 7079 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1038.767878] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1038.769871] Call Trace: [ 1038.770483] dump_stack+0x107/0x167 [ 1038.771337] should_fail.cold+0x5/0xa [ 1038.772219] ? create_object.isra.0+0x3a/0xa20 [ 1038.773280] should_failslab+0x5/0x20 [ 1038.774160] kmem_cache_alloc+0x5b/0x310 [ 1038.775224] ? legacy_get_tree+0x105/0x220 [ 1038.776203] ? vfs_get_tree+0x8e/0x300 [ 1038.777106] create_object.isra.0+0x3a/0xa20 [ 1038.778119] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1038.779310] __kmalloc_track_caller+0x177/0x370 [ 1038.780385] ? parse_opts.part.0+0x8e/0x340 [ 1038.781392] kstrdup+0x36/0x70 [ 1038.782138] parse_opts.part.0+0x8e/0x340 [ 1038.783150] ? p9_fd_show_options+0x1c0/0x1c0 [ 1038.784281] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1038.785491] ? quarantine_put+0x8b/0x1a0 [ 1038.786425] ? trace_hardirqs_on+0x5b/0x180 [ 1038.787437] ? kfree+0xd7/0x340 [ 1038.788210] p9_fd_create+0x98/0x4a0 [ 1038.789070] ? p9_conn_create+0x510/0x510 [ 1038.790024] ? p9_client_create+0x798/0x1230 [ 1038.791045] ? kfree+0xd7/0x340 [ 1038.791800] ? do_raw_spin_unlock+0x4f/0x220 [ 1038.792826] p9_client_create+0x7ff/0x1230 [ 1038.793815] ? p9_client_flush+0x430/0x430 [ 1038.794803] ? trace_hardirqs_on+0x5b/0x180 [ 1038.795800] ? lockdep_init_map_type+0x2c7/0x780 [ 1038.796896] ? __raw_spin_lock_init+0x36/0x110 [ 1038.797959] v9fs_session_init+0x1dd/0x1680 [ 1038.798967] ? lock_release+0x680/0x680 [ 1038.799895] ? kmem_cache_alloc_trace+0x151/0x320 [ 1038.801010] ? v9fs_show_options+0x690/0x690 [ 1038.802037] ? trace_hardirqs_on+0x5b/0x180 [ 1038.803041] ? kasan_unpoison_shadow+0x33/0x50 [ 1038.804094] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1038.805277] v9fs_mount+0x79/0x8f0 [ 1038.806100] ? v9fs_write_inode+0x60/0x60 [ 1038.807068] legacy_get_tree+0x105/0x220 [ 1038.808006] vfs_get_tree+0x8e/0x300 [ 1038.808865] path_mount+0x1429/0x2120 [ 1038.809751] ? strncpy_from_user+0x9e/0x470 [ 1038.810757] ? finish_automount+0xa90/0xa90 [ 1038.811756] ? getname_flags.part.0+0x1dd/0x4f0 [ 1038.812831] ? _copy_from_user+0xfb/0x1b0 [ 1038.813798] __x64_sys_mount+0x282/0x300 [ 1038.814742] ? copy_mnt_ns+0xa00/0xa00 [ 1038.815646] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1038.816862] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1038.818057] do_syscall_64+0x33/0x40 [ 1038.818923] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1038.820106] RIP: 0033:0x7f20beb15b19 [ 1038.820966] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1038.825239] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1038.827018] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1038.828674] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1038.830330] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1038.831991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1038.833647] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:47:15 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xfeffffff, 0x0, 0xfdef) 01:47:15 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x3000000) 01:47:15 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) r1 = syz_open_dev$vcsn(&(0x7f0000000080), 0xf4d, 0x2000) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r2, 0x0, 0x0) lseek(r2, 0xfffffffffffff014, 0x0) getdents64(r2, &(0x7f00000001c0)=""/251, 0xfb) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = accept4$bt_l2cap(r0, &(0x7f00000000c0)={0x1f, 0x0, @none}, &(0x7f0000000100)=0xe, 0x80800) r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r5, 0x0, 0x0) lseek(r5, 0xfffffffffffff014, 0x0) getdents64(r5, &(0x7f00000001c0)=""/251, 0xfb) r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r6, 0x0, 0x0) lseek(r6, 0xfffffffffffff014, 0x0) getdents64(r6, &(0x7f00000001c0)=""/251, 0xfb) io_uring_register$IORING_REGISTER_FILES_UPDATE(r1, 0x6, &(0x7f0000000180)={0x80, 0x0, &(0x7f0000000140)=[r0, r2, r3, r4, r0, r5, r6, 0xffffffffffffffff, r0]}, 0x9) open_by_handle_at(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="c129d98e83e8b518876b41313396c5a44d6463699621bc0e6a64"], 0x0) openat$cgroup_int(r0, &(0x7f0000000000)='blkio.throttle.read_iops_device\x00', 0x2, 0x0) poll(&(0x7f0000000340)=[{0xffffffffffffffff, 0xdd}, {0xffffffffffffffff, 0x10}, {0xffffffffffffffff, 0x4004}, {0xffffffffffffffff, 0x610}, {r1, 0x4110}, {r5, 0xcf1d311e4a219eef}], 0x6, 0x0) 01:47:15 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x0, 0x0, 0x3, 0x0, 0x0) 01:47:15 executing program 7: syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:47:15 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x2100000000) 01:47:15 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:47:15 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xff010000, 0x0, 0xfdef) 01:47:31 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x4000000) 01:47:31 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[], 0x24140) getdents64(0xffffffffffffffff, 0x0, 0x0) lseek(0xffffffffffffffff, 0xfffffffffffff014, 0x0) getdents64(0xffffffffffffffff, &(0x7f00000001c0)=""/251, 0xfb) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000004800)={0x0, 0x0}) r2 = getpgrp(0xffffffffffffffff) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) r4 = getegid() keyctl$chown(0x4, 0x0, 0xee01, r4) fsetxattr$system_posix_acl(r3, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="02000000010001000000000002000300", @ANYRES32, @ANYBLOB="02000600", @ANYRES32, @ANYBLOB="040006000000000008000000", @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=r4, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="6679d9b400000004200207006c499ab704000000da92640590"], 0x4c, 0x2) stat(&(0x7f0000006e80)='./cgroup/cgroup.procs\x00', &(0x7f0000006ec0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r6, 0x0, 0x0) lseek(r6, 0xfffffffffffff014, 0x0) getdents64(r6, &(0x7f00000001c0)=""/251, 0xfb) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000006f40)={0xffffffffffffffff}) r8 = getpgid(0x0) getresgid(&(0x7f0000006f80), &(0x7f0000006fc0)=0x0, &(0x7f0000007000)) sendmmsg$unix(r0, &(0x7f0000007100)=[{{&(0x7f0000000000)=@file={0x0, './cgroup/cgroup.procs\x00'}, 0x6e, &(0x7f0000001740)=[{&(0x7f0000000080)="0f5f23d5b0f6d5f870612c5983353105cfdb5e2a75add220d93b3e5c7dfa3b8010b777a0535940ac41710f8c03e7f7ac41b56e20820d341c5725f009b3af8afccf9bc537aec0b86c7e6ada613d7456289b2675ca12e4cf0989b6c6efd214dd43bc0966dc3cd6be23157cd66459e2aae2c7c90d", 0x73}, {&(0x7f0000000100)="922b4052d3dd06a9ffa5580f5deb74837f37b7ec8a6777af83445bf62f656ace4cd040678efc742204bfd762064af466a11bf686f4e5f1a2a8c2b8f1bbd0562704cd951a0ccaa7dd66ad92c3334d129bcc5ca4d1514b014e12e516c910f60f995e74e84a63f627589d503aea1a3f2101b0b339d1bbc16f60a529c80730425cce23e4bd9b362c7ca4eb1068d1f701780c785db08889bd0f34d5b54493", 0x9c}, {&(0x7f0000000200)="7d96cf8c7785649d0893e242a78a3c96afd29fc23c649493e6286d1a32bbc47b351de2a2307c9bcd44977c598b29842d9180477ab4659147b78a7094e3c19428287be0361fc2901aff9d70daee843238c49bd7b0399fe41a5edecbd66a70523579ebe3ce68a54dfc563ab25b8f08c047dcd19f494238359558b51c962a7b093e510793a3139c943253a313fe1f9781833f4b6e2daf0e6735dad29174280e89846c4bf49d719af7178436085ca1cc72ec520991119c9a1a17d9b3f72bea", 0xbd}, {&(0x7f00000002c0)="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", 0xfb}, {&(0x7f00000003c0)="0e0f7f7e4ae3e579a1c4177e0c0688d63af97a85b2844e8d2bccf2ff6f01187e451d14ac0df61077aae7b417b54a608287961dc6d432da727f5e20b02f9445baacb781f4effd40951103b497fd8d3bd2b0b0559c760738adec0d83528b71a88e4e19eb7ffe2fa4f5d739d89bc850fa12e12a0e90f0cbff9b0bc5c78a17dd5671f00a1d7c685f41fe19e4ff94d9d7fa3a5ffc47c3e77213c70aa7a8536f2c7a1a77ef22cdad63c7c7164d582e4714d676afa8b1aaa6b07883290408c3f9223d1186f8c858c85cd279c2edcc715c", 0xcd}, {&(0x7f00000004c0)="dd1b4ec373de2acb93a36f91e96979f1895245d7f4a5bf0e8ed9a6f9562ebea6226e012af90ec4d8b93e5addf4f90b2d3ac44b275dc916c1d24a1474c18dda2a14eae01fc78c1c1b0ff9793414", 0x4d}, {&(0x7f0000000540)="158c010d28c521e2c07e6f05fe8e989a01856982dabd0477ad85b9468cdd59e907f4e1116345cdd18a0495290dd161b8a7ffc112058b975aadebb7abc2e853b2cefeabed609cba551ca7218e3ca44cf7552ae67a01796569a62f17c1f5ffe32b8e8c08ba777d5abb13f93c6b140034e7ee166400b032ca674c034fc99d5e750fc39fce7daa495dd138771c4feb076afaa7", 0x91}, {&(0x7f0000000600)="0ead12a80360dbbe0e1ad4fed48c60acee804cdda58a53dee928b57a0b1ea38c639af9118d475ed27495ee801d4352384d7ed99d9e31ce0861a122ec7c87733019571d05d4dadf13458f47b8862c52763de8a4e2b70e1d4a604104cfd8b0ea777d3bbfc0f6c64d90db8b3d64f990e30ae400d808002f4effec7098ab5b0c49870ba63afbeb49faaf3f7279420154ce3ea7cd5ce4f3c0a348e267e2a4494a834282d71bc1ab4c6b93fb779e6fc7267d0bf6eb04391fc469c3b14abe8eab49845d72ae29e5220ea7918f552291156ad6f37011f10f505b47cc0b56826bc1ab52dced51f0da1a34a96cff59bbe09e700b53fef0c7dc6b009a4d57d83126c0193b4485e3f649dfbccaa7c19495b81392020336b2a2e9e1dcfca30f092cb629e31d5078ee1c57a36c156abc4099a585299a0beca59913f68cdc37aa6ecf4d7d65063aab6045e44446853e35dcbc9adb9e542194e01f34522d0826281c05f76137d6f927b56ccde6c0d1166c9e528bc8a109b2d34fb482aec338aa986cd91a7f485357e80ecb6cab70c03768656122fda1e43d2ccbb5c9d5914351ddfe199bb1037fc74d6ca615234e9d9742ee951c699572e10c9899ee0cbfc02d21d5a2b35aa84644981206133298f87dfa33dcd41aad57ad239491ea649114a52027ef24177fedb1b075899f9409a2d4aa6540895fa3bdb622bb227bdeb05eb63d611162e05f8311df964b75c722ab5c35ab8a00246b079ce13f3912f0014a064b0d8cebe3f90c047d9b1c4819f89df1a3f334ba42319e94ced3a93050e0d7296af02788bce92a4a3eb60de51645567996207e93ec4ce3b08308327d5b609570459fd6631de1a562cea68923952eeb1741fc1bda84c1e4c57a74931158399fba3f22185ea96c2d6c4dcc6141c90c96ac3f87ecf65ed281a0d5c1ab699e7a7822d88a52dea971d2fd954ad089a3b4a489e025b69fc80479bcb0f14e5e234098fed847be6dcd530cef1ccc5990b55a509bb85e3a9b433eb22a45711a07438197e4ee93df38e1643462545e8f7c345e415318996af079e5bd947e0c5a7c5f3752843c8c0a8ad3e3e63f8e3d7dcec749435a2ddcd1d8895d6b79fce3cf6a3930e65da7f4393649a9c9794a0b255b219792d95b6e9fa155baec7d166fab6ca361c5a948255ef666950e8be6beadc465fa4cd78226d1c5f8c73c283a069278e5b092ad51c7463eac289068947951113a25085605db58e9f61fe4dc1570906aff91d2fb206db344bda2115cb397cc367d6da35cfad8c89d8743771a12e6df57cea544401a0ed46a5b640c2c001aa6f0af23b8aefe94242e7cfe9266deb57f23b6acdbcda5e61d18d79ffda1721cbe351ef457049c2ad2860ed606df3fd04e0753ed04e8079179bae396959b3910ddc67704b8004a50b6dcd9c5a1612e0927650e78af1e5131351bf3f8ad0b0125217dcafdce9472d1a9731f46c4f3d8272b898d87776430d08f2c81cfa2038c03f7020331ade09184c854e3a056ed0ddbf589ed353db2014b93b620426b9df29f0e3f754635700e88aebe9a234b3146093a8c75c3b18a399388b1257cd91cbe857b599a910dc858dcc86baab3c471a8cd8b4213842c546491c73be30324627831b9aa639d8376ee5428f5765b37e02f5dc71d1655960e4d21608587b28db6d11fccf59d251eda6198a2c1b63e158f35339801514594fe4ed4f8420f2261600d67d81452a2c31cc9c0c1a1d9bb657815052d176fbdaf9627b5887cf33c4353aca0121714e999436ff487d78c65376b5de57a7c41f026918a9c2e5f4eacc337abff93ca1ab201904408d1fd1f6db55dfc4f8345bd63fba6dc303e77c72b35e0bf31b7e0e4dd232fc36a6bd26a33fae774a70a3a839b159c7470bdaab81803aa4b9d5829e82e88554c6c3c0c9bded7e9a94c1c6d77c8ca71fc181382a18063d96fc4d701d6b81edf670a6c120f91f6d5ff8ef0b48981efb4bc92121114742d0f7ccd28acd9a65e87c203321df5cf803ad1239d5d0b2846cc9b4c4b8e8a85e71d9fdd222c17632c19341ee7594dc4dbc8bc6397b2a630d270a2a7d74eea47a6a9098745d227599c99d9a6beef61f4fe77d19ed2d7a6249de38a7c047e44eb18180fe13cab851319aa6eef5210bf6b5755398bf8e1bd582ab352445fe33c9992388603d52a9ff99e2426afcaaa5ee012a2ec2a224977f680a6776120a99d1d0e2779bb85a13a146797d1aeb74d4dcd0b75b10e380bcee8c62bc13d244f6900ce33f8526e823f3b9b60ec2a4d97705a7932b3720266a1984cda8781882f0548e9d80fcbcae76a455c3c42a68b32c865743b019b4d64894d1d4eaff736ede1b19482d8f790f3e53762803985e7f6b26a613aeb725715e1175860d356b95360606d73d9df6213a3409854554a0be5b1d6b62e26d96997f0c8ee65adbdd00dd526e09a4e37bd3243b3f82b4c6a128202aeb94e7694c9585753ad012aa0e2a1f2865677a88b483574299a8c38b2727bda7bcb4876d6fe53001b2266cbcf74d9c34d21287406819606db338c4cf40616215128c76b1f05267033f8edf91ef1dacdbf411f0ac43f75ec3b1349673903f9640296242da7d2f55fe9ab8e4c5a2aaa8a9020b716c3264df5672c36204815b1b4a06b2c1972ceaf7265cc26fd1a8a9b4334912431463d1d19a32991e3597fa89dbba6e5289211874a66ec396d811d535efe46346cb97c3142ad7ce1b91ac9a121dc98092ae332138efbd4d6f0f6309f0eb614add8439c40436a6ca4cc0f625531374a16bff64ddadc6eb2956d68ccac6514b025f2fddb3f500ea756701acfdf9ecbfbdf283eeb47b33268b5be5f7c26f630be361c9e41a3feb6db70045dbed87172c0279a46e9545ebbf636d98340fd00c1996a25980316b62d355785b329c19d9e15dd8b0bb828c6d94cd6332443f05dc7fb324fb0f22c800dcdd194b70e53cecb3612bddc9ce5998a1f9dc66cb747e57d1ba506695357087994197e9f6aea15e1e55a430fa5e3a5201b7e7a7f2b514a46d8f22fef9d6ea9118af3d5c8c5e87b55d67e4f5490b5139949a1f203021cc5ace320a0ae344b9cb2fdbee724cf6b206974f742a5c44a1a08d83d1edd6a33a1f010905b9865714f295cc0003d8da0f987e8c820dba93dd89045f426543e689e1b1059e289ddb81f39abf53cf89b9512da50b2c13f62648c6e5d574da708b190334ed4d7b831d17f15b3a13ba5562f90586ba9a874b423ba5716aec6beb11e39dee59907fd5a8c94f60f4b80e468f2d3b6efbf438f30f3dfa593e21455c1ffe77d386414493dfbdbbf04984146a6469f171671c7190949802d0ef872765800d92442df9e0611100f3416575039e792c3b0c6917c04bc54732bdf60e9f2792e3736095960c5a5abbfd9ac677380954da3730e431134150da1a1fe8411c7a292a7bc75e1428fc97cf026e3b1daf5fd671f5bd010c873a3933547414a1812cf59fb41208abb68f2bab1463ef986348f1fd30d1c29032a47d8d71c5059db8bd9d0d48bac1a0e5df8c2e10221284da5fcdc23450138ecf311281e0c721876594cf994580ebd6b3d71a412094f16721748298d293c78b809ccc0cd53eba4976b4464e5a50543ec44b4f78e27fce3bd2914e35584f5a59055d736fb478c7cb34d90ce0784dce1bd1ece800287fb04fce43460cae35d61a20090f12e4374c3f8bd6c9c765d4d331008bc07005c9e1356304fca739a4cdd26875a6fcb056aefdb9036e7535c1aeb2a7f1b7381a882651312b417cc4d13956519ed6c840bb0e08cb770f3159ea55df40361951a6f73923b201b715edecf33bdde7563070fc4aa1d923ce2e43a01d67a1bcaab0dc961bfe983fde43be19b6399604b98daccc4b978b285d966ac004c18a098f0e9620f2621a1735426ab09fc6e9f120c5c2ba3142c50c2c2880765a2e6203eaeda1cca5a3d46c56c620850506230878badeb476ef4dc4aea1a9dba98101d7a1cea2914ece2250b3eecce6d251e96828d88d31c2238fc91b3fe66ded72f6e0df76fa63cc8754ee3a3a858369d211f835aee5fde48ab0495c59319b7341ad4d11006e2e4af684eedfdf5e106f6a8c42c775f160b64d1074f88a8583453da8014ef66db50ebd444830a9e421b5d7a5a73fa19158b97bad5129b9505b128dfa315c92b89a4f12632fd0f0a2c0f6c76fd4de2c32968e5099420f595a1bd6e39cfef84981d6714e30424ff92aacc7ddb366f3ed7ec294bb162b1351b443bfc293f0b0b728734383a0e00284d74ef11802eae3a92e8e621edc4331b119c8c4c8b381c03333fdc7d0929b7e11e59172d158ab474f51b66e26c0c9fc0ae83930bb855ea39d2ece4cda283fc1df837c7bdc258f552393a83ef77bbf6dfca99e97c8317596390aafc69c734d9b5f8ff9fcaca41962c03e1beb322c14777fbb615a1db93c495643e755060f42e23efcf916f3ee7949f63f2867c1aadb3d2a2fa24f33b5dbcbb9f5bf9c88ee6eaa50d9dfec4a8b2b70f36f358043964138b8e7b24d87c49db75821519877bef35dc7ef36654287094430c9f4c9caf93cf736d585f207533054d3e613cbe16595e938fe27fe3f5943fbb8a030d42a51aec775cad96f7fdf7aaf1e659523d5e667a7e832fdaa11516ab90162267c1efab0215c7f3d2e414e2c3c9a9057b2141093592fae1cf492a009c2312f7e9f910460c9c1c1f309248e036c13d57db4f666af1dba249e72d6b04edc50696a55c80285d62c9f883df5e5a49dfb44960a490eb101c8ad495581b9623b58f33be28ba89f762bc5da185eb09ef7148ce3cfbf9e72eaa804b0777d2631e7180abac692daade49c1a967a28db9047ec977de68a125eca0a110204389beea458fbb7d31c51f99e90beb752e32b6a927b572bbcd521c08bce3c51946f8ffa4c9d4605ec58c11b5c8f636288128fa809a25f14fb5eb9c90c455744f07e4a2ab646349c60ec666e207ecc33659640a83a696dbeee18729248aba770b115271f1c40771f00c1270010f833557b9442adfd619ba138df3ecbb0c41d65f48e162c487f211eb84b662ffca34b74f09191a853441790ccdfe34469e46e89d0cc9b81e0dae67a28cb2179f0c20dd46106c770f5f4c3bcfe06b8051aad6b909040e0c94dbc79a6b4e68c40721b917202190389956f56bb1c751716b15bbd48bb7109f7ee58caeb1a80899a8dc2d1357c0ccbd9cf15e64784fec29c8d78088672afa830b3db84c6756239705b6398a8ca35ae3227aef8b2545669ed592e9aab5406fc8e2ad097426de8f9a940372f866f4d9bc9508074ab1bebabb34a49888a66668bc99e38dab6e69629e6f33bf7a678a64a15e4abf5d1254f5b10befa4ea88df0c1b19ba99eedf28469ab4b305df50875b2de673d921f96cfb474d8002ea897f29d96eec766557c320c3602865a1f7d57ce6af02e82fd002dd15f58eadb39b459d59d510374ebcb1e7eaaca24cdde09b0373aa056600a400f22d95223bfa7e5c2718072681b3fcbe8b6d96189da99d1ee6d2d53ee042bcac579e56010388614b212c5cac4ede64c10d5d0d8735ec66d4974661bb3c67fe1713fa744a261540c3c4ba82a38704c1f9774a8b92cf0368c5844362c08619f1f74133b4908acfe2a83a7e98b1aeadb3dfce5e0191f08b30a0495f392a7c45701fc5be45154f7a703957f82e16b3b4b3de689804f54e002a341f6c3b635b6b14108f4e3e1044e0bdf1494fe6ed053c8fd8738e9a16da1a19ba95b542cf2d54bc32454e5698781e254987fff7bbd437e6867db00f43b72a6bb1", 0x1000}, {&(0x7f0000001600)="94dec51a425fb188b69cb4a9dc78274a134caf3e9668bf1ce152e30dff4f21ff6ceb253043db0c75661957ef320cf537b176570db671f43c195793b4c38706ef21e09541f0ab467ad8effdf17f80aa59c84fccc7730f57688ab853927a65a7619d265aac63f653fc546fd3f82f8cb5530f22dff4", 0x74}, {&(0x7f0000001680)="0694286d25ad3bd419cfde57e42d7ac8f4624bd90776d2181f2a5af2675abb48556da7abf073e1d4d48e1c607505513974bc657b424040c744c6d92ded78b86e9b7228a73a3cf6f4e98c7b2c03a0073170857eb52a25b72baaf4afc2c137a79505789bd08418d46bcad5782b81f677492184c0905a888378634b4353334ccdd952c990df13fe061d08fe0585f5a141b255a8cb5e91d46e138d01404c2f7de1cee44730043f0e7dd6710a715f03334773afc1", 0xb2}], 0xa, 0x0, 0x0, 0x4000400}}, {{&(0x7f0000001800)=@file={0x1, './cgroup/cgroup.procs\x00'}, 0x6e, &(0x7f00000019c0)=[{&(0x7f0000001880)="3f03e012de9cf5f36586385861b30c6fdf79e6d36e6630ad42f720cea58804e5153d549830d33ab798ece30c934da2f64832506ffca237baba10c7e0e7dec4d5428fa7c94cc542fa9b83da156f9a10e0920be9f7ed48a756006d179ebff8124958f608f611a03d80226c812183625ec1aaa9cb50da", 0x75}, {&(0x7f0000001900)="812ed74501722db8c188696afef6799871903c267aea93c33f88e67baf691aeb300da1ba036b5c2690477e79be966d1d79832c0a505478da110ff130a4e7bda3df90b372f80b12efa24300186bf63433bbb3b8635e3a46a8a3a8f692b040a976e86c545dbfcc20df2828edf5885e64c37746003877c2e28989dbe59557cf5e3808ed17", 0x83}], 0x2, &(0x7f0000002e80)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [r0]}}, @rights={{0x38, 0x1, 0x1, [r0, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0, 0xffffffffffffffff, r0]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xffffffffffffffff}}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x10}}, @rights={{0x18, 0x1, 0x1, [r0, r0]}}], 0xd0, 0x8000}}, {{&(0x7f0000002f80)=@file={0x1, './cgroup/cgroup.procs\x00'}, 0x6e, &(0x7f00000031c0)=[{&(0x7f0000003000)="965204ce4b7fbcdc90", 0x9}, {&(0x7f0000003040)="36ea7a0a6b6bd65a8db615d1b123914d20433041e05aad7262d89816330c6ab8ceebb2b16dd865128d7a28814b43f19555927badf0c785a0fbec24867c3ec6ecc0272b1766aea57756b10342cd22396e12fc638248a6c1da24a9cfc54c05b62e7e2c6a7e359a17d0ae82cbf2de9d2b6a927cf08aeb94539ba19a682752194a", 0x7f}, {&(0x7f00000030c0)='.L$', 0x3}, {&(0x7f0000003100)="12091069115afb7d734fc99c58114e09cf0335ad37121c87976705939e9b8b64d2ba71d0a1ff72f56864b2b8560ec2eb9df7d9fd4c65175c97ee950a0efa4d7d096025cde6ef100a8a130c3d971da3e6d4ba23a70df5b8e611d05506b962520edf4069d25cd44384b5f0f976b3255720f6d9f61f3d5163cc2721100b9f6488c018fe091f1e0b5dca71fef072c420488a7171ce55", 0x94}], 0x4}}, {{&(0x7f0000003200)=@file={0x77fce919cf27e9ed, './cgroup/cgroup.procs\x00'}, 0x6e, &(0x7f0000004280)=[{&(0x7f0000003280)="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", 0x1000}], 0x1, &(0x7f0000001a00)=ANY=[@ANYBLOB="18000000000000000100000001000000", @ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="14000000000000000100000001000000f8819c2ce7177eccfabaef6225d2d0735a8a6114519944851ec997d76cbee7358d767a48512e16a0e512b301cd3a271c76766d5388d443d944371101a0d3465530f1698c70a7c9a9ef769b1576178f6c4f7f215c27e295a8cad1a6383d8a35b2fbfb8ff9b433f89f3e66b8d4655b09da47c92f075254f046bf9bca2d00"/166, @ANYRES32=r0, @ANYBLOB="0000000024000000000000000100000001000000", @ANYRES32=r0, @ANYRES32=r0, @ANYRES32, @ANYRES32=r0, @ANYRES32, @ANYBLOB="0000000024000000000000000100000001000000", @ANYRES32, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32, @ANYRES32=r0, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32, @ANYBLOB="000000001c000000000000000100000001000000", @ANYRES32, @ANYRES32=r0, @ANYRES32, @ANYBLOB="000000002c000000000000000100000001000000", @ANYRES32=r0, @ANYRES32, @ANYRES32=r0, @ANYRES32, @ANYRES32, @ANYRES32=r0, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32, @ANYRES32=0xee01, @ANYRES32=0xee00, @ANYBLOB="0000000014000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00'], 0x120, 0x8010}}, {{&(0x7f0000004580)=@file={0x1, './cgroup/cgroup.procs/../file0\x00'}, 0x6e, &(0x7f00000047c0)=[{&(0x7f0000004600)="caec62b33c2f6fb3e41165abac5ce4ca8302372e913d5e63e648e1e1ac5c1c9043db2c8752a05ba1918ff7084ad307e7af2f894ee24fa2bc131be5484be80496bd3a2bc564d4ade27d6b4a0bc67bc8357bb46d1166797a0dfb5cdbe8e0bd430950733a2df5723bb6d86c1388bc6bc78570c24b6f741bb7e9871b39e2e0627a39b87a0a494c191982bffc59c4aacc820d22f0e4da7cbb78aad34656348db6268bf7198ac4ea2750469edde9390a6d7a5177eb97e562d2db2d25cdd24b8852ef200e8c66b2b0452dd64ec70e0f0810c8c57b6cb0909a8955dda322622a21ec5c92fcb85880e91cd4a4", 0xe8}, {&(0x7f0000004700)="0fcd774f09d2c07bb1959f565fb2bf76a75e4e1e6a3a7106820b9e54f53a014bcda9847cd2dfd3a04f0ed57a9fc6f0eb4e58d6d30b5cd12d904562", 0x3b}, {&(0x7f0000004740)="70a0e9dfb8e8e164191c166e631ad6ef377798fec746249aaeee32a010794d15bd2d4d7975f4e46518df38b01b7ac49ba521eeb8b295d8ee24276e3b159480892b9582b35ab0b98e5a8491ed77c2aaa12afebf1370555e03364da8ca8a180c2bbdbc49b7c27972c433abdc2c5184a2a8", 0x70}], 0x3, &(0x7f0000007040)=[@cred={{0x1c, 0x1, 0x2, {r1, 0xee01, 0xee00}}}, @cred={{0x1c, 0x1, 0x2, {r2, 0xee01, r4}}}, @cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, 0xffffffffffffffff, r5}}}, @rights={{0x1c, 0x1, 0x1, [r6, 0xffffffffffffffff, r7]}}, @cred={{0x1c, 0x1, 0x2, {r8, 0xffffffffffffffff, r9}}}], 0xa0, 0x4008801}}], 0x5, 0x4008081) 01:47:31 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xff0f0000, 0x0, 0xfdef) 01:47:31 executing program 5: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 01:47:31 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 28) 01:47:31 executing program 7: syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:47:31 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x7f238582a000) 01:47:31 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) [ 1054.911425] FAULT_INJECTION: forcing a failure. [ 1054.911425] name failslab, interval 1, probability 0, space 0, times 0 [ 1054.913837] CPU: 1 PID: 7134 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1054.915297] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1054.917035] Call Trace: [ 1054.917593] dump_stack+0x107/0x167 [ 1054.918361] should_fail.cold+0x5/0xa [ 1054.919199] should_failslab+0x5/0x20 [ 1054.920014] __kmalloc_track_caller+0x79/0x370 [ 1054.920976] ? match_number+0xaf/0x1d0 [ 1054.921802] kmemdup_nul+0x2d/0xa0 [ 1054.922546] match_number+0xaf/0x1d0 [ 1054.923359] ? match_u64+0x190/0x190 [ 1054.924147] ? __kmalloc_track_caller+0x2c6/0x370 [ 1054.925156] ? memcpy+0x39/0x60 [ 1054.925854] parse_opts.part.0+0x1f3/0x340 [ 1054.926745] ? p9_fd_show_options+0x1c0/0x1c0 [ 1054.927722] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1054.928817] ? trace_hardirqs_on+0x5b/0x180 [ 1054.929722] ? kfree+0xd7/0x340 [ 1054.930429] p9_fd_create+0x98/0x4a0 [ 1054.931238] ? p9_conn_create+0x510/0x510 [ 1054.932260] ? p9_client_create+0x798/0x1230 [ 1054.933301] ? kfree+0xd7/0x340 [ 1054.934091] ? do_raw_spin_unlock+0x4f/0x220 [ 1054.935133] p9_client_create+0x7ff/0x1230 [ 1054.936054] ? p9_client_flush+0x430/0x430 [ 1054.936941] ? trace_hardirqs_on+0x5b/0x180 [ 1054.937844] ? lockdep_init_map_type+0x2c7/0x780 [ 1054.938840] ? __raw_spin_lock_init+0x36/0x110 [ 1054.939865] v9fs_session_init+0x1dd/0x1680 [ 1054.940921] ? lock_release+0x680/0x680 [ 1054.941940] ? kmem_cache_alloc_trace+0x151/0x320 [ 1054.943003] ? v9fs_show_options+0x690/0x690 [ 1054.943977] ? trace_hardirqs_on+0x5b/0x180 [ 1054.944882] ? kasan_unpoison_shadow+0x33/0x50 [ 1054.945944] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1054.947213] v9fs_mount+0x79/0x8f0 [ 1054.948087] ? v9fs_write_inode+0x60/0x60 [ 1054.948964] legacy_get_tree+0x105/0x220 [ 1054.949820] vfs_get_tree+0x8e/0x300 [ 1054.950601] path_mount+0x1429/0x2120 [ 1054.951440] ? strncpy_from_user+0x9e/0x470 [ 1054.952525] ? finish_automount+0xa90/0xa90 [ 1054.953582] ? getname_flags.part.0+0x1dd/0x4f0 [ 1054.954649] ? _copy_from_user+0xfb/0x1b0 [ 1054.955659] __x64_sys_mount+0x282/0x300 [ 1054.956618] ? copy_mnt_ns+0xa00/0xa00 [ 1054.957431] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1054.958663] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1054.959855] do_syscall_64+0x33/0x40 [ 1054.960750] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1054.961916] RIP: 0033:0x7f20beb15b19 [ 1054.962694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1054.966998] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1054.968631] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1054.970124] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1054.971651] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1054.973347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1054.974843] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 [ 1054.982484] 9pnet: Insufficient options for proto=fd [ 1054.988177] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1054.990365] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1054.991897] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1054.993370] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 02 00 [ 1054.995063] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 8 prio class 0 [ 1054.997292] Buffer I/O error on dev sr0, logical block 0, async page read [ 1054.998859] Buffer I/O error on dev sr0, logical block 1, async page read [ 1055.000445] Buffer I/O error on dev sr0, logical block 2, async page read [ 1055.002020] Buffer I/O error on dev sr0, logical block 3, async page read [ 1055.003644] Buffer I/O error on dev sr0, logical block 4, async page read [ 1055.005257] Buffer I/O error on dev sr0, logical block 5, async page read [ 1055.006830] Buffer I/O error on dev sr0, logical block 6, async page read [ 1055.008413] Buffer I/O error on dev sr0, logical block 7, async page read 01:47:31 executing program 2: creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r0, 0x0, 0x0) lseek(r0, 0xfffffffffffff014, 0x0) getdents64(r0, &(0x7f00000001c0)=""/251, 0xfb) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000000)={0x0, 0x0, 0x2, 0x0, '\x00', [{0x3, 0x9, 0x5, 0x3, 0x7ff, 0x7}, {0x3, 0x85, 0x7, 0xfffffc0000000000, 0xffff, 0x6}], ['\x00', '\x00']}) 01:47:31 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, 0x0, 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:47:31 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xffffff7f, 0x0, 0xfdef) 01:47:31 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x0, 0x0, 0x3, 0x0, 0x0) 01:47:31 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x5000000) 01:47:31 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 29) 01:47:31 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x0, 0x0, 0x3, 0x0, 0x0) 01:47:31 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x7f238604b000) 01:47:31 executing program 5: getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000)={0x0, 0x0}, &(0x7f0000000040)=0xc) r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff) r2 = getegid() keyctl$chown(0x4, 0x0, 0xee01, r2) fsetxattr$system_posix_acl(r1, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="02000000010001000000000002000300", @ANYRES32, @ANYBLOB="02000600", @ANYRES32, @ANYBLOB="040006000000000008000000", @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=r2, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="6679d9b400000004200207006c499ab704000000da92640590"], 0x4c, 0x2) lstat(&(0x7f00000003c0)='./cgroup/cgroup.procs\x00', &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0}) r4 = fork() ptrace(0x10, r4) r5 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r6, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r6, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r6, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendfile(r6, r5, 0x0, 0x9bbb) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x3, 0x3f, 0x5, 0x8, 0x0, 0x7, 0x88008, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x3, @perf_bp={&(0x7f0000000040), 0x1}, 0x4800, 0x100000000, 0x8, 0x1, 0xc3, 0x584, 0x800, 0x0, 0x3, 0x0, 0x9}, r4, 0x5, r5, 0x0) shmctl$IPC_SET(0x0, 0x1, &(0x7f0000000480)={{0x0, r0, r2, r3, 0xee00, 0x101, 0x4}, 0x6, 0x3, 0x10000, 0x7, r4, 0xffffffffffffffff, 0x7f}) r7 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r7, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) [ 1055.208241] FAULT_INJECTION: forcing a failure. [ 1055.208241] name failslab, interval 1, probability 0, space 0, times 0 [ 1055.210766] CPU: 1 PID: 7153 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1055.212232] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1055.213956] Call Trace: [ 1055.214510] dump_stack+0x107/0x167 [ 1055.215299] should_fail.cold+0x5/0xa [ 1055.216096] ? create_object.isra.0+0x3a/0xa20 [ 1055.217053] should_failslab+0x5/0x20 [ 1055.217845] kmem_cache_alloc+0x5b/0x310 [ 1055.218705] create_object.isra.0+0x3a/0xa20 [ 1055.219652] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1055.220724] __kmalloc_track_caller+0x177/0x370 [ 1055.221691] ? match_number+0xaf/0x1d0 [ 1055.222508] kmemdup_nul+0x2d/0xa0 [ 1055.223285] match_number+0xaf/0x1d0 [ 1055.224064] ? match_u64+0x190/0x190 [ 1055.224840] ? __kmalloc_track_caller+0x2c6/0x370 [ 1055.225855] ? memcpy+0x39/0x60 [ 1055.226553] parse_opts.part.0+0x1f3/0x340 [ 1055.227466] ? p9_fd_show_options+0x1c0/0x1c0 [ 1055.228415] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1055.229506] ? trace_hardirqs_on+0x5b/0x180 [ 1055.230402] ? kfree+0xd7/0x340 [ 1055.231099] p9_fd_create+0x98/0x4a0 [ 1055.231904] ? p9_conn_create+0x510/0x510 [ 1055.232768] ? p9_client_create+0x798/0x1230 [ 1055.233680] ? kfree+0xd7/0x340 [ 1055.234364] ? do_raw_spin_unlock+0x4f/0x220 [ 1055.235311] p9_client_create+0x7ff/0x1230 [ 1055.236212] ? p9_client_flush+0x430/0x430 [ 1055.237094] ? trace_hardirqs_on+0x5b/0x180 [ 1055.238008] ? lockdep_init_map_type+0x2c7/0x780 [ 1055.239008] ? __raw_spin_lock_init+0x36/0x110 [ 1055.240002] v9fs_session_init+0x1dd/0x1680 [ 1055.240920] ? lock_release+0x680/0x680 [ 1055.241758] ? kmem_cache_alloc_trace+0x151/0x320 [ 1055.242763] ? v9fs_show_options+0x690/0x690 [ 1055.243725] ? trace_hardirqs_on+0x5b/0x180 [ 1055.244628] ? kasan_unpoison_shadow+0x33/0x50 [ 1055.245580] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1055.246642] v9fs_mount+0x79/0x8f0 [ 1055.247418] ? v9fs_write_inode+0x60/0x60 [ 1055.248286] legacy_get_tree+0x105/0x220 [ 1055.249139] vfs_get_tree+0x8e/0x300 [ 1055.249915] path_mount+0x1429/0x2120 [ 1055.250716] ? strncpy_from_user+0x9e/0x470 [ 1055.251638] ? finish_automount+0xa90/0xa90 [ 1055.252547] ? getname_flags.part.0+0x1dd/0x4f0 [ 1055.253519] ? _copy_from_user+0xfb/0x1b0 [ 1055.254394] __x64_sys_mount+0x282/0x300 [ 1055.255264] ? copy_mnt_ns+0xa00/0xa00 [ 1055.256081] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1055.257180] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1055.258259] do_syscall_64+0x33/0x40 [ 1055.259037] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1055.260132] RIP: 0033:0x7f20beb15b19 [ 1055.260915] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1055.264778] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1055.266376] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1055.267889] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1055.269385] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1055.270866] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1055.272384] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:47:47 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:47:47 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x7f238624b000) 01:47:47 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x6000000) 01:47:47 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 30) 01:47:47 executing program 2: ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './cgroup/cgroup.procs\x00'}) writev(r0, &(0x7f0000000140)=[{&(0x7f0000000040)="44221e914fba38ea92dbd0a138b44942f206bc5f49dc5b417bf7766d7e14fb5b922e6ee05428f03094d864086fcbffa0589b9ef1181ce08f9b9c163e4c8721a3726b05202c80b3afa4c54d0f84d510381ea79d97a50899f819a78702b08e61945f71ae8bffee428e92f294bab7bae67ef0fe3e1b0684dafa9b242f103188d4f7b3b1095603e879f6d312fdf0395b5b0c02bd77fd90f6fe9b9b93ab56da74f7d466194a2ffa2521bbe2a9237c75079761d321e6f89191151525bfee4788211a75622631e2e457a1d72f42ecb2fd645f6a664eb7dc", 0xd4}, {&(0x7f0000000200)="c2b6b81c0cccc341f35e6ce2de89142c6cd8a972bcdc5191c90ac57b7db6158760f043c491de62908a3ae1284c4634c31efd0ab4031e994a693a51f70b7f56cc845a5a0e051fb679506691f5accaa402b886af824302c64b7f74c3eb122e75ff2148592d367c9744d1be934baab11ad91a13223bd7ae7ecdd2dbcb3ed695dc089b8e1ea074543891e063389dbcd8784dbca9f7945e947705c6348ec04220d47440bf2b034047dbd7ba5b1fb44115a95d6cb9c308822286b6a045b80317f0561f37b7e7dc", 0xc4}], 0x2) r1 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r2, 0x0, 0x0) lseek(r2, 0xfffffffffffff014, 0x0) getdents64(r2, &(0x7f0000000300)=""/251, 0xfb) open_by_handle_at(r1, &(0x7f0000000180)=ANY=[], 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r3, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) io_uring_register$IORING_REGISTER_FILES_UPDATE(r3, 0x6, &(0x7f0000000400)={0x800, 0x0, &(0x7f0000000180)=[r2]}, 0x1) 01:47:47 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xfffffff4, 0x0, 0xfdef) 01:47:47 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x0, 0x0, 0x3, 0x0, 0x0) 01:47:47 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r1, 0x0, 0x0) lseek(r1, 0xfffffffffffff014, 0x0) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r2, 0x0, 0x0) lseek(r2, 0xfffffffffffff014, 0x0) getdents64(r2, &(0x7f00000001c0)=""/251, 0xfb) getdents64(r2, &(0x7f0000000040)=""/243, 0xfcf7) r3 = getpid() fcntl$lock(r1, 0x26, &(0x7f0000000000)={0x0, 0x0, 0x2, 0x5, r3}) r4 = io_uring_setup(0x755f, &(0x7f00000002c0)={0x0, 0xd26e, 0x2, 0x0, 0x2e3, 0x0, r0}) open_by_handle_at(r4, &(0x7f0000000140)=ANY=[@ANYRESOCT], 0x0) [ 1070.686029] FAULT_INJECTION: forcing a failure. [ 1070.686029] name failslab, interval 1, probability 0, space 0, times 0 [ 1070.689000] CPU: 0 PID: 7179 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1070.690700] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1070.692746] Call Trace: [ 1070.693401] dump_stack+0x107/0x167 [ 1070.694289] should_fail.cold+0x5/0xa [ 1070.695208] should_failslab+0x5/0x20 [ 1070.696155] __kmalloc_track_caller+0x79/0x370 [ 1070.697275] ? match_number+0xaf/0x1d0 [ 1070.698200] ? kfree+0xd7/0x340 [ 1070.699005] kmemdup_nul+0x2d/0xa0 [ 1070.699884] match_number+0xaf/0x1d0 [ 1070.700781] ? match_u64+0x190/0x190 [ 1070.701672] ? __kmalloc_track_caller+0x2c6/0x370 [ 1070.702830] ? memcpy+0x39/0x60 [ 1070.703643] parse_opts.part.0+0x1f3/0x340 [ 1070.704673] ? p9_fd_show_options+0x1c0/0x1c0 [ 1070.705752] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1070.706980] ? trace_hardirqs_on+0x5b/0x180 [ 1070.708026] ? kfree+0xd7/0x340 [ 1070.708811] p9_fd_create+0x98/0x4a0 [ 1070.709687] ? p9_conn_create+0x510/0x510 [ 1070.710658] ? p9_client_create+0x798/0x1230 [ 1070.711700] ? kfree+0xd7/0x340 [ 1070.712476] ? do_raw_spin_unlock+0x4f/0x220 [ 1070.713515] p9_client_create+0x7ff/0x1230 [ 1070.714519] ? p9_client_flush+0x430/0x430 [ 1070.715524] ? trace_hardirqs_on+0x5b/0x180 [ 1070.716568] ? lockdep_init_map_type+0x2c7/0x780 [ 1070.717695] ? __raw_spin_lock_init+0x36/0x110 [ 1070.718784] v9fs_session_init+0x1dd/0x1680 [ 1070.719826] ? lock_release+0x680/0x680 [ 1070.720777] ? kmem_cache_alloc_trace+0x151/0x320 [ 1070.721919] ? v9fs_show_options+0x690/0x690 [ 1070.722964] ? trace_hardirqs_on+0x5b/0x180 [ 1070.723993] ? kasan_unpoison_shadow+0x33/0x50 [ 1070.725049] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1070.726221] v9fs_mount+0x79/0x8f0 [ 1070.727064] ? v9fs_write_inode+0x60/0x60 [ 1070.728068] legacy_get_tree+0x105/0x220 [ 1070.729036] vfs_get_tree+0x8e/0x300 [ 1070.729906] path_mount+0x1429/0x2120 [ 1070.730795] ? strncpy_from_user+0x9e/0x470 [ 1070.731815] ? finish_automount+0xa90/0xa90 [ 1070.732886] ? getname_flags.part.0+0x1dd/0x4f0 [ 1070.733968] ? _copy_from_user+0xfb/0x1b0 [ 1070.734947] __x64_sys_mount+0x282/0x300 [ 1070.736009] ? copy_mnt_ns+0xa00/0xa00 [ 1070.737151] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1070.738640] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1070.740098] do_syscall_64+0x33/0x40 [ 1070.741068] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1070.742258] RIP: 0033:0x7f20beb15b19 [ 1070.743118] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1070.747440] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1070.749271] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1070.750899] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1070.752562] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1070.754201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1070.755910] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 [ 1070.757921] 9pnet: Insufficient options for proto=fd 01:47:47 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xfffffffb, 0x0, 0xfdef) 01:47:47 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) r1 = mmap$IORING_OFF_SQES(&(0x7f0000001000/0x2000)=nil, 0x2000, 0xc, 0x50, r0, 0x10000000) r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) ioctl$BTRFS_IOC_BALANCE_V2(r0, 0xc4009420, &(0x7f0000000300)={0x14, 0x1, {0x4, @struct={0x3, 0x6}, 0x0, 0x1, 0x7fff, 0x100000001, 0x20, 0x2, 0x7dc5d31336960652, @struct={0x2, 0x80000000}, 0x80000001, 0x4, [0x81, 0x7, 0x4, 0x6, 0x0, 0x1]}, {0xffffffff, @usage=0x800, 0x0, 0x0, 0x0, 0x1, 0x200, 0x4, 0xef, @usage=0x67d, 0x2, 0x0, [0x8b, 0x0, 0x10001, 0x9, 0x0, 0x5]}, {0x8, @usage=0x97c, 0x0, 0x0, 0x3, 0xdd0, 0xff, 0x9, 0x14, @struct={0x7ff}, 0x7fff, 0x6, [0xd99, 0xf06, 0xa9d, 0xc79, 0x5, 0xfffffffffffffffc]}, {0x9, 0x4, 0x5}}) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r2, 0xc400941d, &(0x7f0000000700)={r3, 0x3, 0xfffffffffffffc01}) r4 = syz_io_uring_setup(0x3ca3, &(0x7f0000000080), &(0x7f0000400000/0xc00000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000280)=0x0) r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000488000/0x4000)=nil, 0x4000, 0x800003, 0x12, r2, 0x8000000) syz_io_uring_submit(r7, r6, &(0x7f00000002c0)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x2, 0x0, @fd_index=0x5, 0x3f, 0x0, 0x100, 0x6}, 0x0) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index=0x1, 0x0, 0x0, 0x0, 0x3, 0x0, {0x0, r8}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x4, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, {0x3, r8}}, 0xb6) r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1000001, 0x10013, r4, 0x0) syz_io_uring_submit(r9, r6, &(0x7f0000000200)=@IORING_OP_WRITE_FIXED={0x5, 0x4, 0x4004, @fd, 0x6, 0x10000, 0x9, 0x1, 0x0, {0x3, r8}}, 0x1) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TEMPO(r0, 0x402c5342, &(0x7f0000000140)={0x1, 0x3ff, 0x9, {0x5, 0x6}, 0x400, 0x91a}) syz_io_uring_submit(0x0, r1, &(0x7f00000000c0)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x2, 0x0, r2, 0x0, &(0x7f0000000040)="8737c8100b5683ea074c63b4ccc69002b5345ceffb5564ab482995148076f3b85912661bf446c87c0caf30487fdd6f31fe504ddc3aa5deaca293fb5f72fdf6af257f2ee4600bb9f412b436119942c602c6a2d63472888cf3e03cd934db1e82", 0x5f, 0x40000140, 0x1, {0x0, r8}}, 0x7) open_by_handle_at(r0, &(0x7f0000000240)=ANY=[@ANYBLOB='\x00\x00\x00'], 0x0) 01:47:47 executing program 2: io_uring_enter(0xffffffffffffffff, 0x255e, 0x5f14, 0x3, &(0x7f0000000080)={[0x1f]}, 0x8) r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r1, 0x0, 0x0) lseek(r1, 0xfffffffffffff014, 0x0) getdents64(r1, &(0x7f00000001c0)=""/251, 0xfb) open_by_handle_at(r1, &(0x7f0000000100)=ANY=[@ANYRES64=r1], 0x1c4104) sendfile(r0, r0, &(0x7f0000000040)=0xfffffffffffffff7, 0x1) 01:47:47 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x7000000) 01:47:47 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:47:47 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 01:47:47 executing program 2: open_by_handle_at(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) 01:47:47 executing program 5: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000900), r2) sendmsg$IEEE802154_ADD_IFACE(r1, &(0x7f0000000180)={0x0, 0xfffffffffffffe9a, &(0x7f0000000040)={&(0x7f00000000c0)={0x34, r3, 0xae99, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_HW_ADDR={0xc}]}, 0x34}}, 0x0) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wpan3\x00', 0x0}) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wpan1\x00', 0x0}) r7 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000600), 0xffffffffffffffff) sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r5, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000540)=ANY=[@ANYBLOB="94c2880a737f9b6e9e1d64139882be82d751a22a57191153f88ab99fc6543ea14f935b0f5790c3e6ddc624286546edab5c48386cdf3542ec68d57469aba2de8a127bbb812b2f0bfe4b220f04cd04203082f2980a6bba159236ba89ab9892590b04589bbe2c1e9ae160e98bdf85ffd6377e216d7c42964206ff771919ee10675800"/139, @ANYRES16=r7, @ANYBLOB="030000b7d6ffffd7a8000800000000000000", @ANYRES32=r6], 0x24}}, 0x0) sendmsg$IEEE802154_LLSEC_GETPARAMS(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x30, r3, 0x4, 0x70bd2a, 0x25dfdbfc, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r4}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r6}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}]}, 0x30}, 0x1, 0x0, 0x0, 0x880}, 0x8010) r8 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r8, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) fcntl$addseals(r8, 0x409, 0x0) 01:47:47 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 31) [ 1071.044117] FAULT_INJECTION: forcing a failure. [ 1071.044117] name failslab, interval 1, probability 0, space 0, times 0 [ 1071.047362] CPU: 1 PID: 7214 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1071.049027] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1071.051103] Call Trace: [ 1071.051758] dump_stack+0x107/0x167 [ 1071.052631] should_fail.cold+0x5/0xa [ 1071.053546] ? create_object.isra.0+0x3a/0xa20 [ 1071.054666] should_failslab+0x5/0x20 [ 1071.055592] kmem_cache_alloc+0x5b/0x310 [ 1071.056596] create_object.isra.0+0x3a/0xa20 [ 1071.057668] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1071.058909] __kmalloc_track_caller+0x177/0x370 [ 1071.060046] ? match_number+0xaf/0x1d0 [ 1071.061005] kmemdup_nul+0x2d/0xa0 [ 1071.061871] match_number+0xaf/0x1d0 [ 1071.062774] ? match_u64+0x190/0x190 [ 1071.063701] ? __kmalloc_track_caller+0x2c6/0x370 [ 1071.064889] ? memcpy+0x39/0x60 [ 1071.065715] parse_opts.part.0+0x1f3/0x340 [ 1071.066761] ? p9_fd_show_options+0x1c0/0x1c0 [ 1071.067893] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1071.069180] ? trace_hardirqs_on+0x5b/0x180 [ 1071.070237] ? kfree+0xd7/0x340 [ 1071.071064] p9_fd_create+0x98/0x4a0 [ 1071.071986] ? p9_conn_create+0x510/0x510 [ 1071.073033] ? p9_client_create+0x798/0x1230 [ 1071.074122] ? kfree+0xd7/0x340 [ 1071.074934] ? do_raw_spin_unlock+0x4f/0x220 [ 1071.076043] p9_client_create+0x7ff/0x1230 [ 1071.077103] ? p9_client_flush+0x430/0x430 [ 1071.078156] ? trace_hardirqs_on+0x5b/0x180 [ 1071.079228] ? lockdep_init_map_type+0x2c7/0x780 [ 1071.080363] ? __raw_spin_lock_init+0x36/0x110 [ 1071.081325] v9fs_session_init+0x1dd/0x1680 [ 1071.082229] ? lock_release+0x680/0x680 [ 1071.083075] ? kmem_cache_alloc_trace+0x151/0x320 [ 1071.084091] ? v9fs_show_options+0x690/0x690 [ 1071.085022] ? trace_hardirqs_on+0x5b/0x180 [ 1071.085936] ? kasan_unpoison_shadow+0x33/0x50 [ 1071.086889] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1071.087962] v9fs_mount+0x79/0x8f0 [ 1071.088709] ? v9fs_write_inode+0x60/0x60 [ 1071.089576] legacy_get_tree+0x105/0x220 [ 1071.090435] vfs_get_tree+0x8e/0x300 [ 1071.091217] path_mount+0x1429/0x2120 [ 1071.092034] ? strncpy_from_user+0x9e/0x470 [ 1071.092945] ? finish_automount+0xa90/0xa90 [ 1071.093859] ? getname_flags.part.0+0x1dd/0x4f0 [ 1071.094836] ? _copy_from_user+0xfb/0x1b0 [ 1071.095726] __x64_sys_mount+0x282/0x300 [ 1071.096587] ? copy_mnt_ns+0xa00/0xa00 [ 1071.097419] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1071.098536] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1071.099635] do_syscall_64+0x33/0x40 [ 1071.100441] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1071.101535] RIP: 0033:0x7f20beb15b19 [ 1071.102331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1071.106279] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1071.107926] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1071.109463] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1071.111000] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1071.112549] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1071.114103] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:48:03 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 32) 01:48:03 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) r1 = fork() r2 = fork() ptrace(0x10, r2) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r3, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r2) r4 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r5, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) ioctl$sock_SIOCDELRT(r4, 0x890c, &(0x7f0000000140)={0x0, @tipc=@name={0x1e, 0x2, 0x2, {{0x42, 0x1}}}, @phonet={0x23, 0x40, 0x2, 0x80}, @ax25={0x3, @null, 0x3}, 0x8000, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000100)='ip6gretap0\x00', 0x876, 0x4, 0x5}) bind$inet6(r5, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r5, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendfile(r5, r4, 0x0, 0x9bbb) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x3, 0x3f, 0x5, 0x8, 0x0, 0x7, 0x88008, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x3, @perf_bp={&(0x7f0000000040), 0x1}, 0x4800, 0x100000000, 0x8, 0x1, 0xc3, 0x584, 0x800, 0x0, 0x3, 0x0, 0x9}, r1, 0x5, r4, 0x0) perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x1, 0x0, 0x5, 0x3e, 0x0, 0x9f61, 0x4000, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0xfffeffff, 0x4, @perf_config_ext={0xe8b, 0xffffffff}, 0x8000, 0xfbe, 0x3, 0x2, 0x7, 0x2, 0x8, 0x0, 0x7ff, 0x0, 0x5}, r1, 0x4, r0, 0x3) 01:48:03 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xfffffffe, 0x0, 0xfdef) 01:48:03 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 01:48:03 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x9000000) 01:48:03 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:48:03 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x7f23883cb000) 01:48:03 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r1, 0x0, 0x0) lseek(r1, 0xfffffffffffff014, 0x0) getdents64(r1, &(0x7f00000001c0)=""/251, 0xfb) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000040)=0x1000) [ 1087.361585] FAULT_INJECTION: forcing a failure. [ 1087.361585] name failslab, interval 1, probability 0, space 0, times 0 [ 1087.364395] CPU: 1 PID: 7247 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1087.365935] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1087.367793] Call Trace: [ 1087.368400] dump_stack+0x107/0x167 [ 1087.369222] should_fail.cold+0x5/0xa [ 1087.370083] should_failslab+0x5/0x20 [ 1087.370936] __kmalloc_track_caller+0x79/0x370 [ 1087.371958] ? match_number+0xaf/0x1d0 [ 1087.372845] ? kfree+0xd7/0x340 [ 1087.373591] kmemdup_nul+0x2d/0xa0 [ 1087.374393] match_number+0xaf/0x1d0 [ 1087.375229] ? match_u64+0x190/0x190 [ 1087.376068] ? __kmalloc_track_caller+0x2c6/0x370 [ 1087.377163] ? memcpy+0x39/0x60 [ 1087.377911] parse_opts.part.0+0x1f3/0x340 [ 1087.378871] ? p9_fd_show_options+0x1c0/0x1c0 [ 1087.379889] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1087.381067] ? trace_hardirqs_on+0x5b/0x180 [ 1087.382041] ? kfree+0xd7/0x340 [ 1087.382796] p9_fd_create+0x98/0x4a0 [ 1087.383631] ? p9_conn_create+0x510/0x510 [ 1087.384585] ? p9_client_create+0x798/0x1230 [ 1087.385568] ? kfree+0xd7/0x340 [ 1087.386304] ? do_raw_spin_unlock+0x4f/0x220 [ 1087.387296] p9_client_create+0x7ff/0x1230 [ 1087.388266] ? p9_client_flush+0x430/0x430 [ 1087.389219] ? trace_hardirqs_on+0x5b/0x180 [ 1087.390190] ? lockdep_init_map_type+0x2c7/0x780 [ 1087.391254] ? __raw_spin_lock_init+0x36/0x110 [ 1087.392299] v9fs_session_init+0x1dd/0x1680 [ 1087.393275] ? lock_release+0x680/0x680 [ 1087.394175] ? kmem_cache_alloc_trace+0x151/0x320 [ 1087.395251] ? v9fs_show_options+0x690/0x690 [ 1087.396258] ? trace_hardirqs_on+0x5b/0x180 [ 1087.397231] ? kasan_unpoison_shadow+0x33/0x50 [ 1087.398257] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1087.399402] v9fs_mount+0x79/0x8f0 [ 1087.400209] ? v9fs_write_inode+0x60/0x60 [ 1087.401149] legacy_get_tree+0x105/0x220 [ 1087.402060] vfs_get_tree+0x8e/0x300 [ 1087.402897] path_mount+0x1429/0x2120 [ 1087.403755] ? strncpy_from_user+0x9e/0x470 [ 1087.404733] ? finish_automount+0xa90/0xa90 [ 1087.405698] ? getname_flags.part.0+0x1dd/0x4f0 [ 1087.406743] ? _copy_from_user+0xfb/0x1b0 [ 1087.407678] __x64_sys_mount+0x282/0x300 [ 1087.408606] ? copy_mnt_ns+0xa00/0xa00 [ 1087.409485] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1087.410657] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1087.411812] do_syscall_64+0x33/0x40 [ 1087.412669] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1087.413816] RIP: 0033:0x7f20beb15b19 [ 1087.414652] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1087.418777] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1087.420491] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1087.422095] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1087.423700] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1087.425308] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1087.426906] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 [ 1087.428712] 9pnet: Insufficient options for proto=fd 01:48:18 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x8000000000000) 01:48:18 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="18fe8e3d4d17bd89e06b9242ffafa0aa5e0e40d8eae8851eeeccdcd1043caec6c89291906c80752004fc"], 0x0) 01:48:18 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) r1 = fork() r2 = fork() ptrace(0x10, r2) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r3, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r2) r4 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r5, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) ioctl$sock_SIOCDELRT(r4, 0x890c, &(0x7f0000000140)={0x0, @tipc=@name={0x1e, 0x2, 0x2, {{0x42, 0x1}}}, @phonet={0x23, 0x40, 0x2, 0x80}, @ax25={0x3, @null, 0x3}, 0x8000, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000100)='ip6gretap0\x00', 0x876, 0x4, 0x5}) bind$inet6(r5, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r5, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendfile(r5, r4, 0x0, 0x9bbb) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x3, 0x3f, 0x5, 0x8, 0x0, 0x7, 0x88008, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x3, @perf_bp={&(0x7f0000000040), 0x1}, 0x4800, 0x100000000, 0x8, 0x1, 0xc3, 0x584, 0x800, 0x0, 0x3, 0x0, 0x9}, r1, 0x5, r4, 0x0) perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x1, 0x0, 0x5, 0x3e, 0x0, 0x9f61, 0x4000, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0xfffeffff, 0x4, @perf_config_ext={0xe8b, 0xffffffff}, 0x8000, 0xfbe, 0x3, 0x2, 0x7, 0x2, 0x8, 0x0, 0x7ff, 0x0, 0x5}, r1, 0x4, r0, 0x3) 01:48:18 executing program 0: syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:48:18 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x50000000000, 0x0, 0xfdef) 01:48:18 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0xa000000) 01:48:18 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 01:48:18 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 33) [ 1102.267486] FAULT_INJECTION: forcing a failure. [ 1102.267486] name failslab, interval 1, probability 0, space 0, times 0 [ 1102.270393] CPU: 0 PID: 7276 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1102.272069] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1102.274086] Call Trace: [ 1102.274732] dump_stack+0x107/0x167 [ 1102.275616] should_fail.cold+0x5/0xa [ 1102.276533] ? create_object.isra.0+0x3a/0xa20 [ 1102.277645] should_failslab+0x5/0x20 [ 1102.278572] kmem_cache_alloc+0x5b/0x310 [ 1102.279548] ? p9_fd_show_options+0x1c0/0x1c0 [ 1102.280624] create_object.isra.0+0x3a/0xa20 [ 1102.281679] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1102.282908] kmem_cache_alloc_trace+0x151/0x320 [ 1102.284019] p9_fd_create+0x161/0x4a0 [ 1102.284945] ? p9_conn_create+0x510/0x510 [ 1102.285932] ? p9_client_create+0x798/0x1230 [ 1102.287007] ? kfree+0xd7/0x340 [ 1102.287797] ? do_raw_spin_unlock+0x4f/0x220 [ 1102.288855] p9_client_create+0x7ff/0x1230 [ 1102.289885] ? p9_client_flush+0x430/0x430 [ 1102.290891] ? trace_hardirqs_on+0x5b/0x180 [ 1102.291932] ? lockdep_init_map_type+0x2c7/0x780 [ 1102.293089] ? __raw_spin_lock_init+0x36/0x110 [ 1102.294188] v9fs_session_init+0x1dd/0x1680 [ 1102.295231] ? lock_release+0x680/0x680 [ 1102.296182] ? kmem_cache_alloc_trace+0x151/0x320 [ 1102.297346] ? v9fs_show_options+0x690/0x690 [ 1102.298410] ? trace_hardirqs_on+0x5b/0x180 [ 1102.299439] ? kasan_unpoison_shadow+0x33/0x50 [ 1102.300534] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1102.301778] v9fs_mount+0x79/0x8f0 [ 1102.302645] ? v9fs_write_inode+0x60/0x60 [ 1102.303646] legacy_get_tree+0x105/0x220 [ 1102.304610] vfs_get_tree+0x8e/0x300 [ 1102.305503] path_mount+0x1429/0x2120 [ 1102.306422] ? strncpy_from_user+0x9e/0x470 [ 1102.307441] ? finish_automount+0xa90/0xa90 [ 1102.308493] ? getname_flags.part.0+0x1dd/0x4f0 [ 1102.309612] ? _copy_from_user+0xfb/0x1b0 [ 1102.310621] __x64_sys_mount+0x282/0x300 [ 1102.311600] ? copy_mnt_ns+0xa00/0xa00 [ 1102.312542] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1102.313809] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1102.315059] do_syscall_64+0x33/0x40 [ 1102.315962] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1102.317197] RIP: 0033:0x7f20beb15b19 [ 1102.318087] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1102.322523] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1102.324376] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1102.326117] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1102.327836] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1102.329561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1102.331283] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 [ 1102.364112] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1102.365508] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1102.367774] Buffer I/O error on dev sr0, logical block 0, async page read [ 1102.386401] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1102.387595] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 4 prio class 0 [ 1102.389762] Buffer I/O error on dev sr0, logical block 1, async page read [ 1102.391259] Buffer I/O error on dev sr0, logical block 2, async page read [ 1102.392726] Buffer I/O error on dev sr0, logical block 3, async page read [ 1102.394205] Buffer I/O error on dev sr0, logical block 4, async page read [ 1102.397392] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1102.398597] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 3 prio class 0 [ 1102.400695] Buffer I/O error on dev sr0, logical block 5, async page read [ 1102.402176] Buffer I/O error on dev sr0, logical block 6, async page read [ 1102.403640] Buffer I/O error on dev sr0, logical block 7, async page read 01:48:19 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x1ffff000) 01:48:19 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x8000000000000, 0x0, 0xfdef) 01:48:19 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x84800) syz_io_uring_setup(0x2698, &(0x7f0000000080)={0x0, 0xa8c7, 0x20, 0x3, 0x341, 0x0, r2}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)) r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) syz_io_uring_submit(r3, 0x0, &(0x7f0000000180)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x3, 0x4000, @fd_index, 0x3, 0x0, 0x0, 0x2, 0x0, {0x1, r4}}, 0x2) socketpair(0xb, 0x3, 0xffff, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$LOOP_SET_FD(r1, 0x4c00, r5) 01:48:19 executing program 0: syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:48:19 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x10000000000000, 0x0, 0xfdef) 01:48:19 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) 01:48:19 executing program 7: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x0, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:48:19 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 34) 01:48:19 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x20000000000000) 01:48:19 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x20000000) 01:48:19 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) r1 = fork() r2 = fork() ptrace(0x10, r2) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r3, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r2) r4 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r5, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) ioctl$sock_SIOCDELRT(r4, 0x890c, &(0x7f0000000140)={0x0, @tipc=@name={0x1e, 0x2, 0x2, {{0x42, 0x1}}}, @phonet={0x23, 0x40, 0x2, 0x80}, @ax25={0x3, @null, 0x3}, 0x8000, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000100)='ip6gretap0\x00', 0x876, 0x4, 0x5}) bind$inet6(r5, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r5, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendfile(r5, r4, 0x0, 0x9bbb) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x3, 0x3f, 0x5, 0x8, 0x0, 0x7, 0x88008, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x3, @perf_bp={&(0x7f0000000040), 0x1}, 0x4800, 0x100000000, 0x8, 0x1, 0xc3, 0x584, 0x800, 0x0, 0x3, 0x0, 0x9}, r1, 0x5, r4, 0x0) perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x1, 0x0, 0x5, 0x3e, 0x0, 0x9f61, 0x4000, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0xfffeffff, 0x4, @perf_config_ext={0xe8b, 0xffffffff}, 0x8000, 0xfbe, 0x3, 0x2, 0x7, 0x2, 0x8, 0x0, 0x7ff, 0x0, 0x5}, r1, 0x4, r0, 0x3) 01:48:19 executing program 0: syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x3, 0x0, 0x0) [ 1102.743087] FAULT_INJECTION: forcing a failure. [ 1102.743087] name failslab, interval 1, probability 0, space 0, times 0 [ 1102.745697] CPU: 1 PID: 7308 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1102.747222] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1102.749092] Call Trace: [ 1102.749683] dump_stack+0x107/0x167 [ 1102.750499] should_fail.cold+0x5/0xa [ 1102.751360] ? p9_client_prepare_req.part.0+0x3a/0xac0 [ 1102.752542] should_failslab+0x5/0x20 [ 1102.753407] kmem_cache_alloc+0x5b/0x310 [ 1102.754321] p9_client_prepare_req.part.0+0x3a/0xac0 [ 1102.755466] p9_client_rpc+0x220/0x1370 [ 1102.756355] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1102.757550] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 1102.758746] ? pipe_poll+0x21b/0x7f0 [ 1102.759580] ? p9_fd_close+0x4a0/0x4a0 [ 1102.760454] ? anon_pipe_buf_release+0x280/0x280 [ 1102.761532] ? p9_fd_poll+0x1e0/0x2c0 [ 1102.762394] ? p9_fd_create+0x357/0x4a0 [ 1102.763282] ? p9_conn_create+0x510/0x510 [ 1102.764212] ? p9_client_create+0x798/0x1230 [ 1102.765200] ? kfree+0xd7/0x340 [ 1102.765937] ? do_raw_spin_unlock+0x4f/0x220 [ 1102.766932] p9_client_create+0xa76/0x1230 [ 1102.767890] ? p9_client_flush+0x430/0x430 [ 1102.768844] ? trace_hardirqs_on+0x5b/0x180 [ 1102.769814] ? lockdep_init_map_type+0x2c7/0x780 [ 1102.770870] ? __raw_spin_lock_init+0x36/0x110 [ 1102.771893] v9fs_session_init+0x1dd/0x1680 [ 1102.772860] ? lock_release+0x680/0x680 [ 1102.773762] ? kmem_cache_alloc_trace+0x151/0x320 [ 1102.774835] ? v9fs_show_options+0x690/0x690 [ 1102.775827] ? trace_hardirqs_on+0x5b/0x180 [ 1102.776815] ? kasan_unpoison_shadow+0x33/0x50 [ 1102.777835] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1102.778971] v9fs_mount+0x79/0x8f0 [ 1102.779770] ? v9fs_write_inode+0x60/0x60 [ 1102.780697] legacy_get_tree+0x105/0x220 [ 1102.781617] vfs_get_tree+0x8e/0x300 [ 1102.782448] path_mount+0x1429/0x2120 [ 1102.783317] ? strncpy_from_user+0x9e/0x470 [ 1102.784283] ? finish_automount+0xa90/0xa90 [ 1102.785255] ? getname_flags.part.0+0x1dd/0x4f0 [ 1102.786296] ? _copy_from_user+0xfb/0x1b0 [ 1102.787235] __x64_sys_mount+0x282/0x300 [ 1102.788146] ? copy_mnt_ns+0xa00/0xa00 [ 1102.789067] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1102.790313] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1102.791468] do_syscall_64+0x33/0x40 [ 1102.792300] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1102.793457] RIP: 0033:0x7f20beb15b19 [ 1102.794288] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1102.798397] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1102.800093] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1102.801699] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1102.803291] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1102.804885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1102.806481] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:48:19 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x80000000000000, 0x0, 0xfdef) 01:48:19 executing program 7: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) r1 = fork() r2 = fork() ptrace(0x10, r2) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r3, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r2) r4 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r5, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) ioctl$sock_SIOCDELRT(r4, 0x890c, &(0x7f0000000140)={0x0, @tipc=@name={0x1e, 0x2, 0x2, {{0x42, 0x1}}}, @phonet={0x23, 0x40, 0x2, 0x80}, @ax25={0x3, @null, 0x3}, 0x8000, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000100)='ip6gretap0\x00', 0x876, 0x4, 0x5}) bind$inet6(r5, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r5, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendfile(r5, r4, 0x0, 0x9bbb) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x3, 0x3f, 0x5, 0x8, 0x0, 0x7, 0x88008, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x3, @perf_bp={&(0x7f0000000040), 0x1}, 0x4800, 0x100000000, 0x8, 0x1, 0xc3, 0x584, 0x800, 0x0, 0x3, 0x0, 0x9}, r1, 0x5, r4, 0x0) perf_event_open(&(0x7f0000000000)={0x5, 0x80, 0x1, 0x0, 0x5, 0x3e, 0x0, 0x9f61, 0x4000, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0xfffeffff, 0x4, @perf_config_ext={0xe8b, 0xffffffff}, 0x8000, 0xfbe, 0x3, 0x2, 0x7, 0x2, 0x8, 0x0, 0x7ff, 0x0, 0x5}, r1, 0x4, r0, 0x3) 01:48:19 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) r1 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0xfffffffffffff2c6, 0x8, &(0x7f0000000740)=[{&(0x7f0000000080)="c5d4654c811d2e7da4255d4b1ac442bc351f0189c03cb617d69c4a95c873aff992056021427d3424bded8999f35a3aab96a0b2ebf241528e42784898b4d4354ee2d9c3f8eb372f590f0ff701fac89aac0bd1aa870f0c010ce70f6f9d01008bd307e0bdcd4c2b23cd478c3ada0aa20e1bae7fb367c0be21c89774c077d71ee2595d32ccf4b4aa34fccc38817ddcb1ba9cfc9423d52045e4a4fea6b6ade8c6e93c9336acf0af947aa532ba6f5ddc54d46d95ec2de87170e8c15e4294b43b6f85b98e647b820f73", 0xc6, 0x3}, {&(0x7f0000000200)="5cd59c268e5673871f3b6dc658838de79aacc6e8112f82c9231c253cf3b1f2a8495f43ad5ad3a455848e0cbff1a3319ce0c25ce2ca9597f0b97becf3f3fb27b83e96c76b178d1ccbadf59d7c551e35f38a7bf62f960547c9c15f8f590ee8efcba60a3a691193b644385385f7267d5bebead08ef0d2cc54dea86011db97dd815b309f164f14aac4f67a757d70cc99d76d8c0a9a5bab7c089650e5ecf46d2e5e6aded1900fb5a7855fdebc8f4dbcad3fd6526e6c689d34b162b61070a9e30311dbb730688e60401dd8f9814337697181e5f78b60552acb9aca8e65fee23df338736044ec9e467f11fc0d4cb9ca34", 0xed, 0x2}, {&(0x7f0000000340)="54e36e83884d29d51923edbc87d06f863217ddf582a15de685aa343847714091731b58233bfc73a4ba694cc16b9b12a12b66b3f248d5ac8306575bf4312ea86187c58b54aa07d2d3acbb6eaddffb02f60e6d04451a46ac4d20826c06421950c610e2532aacd8a54834702b88f49246337a5e6cec8e0a2da47e3a459879ff76f5afbd0c905f2c403dafcc886446caf53db5a46cc8af19312ea2b6837191f665ebb4602ce224f819a2ce17b39caf483fb95c353d444c68bb883e02f7d219d864966fd7ea039302797dd656a09911fd040c1a88", 0xd2, 0x8}, {&(0x7f0000000440)="7cb7e61005134251592c55075291532e6b6c497fa39731ffb1dba7cb9a4d0e51dbf539ff334bcd5c13cc3d20da9346050ee5dfbab82dbc86bca32ca450e49e9691fb0b9fe02da25227cb872a7f6e95680386e6f2e46dd5b5483b9e08e0fb195a685112aba82f494e1c15486ced0866f36434b0c99fc4948e6f37fc3c6c66156860f7de33988a6771917d777180a966932970c9dbde3fdf1c846973661a9efecbc158c534bb7b5762fc278f08b446205571e38ff8bdacd0c85413911f6bec31e0e1686926a3acc0d34c9426439b0c252aca6ec20858627d78d12cd9d7c1756ec1040b3d17a578d6bea3fffea4dbc2ca702e", 0xf1, 0x1000}, {&(0x7f0000000180)="235619faa0fa32418a699feed7d86f67cf53c620eac673d8e78527", 0x1b, 0x7}, {&(0x7f0000000540)="84c35eec06d8f95419ff43ae07472c8cb78fbb3daf45d30b90430174e273abf9b02750f344e5374d2620caf1371f5a3d15f9c8a1a76cb23c076e8ee370ffc5096db7d807e9e87e71523a97a04f13ca0406c2390c93dcb157974675c85f19229426b73d412f10d12f07721978fcf3bf4966427f39551d7eaea31ebc7e4e860019cf662f11c861b83a1c6fb3fa75a8a570d9be59671883c360475ca6bd16ef7065b4374d78b06615bda01e349653a8bd98f13e98ed4f8f47642999bb2ed792af6cefe92ca896d0b0db581e", 0xca, 0x7}, {&(0x7f0000000640)="0aa9dfec8d00d05dd9f2352a908d08d2804005b6c7479d5249f23336b67b4f9756aa6c839688545fdda37b453716e884f4c3a14ae569deeb130a8819f7749fe4279276a0a2884293d25b79eb4c9494483fcebe34825fac6f26b3d95fe507ae732dfea693def63551323b53182ad49f90feeb44598d7cb8504ac0e70f", 0x7c, 0x3}, {&(0x7f00000006c0)="73326822088439497cf7de655115141401ccdce5a365a289959d3afd276cbc4c270eca8a5cc3f8d51b2998102e04d8113461bc5edb4671e34ad6b0808765ce3398ae54", 0x43, 0xcffe}], 0x2010000, &(0x7f0000000800)={[{@mpol={'mpol', 0x3d, {'local', '=static', @void}}}, {@huge_always}, {@huge_advise}, {@huge_within_size}, {@huge_within_size}, {@size={'size', 0x3d, [0x34, 0x25, 0x25, 0x35]}}, {@huge_always}, {@uid={'uid', 0x3d, 0xffffffffffffffff}}], [{@pcr={'pcr', 0x3d, 0x1}}, {@fsuuid={'fsuuid', 0x3d, {[0x52, 0x37, 0x64, 0x31, 0x61, 0x65, 0x60, 0x36], 0x2d, [0x61, 0x38, 0x36, 0x63], 0x2d, [0x35, 0x32, 0x34, 0x64], 0x2d, [0x62, 0x54, 0x64, 0x37], 0x2d, [0x39, 0x55, 0x35, 0x34, 0x63, 0x35, 0x61, 0x31]}}}, {@fsmagic={'fsmagic', 0x3d, 0x9}}, {@fowner_lt={'fowner<', 0xee00}}]}) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000900)=0x2000000) [ 1102.881367] tmpfs: Bad value for 'mpol' [ 1102.881407] audit: type=1400 audit(1732412899.556:118): avc: denied { mounton } for pid=7324 comm="syz-executor.2" path="/syzcgroup/unified/syz2/cgroup.procs" dev="cgroup2" ino=1310 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:vhost_device_t:s0 tclass=file permissive=1 01:48:19 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x0, 0x0, 0x3, 0x0, 0x0) [ 1102.912990] tmpfs: Bad value for 'mpol' 01:48:36 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x0, 0x0, 0x3, 0x0, 0x0) 01:48:36 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2) 01:48:36 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 35) 01:48:36 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x100000000000000, 0x0, 0xfdef) 01:48:36 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0xa08285237f0000) 01:48:36 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x21000000) 01:48:36 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="e30fe01e375f6db81b1618"], 0x0) 01:48:36 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) r1 = fork() r2 = fork() ptrace(0x10, r2) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r3, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r2) r4 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r5, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) ioctl$sock_SIOCDELRT(r4, 0x890c, &(0x7f0000000140)={0x0, @tipc=@name={0x1e, 0x2, 0x2, {{0x42, 0x1}}}, @phonet={0x23, 0x40, 0x2, 0x80}, @ax25={0x3, @null, 0x3}, 0x8000, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000100)='ip6gretap0\x00', 0x876, 0x4, 0x5}) bind$inet6(r5, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r5, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendfile(r5, r4, 0x0, 0x9bbb) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x3, 0x3f, 0x5, 0x8, 0x0, 0x7, 0x88008, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x3, @perf_bp={&(0x7f0000000040), 0x1}, 0x4800, 0x100000000, 0x8, 0x1, 0xc3, 0x584, 0x800, 0x0, 0x3, 0x0, 0x9}, r1, 0x5, r4, 0x0) [ 1119.607892] FAULT_INJECTION: forcing a failure. [ 1119.607892] name failslab, interval 1, probability 0, space 0, times 0 [ 1119.610284] CPU: 1 PID: 7350 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1119.611717] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1119.613442] Call Trace: [ 1119.613996] dump_stack+0x107/0x167 [ 1119.614747] should_fail.cold+0x5/0xa [ 1119.615540] ? create_object.isra.0+0x3a/0xa20 [ 1119.616486] should_failslab+0x5/0x20 [ 1119.617320] kmem_cache_alloc+0x5b/0x310 [ 1119.618473] create_object.isra.0+0x3a/0xa20 [ 1119.619386] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1119.620668] kmem_cache_alloc+0x159/0x310 [ 1119.621707] p9_client_prepare_req.part.0+0x3a/0xac0 [ 1119.622774] p9_client_rpc+0x220/0x1370 [ 1119.623609] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1119.624722] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 1119.625993] ? pipe_poll+0x21b/0x7f0 [ 1119.626775] ? p9_fd_close+0x4a0/0x4a0 [ 1119.627587] ? anon_pipe_buf_release+0x280/0x280 [ 1119.628581] ? p9_fd_poll+0x1e0/0x2c0 [ 1119.629396] ? p9_fd_create+0x357/0x4a0 [ 1119.630223] ? p9_conn_create+0x510/0x510 [ 1119.631085] ? p9_client_create+0x798/0x1230 [ 1119.631996] ? kfree+0xd7/0x340 [ 1119.632689] ? do_raw_spin_unlock+0x4f/0x220 [ 1119.633632] p9_client_create+0xa76/0x1230 [ 1119.634525] ? p9_client_flush+0x430/0x430 [ 1119.635410] ? trace_hardirqs_on+0x5b/0x180 [ 1119.636330] ? lockdep_init_map_type+0x2c7/0x780 [ 1119.637328] ? __raw_spin_lock_init+0x36/0x110 [ 1119.638283] v9fs_session_init+0x1dd/0x1680 [ 1119.639185] ? lock_release+0x680/0x680 [ 1119.640047] ? kmem_cache_alloc_trace+0x151/0x320 [ 1119.641046] ? v9fs_show_options+0x690/0x690 [ 1119.641974] ? trace_hardirqs_on+0x5b/0x180 [ 1119.642871] ? kasan_unpoison_shadow+0x33/0x50 [ 1119.643816] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1119.644882] v9fs_mount+0x79/0x8f0 [ 1119.645642] ? v9fs_write_inode+0x60/0x60 [ 1119.646503] legacy_get_tree+0x105/0x220 [ 1119.647361] vfs_get_tree+0x8e/0x300 [ 1119.648139] path_mount+0x1429/0x2120 [ 1119.648947] ? strncpy_from_user+0x9e/0x470 [ 1119.649856] ? finish_automount+0xa90/0xa90 [ 1119.650755] ? getname_flags.part.0+0x1dd/0x4f0 [ 1119.651732] ? _copy_from_user+0xfb/0x1b0 [ 1119.652610] __x64_sys_mount+0x282/0x300 [ 1119.653472] ? copy_mnt_ns+0xa00/0xa00 [ 1119.654296] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1119.655402] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1119.656478] do_syscall_64+0x33/0x40 [ 1119.657257] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1119.658327] RIP: 0033:0x7f20beb15b19 [ 1119.659108] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1119.662944] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1119.664540] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1119.666036] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1119.667534] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1119.669020] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1119.670527] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:48:36 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x48000000) 01:48:36 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="1817b649a4ffac9e6a82c6b205592d5ad3eefa12ac68d396466845b7d19ac8fe0addf5f38215ab5d5ac17e90"], 0x0) 01:48:36 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2) 01:48:36 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x0, 0x0, 0x3, 0x0, 0x0) 01:48:36 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x110000000000000, 0x0, 0xfdef) 01:48:51 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x200000000000000, 0x0, 0xfdef) 01:48:51 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) r1 = fork() r2 = fork() ptrace(0x10, r2) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r3, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r2) r4 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r5, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) ioctl$sock_SIOCDELRT(r4, 0x890c, &(0x7f0000000140)={0x0, @tipc=@name={0x1e, 0x2, 0x2, {{0x42, 0x1}}}, @phonet={0x23, 0x40, 0x2, 0x80}, @ax25={0x3, @null, 0x3}, 0x8000, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000100)='ip6gretap0\x00', 0x876, 0x4, 0x5}) bind$inet6(r5, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r5, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendfile(r5, r4, 0x0, 0x9bbb) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x3, 0x3f, 0x5, 0x8, 0x0, 0x7, 0x88008, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x3, @perf_bp={&(0x7f0000000040), 0x1}, 0x4800, 0x100000000, 0x8, 0x1, 0xc3, 0x584, 0x800, 0x0, 0x3, 0x0, 0x9}, r1, 0x5, r4, 0x0) 01:48:51 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 36) 01:48:51 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0xb00486237f0000) 01:48:51 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2) 01:48:51 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 01:48:51 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000000000)={0x0, 0x0, 0x13, 0x19, 0x23, &(0x7f0000000340)="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"}) 01:48:51 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x4c000000) [ 1135.174616] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1135.175845] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1135.177948] FAULT_INJECTION: forcing a failure. [ 1135.177948] name failslab, interval 1, probability 0, space 0, times 0 [ 1135.177958] Buffer I/O error on dev sr0, logical block 0, async page read [ 1135.182392] CPU: 1 PID: 7399 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1135.184024] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1135.186022] Call Trace: [ 1135.186659] dump_stack+0x107/0x167 [ 1135.187532] should_fail.cold+0x5/0xa [ 1135.188431] ? p9_fcall_init+0x97/0x290 [ 1135.189390] should_failslab+0x5/0x20 [ 1135.190305] __kmalloc+0x72/0x390 [ 1135.191132] p9_fcall_init+0x97/0x290 [ 1135.192046] p9_client_prepare_req.part.0+0x8c/0xac0 [ 1135.193255] p9_client_rpc+0x220/0x1370 [ 1135.194216] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1135.195472] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 1135.196740] ? pipe_poll+0x21b/0x7f0 [ 1135.197603] ? p9_fd_close+0x4a0/0x4a0 [ 1135.198540] ? anon_pipe_buf_release+0x280/0x280 [ 1135.199660] ? p9_fd_poll+0x1e0/0x2c0 [ 1135.200572] ? p9_fd_create+0x357/0x4a0 [ 1135.201512] ? p9_conn_create+0x510/0x510 [ 1135.202504] ? p9_client_create+0x798/0x1230 [ 1135.203541] ? kfree+0xd7/0x340 [ 1135.204315] ? do_raw_spin_unlock+0x4f/0x220 [ 1135.205364] p9_client_create+0xa76/0x1230 [ 1135.206388] ? p9_client_flush+0x430/0x430 [ 1135.207389] ? trace_hardirqs_on+0x5b/0x180 [ 1135.208412] ? lockdep_init_map_type+0x2c7/0x780 [ 1135.209537] ? __raw_spin_lock_init+0x36/0x110 [ 1135.210637] v9fs_session_init+0x1dd/0x1680 [ 1135.211647] ? lock_release+0x680/0x680 [ 1135.212595] ? kmem_cache_alloc_trace+0x151/0x320 [ 1135.213729] ? v9fs_show_options+0x690/0x690 [ 1135.214751] ? trace_hardirqs_on+0x5b/0x180 [ 1135.215757] ? kasan_unpoison_shadow+0x33/0x50 [ 1135.216799] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1135.218007] v9fs_mount+0x79/0x8f0 [ 1135.218841] ? v9fs_write_inode+0x60/0x60 [ 1135.219821] legacy_get_tree+0x105/0x220 [ 1135.220775] vfs_get_tree+0x8e/0x300 [ 1135.221652] path_mount+0x1429/0x2120 [ 1135.222566] ? strncpy_from_user+0x9e/0x470 [ 1135.223575] ? finish_automount+0xa90/0xa90 [ 1135.224598] ? getname_flags.part.0+0x1dd/0x4f0 [ 1135.225703] ? _copy_from_user+0xfb/0x1b0 [ 1135.226700] __x64_sys_mount+0x282/0x300 [ 1135.227649] ? copy_mnt_ns+0xa00/0xa00 [ 1135.228566] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1135.229792] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1135.231005] do_syscall_64+0x33/0x40 [ 1135.231876] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1135.233044] RIP: 0033:0x7f20beb15b19 [ 1135.233882] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1135.238067] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1135.239822] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1135.241472] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1135.243129] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1135.244771] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1135.246430] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 [ 1135.248689] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1135.249791] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1135.251780] Buffer I/O error on dev sr0, logical block 1, async page read [ 1135.253277] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1135.254373] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1135.256282] Buffer I/O error on dev sr0, logical block 2, async page read [ 1135.258065] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1135.259166] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1135.261117] Buffer I/O error on dev sr0, logical block 3, async page read [ 1135.262587] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1135.263665] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1135.265606] Buffer I/O error on dev sr0, logical block 4, async page read [ 1135.267076] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1135.268163] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1135.270105] Buffer I/O error on dev sr0, logical block 5, async page read [ 1135.271542] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1135.272610] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1135.274522] Buffer I/O error on dev sr0, logical block 6, async page read [ 1135.275965] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1135.277031] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1135.278953] Buffer I/O error on dev sr0, logical block 7, async page read [ 1135.280417] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1135.281496] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1135.283420] Buffer I/O error on dev sr0, logical block 0, async page read [ 1135.284834] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1135.285893] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 7 prio class 0 [ 1135.287795] Buffer I/O error on dev sr0, logical block 1, async page read 01:48:52 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) r1 = creat(&(0x7f0000000000)='./cgroup/cgroup.procs\x00', 0x10d) ioctl$AUTOFS_DEV_IOCTL_VERSION(r1, 0xc0189371, &(0x7f0000000040)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './cgroup/cgroup.procs\x00'}) dup(r2) 01:48:52 executing program 7: pread64(0xffffffffffffffff, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2) 01:48:52 executing program 7: pread64(0xffffffffffffffff, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2) 01:48:52 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x300000000000000, 0x0, 0xfdef) 01:48:52 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x68000000) 01:48:52 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0xb02486237f0000) 01:48:52 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) fork() r1 = fork() ptrace(0x10, r1) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r4, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) ioctl$sock_SIOCDELRT(r3, 0x890c, &(0x7f0000000140)={0x0, @tipc=@name={0x1e, 0x2, 0x2, {{0x42, 0x1}}}, @phonet={0x23, 0x40, 0x2, 0x80}, @ax25={0x3, @null, 0x3}, 0x8000, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000100)='ip6gretap0\x00', 0x876, 0x4, 0x5}) bind$inet6(r4, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendfile(r4, r3, 0x0, 0x9bbb) 01:48:52 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 37) 01:48:52 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x48000000) [ 1135.546971] FAULT_INJECTION: forcing a failure. [ 1135.546971] name failslab, interval 1, probability 0, space 0, times 0 [ 1135.548913] CPU: 0 PID: 7422 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1135.550201] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1135.551745] Call Trace: [ 1135.552242] dump_stack+0x107/0x167 [ 1135.552918] should_fail.cold+0x5/0xa [ 1135.553629] ? create_object.isra.0+0x3a/0xa20 [ 1135.554491] should_failslab+0x5/0x20 [ 1135.555198] kmem_cache_alloc+0x5b/0x310 [ 1135.555955] create_object.isra.0+0x3a/0xa20 [ 1135.556639] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1135.557583] __kmalloc+0x16e/0x390 [ 1135.558258] p9_fcall_init+0x97/0x290 [ 1135.558966] p9_client_prepare_req.part.0+0x8c/0xac0 [ 1135.559914] p9_client_rpc+0x220/0x1370 [ 1135.560658] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1135.561630] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 1135.562537] ? pipe_poll+0x21b/0x7f0 [ 1135.563221] ? p9_fd_close+0x4a0/0x4a0 [ 1135.563842] ? anon_pipe_buf_release+0x280/0x280 [ 1135.564719] ? p9_fd_poll+0x1e0/0x2c0 [ 1135.565335] ? p9_fd_create+0x357/0x4a0 [ 1135.566082] ? p9_conn_create+0x510/0x510 [ 1135.566745] ? p9_client_create+0x798/0x1230 [ 1135.567549] ? kfree+0xd7/0x340 [ 1135.568070] ? do_raw_spin_unlock+0x4f/0x220 [ 1135.568887] p9_client_create+0xa76/0x1230 [ 1135.569566] ? p9_client_flush+0x430/0x430 [ 1135.570359] ? trace_hardirqs_on+0x5b/0x180 [ 1135.571096] ? lockdep_init_map_type+0x2c7/0x780 [ 1135.571978] ? __raw_spin_lock_init+0x36/0x110 [ 1135.572703] v9fs_session_init+0x1dd/0x1680 [ 1135.573493] ? lock_release+0x680/0x680 [ 1135.574142] ? kmem_cache_alloc_trace+0x151/0x320 [ 1135.575020] ? v9fs_show_options+0x690/0x690 [ 1135.575723] ? trace_hardirqs_on+0x5b/0x180 [ 1135.576511] ? kasan_unpoison_shadow+0x33/0x50 [ 1135.577286] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1135.578236] v9fs_mount+0x79/0x8f0 [ 1135.578836] ? v9fs_write_inode+0x60/0x60 [ 1135.579627] legacy_get_tree+0x105/0x220 [ 1135.580311] vfs_get_tree+0x8e/0x300 [ 1135.581001] path_mount+0x1429/0x2120 [ 1135.581616] ? strncpy_from_user+0x9e/0x470 [ 1135.582433] ? finish_automount+0xa90/0xa90 [ 1135.583127] ? getname_flags.part.0+0x1dd/0x4f0 [ 1135.583991] ? _copy_from_user+0xfb/0x1b0 [ 1135.584695] __x64_sys_mount+0x282/0x300 [ 1135.585439] ? copy_mnt_ns+0xa00/0xa00 [ 1135.586111] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1135.587070] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1135.587872] do_syscall_64+0x33/0x40 [ 1135.588556] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1135.589353] RIP: 0033:0x7f20beb15b19 [ 1135.590043] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1135.593015] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1135.594413] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1135.595534] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1135.596848] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1135.597951] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1135.599243] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:48:52 executing program 7: pread64(0xffffffffffffffff, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2) 01:48:52 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0xb03c88237f0000) 01:48:52 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x400000000000000, 0x0, 0xfdef) 01:48:52 executing program 7: r0 = syz_open_procfs(0x0, 0x0) pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2) 01:49:06 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x6c000000) 01:49:06 executing program 7: r0 = syz_open_procfs(0x0, 0x0) pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2) 01:49:06 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 38) 01:49:06 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) syz_io_uring_setup(0x6612, &(0x7f0000000080)={0x0, 0xbad, 0x10, 0x0, 0x13e, 0x0, r0}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000100), &(0x7f0000000140)) r1 = accept$unix(r0, &(0x7f0000000200), &(0x7f0000000180)=0x6e) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r2, 0x0, 0x0) setresuid(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f00000002c0)='./file1\x00', &(0x7f0000000340), 0x1090, &(0x7f00000005c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',nodevmap,subj_user=\\(\']-,obj_role=\x00,obj_type=-@,permit_directio,fsname=%-,rootcontext=staff_u,euid>', @ANYRESDEC=0x0, @ANYBLOB="2cf78d4a64a436f6272c40d68c2cbc5366177d0b3ce861"]) lseek(r2, 0xfffffffffffff014, 0x0) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r3, 0x0, 0x0) lseek(r3, 0xfffffffffffff014, 0x0) getdents64(r3, &(0x7f00000001c0)=""/251, 0xfb) r4 = dup3(r3, r2, 0x80000) getdents64(r2, &(0x7f00000001c0)=""/251, 0xfb) r5 = fcntl$dupfd(r0, 0x0, r0) syz_io_uring_setup(0x6baa, &(0x7f0000000440)={0x0, 0xffd3, 0x10, 0x1, 0x1f4, 0x0, r4}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f00000004c0), &(0x7f0000000580)=0x0) syz_io_uring_submit(0x0, r6, &(0x7f0000000540)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x20, &(0x7f0000000500)=[r1, r2, r5, r0, r0, r0], 0x6, 0x0, 0x1}, 0x8) utime(&(0x7f0000000000)='./cgroup/cgroup.procs\x00', &(0x7f0000000040)={0x6, 0xe10}) 01:49:06 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x500000000000000, 0x0, 0xfdef) 01:49:06 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) fork() r1 = fork() ptrace(0x10, r1) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r4, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) ioctl$sock_SIOCDELRT(r3, 0x890c, &(0x7f0000000140)={0x0, @tipc=@name={0x1e, 0x2, 0x2, {{0x42, 0x1}}}, @phonet={0x23, 0x40, 0x2, 0x80}, @ax25={0x3, @null, 0x3}, 0x8000, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000100)='ip6gretap0\x00', 0x876, 0x4, 0x5}) bind$inet6(r4, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) 01:49:06 executing program 0: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) r1 = accept4$packet(r0, &(0x7f0000000040)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14, 0x80000) r2 = syz_io_uring_setup(0x4448, &(0x7f0000000240)={0x0, 0x9862, 0x2, 0x1, 0x395, 0x0, r0}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f00000002c0), &(0x7f0000000300)=0x0) syz_io_uring_setup(0x1d, &(0x7f0000000100), &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000280)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x9}, 0x0) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r5, &(0x7f00000003c0)=@IORING_OP_LINK_TIMEOUT={0xf, 0x5, 0x0, 0x0, 0x0, &(0x7f0000000380), 0x1, 0x1, 0x0, {0x0, r6}}, 0xfff) syz_io_uring_submit(0x0, r3, &(0x7f0000000340)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x7) ioctl$AUTOFS_DEV_IOCTL_READY(r0, 0xc0189376, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r1, {0xb58d}}, './cgroup/cgroup.procs\x00'}) sendmsg$NL80211_CMD_GET_POWER_SAVE(r7, &(0x7f0000000200)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x800030}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x0, 0x2, 0x70bd26, 0x25dfdbfb, {{}, {@void, @void}}, ["", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x200040d4}, 0x811) open_by_handle_at(r0, &(0x7f0000000000)=ANY=[@ANYRES16=r0], 0x25201) 01:49:06 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0xf0ff1f00000000) [ 1150.320365] FAULT_INJECTION: forcing a failure. [ 1150.320365] name failslab, interval 1, probability 0, space 0, times 0 [ 1150.321834] CPU: 0 PID: 7456 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1150.322726] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1150.323788] Call Trace: [ 1150.324134] dump_stack+0x107/0x167 [ 1150.324604] should_fail.cold+0x5/0xa [ 1150.325097] ? create_object.isra.0+0x3a/0xa20 [ 1150.325691] should_failslab+0x5/0x20 [ 1150.326180] kmem_cache_alloc+0x5b/0x310 [ 1150.326721] create_object.isra.0+0x3a/0xa20 [ 1150.327288] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1150.327943] kmem_cache_alloc+0x159/0x310 [ 1150.328492] p9_client_prepare_req.part.0+0x3a/0xac0 [ 1150.329149] p9_client_rpc+0x220/0x1370 [ 1150.329662] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1150.330341] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 1150.331026] ? pipe_poll+0x21b/0x7f0 [ 1150.331504] ? p9_fd_close+0x4a0/0x4a0 [ 1150.331999] ? anon_pipe_buf_release+0x280/0x280 [ 1150.332606] ? p9_fd_poll+0x1e0/0x2c0 [ 1150.333099] ? p9_fd_create+0x357/0x4a0 [ 1150.333604] ? p9_conn_create+0x510/0x510 [ 1150.334126] ? p9_client_create+0x798/0x1230 [ 1150.334696] ? kfree+0xd7/0x340 [ 1150.335117] ? do_raw_spin_unlock+0x4f/0x220 [ 1150.335684] p9_client_create+0xa76/0x1230 [ 1150.336233] ? p9_client_flush+0x430/0x430 [ 1150.336777] ? trace_hardirqs_on+0x5b/0x180 [ 1150.337330] ? lockdep_init_map_type+0x2c7/0x780 [ 1150.337938] ? __raw_spin_lock_init+0x36/0x110 [ 1150.338541] v9fs_session_init+0x1dd/0x1680 [ 1150.339095] ? lock_release+0x680/0x680 [ 1150.339614] ? kmem_cache_alloc_trace+0x151/0x320 [ 1150.340237] ? v9fs_show_options+0x690/0x690 [ 1150.340815] ? trace_hardirqs_on+0x5b/0x180 [ 1150.341364] ? kasan_unpoison_shadow+0x33/0x50 [ 1150.341946] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1150.342606] v9fs_mount+0x79/0x8f0 [ 1150.343061] ? v9fs_write_inode+0x60/0x60 [ 1150.343594] legacy_get_tree+0x105/0x220 [ 1150.344114] vfs_get_tree+0x8e/0x300 [ 1150.344594] path_mount+0x1429/0x2120 [ 1150.345082] ? strncpy_from_user+0x9e/0x470 [ 1150.345634] ? finish_automount+0xa90/0xa90 [ 1150.346183] ? getname_flags.part.0+0x1dd/0x4f0 [ 1150.346780] ? _copy_from_user+0xfb/0x1b0 [ 1150.347316] __x64_sys_mount+0x282/0x300 [ 1150.347836] ? copy_mnt_ns+0xa00/0xa00 [ 1150.348334] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1150.349007] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1150.349667] do_syscall_64+0x33/0x40 [ 1150.350143] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1150.350799] RIP: 0033:0x7f20beb15b19 [ 1150.351275] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1150.353578] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1150.354551] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1150.355459] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1150.356356] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1150.357254] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1150.358147] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:49:07 executing program 7: r0 = syz_open_procfs(0x0, 0x0) pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2) 01:49:07 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x100000000000000) 01:49:22 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 39) 01:49:22 executing program 7: syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(0xffffffffffffffff, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2) 01:49:22 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x600000000000000, 0x0, 0xfdef) 01:49:22 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) 01:49:22 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x74000000) 01:49:22 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000000)={0x588, 0x1a6, 0x8}) 01:49:22 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x200000000000000) 01:49:22 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) fork() r1 = fork() ptrace(0x10, r1) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r4, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) ioctl$sock_SIOCDELRT(r3, 0x890c, &(0x7f0000000140)={0x0, @tipc=@name={0x1e, 0x2, 0x2, {{0x42, 0x1}}}, @phonet={0x23, 0x40, 0x2, 0x80}, @ax25={0x3, @null, 0x3}, 0x8000, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000100)='ip6gretap0\x00', 0x876, 0x4, 0x5}) bind$inet6(r4, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) [ 1165.791287] FAULT_INJECTION: forcing a failure. [ 1165.791287] name failslab, interval 1, probability 0, space 0, times 0 [ 1165.794106] CPU: 1 PID: 7490 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1165.795623] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1165.797456] Call Trace: [ 1165.798049] dump_stack+0x107/0x167 [ 1165.798855] should_fail.cold+0x5/0xa [ 1165.799707] ? create_object.isra.0+0x3a/0xa20 01:49:22 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x7a000000) [ 1165.800722] should_failslab+0x5/0x20 [ 1165.801685] kmem_cache_alloc+0x5b/0x310 [ 1165.802616] create_object.isra.0+0x3a/0xa20 [ 1165.803594] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1165.804726] __kmalloc+0x16e/0x390 [ 1165.805518] p9_fcall_init+0x97/0x290 [ 1165.806372] p9_client_prepare_req.part.0+0xf4/0xac0 [ 1165.807510] p9_client_rpc+0x220/0x1370 [ 1165.808388] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1165.809540] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 1165.810711] ? pipe_poll+0x21b/0x7f0 [ 1165.811532] ? p9_fd_close+0x4a0/0x4a0 [ 1165.812385] ? anon_pipe_buf_release+0x280/0x280 [ 1165.813429] ? p9_fd_poll+0x1e0/0x2c0 [ 1165.814271] ? p9_fd_create+0x357/0x4a0 [ 1165.815149] ? p9_conn_create+0x510/0x510 [ 1165.816052] ? p9_client_create+0x798/0x1230 [ 1165.817010] ? kfree+0xd7/0x340 [ 1165.817727] ? do_raw_spin_unlock+0x4f/0x220 [ 1165.818694] p9_client_create+0xa76/0x1230 [ 1165.819639] ? p9_client_flush+0x430/0x430 [ 1165.820572] ? trace_hardirqs_on+0x5b/0x180 [ 1165.821517] ? lockdep_init_map_type+0x2c7/0x780 [ 1165.822552] ? __raw_spin_lock_init+0x36/0x110 [ 1165.823568] v9fs_session_init+0x1dd/0x1680 [ 1165.824512] ? lock_release+0x680/0x680 [ 1165.825392] ? kmem_cache_alloc_trace+0x151/0x320 [ 1165.826446] ? v9fs_show_options+0x690/0x690 [ 1165.827426] ? trace_hardirqs_on+0x5b/0x180 [ 1165.828369] ? kasan_unpoison_shadow+0x33/0x50 [ 1165.829366] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1165.830471] v9fs_mount+0x79/0x8f0 [ 1165.831259] ? v9fs_write_inode+0x60/0x60 [ 1165.832163] legacy_get_tree+0x105/0x220 [ 1165.833043] vfs_get_tree+0x8e/0x300 [ 1165.833846] path_mount+0x1429/0x2120 [ 1165.834676] ? strncpy_from_user+0x9e/0x470 [ 1165.835624] ? finish_automount+0xa90/0xa90 [ 1165.836563] ? getname_flags.part.0+0x1dd/0x4f0 [ 1165.837574] ? _copy_from_user+0xfb/0x1b0 [ 1165.838483] __x64_sys_mount+0x282/0x300 [ 1165.839372] ? copy_mnt_ns+0xa00/0xa00 [ 1165.840220] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1165.841352] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1165.842469] do_syscall_64+0x33/0x40 [ 1165.843282] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1165.844392] RIP: 0033:0x7f20beb15b19 [ 1165.845194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1165.849174] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1165.850806] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1165.852343] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1165.853869] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1165.855403] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1165.856930] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:49:22 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) fork() r1 = fork() ptrace(0x10, r1) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r4, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) ioctl$sock_SIOCDELRT(r3, 0x890c, &(0x7f0000000140)={0x0, @tipc=@name={0x1e, 0x2, 0x2, {{0x42, 0x1}}}, @phonet={0x23, 0x40, 0x2, 0x80}, @ax25={0x3, @null, 0x3}, 0x8000, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000100)='ip6gretap0\x00', 0x876, 0x4, 0x5}) 01:49:22 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2000000000) 01:49:22 executing program 7: syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(0xffffffffffffffff, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2) 01:49:22 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r1, 0x0, 0x0) lseek(r1, 0xfffffffffffff014, 0x0) getdents64(r1, &(0x7f00000001c0)=""/251, 0xfb) openat(r1, &(0x7f0000000000)='\x00', 0x8100, 0x120) 01:49:22 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x300000000000000) 01:49:22 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x800000000000000, 0x0, 0xfdef) 01:49:22 executing program 0: r0 = creat(&(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/cgroup.procs\x00', 0x121100, 0x44) 01:49:37 executing program 7: syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(0xffffffffffffffff, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2) 01:49:37 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) fork() r1 = fork() ptrace(0x10, r1) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r1) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r3, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) 01:49:37 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 40) 01:49:37 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r1, 0x0, 0x0) lseek(r1, 0xfffffffffffff014, 0x0) getdents64(r1, &(0x7f00000001c0)=""/251, 0xfb) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000200)={0x0, 0x0, 0x8, 0x0, '\x00', [{0x20, 0x4, 0x0, 0x9, 0xe17804c, 0xffd}, {0x1, 0x6, 0x2e45, 0x81, 0x200000000000009, 0x3}], ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}) sendfile(r0, r0, &(0x7f0000000040)=0x4, 0x1dae) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r0, 0x400c6615, &(0x7f0000000000)={0x0, @adiantum, 0x0, @desc4}) ioctl$AUTOFS_DEV_IOCTL_READY(r0, 0xc0189376, &(0x7f00000004c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x7fffffff}}, './cgroup/cgroup.procs\x00'}) getdents64(r2, &(0x7f0000000580)=""/243, 0xf3) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), 0xffffffffffffffff) r6 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_KEY(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={0x34, r5, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_KEY={0x18, 0x50, 0x0, 0x1, [@NL80211_KEY_DATA_WEP104={0x11, 0x1, "c8c03293c9e11529b7f26923fe"}]}]}, 0x34}}, 0x0) sendmsg$NL80211_CMD_START_SCHED_SCAN(r3, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x48, r5, 0x110, 0x70bd27, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST={0x6, 0xf7, {0xa, 0x1b}}, @NL80211_ATTR_SCAN_FREQUENCIES={0x24, 0x2c, 0x0, 0x1, [{0x8, 0x0, 0x3}, {0x8, 0x0, 0x9}, {0x8}, {0x8, 0x0, 0x8}]}, @NL80211_ATTR_SCHED_SCAN_DELAY={0x8, 0xdc, 0x8001}]}, 0x48}, 0x1, 0x0, 0x0, 0x40000}, 0x14) 01:49:37 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x400000000000000) 01:49:37 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xb01000000000000, 0x0, 0xfdef) 01:49:37 executing program 0: r0 = creat(&(0x7f0000000080)='./cgroup/cgroup.procs\x00', 0x0) fsetxattr$security_selinux(r0, &(0x7f0000000000), &(0x7f0000000040)='system_u:object_r:vhost_device_t:s0\x00', 0x24, 0x2) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r1, 0x0, 0x0) lseek(r1, 0xfffffffffffff014, 0x0) getdents64(r1, &(0x7f00000001c0)=""/251, 0xfb) ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r1, 0x400c6615, &(0x7f0000000140)={0x0, @aes128}) open_by_handle_at(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="185ecf35b5aa6b8b1f757cc8429f124fddf6b65c97ffdc545e9632e1954748daf387d656fecef51e636c00cbeb6c6ee43163d06643c32e04ff88ad3f0838322b8588b933d0081f0279fb8c8a9e0089c66aa67522be4a"], 0x0) 01:49:37 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2100000000) [ 1180.565802] FAULT_INJECTION: forcing a failure. [ 1180.565802] name failslab, interval 1, probability 0, space 0, times 0 [ 1180.568808] CPU: 1 PID: 7540 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1180.570462] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1180.572476] Call Trace: [ 1180.573117] dump_stack+0x107/0x167 [ 1180.573995] should_fail.cold+0x5/0xa [ 1180.574917] ? radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 1180.576548] should_failslab+0x5/0x20 [ 1180.577610] kmem_cache_alloc+0x5b/0x310 [ 1180.578649] radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 1180.580069] idr_get_free+0x4b5/0x8f0 [ 1180.581006] idr_alloc_u32+0x170/0x2d0 [ 1180.581949] ? __fprop_inc_percpu_max+0x130/0x130 [ 1180.583116] ? p9_client_prepare_req.part.0+0x20a/0xac0 [ 1180.584411] ? lock_release+0x680/0x680 [ 1180.585370] idr_alloc+0xc2/0x130 [ 1180.586205] ? idr_alloc_u32+0x2d0/0x2d0 [ 1180.587176] ? rwlock_bug.part.0+0x90/0x90 [ 1180.588236] p9_client_prepare_req.part.0+0x612/0xac0 [ 1180.589492] p9_client_rpc+0x220/0x1370 [ 1180.590453] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1180.591742] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 1180.593033] ? pipe_poll+0x21b/0x7f0 [ 1180.593929] ? p9_fd_close+0x4a0/0x4a0 [ 1180.594864] ? anon_pipe_buf_release+0x280/0x280 [ 1180.596021] ? p9_fd_poll+0x1e0/0x2c0 [ 1180.596946] ? p9_fd_create+0x357/0x4a0 [ 1180.597897] ? p9_conn_create+0x510/0x510 [ 1180.598884] ? p9_client_create+0x798/0x1230 [ 1180.599940] ? kfree+0xd7/0x340 [ 1180.600722] ? do_raw_spin_unlock+0x4f/0x220 [ 1180.601788] p9_client_create+0xa76/0x1230 [ 1180.602815] ? p9_client_flush+0x430/0x430 [ 1180.603836] ? trace_hardirqs_on+0x5b/0x180 [ 1180.604870] ? lockdep_init_map_type+0x2c7/0x780 [ 1180.606011] ? __raw_spin_lock_init+0x36/0x110 [ 1180.607114] v9fs_session_init+0x1dd/0x1680 [ 1180.608158] ? lock_release+0x680/0x680 [ 1180.609125] ? kmem_cache_alloc_trace+0x151/0x320 [ 1180.610275] ? v9fs_show_options+0x690/0x690 [ 1180.611345] ? trace_hardirqs_on+0x5b/0x180 [ 1180.612385] ? kasan_unpoison_shadow+0x33/0x50 [ 1180.613472] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1180.614692] v9fs_mount+0x79/0x8f0 [ 1180.615559] ? v9fs_write_inode+0x60/0x60 [ 1180.616553] legacy_get_tree+0x105/0x220 [ 1180.617528] vfs_get_tree+0x8e/0x300 [ 1180.618418] path_mount+0x1429/0x2120 [ 1180.619326] ? strncpy_from_user+0x9e/0x470 [ 1180.620357] ? finish_automount+0xa90/0xa90 [ 1180.621380] ? getname_flags.part.0+0x1dd/0x4f0 [ 1180.622476] ? _copy_from_user+0xfb/0x1b0 [ 1180.623472] __x64_sys_mount+0x282/0x300 [ 1180.624442] ? copy_mnt_ns+0xa00/0xa00 [ 1180.625370] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1180.626606] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1180.627838] do_syscall_64+0x33/0x40 [ 1180.628718] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1180.629928] RIP: 0033:0x7f20beb15b19 [ 1180.630809] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1180.635146] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1180.636945] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1180.638625] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1180.640308] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1180.641976] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1180.643652] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:49:37 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 1) 01:49:37 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xc00000000000000, 0x0, 0xfdef) 01:49:37 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, 0x0, 0x0, 0x2) [ 1180.720563] FAULT_INJECTION: forcing a failure. [ 1180.720563] name failslab, interval 1, probability 0, space 0, times 0 [ 1180.722414] CPU: 0 PID: 7558 Comm: syz-executor.0 Not tainted 5.10.230 #1 [ 1180.723394] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1180.724530] Call Trace: [ 1180.724911] dump_stack+0x107/0x167 [ 1180.725441] should_fail.cold+0x5/0xa [ 1180.725990] should_failslab+0x5/0x20 [ 1180.726540] kmem_cache_alloc_bulk+0x4b/0x320 [ 1180.727192] io_submit_sqes+0x6fe6/0x8610 [ 1180.727813] ? __do_sys_io_uring_enter+0x6b2/0x1890 [ 1180.728528] __do_sys_io_uring_enter+0x6b2/0x1890 [ 1180.729220] ? find_held_lock+0x2c/0x110 [ 1180.729809] ? io_submit_sqes+0x8610/0x8610 [ 1180.730434] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1180.731132] ? wait_for_completion_io+0x270/0x270 [ 1180.731841] ? rcu_read_lock_any_held+0x75/0xa0 [ 1180.732508] ? vfs_write+0x354/0xb10 [ 1180.733041] ? fput_many+0x2f/0x1a0 [ 1180.733534] ? ksys_write+0x1a9/0x260 [ 1180.734081] ? __ia32_sys_read+0xb0/0xb0 [ 1180.734668] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1180.735415] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1180.736160] do_syscall_64+0x33/0x40 [ 1180.736686] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1180.737417] RIP: 0033:0x7f17a5d2cb19 [ 1180.737948] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1180.740584] RSP: 002b:00007f17a32a2188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1180.741670] RAX: ffffffffffffffda RBX: 00007f17a5e3ff60 RCX: 00007f17a5d2cb19 [ 1180.742685] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003 [ 1180.743639] RBP: 00007f17a32a21d0 R08: 0000000000000000 R09: 0000000000000000 [ 1180.744627] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1180.745575] R13: 00007fff0b454aef R14: 00007f17a32a2300 R15: 0000000000022000 01:49:37 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x500000000000000) 01:49:37 executing program 2: ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './cgroup/cgroup.procs/file0\x00'}) write$P9_RREADLINK(r0, &(0x7f00000000c0)={0x24, 0x17, 0x1, {0x1b, './cgroup/cgroup.procs/file0'}}, 0x24) r1 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) r2 = open(&(0x7f0000000040)='./cgroup/cgroup.procs/file0\x00', 0x101000, 0x40) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r3, 0x0, 0x0) lseek(r3, 0xfffffffffffff014, 0x0) getdents64(r3, &(0x7f00000001c0)=""/251, 0xfb) ioctl$AUTOFS_DEV_IOCTL_VERSION(r2, 0xc0189371, &(0x7f0000000080)={{0x1, 0x1, 0x18, r3}, './cgroup/cgroup.procs/file1\x00'}) [ 1180.811929] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.813133] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1180.814476] buffer_io_error: 6 callbacks suppressed [ 1180.814483] Buffer I/O error on dev sr0, logical block 0, async page read [ 1180.825498] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.826428] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1180.827817] Buffer I/O error on dev sr0, logical block 1, async page read [ 1180.828937] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.829669] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1180.830966] Buffer I/O error on dev sr0, logical block 2, async page read [ 1180.831983] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.832701] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1180.833994] Buffer I/O error on dev sr0, logical block 3, async page read [ 1180.835006] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.835768] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1180.837063] Buffer I/O error on dev sr0, logical block 4, async page read [ 1180.838069] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.838805] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1180.840133] Buffer I/O error on dev sr0, logical block 5, async page read [ 1180.841137] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.841864] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1180.843188] Buffer I/O error on dev sr0, logical block 6, async page read [ 1180.844247] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.844937] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1180.846221] Buffer I/O error on dev sr0, logical block 7, async page read [ 1180.847259] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.847952] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1180.849226] Buffer I/O error on dev sr0, logical block 0, async page read [ 1180.850230] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.850911] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1180.852211] Buffer I/O error on dev sr0, logical block 1, async page read [ 1180.853182] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.853963] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.854784] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.855956] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.856759] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.858338] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.863248] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.864568] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.865486] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.868316] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.869055] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.870565] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.876831] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.878961] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.880610] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.882265] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.883761] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.889855] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.891409] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.892886] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.894384] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.896038] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.897569] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.898127] FAULT_INJECTION: forcing a failure. [ 1180.898127] name failslab, interval 1, probability 0, space 0, times 0 [ 1180.899481] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.900201] CPU: 0 PID: 7571 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1180.901626] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.902233] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1180.902237] Call Trace: [ 1180.902253] dump_stack+0x107/0x167 [ 1180.902272] should_fail.cold+0x5/0xa [ 1180.903737] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.904526] ? create_object.isra.0+0x3a/0xa20 [ 1180.904539] should_failslab+0x5/0x20 [ 1180.904550] kmem_cache_alloc+0x5b/0x310 [ 1180.904565] create_object.isra.0+0x3a/0xa20 [ 1180.905400] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.905602] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1180.905618] kmem_cache_alloc+0x159/0x310 [ 1180.906705] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.907163] radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 1180.908435] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.908691] idr_get_free+0x4b5/0x8f0 [ 1180.909885] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.910164] idr_alloc_u32+0x170/0x2d0 [ 1180.911608] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.911982] ? __fprop_inc_percpu_max+0x130/0x130 [ 1180.913160] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.913580] ? p9_client_prepare_req.part.0+0x20a/0xac0 [ 1180.913594] ? lock_release+0x680/0x680 [ 1180.913609] idr_alloc+0xc2/0x130 [ 1180.915088] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.915511] ? idr_alloc_u32+0x2d0/0x2d0 [ 1180.915519] ? rwlock_bug.part.0+0x90/0x90 [ 1180.915547] p9_client_prepare_req.part.0+0x612/0xac0 [ 1180.915564] p9_client_rpc+0x220/0x1370 [ 1180.916654] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.917081] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1180.917099] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 1180.918228] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.918627] ? pipe_poll+0x21b/0x7f0 [ 1180.919952] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.920367] ? p9_fd_close+0x4a0/0x4a0 [ 1180.920377] ? anon_pipe_buf_release+0x280/0x280 [ 1180.920390] ? p9_fd_poll+0x1e0/0x2c0 [ 1180.920407] ? p9_fd_create+0x357/0x4a0 [ 1180.921842] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.922110] ? p9_conn_create+0x510/0x510 [ 1180.924484] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.924514] ? p9_client_create+0x798/0x1230 [ 1180.924530] ? kfree+0xd7/0x340 [ 1180.925971] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.926184] ? do_raw_spin_unlock+0x4f/0x220 [ 1180.926208] p9_client_create+0xa76/0x1230 [ 1180.927618] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.928029] ? p9_client_flush+0x430/0x430 [ 1180.929446] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.929864] ? trace_hardirqs_on+0x5b/0x180 [ 1180.932652] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.932838] ? lockdep_init_map_type+0x2c7/0x780 [ 1180.933965] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.934369] ? __raw_spin_lock_init+0x36/0x110 [ 1180.934385] v9fs_session_init+0x1dd/0x1680 [ 1180.934401] ? lock_release+0x680/0x680 [ 1180.935563] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.935985] ? kmem_cache_alloc_trace+0x151/0x320 [ 1180.937197] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.937370] ? v9fs_show_options+0x690/0x690 [ 1180.938775] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.939087] ? trace_hardirqs_on+0x5b/0x180 [ 1180.940317] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.940672] ? kasan_unpoison_shadow+0x33/0x50 [ 1180.941840] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.942250] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1180.942266] v9fs_mount+0x79/0x8f0 [ 1180.942279] ? v9fs_write_inode+0x60/0x60 [ 1180.942296] legacy_get_tree+0x105/0x220 [ 1180.943474] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.943901] vfs_get_tree+0x8e/0x300 [ 1180.945194] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.945599] path_mount+0x1429/0x2120 [ 1180.946840] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.947148] ? strncpy_from_user+0x9e/0x470 [ 1180.948304] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.948679] ? finish_automount+0xa90/0xa90 [ 1180.949972] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.950396] ? getname_flags.part.0+0x1dd/0x4f0 [ 1180.950407] ? _copy_from_user+0xfb/0x1b0 [ 1180.950429] __x64_sys_mount+0x282/0x300 [ 1180.951629] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.952031] ? copy_mnt_ns+0xa00/0xa00 [ 1180.953265] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.953611] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 01:49:37 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 41) 01:49:37 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, 0x0, 0x0, 0x2) [ 1180.954849] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.955240] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1180.955253] do_syscall_64+0x33/0x40 [ 1180.955263] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1180.955277] RIP: 0033:0x7f20beb15b19 [ 1180.956645] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.956830] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1180.956842] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 [ 1180.958008] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1180.958232] ORIG_RAX: 00000000000000a5 [ 1180.958239] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1180.958245] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1180.958251] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1180.958257] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1180.958270] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 [ 1180.959667] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.000792] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 01:49:37 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xf00000000000000, 0x0, 0xfdef) 01:49:37 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x7f3b96735000) 01:49:37 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) fork() r1 = fork() ptrace(0x10, r1) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r1) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) 01:49:37 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, 0x0, 0x0, 0x2) 01:49:37 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0xb2) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './cgroup/cgroup.procs\x00'}) r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), r0) sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="1002e7c521d9aa9635650700000005000900ffffffffffbf0080"], 0x20}, 0x1, 0x0, 0x0, 0x20049810}, 0x4040001) 01:49:37 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 2) [ 1181.124507] FAULT_INJECTION: forcing a failure. [ 1181.124507] name failslab, interval 1, probability 0, space 0, times 0 [ 1181.125892] CPU: 0 PID: 7593 Comm: syz-executor.0 Not tainted 5.10.230 #1 [ 1181.126714] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1181.127729] Call Trace: [ 1181.128051] dump_stack+0x107/0x167 [ 1181.128491] should_fail.cold+0x5/0xa [ 1181.128959] ? create_object.isra.0+0x3a/0xa20 [ 1181.129513] should_failslab+0x5/0x20 [ 1181.129992] kmem_cache_alloc+0x5b/0x310 [ 1181.130493] create_object.isra.0+0x3a/0xa20 [ 1181.131019] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1181.131642] kmem_cache_alloc_bulk+0x168/0x320 [ 1181.132196] io_submit_sqes+0x6fe6/0x8610 [ 1181.132709] ? __do_sys_io_uring_enter+0x6b2/0x1890 [ 1181.133308] __do_sys_io_uring_enter+0x6b2/0x1890 [ 1181.133892] ? find_held_lock+0x2c/0x110 [ 1181.134382] ? io_submit_sqes+0x8610/0x8610 [ 1181.134905] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1181.135494] ? wait_for_completion_io+0x270/0x270 [ 1181.136080] ? rcu_read_lock_any_held+0x75/0xa0 [ 1181.136636] ? vfs_write+0x354/0xb10 [ 1181.137082] ? fput_many+0x2f/0x1a0 [ 1181.137526] ? ksys_write+0x1a9/0x260 [ 1181.137983] ? __ia32_sys_read+0xb0/0xb0 [ 1181.138479] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1181.139108] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1181.139734] do_syscall_64+0x33/0x40 [ 1181.140181] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1181.140794] RIP: 0033:0x7f17a5d2cb19 [ 1181.141248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1181.143464] RSP: 002b:00007f17a32a2188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1181.144384] RAX: ffffffffffffffda RBX: 00007f17a5e3ff60 RCX: 00007f17a5d2cb19 [ 1181.145241] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003 [ 1181.146096] RBP: 00007f17a32a21d0 R08: 0000000000000000 R09: 0000000000000000 [ 1181.146959] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1181.147833] R13: 00007fff0b454aef R14: 00007f17a32a2300 R15: 0000000000022000 [ 1181.164482] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.165510] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.166256] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.167002] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.168145] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.168966] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.169786] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.172338] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.173061] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.173826] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.174595] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.175650] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.176404] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.177160] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.177950] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.178714] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.179466] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.180228] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.180945] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.181709] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.182467] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.183246] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.183954] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.184722] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.185490] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.186288] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.186992] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.187758] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.188500] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.189270] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.189972] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.190741] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.191517] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.192462] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.193167] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.193921] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.194646] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.195386] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.196100] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.196867] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.197627] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.198395] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.199103] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.199904] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.200689] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.201446] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.202178] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.202962] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.203736] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.204511] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.205251] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.205995] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.206745] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.207504] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.208259] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.209009] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.209790] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.210575] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.211344] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.212219] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.212925] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.213691] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.214441] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.215255] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.216004] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.216776] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.217521] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.218292] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.218995] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.219777] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.220517] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.221301] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.222016] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.222793] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.223561] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.224328] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.225031] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.225803] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.226554] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.227329] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.228053] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.228821] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.229593] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.230355] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.231072] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.231872] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.232597] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.233365] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.234078] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.234845] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.235610] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.236381] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.237092] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.237862] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.238628] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.239410] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.240137] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.240915] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.241663] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.242434] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.243150] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.243940] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.244694] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.245472] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.246236] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.246985] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.247739] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.248502] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.249246] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.249989] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.250733] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.251517] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.252290] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.253057] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.253812] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.254588] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.255343] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.256107] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.256849] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.257617] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.258366] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.259106] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.259864] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.260636] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.261382] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.262128] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.262890] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.263672] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.264424] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.265180] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.265930] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.266703] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.267449] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.268220] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.268948] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.269723] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.270494] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.271290] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.272014] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.272788] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.273533] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.274327] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.275041] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.275835] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.276607] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.277366] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.278071] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.278847] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.279630] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.280430] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.281299] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.282071] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.282822] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.283613] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.284361] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.285119] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.285863] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.286646] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.287388] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.288143] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.288916] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.289681] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.290440] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.291178] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.292013] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.292799] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.293550] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.294316] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.295154] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.295930] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.296658] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.297404] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.298115] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.298885] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.299653] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.300429] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.301150] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.301979] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.302744] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.303502] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.304237] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.304994] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.305735] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.306502] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.307274] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.308038] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.308795] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.309572] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.310327] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.311086] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.311839] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.312608] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.313391] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.314125] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.314892] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.315658] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.316407] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.317141] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.317891] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.318661] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.319436] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.320186] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.320951] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.321729] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.322473] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.323242] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.323925] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.324793] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.326427] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.327825] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.329224] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.330827] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.332475] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.333825] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1181.335183] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 01:49:50 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x600000000000000) 01:49:50 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x1000000000000000, 0x0, 0xfdef) 01:49:50 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 3) 01:49:50 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 42) 01:49:50 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) fork() r1 = fork() ptrace(0x10, r1) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r1) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) 01:49:50 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x0) 01:49:50 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) ioctl$CDROM_TIMED_MEDIA_CHANGE(r0, 0x5396, &(0x7f0000000000)={0x3}) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) 01:49:50 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x7f3b96f56000) 01:49:50 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x0) [ 1194.043153] FAULT_INJECTION: forcing a failure. [ 1194.043153] name failslab, interval 1, probability 0, space 0, times 0 [ 1194.045796] CPU: 1 PID: 7616 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1194.047389] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1194.049340] Call Trace: [ 1194.049959] dump_stack+0x107/0x167 [ 1194.050816] should_fail.cold+0x5/0xa [ 1194.051720] ? radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 1194.053079] should_failslab+0x5/0x20 [ 1194.053980] kmem_cache_alloc+0x5b/0x310 [ 1194.054946] radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 1194.056252] idr_get_free+0x4b5/0x8f0 [ 1194.057159] idr_alloc_u32+0x170/0x2d0 [ 1194.058066] ? __fprop_inc_percpu_max+0x130/0x130 [ 1194.059186] ? p9_client_prepare_req.part.0+0x20a/0xac0 [ 1194.060441] ? lock_release+0x680/0x680 [ 1194.061374] idr_alloc+0xc2/0x130 [ 1194.062181] ? idr_alloc_u32+0x2d0/0x2d0 [ 1194.063114] ? rwlock_bug.part.0+0x90/0x90 [ 1194.064147] p9_client_prepare_req.part.0+0x612/0xac0 [ 1194.065359] p9_client_rpc+0x220/0x1370 [ 1194.066287] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1194.067534] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 1194.068829] ? pipe_poll+0x21b/0x7f0 [ 1194.069697] ? p9_fd_close+0x4a0/0x4a0 [ 1194.070596] ? anon_pipe_buf_release+0x280/0x280 [ 1194.071697] ? p9_fd_poll+0x1e0/0x2c0 [ 1194.072603] ? p9_fd_create+0x357/0x4a0 [ 1194.073529] ? p9_conn_create+0x510/0x510 [ 1194.074488] ? p9_client_create+0x798/0x1230 [ 1194.075506] ? kfree+0xd7/0x340 [ 1194.076279] ? do_raw_spin_unlock+0x4f/0x220 [ 1194.077317] p9_client_create+0xa76/0x1230 [ 1194.078316] ? p9_client_flush+0x430/0x430 [ 1194.079308] ? trace_hardirqs_on+0x5b/0x180 [ 1194.080323] ? lockdep_init_map_type+0x2c7/0x780 [ 1194.081431] ? __raw_spin_lock_init+0x36/0x110 [ 1194.082493] v9fs_session_init+0x1dd/0x1680 [ 1194.083491] ? lock_release+0x680/0x680 [ 1194.084436] ? kmem_cache_alloc_trace+0x151/0x320 01:49:50 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) fork() r1 = fork() ptrace(0x10, r1) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r1) [ 1194.085538] ? v9fs_show_options+0x690/0x690 [ 1194.086784] ? trace_hardirqs_on+0x5b/0x180 [ 1194.087770] ? kasan_unpoison_shadow+0x33/0x50 01:49:50 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x0) [ 1194.088822] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1194.090085] v9fs_mount+0x79/0x8f0 [ 1194.090897] ? v9fs_write_inode+0x60/0x60 [ 1194.091837] legacy_get_tree+0x105/0x220 [ 1194.092783] vfs_get_tree+0x8e/0x300 [ 1194.093625] path_mount+0x1429/0x2120 [ 1194.094507] ? strncpy_from_user+0x9e/0x470 [ 1194.095490] ? finish_automount+0xa90/0xa90 [ 1194.096500] ? getname_flags.part.0+0x1dd/0x4f0 [ 1194.097550] ? _copy_from_user+0xfb/0x1b0 [ 1194.098495] __x64_sys_mount+0x282/0x300 [ 1194.099412] ? copy_mnt_ns+0xa00/0xa00 [ 1194.100295] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1194.101466] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1194.102629] do_syscall_64+0x33/0x40 [ 1194.103469] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1194.104626] RIP: 0033:0x7f20beb15b19 [ 1194.105480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1194.109604] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1194.111295] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1194.112905] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1194.114503] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1194.116116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1194.117723] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 [ 1194.124256] FAULT_INJECTION: forcing a failure. [ 1194.124256] name failslab, interval 1, probability 0, space 0, times 0 [ 1194.125826] CPU: 0 PID: 7628 Comm: syz-executor.0 Not tainted 5.10.230 #1 [ 1194.126736] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1194.127848] Call Trace: [ 1194.128210] dump_stack+0x107/0x167 [ 1194.128690] should_fail.cold+0x5/0xa [ 1194.129192] ? create_object.isra.0+0x3a/0xa20 [ 1194.129790] should_failslab+0x5/0x20 [ 1194.130298] kmem_cache_alloc+0x5b/0x310 [ 1194.130837] create_object.isra.0+0x3a/0xa20 [ 1194.131428] kmemleak_alloc_percpu+0xa0/0x100 [ 1194.132020] pcpu_alloc+0x4e2/0x1240 [ 1194.132528] __percpu_counter_init+0x10d/0x2d0 [ 1194.133133] io_uring_alloc_task_context+0xcc/0x6a0 [ 1194.133802] ? io_import_iovec+0x1120/0x1120 [ 1194.134392] ? find_held_lock+0x2c/0x110 [ 1194.134932] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1194.135563] __io_uring_add_tctx_node+0x2c6/0x520 [ 1194.136203] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1194.136905] __do_sys_io_uring_enter+0x146f/0x1890 [ 1194.137544] ? find_held_lock+0x2c/0x110 [ 1194.138073] ? io_submit_sqes+0x8610/0x8610 [ 1194.138638] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1194.139268] ? wait_for_completion_io+0x270/0x270 [ 1194.139899] ? rcu_read_lock_any_held+0x75/0xa0 [ 1194.140509] ? vfs_write+0x354/0xb10 [ 1194.141001] ? fput_many+0x2f/0x1a0 [ 1194.141482] ? ksys_write+0x1a9/0x260 [ 1194.141974] ? __ia32_sys_read+0xb0/0xb0 [ 1194.142511] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1194.143194] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1194.143874] do_syscall_64+0x33/0x40 [ 1194.144388] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1194.145053] RIP: 0033:0x7f17a5d2cb19 [ 1194.145537] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1194.147963] RSP: 002b:00007f17a3281188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1194.148954] RAX: ffffffffffffffda RBX: 00007f17a5e40020 RCX: 00007f17a5d2cb19 [ 1194.149882] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003 [ 1194.150811] RBP: 00007f17a32811d0 R08: 0000000000000000 R09: 0000000000000000 [ 1194.151739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1194.152663] R13: 00007fff0b454aef R14: 00007f17a3281300 R15: 0000000000022000 01:49:50 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x1200000000000000, 0x0, 0xfdef) [ 1194.184409] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.186062] print_req_error: 275 callbacks suppressed [ 1194.186082] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1194.189323] buffer_io_error: 278 callbacks suppressed [ 1194.189334] Buffer I/O error on dev sr0, logical block 0, async page read [ 1194.196352] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.199544] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1194.202669] Buffer I/O error on dev sr0, logical block 1, async page read [ 1194.204346] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.206525] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1194.208628] Buffer I/O error on dev sr0, logical block 2, async page read [ 1194.210389] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.211618] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1194.213848] Buffer I/O error on dev sr0, logical block 3, async page read [ 1194.215882] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.217686] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1194.220371] Buffer I/O error on dev sr0, logical block 4, async page read [ 1194.222414] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.223827] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1194.226345] Buffer I/O error on dev sr0, logical block 5, async page read [ 1194.228297] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.229659] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1194.232067] Buffer I/O error on dev sr0, logical block 6, async page read [ 1194.233996] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.235413] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1194.237811] Buffer I/O error on dev sr0, logical block 7, async page read [ 1194.242398] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.243125] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1194.244688] Buffer I/O error on dev sr0, logical block 0, async page read [ 1194.248369] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.249044] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1194.250361] Buffer I/O error on dev sr0, logical block 1, async page read [ 1194.252623] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.253400] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.254145] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.254941] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.255726] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.256513] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.257325] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.258066] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.258838] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.259629] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.261279] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.262033] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.262824] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.263592] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.264403] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.267330] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.268060] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.268852] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.270268] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.270991] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.271781] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.272645] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.273407] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.274125] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.274899] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.275672] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.276455] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.277168] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.277969] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.278758] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.279537] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.280301] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.281038] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.281785] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.282569] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.285327] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.286657] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.287424] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.288188] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.288944] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.289722] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.290472] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.291244] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.291972] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.292761] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.293526] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.294323] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.295030] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.295806] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.296572] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.297340] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.299311] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.300569] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.302435] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.303155] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.303928] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.304696] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.305691] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.306451] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.307230] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.307937] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.308691] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.309432] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.310155] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.310893] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.311623] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.312373] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.313101] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.313828] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.314576] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.315311] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.316041] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.316764] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.317520] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.318264] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.318988] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.319729] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.320602] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.321400] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.322123] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.322864] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.323598] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.324333] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.325051] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.325792] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.326558] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.327379] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.328134] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.328914] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.329692] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.330512] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.331291] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.332003] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.332799] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.333560] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.334322] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.335022] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.335771] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.336533] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.337296] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.337992] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.338751] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.339667] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.341881] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.343576] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.345321] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.346868] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.348533] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.350081] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.351581] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.353002] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.354499] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.356088] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.357503] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.358895] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.360353] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.361742] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.363168] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.364611] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1194.366002] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 01:50:05 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 4) 01:50:05 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0}, './cgroup/cgroup.procs/file0\x00'}) 01:50:05 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 43) 01:50:05 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x2103000000000000, 0x0, 0xfdef) 01:50:05 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x7f3b97156000) 01:50:05 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) fork() r1 = fork() ptrace(0x10, r1) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r1) 01:50:05 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x700000000000000) 01:50:05 executing program 7: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) fork() r1 = fork() ptrace(0x10, r1) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r1) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) [ 1208.724205] FAULT_INJECTION: forcing a failure. [ 1208.724205] name failslab, interval 1, probability 0, space 0, times 0 [ 1208.726666] CPU: 1 PID: 7657 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1208.728113] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1208.729894] Call Trace: [ 1208.730479] dump_stack+0x107/0x167 01:50:05 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x3f00000000000000, 0x0, 0xfdef) [ 1208.731273] should_fail.cold+0x5/0xa [ 1208.732301] ? create_object.isra.0+0x3a/0xa20 [ 1208.733298] should_failslab+0x5/0x20 [ 1208.734103] kmem_cache_alloc+0x5b/0x310 [ 1208.734989] create_object.isra.0+0x3a/0xa20 [ 1208.735924] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1208.737027] kmem_cache_alloc+0x159/0x310 [ 1208.737930] radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 1208.739137] idr_get_free+0x4b5/0x8f0 [ 1208.739975] idr_alloc_u32+0x170/0x2d0 [ 1208.740833] ? __fprop_inc_percpu_max+0x130/0x130 [ 1208.741871] ? p9_client_prepare_req.part.0+0x20a/0xac0 [ 1208.743019] ? lock_release+0x680/0x680 [ 1208.743876] idr_alloc+0xc2/0x130 [ 1208.744708] ? idr_alloc_u32+0x2d0/0x2d0 [ 1208.745585] ? rwlock_bug.part.0+0x90/0x90 [ 1208.746518] p9_client_prepare_req.part.0+0x612/0xac0 [ 1208.747625] p9_client_rpc+0x220/0x1370 [ 1208.748480] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1208.749617] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 1208.750773] ? pipe_poll+0x21b/0x7f0 [ 1208.751575] ? p9_fd_close+0x4a0/0x4a0 [ 1208.752404] ? anon_pipe_buf_release+0x280/0x280 [ 1208.753432] ? p9_fd_poll+0x1e0/0x2c0 [ 1208.754272] ? p9_fd_create+0x357/0x4a0 [ 1208.755112] ? p9_conn_create+0x510/0x510 [ 1208.756001] ? p9_client_create+0x798/0x1230 [ 1208.756965] ? kfree+0xd7/0x340 [ 1208.757674] ? do_raw_spin_unlock+0x4f/0x220 [ 1208.758644] p9_client_create+0xa76/0x1230 [ 1208.759673] ? p9_client_flush+0x430/0x430 [ 1208.760596] FAULT_INJECTION: forcing a failure. [ 1208.760596] name failslab, interval 1, probability 0, space 0, times 0 [ 1208.760737] ? trace_hardirqs_on+0x5b/0x180 [ 1208.763157] ? lockdep_init_map_type+0x2c7/0x780 [ 1208.764390] ? __raw_spin_lock_init+0x36/0x110 [ 1208.765429] v9fs_session_init+0x1dd/0x1680 [ 1208.766361] ? lock_release+0x680/0x680 [ 1208.767223] ? kmem_cache_alloc_trace+0x151/0x320 [ 1208.768264] ? v9fs_show_options+0x690/0x690 [ 1208.769232] ? trace_hardirqs_on+0x5b/0x180 [ 1208.770144] ? kasan_unpoison_shadow+0x33/0x50 [ 1208.771221] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1208.772594] v9fs_mount+0x79/0x8f0 [ 1208.773535] ? v9fs_write_inode+0x60/0x60 [ 1208.774619] legacy_get_tree+0x105/0x220 [ 1208.775702] vfs_get_tree+0x8e/0x300 [ 1208.776714] path_mount+0x1429/0x2120 [ 1208.777602] ? strncpy_from_user+0x9e/0x470 [ 1208.778579] ? finish_automount+0xa90/0xa90 [ 1208.779519] ? getname_flags.part.0+0x1dd/0x4f0 [ 1208.780615] ? _copy_from_user+0xfb/0x1b0 [ 1208.781565] __x64_sys_mount+0x282/0x300 [ 1208.782440] ? copy_mnt_ns+0xa00/0xa00 [ 1208.783279] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1208.784403] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1208.785532] do_syscall_64+0x33/0x40 [ 1208.786333] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1208.787419] RIP: 0033:0x7f20beb15b19 [ 1208.788210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1208.792145] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1208.793793] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1208.795341] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1208.796861] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1208.798405] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1208.799940] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 [ 1208.801506] CPU: 0 PID: 7666 Comm: syz-executor.0 Not tainted 5.10.230 #1 [ 1208.802426] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1208.803428] Call Trace: [ 1208.803755] dump_stack+0x107/0x167 [ 1208.804195] should_fail.cold+0x5/0xa [ 1208.804671] ? create_object.isra.0+0x3a/0xa20 [ 1208.805224] should_failslab+0x5/0x20 [ 1208.805686] kmem_cache_alloc+0x5b/0x310 [ 1208.806177] create_object.isra.0+0x3a/0xa20 [ 1208.806711] kmemleak_alloc_percpu+0xa0/0x100 [ 1208.807257] pcpu_alloc+0x4e2/0x1240 [ 1208.807716] __percpu_counter_init+0x10d/0x2d0 [ 1208.808346] io_uring_alloc_task_context+0xcc/0x6a0 [ 1208.809038] ? io_import_iovec+0x1120/0x1120 [ 1208.809581] ? find_held_lock+0x2c/0x110 [ 1208.810086] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1208.810680] __io_uring_add_tctx_node+0x2c6/0x520 [ 1208.811263] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1208.811901] __do_sys_io_uring_enter+0x146f/0x1890 [ 1208.812494] ? find_held_lock+0x2c/0x110 [ 1208.812999] ? io_submit_sqes+0x8610/0x8610 [ 1208.813524] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1208.814107] ? wait_for_completion_io+0x270/0x270 [ 1208.814693] ? rcu_read_lock_any_held+0x75/0xa0 [ 1208.815251] ? vfs_write+0x354/0xb10 [ 1208.815699] ? fput_many+0x2f/0x1a0 [ 1208.816140] ? ksys_write+0x1a9/0x260 [ 1208.816608] ? __ia32_sys_read+0xb0/0xb0 [ 1208.817100] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1208.817730] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1208.818351] do_syscall_64+0x33/0x40 [ 1208.818801] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1208.819420] RIP: 0033:0x7f17a5d2cb19 [ 1208.819872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1208.822084] RSP: 002b:00007f17a3281188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1208.823005] RAX: ffffffffffffffda RBX: 00007f17a5e40020 RCX: 00007f17a5d2cb19 [ 1208.823873] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003 [ 1208.824737] RBP: 00007f17a32811d0 R08: 0000000000000000 R09: 0000000000000000 [ 1208.825599] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1208.826457] R13: 00007fff0b454aef R14: 00007f17a3281300 R15: 0000000000022000 [ 1208.852079] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.852885] print_req_error: 120 callbacks suppressed [ 1208.852896] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1208.854769] buffer_io_error: 126 callbacks suppressed [ 1208.854775] Buffer I/O error on dev sr0, logical block 0, async page read 01:50:05 executing program 7: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) fork() r1 = fork() ptrace(0x10, r1) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r1) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r3, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) [ 1208.870565] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.871509] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1208.872740] Buffer I/O error on dev sr0, logical block 1, async page read [ 1208.874772] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.875441] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1208.876686] Buffer I/O error on dev sr0, logical block 2, async page read [ 1208.877648] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.878373] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1208.879587] Buffer I/O error on dev sr0, logical block 3, async page read [ 1208.880531] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.881183] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1208.882424] Buffer I/O error on dev sr0, logical block 4, async page read [ 1208.883395] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.884040] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1208.885338] Buffer I/O error on dev sr0, logical block 5, async page read [ 1208.886285] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.886929] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1208.888155] Buffer I/O error on dev sr0, logical block 6, async page read [ 1208.889131] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.889810] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1208.891029] Buffer I/O error on dev sr0, logical block 7, async page read [ 1208.895571] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.896869] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1208.899747] Buffer I/O error on dev sr0, logical block 0, async page read [ 1208.904285] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.905681] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1208.907815] Buffer I/O error on dev sr0, logical block 1, async page read [ 1208.909489] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.910853] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.912290] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 01:50:05 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) io_uring_setup(0x725, &(0x7f0000000000)={0x0, 0xae7a, 0x0, 0x3, 0x380, 0x0, r0}) open_by_handle_at(r0, &(0x7f0000000080)=ANY=[@ANYRESOCT], 0x0) 01:50:05 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x900000000000000) [ 1208.913687] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.915380] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.916776] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.918163] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.919517] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.920880] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.922315] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.923691] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.925079] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.926525] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.927896] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.929379] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.930766] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.932140] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.933553] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.934925] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.936373] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.937785] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.939296] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.940695] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.942157] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.945884] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.947413] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 01:50:05 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x7f3b992d6000) 01:50:05 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x6400000000000000, 0x0, 0xfdef) [ 1208.952395] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.953162] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.953911] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.954670] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.955744] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.956496] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.957284] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.957993] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.958736] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.959488] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.960222] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.960941] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.961713] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.962483] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.963240] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.963954] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.964715] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.965486] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.966223] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.966939] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.967795] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.968547] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.969306] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.970017] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.970766] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.971569] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.972308] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.973023] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.973807] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.974550] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.975305] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.976017] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.976769] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.977531] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.978273] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.978989] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.979789] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.980540] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.981298] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.982009] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.982751] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.983486] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.984211] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.984928] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.985679] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.986412] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.987127] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.987855] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.988590] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.989323] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.990024] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.990750] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.991501] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.992235] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.992983] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.993709] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.994442] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.995156] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.995916] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.996678] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.997430] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.998135] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.998890] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1208.999631] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.000557] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.001291] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.002003] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.002756] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.003506] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.004402] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.005120] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.005857] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.006618] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.007349] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.008051] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.008953] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.009700] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.010448] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.011153] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.011890] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.012698] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.013433] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.014135] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.014861] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.015621] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.016361] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.017080] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.017822] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.018558] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.019323] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.020031] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.020787] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.021555] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.022292] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.022995] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.023744] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.024471] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.025223] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.025932] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.026670] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.027435] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.028153] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.028913] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.029667] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.030406] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.031105] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.031856] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.032599] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.033370] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.034069] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.034800] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.035547] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.036278] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.036988] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.037738] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.038472] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.039224] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.039928] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.040684] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.041445] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.042147] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.042901] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.043661] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.044399] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.045542] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.046463] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.047166] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.047895] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 01:50:05 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) fork() r1 = fork() ptrace(0x10, r1) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) ptrace(0x10, r1) [ 1209.049516] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.050708] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.051450] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.052249] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.052990] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.053725] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.054712] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.055481] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.056186] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.056938] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.057668] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.058412] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.059135] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.059874] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.060639] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.061374] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.062076] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.062833] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.063584] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.064334] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.065059] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.065791] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.066567] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.067331] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.068046] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.068811] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.069548] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.070368] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.071103] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.071850] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.072613] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.073356] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.074064] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.074883] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.075632] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.076396] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.077116] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.077848] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.078605] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.079338] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.080044] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.080811] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.081545] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.082286] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.083002] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.083740] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.084491] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.085239] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.085946] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.086702] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.087481] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.088234] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.088957] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.089693] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.090445] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.091151] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.091895] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.092680] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.093418] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.094126] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.094885] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.095623] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.096367] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.097080] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.097813] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.098564] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.099297] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.100004] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.100783] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.101526] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.102277] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.102980] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.103720] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.104478] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.105221] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.106149] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.107657] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.109072] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.110462] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.111861] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.113355] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.114743] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.116121] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.117586] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.119000] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.120445] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.121855] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.123343] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.124787] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.126300] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.127673] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.129082] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.130519] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.131912] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.133388] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.134760] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.136187] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.137887] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.139649] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.141545] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.143449] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.145344] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.147074] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 01:50:05 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x8000000000000) [ 1209.152705] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.154809] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.156593] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.158410] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.160131] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.161925] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.163682] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.165467] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.167016] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.168633] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.170315] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1209.215551] cgroup: fork rejected by pids controller in /syz5 01:50:19 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 44) 01:50:19 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) fork() r1 = fork() ptrace(0x10, r1) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) ptrace(0x10, r1) 01:50:19 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2) (fail_nth: 1) 01:50:19 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0xa00000000000000) 01:50:19 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 5) [ 1223.043986] FAULT_INJECTION: forcing a failure. [ 1223.043986] name failslab, interval 1, probability 0, space 0, times 0 [ 1223.045434] CPU: 1 PID: 7802 Comm: syz-executor.7 Not tainted 5.10.230 #1 [ 1223.046265] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1223.047260] Call Trace: [ 1223.047581] dump_stack+0x107/0x167 [ 1223.048023] should_fail.cold+0x5/0xa [ 1223.048494] ? kvmalloc_node+0x119/0x170 [ 1223.048986] should_failslab+0x5/0x20 [ 1223.049460] __kmalloc_node+0x76/0x420 [ 1223.049932] kvmalloc_node+0x119/0x170 [ 1223.050400] seq_read_iter+0x9d6/0x12b0 [ 1223.050886] seq_read+0x3dd/0x5b0 [ 1223.051319] ? seq_read_iter+0x12b0/0x12b0 [ 1223.051835] ? fsnotify_perm.part.0+0x22d/0x620 [ 1223.052397] ? security_file_permission+0xb1/0xe0 [ 1223.052976] ? seq_read_iter+0x12b0/0x12b0 [ 1223.053501] vfs_read+0x228/0x620 [ 1223.053922] __x64_sys_pread64+0x201/0x260 [ 1223.054433] ? ksys_pread64+0x1b0/0x1b0 [ 1223.054914] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1223.055543] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1223.056161] do_syscall_64+0x33/0x40 [ 1223.056608] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1223.057268] RIP: 0033:0x7f3aaff45b19 [ 1223.057716] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1223.059911] RSP: 002b:00007f3aad4bb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 1223.060820] RAX: ffffffffffffffda RBX: 00007f3ab0058f60 RCX: 00007f3aaff45b19 [ 1223.061690] RDX: 0000000020001be3 RSI: 0000000020001100 RDI: 0000000000000003 [ 1223.062548] RBP: 00007f3aad4bb1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1223.063399] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 1223.064257] R13: 00007ffd6712cd0f R14: 00007f3aad4bb300 R15: 0000000000022000 01:50:19 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x8102000000000000, 0x0, 0xfdef) 01:50:19 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x20000000000000) 01:50:19 executing program 2: r0 = dup(0xffffffffffffffff) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r1, 0x0, 0x0) lseek(r1, 0xfffffffffffff014, 0x0) getdents64(r1, &(0x7f00000001c0)=""/251, 0xfb) ioctl$LOOP_SET_FD(r0, 0x4c00, r1) r2 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) [ 1223.098818] FAULT_INJECTION: forcing a failure. [ 1223.098818] name failslab, interval 1, probability 0, space 0, times 0 [ 1223.101887] CPU: 0 PID: 7807 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1223.103558] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1223.105565] Call Trace: [ 1223.106200] dump_stack+0x107/0x167 [ 1223.107076] should_fail.cold+0x5/0xa [ 1223.108002] ? radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 1223.109392] should_failslab+0x5/0x20 [ 1223.110305] kmem_cache_alloc+0x5b/0x310 [ 1223.111298] radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 1223.112644] idr_get_free+0x4b5/0x8f0 [ 1223.113586] idr_alloc_u32+0x170/0x2d0 [ 1223.114531] ? __fprop_inc_percpu_max+0x130/0x130 [ 1223.115693] ? p9_client_prepare_req.part.0+0x20a/0xac0 [ 1223.116992] ? lock_release+0x680/0x680 [ 1223.117959] idr_alloc+0xc2/0x130 [ 1223.118788] ? idr_alloc_u32+0x2d0/0x2d0 [ 1223.119775] ? rwlock_bug.part.0+0x90/0x90 [ 1223.120807] p9_client_prepare_req.part.0+0x612/0xac0 [ 1223.122061] p9_client_rpc+0x220/0x1370 [ 1223.123019] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1223.124287] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 1223.125577] ? pipe_poll+0x21b/0x7f0 [ 1223.126469] ? p9_fd_close+0x4a0/0x4a0 [ 1223.127399] ? anon_pipe_buf_release+0x280/0x280 [ 1223.128538] ? p9_fd_poll+0x1e0/0x2c0 [ 1223.129469] ? p9_fd_create+0x357/0x4a0 [ 1223.130419] ? p9_conn_create+0x510/0x510 [ 1223.131413] ? p9_client_create+0x798/0x1230 [ 1223.132470] ? kfree+0xd7/0x340 [ 1223.133267] ? do_raw_spin_unlock+0x4f/0x220 [ 1223.134332] p9_client_create+0xa76/0x1230 [ 1223.135358] ? p9_client_flush+0x430/0x430 [ 1223.136381] ? trace_hardirqs_on+0x5b/0x180 [ 1223.137428] ? lockdep_init_map_type+0x2c7/0x780 [ 1223.138576] ? __raw_spin_lock_init+0x36/0x110 [ 1223.139679] v9fs_session_init+0x1dd/0x1680 [ 1223.140721] ? lock_release+0x680/0x680 [ 1223.141688] ? kmem_cache_alloc_trace+0x151/0x320 [ 1223.142838] ? v9fs_show_options+0x690/0x690 [ 1223.143904] ? trace_hardirqs_on+0x5b/0x180 [ 1223.144940] ? kasan_unpoison_shadow+0x33/0x50 [ 1223.146054] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1223.147272] v9fs_mount+0x79/0x8f0 [ 1223.148125] ? v9fs_write_inode+0x60/0x60 [ 1223.149134] legacy_get_tree+0x105/0x220 [ 1223.150107] vfs_get_tree+0x8e/0x300 [ 1223.151001] path_mount+0x1429/0x2120 [ 1223.151925] ? strncpy_from_user+0x9e/0x470 [ 1223.152958] ? finish_automount+0xa90/0xa90 [ 1223.154004] ? getname_flags.part.0+0x1dd/0x4f0 [ 1223.155118] ? _copy_from_user+0xfb/0x1b0 [ 1223.156125] __x64_sys_mount+0x282/0x300 [ 1223.157108] ? copy_mnt_ns+0xa00/0xa00 [ 1223.158049] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1223.159471] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1223.160841] do_syscall_64+0x33/0x40 [ 1223.161747] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1223.162978] RIP: 0033:0x7f20beb15b19 [ 1223.163869] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1223.168296] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1223.170213] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1223.171928] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1223.173651] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1223.175355] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1223.177063] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:50:19 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) fork() r1 = fork() ptrace(0x10, r1) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) ptrace(0x10, r1) [ 1223.187373] FAULT_INJECTION: forcing a failure. [ 1223.187373] name failslab, interval 1, probability 0, space 0, times 0 [ 1223.190317] CPU: 0 PID: 7819 Comm: syz-executor.0 Not tainted 5.10.230 #1 [ 1223.191977] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1223.194029] Call Trace: [ 1223.194677] dump_stack+0x107/0x167 [ 1223.195563] should_fail.cold+0x5/0xa [ 1223.196483] ? io_wq_create+0xeb/0xc00 [ 1223.197435] should_failslab+0x5/0x20 [ 1223.198346] __kmalloc+0x72/0x390 [ 1223.199189] io_wq_create+0xeb/0xc00 [ 1223.200103] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1223.201353] ? io_import_iovec+0x1120/0x1120 [ 1223.202408] ? io_apoll_task_func+0x2d0/0x2d0 [ 1223.203475] ? __io_req_find_next+0x300/0x300 [ 1223.204562] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1223.205754] __io_uring_add_tctx_node+0x2c6/0x520 [ 1223.206920] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1223.208215] __do_sys_io_uring_enter+0x146f/0x1890 [ 1223.209415] ? find_held_lock+0x2c/0x110 [ 1223.210412] ? io_submit_sqes+0x8610/0x8610 [ 1223.211459] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1223.212641] ? wait_for_completion_io+0x270/0x270 [ 1223.213813] ? rcu_read_lock_any_held+0x75/0xa0 [ 1223.214936] ? vfs_write+0x354/0xb10 [ 1223.215840] ? fput_many+0x2f/0x1a0 [ 1223.216731] ? ksys_write+0x1a9/0x260 [ 1223.217653] ? __ia32_sys_read+0xb0/0xb0 [ 1223.218659] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1223.219913] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1223.221164] do_syscall_64+0x33/0x40 [ 1223.222052] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1223.223290] RIP: 0033:0x7f17a5d2cb19 [ 1223.224195] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1223.228698] RSP: 002b:00007f17a3281188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1223.230579] RAX: ffffffffffffffda RBX: 00007f17a5e40020 RCX: 00007f17a5d2cb19 [ 1223.232304] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003 [ 1223.234052] RBP: 00007f17a32811d0 R08: 0000000000000000 R09: 0000000000000000 [ 1223.235792] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1223.237540] R13: 00007fff0b454aef R14: 00007f17a3281300 R15: 0000000000022000 01:50:19 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2) (fail_nth: 2) 01:50:19 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) chown(&(0x7f0000000000)='./cgroup/cgroup.procs\x00', 0x0, 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="18"], 0x0) [ 1223.255689] FAULT_INJECTION: forcing a failure. [ 1223.255689] name failslab, interval 1, probability 0, space 0, times 0 [ 1223.257094] CPU: 1 PID: 7829 Comm: syz-executor.7 Not tainted 5.10.230 #1 [ 1223.257872] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1223.258837] Call Trace: [ 1223.259143] dump_stack+0x107/0x167 [ 1223.259560] should_fail.cold+0x5/0xa [ 1223.259995] ? create_object.isra.0+0x3a/0xa20 [ 1223.260512] should_failslab+0x5/0x20 [ 1223.260944] kmem_cache_alloc+0x5b/0x310 [ 1223.261438] create_object.isra.0+0x3a/0xa20 [ 1223.261931] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1223.262527] __kmalloc_node+0x1ae/0x420 [ 1223.262984] kvmalloc_node+0x119/0x170 [ 1223.263444] seq_read_iter+0x9d6/0x12b0 [ 1223.263903] seq_read+0x3dd/0x5b0 [ 1223.264311] ? seq_read_iter+0x12b0/0x12b0 [ 1223.264814] ? fsnotify_perm.part.0+0x22d/0x620 [ 1223.265378] ? security_file_permission+0xb1/0xe0 [ 1223.265942] ? seq_read_iter+0x12b0/0x12b0 [ 1223.266419] vfs_read+0x228/0x620 [ 1223.266828] __x64_sys_pread64+0x201/0x260 [ 1223.267305] ? ksys_pread64+0x1b0/0x1b0 [ 1223.267775] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1223.268383] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1223.268982] do_syscall_64+0x33/0x40 [ 1223.269416] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1223.270012] RIP: 0033:0x7f3aaff45b19 [ 1223.270430] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1223.272557] RSP: 002b:00007f3aad4bb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 1223.273420] RAX: ffffffffffffffda RBX: 00007f3ab0058f60 RCX: 00007f3aaff45b19 [ 1223.274212] RDX: 0000000020001be3 RSI: 0000000020001100 RDI: 0000000000000003 [ 1223.275005] RBP: 00007f3aad4bb1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1223.275793] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 1223.276588] R13: 00007ffd6712cd0f R14: 00007f3aad4bb300 R15: 0000000000022000 01:50:34 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 6) 01:50:34 executing program 2: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000200)=ANY=[@ANYBLOB="58875c3a03760e122f17a90f4d9f69b261b065814b7ca5f6e43c8666c78938c30d0fc40d9e89f352d919adcb1c774c392d6ee3e11621cb8ee2af23c7cd629cf45a4a4ead9bfb6b7c5d130bdd44a163a15faf14dc697ecc7c4f985c2234b5484ec487bdb7b913c8f1ca2da9dd5791d5df67ee22012a6d712ca61bf7a6159265e310e4d55540fbd6732416ce38bb17648d17f03cf261d0605adc99e7a3c0457a0252216d88565d2c7197cd1227fb4104a69b671e0c674a1b7f038e41f5f326680c75f8e4e9178375807c1d"], 0x0) 01:50:34 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2) (fail_nth: 3) 01:50:34 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) fork() r1 = fork() ptrace(0x10, r1) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r1) 01:50:34 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xeffd000000000000, 0x0, 0xfdef) 01:50:34 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x5073963b7f0000) 01:50:34 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x4800000000000000) 01:50:34 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 45) [ 1238.237996] FAULT_INJECTION: forcing a failure. [ 1238.237996] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1238.240512] CPU: 1 PID: 7938 Comm: syz-executor.7 Not tainted 5.10.230 #1 [ 1238.241961] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1238.243699] Call Trace: [ 1238.244262] dump_stack+0x107/0x167 [ 1238.245036] should_fail.cold+0x5/0xa [ 1238.245863] _copy_to_iter+0x264/0x12d0 [ 1238.246709] ? mmput+0x47/0x340 [ 1238.247405] ? _copy_from_iter_nocache+0xd60/0xd60 [ 1238.248442] ? __virt_addr_valid+0x170/0x5d0 [ 1238.249361] ? __check_object_size+0x319/0x440 [ 1238.250314] seq_read_iter+0x71a/0x12b0 [ 1238.251155] seq_read+0x3dd/0x5b0 [ 1238.251879] ? seq_read_iter+0x12b0/0x12b0 [ 1238.252780] ? fsnotify_perm.part.0+0x22d/0x620 [ 1238.253762] ? security_file_permission+0xb1/0xe0 [ 1238.254774] ? seq_read_iter+0x12b0/0x12b0 [ 1238.255648] vfs_read+0x228/0x620 [ 1238.256383] __x64_sys_pread64+0x201/0x260 [ 1238.257273] ? ksys_pread64+0x1b0/0x1b0 [ 1238.258111] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1238.259219] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1238.260296] do_syscall_64+0x33/0x40 [ 1238.261075] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1238.262153] RIP: 0033:0x7f3aaff45b19 [ 1238.262923] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1238.266753] RSP: 002b:00007f3aad4bb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 1238.268331] RAX: ffffffffffffffda RBX: 00007f3ab0058f60 RCX: 00007f3aaff45b19 [ 1238.269833] RDX: 0000000020001be3 RSI: 0000000020001100 RDI: 0000000000000003 [ 1238.271354] RBP: 00007f3aad4bb1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1238.273060] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 1238.274778] R13: 00007ffd6712cd0f R14: 00007f3aad4bb300 R15: 0000000000022000 [ 1238.308816] FAULT_INJECTION: forcing a failure. [ 1238.308816] name failslab, interval 1, probability 0, space 0, times 0 [ 1238.310488] CPU: 0 PID: 7953 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1238.311468] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1238.312669] Call Trace: [ 1238.313055] dump_stack+0x107/0x167 [ 1238.313596] should_fail.cold+0x5/0xa [ 1238.314160] ? create_object.isra.0+0x3a/0xa20 [ 1238.314821] should_failslab+0x5/0x20 [ 1238.315377] kmem_cache_alloc+0x5b/0x310 [ 1238.315971] create_object.isra.0+0x3a/0xa20 [ 1238.316608] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1238.317342] kmem_cache_alloc+0x159/0x310 [ 1238.317958] radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 1238.318768] idr_get_free+0x4b5/0x8f0 [ 1238.319327] idr_alloc_u32+0x170/0x2d0 [ 1238.319889] ? __fprop_inc_percpu_max+0x130/0x130 [ 1238.320684] ? p9_client_prepare_req.part.0+0x20a/0xac0 [ 1238.321449] ? lock_release+0x680/0x680 [ 1238.322039] idr_alloc+0xc2/0x130 [ 1238.322559] ? idr_alloc_u32+0x2d0/0x2d0 [ 1238.323176] ? rwlock_bug.part.0+0x90/0x90 [ 1238.323804] p9_client_prepare_req.part.0+0x612/0xac0 [ 1238.324560] p9_client_rpc+0x220/0x1370 [ 1238.325145] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1238.325921] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 1238.326686] ? pipe_poll+0x21b/0x7f0 [ 1238.327220] ? p9_fd_close+0x4a0/0x4a0 [ 1238.327778] ? anon_pipe_buf_release+0x280/0x280 [ 1238.328464] ? p9_fd_poll+0x1e0/0x2c0 [ 1238.329017] ? p9_fd_create+0x357/0x4a0 [ 1238.329604] ? p9_conn_create+0x510/0x510 [ 1238.330207] ? p9_client_create+0x798/0x1230 [ 1238.330838] ? kfree+0xd7/0x340 [ 1238.331316] ? do_raw_spin_unlock+0x4f/0x220 [ 1238.331952] p9_client_create+0xa76/0x1230 [ 1238.332572] ? p9_client_flush+0x430/0x430 [ 1238.333198] ? trace_hardirqs_on+0x5b/0x180 [ 1238.333840] ? lockdep_init_map_type+0x2c7/0x780 [ 1238.334520] ? __raw_spin_lock_init+0x36/0x110 [ 1238.335177] v9fs_session_init+0x1dd/0x1680 [ 1238.335795] ? lock_release+0x680/0x680 [ 1238.336377] ? kmem_cache_alloc_trace+0x151/0x320 [ 1238.337081] ? v9fs_show_options+0x690/0x690 [ 1238.337726] ? trace_hardirqs_on+0x5b/0x180 [ 1238.338350] ? kasan_unpoison_shadow+0x33/0x50 [ 1238.339008] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1238.339737] v9fs_mount+0x79/0x8f0 [ 1238.340245] ? v9fs_write_inode+0x60/0x60 [ 1238.340836] legacy_get_tree+0x105/0x220 [ 1238.341416] vfs_get_tree+0x8e/0x300 [ 1238.341954] path_mount+0x1429/0x2120 [ 1238.342505] ? strncpy_from_user+0x9e/0x470 [ 1238.343139] ? finish_automount+0xa90/0xa90 [ 1238.343749] ? getname_flags.part.0+0x1dd/0x4f0 01:50:34 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x6015973b7f0000) [ 1238.344419] ? _copy_from_user+0xfb/0x1b0 [ 1238.345216] __x64_sys_mount+0x282/0x300 [ 1238.345808] ? copy_mnt_ns+0xa00/0xa00 [ 1238.346406] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1238.347270] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1238.348007] do_syscall_64+0x33/0x40 [ 1238.348534] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1238.349290] RIP: 0033:0x7f20beb15b19 [ 1238.349841] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1238.352445] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1238.353528] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1238.354548] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1238.355553] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1238.356561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1238.357579] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 [ 1238.366521] FAULT_INJECTION: forcing a failure. [ 1238.366521] name failslab, interval 1, probability 0, space 0, times 0 [ 1238.369301] CPU: 1 PID: 7952 Comm: syz-executor.0 Not tainted 5.10.230 #1 [ 1238.370928] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1238.372887] Call Trace: [ 1238.373503] dump_stack+0x107/0x167 [ 1238.374384] should_fail.cold+0x5/0xa [ 1238.375279] ? create_object.isra.0+0x3a/0xa20 [ 1238.376362] should_failslab+0x5/0x20 [ 1238.377265] kmem_cache_alloc+0x5b/0x310 [ 1238.378223] ? mark_held_locks+0x9e/0xe0 [ 1238.379198] create_object.isra.0+0x3a/0xa20 [ 1238.380230] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1238.381426] kmem_cache_alloc_bulk+0x168/0x320 [ 1238.382504] io_submit_sqes+0x6fe6/0x8610 [ 1238.383513] ? __do_sys_io_uring_enter+0x6b2/0x1890 [ 1238.384667] __do_sys_io_uring_enter+0x6b2/0x1890 [ 1238.385799] ? find_held_lock+0x2c/0x110 [ 1238.386747] ? io_submit_sqes+0x8610/0x8610 [ 1238.387761] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1238.388887] ? wait_for_completion_io+0x270/0x270 [ 1238.390020] ? rcu_read_lock_any_held+0x75/0xa0 [ 1238.391090] ? vfs_write+0x354/0xb10 [ 1238.391952] ? fput_many+0x2f/0x1a0 [ 1238.392796] ? ksys_write+0x1a9/0x260 [ 1238.393687] ? __ia32_sys_read+0xb0/0xb0 [ 1238.394638] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1238.395848] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1238.397048] do_syscall_64+0x33/0x40 [ 1238.397916] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1238.399096] RIP: 0033:0x7f17a5d2cb19 [ 1238.399956] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1238.404161] RSP: 002b:00007f17a32a2188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1238.405907] RAX: ffffffffffffffda RBX: 00007f17a5e3ff60 RCX: 00007f17a5d2cb19 [ 1238.407543] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003 [ 1238.409168] RBP: 00007f17a32a21d0 R08: 0000000000000000 R09: 0000000000000000 [ 1238.410803] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1238.412440] R13: 00007fff0b454aef R14: 00007f17a32a2300 R15: 0000000000022000 01:50:35 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xf4ffffff00000000, 0x0, 0xfdef) 01:50:35 executing program 2: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 1) 01:50:35 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x602d993b7f0000) 01:50:35 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xfbffffff00000000, 0x0, 0xfdef) [ 1238.504384] FAULT_INJECTION: forcing a failure. [ 1238.504384] name failslab, interval 1, probability 0, space 0, times 0 [ 1238.505925] CPU: 0 PID: 8046 Comm: syz-executor.2 Not tainted 5.10.230 #1 [ 1238.506844] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1238.507960] Call Trace: [ 1238.508315] dump_stack+0x107/0x167 [ 1238.508800] should_fail.cold+0x5/0xa [ 1238.509317] should_failslab+0x5/0x20 [ 1238.509843] kmem_cache_alloc_bulk+0x4b/0x320 [ 1238.510447] io_submit_sqes+0x6fe6/0x8610 [ 1238.511022] ? __do_sys_io_uring_enter+0x6b2/0x1890 [ 1238.511681] __do_sys_io_uring_enter+0x6b2/0x1890 [ 1238.512330] ? find_held_lock+0x2c/0x110 [ 1238.512884] ? io_submit_sqes+0x8610/0x8610 [ 1238.513469] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1238.514132] ? wait_for_completion_io+0x270/0x270 [ 1238.514781] ? rcu_read_lock_any_held+0x75/0xa0 [ 1238.515396] ? vfs_write+0x354/0xb10 [ 1238.515901] ? fput_many+0x2f/0x1a0 [ 1238.516385] ? ksys_write+0x1a9/0x260 [ 1238.516892] ? __ia32_sys_read+0xb0/0xb0 [ 1238.517431] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1238.518138] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1238.518824] do_syscall_64+0x33/0x40 [ 1238.519312] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1238.519992] RIP: 0033:0x7fd0b0999b19 [ 1238.520499] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1238.522403] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.522954] RSP: 002b:00007fd0adf0f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1238.524158] print_req_error: 268 callbacks suppressed [ 1238.524182] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1238.525102] RAX: ffffffffffffffda RBX: 00007fd0b0aacf60 RCX: 00007fd0b0999b19 [ 1238.525114] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003 [ 1238.526246] buffer_io_error: 270 callbacks suppressed [ 1238.526258] Buffer I/O error on dev sr0, logical block 0, async page read [ 1238.527512] RBP: 00007fd0adf0f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1238.527518] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1238.527524] R13: 00007ffd2a764c5f R14: 00007fd0adf0f300 R15: 0000000000022000 [ 1238.542411] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.543778] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1238.545919] Buffer I/O error on dev sr0, logical block 1, async page read [ 1238.548209] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.548945] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1238.550271] Buffer I/O error on dev sr0, logical block 2, async page read [ 1238.551284] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.551987] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1238.553764] Buffer I/O error on dev sr0, logical block 3, async page read [ 1238.555148] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.556411] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1238.557733] Buffer I/O error on dev sr0, logical block 4, async page read 01:50:35 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) fork() r1 = fork() ptrace(0x10, r1) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r1) 01:50:35 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x60f5963b7f0000) [ 1238.558748] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.559694] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1238.560995] Buffer I/O error on dev sr0, logical block 5, async page read [ 1238.561997] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.562716] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1238.564009] Buffer I/O error on dev sr0, logical block 6, async page read [ 1238.564989] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.565714] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1238.566991] Buffer I/O error on dev sr0, logical block 7, async page read [ 1238.567975] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.568691] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1238.569975] Buffer I/O error on dev sr0, logical block 0, async page read [ 1238.573259] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.573962] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1238.575241] Buffer I/O error on dev sr0, logical block 1, async page read [ 1238.576213] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.577269] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.580255] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.581001] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.582318] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.583069] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.583877] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.584823] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.585654] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.586448] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.587213] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.587981] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.588758] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.589565] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.590375] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.591115] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.591907] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.592702] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.593490] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.594293] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.595055] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.595843] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.596648] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.597424] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.598207] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.598962] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.599740] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.600518] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.601285] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.602032] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.602814] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.603584] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.604341] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.605073] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.605881] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.606664] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.607429] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.608174] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.608941] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.609702] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.610469] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.611226] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 01:50:35 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 7) [ 1238.651118] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1238.652330] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1238.653222] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1238.654123] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 01 00 00 01 00 [ 1238.705554] FAULT_INJECTION: forcing a failure. [ 1238.705554] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1238.707079] CPU: 0 PID: 8077 Comm: syz-executor.7 Not tainted 5.10.230 #1 [ 1238.707907] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1238.708913] Call Trace: [ 1238.709241] dump_stack+0x107/0x167 [ 1238.709701] should_fail.cold+0x5/0xa [ 1238.710165] __alloc_pages_nodemask+0x182/0x600 [ 1238.710727] ? add_mm_counter_fast+0x220/0x220 [ 1238.711286] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1238.712020] ? count_memcg_event_mm.part.0+0x10f/0x2f0 [ 1238.712654] ? lock_downgrade+0x6d0/0x6d0 [ 1238.713157] ? mark_held_locks+0x9e/0xe0 [ 1238.713684] alloc_pages_vma+0xbb/0x410 [ 1238.714166] handle_mm_fault+0x152f/0x3500 [ 1238.714685] ? __pmd_alloc+0x5e0/0x5e0 [ 1238.715165] ? vmacache_find+0x55/0x2a0 [ 1238.715651] ? vmacache_update+0xce/0x140 [ 1238.716164] do_user_addr_fault+0x56e/0xc60 [ 1238.716691] exc_page_fault+0xa2/0x1a0 [ 1238.717164] asm_exc_page_fault+0x1e/0x30 [ 1238.717677] RIP: 0010:copy_user_generic_string+0x2c/0x40 01:50:35 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2) (fail_nth: 4) [ 1238.718329] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 03 ab 1d 02 0f 1f 00 0f 01 [ 1238.720714] RSP: 0018:ffff88804b4e7ae8 EFLAGS: 00050202 [ 1238.721359] RAX: 0000000000000001 RBX: 000000000000027c RCX: 000000000000004f [ 1238.722223] RDX: 0000000000000004 RSI: ffff888009aca002 RDI: 0000000020001100 [ 1238.723078] RBP: 0000000020001100 R08: 0000000000000000 R09: ffff888009aca27d [ 1238.723937] R10: ffffed100135944f R11: 0000000000000001 R12: ffff888009aca002 [ 1238.724795] R13: 000000002000137c R14: 00007ffffffff000 R15: 0000000000000000 [ 1238.725678] copyout.part.0+0x10b/0x140 [ 1238.726162] _copy_to_iter+0x293/0x12d0 [ 1238.726648] ? mmput+0x47/0x340 [ 1238.727048] ? _copy_from_iter_nocache+0xd60/0xd60 [ 1238.727643] ? __virt_addr_valid+0x170/0x5d0 [ 1238.728181] ? __check_object_size+0x319/0x440 [ 1238.728739] seq_read_iter+0x71a/0x12b0 [ 1238.729232] seq_read+0x3dd/0x5b0 [ 1238.729661] ? seq_read_iter+0x12b0/0x12b0 [ 1238.730181] ? fsnotify_perm.part.0+0x22d/0x620 [ 1238.730745] ? security_file_permission+0xb1/0xe0 [ 1238.731333] ? seq_read_iter+0x12b0/0x12b0 [ 1238.731844] vfs_read+0x228/0x620 [ 1238.732270] __x64_sys_pread64+0x201/0x260 [ 1238.732781] ? ksys_pread64+0x1b0/0x1b0 [ 1238.733266] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1238.733902] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1238.734527] do_syscall_64+0x33/0x40 [ 1238.734978] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1238.735598] RIP: 0033:0x7f3aaff45b19 [ 1238.736047] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1238.738278] RSP: 002b:00007f3aad4bb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 1238.739195] RAX: ffffffffffffffda RBX: 00007f3ab0058f60 RCX: 00007f3aaff45b19 [ 1238.740053] RDX: 0000000020001be3 RSI: 0000000020001100 RDI: 0000000000000003 [ 1238.740913] RBP: 00007f3aad4bb1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1238.741784] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 1238.742641] R13: 00007ffd6712cd0f R14: 00007f3aad4bb300 R15: 0000000000022000 01:50:35 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0xf0ff1f00000000) 01:50:35 executing program 2: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 2) 01:50:35 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2) (fail_nth: 5) 01:50:35 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x4c00000000000000) 01:50:35 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xfeffffff00000000, 0x0, 0xfdef) [ 1238.789614] FAULT_INJECTION: forcing a failure. [ 1238.789614] name failslab, interval 1, probability 0, space 0, times 0 [ 1238.790999] CPU: 0 PID: 8078 Comm: syz-executor.0 Not tainted 5.10.230 #1 [ 1238.791819] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1238.792819] Call Trace: [ 1238.793141] dump_stack+0x107/0x167 [ 1238.793596] should_fail.cold+0x5/0xa [ 1238.794059] ? create_object.isra.0+0x3a/0xa20 [ 1238.794617] should_failslab+0x5/0x20 [ 1238.795077] kmem_cache_alloc+0x5b/0x310 [ 1238.795565] ? mark_held_locks+0x9e/0xe0 [ 1238.796058] create_object.isra.0+0x3a/0xa20 [ 1238.796583] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1238.797198] kmem_cache_alloc_bulk+0x168/0x320 [ 1238.797762] io_submit_sqes+0x6fe6/0x8610 [ 1238.798285] ? __do_sys_io_uring_enter+0x6b2/0x1890 [ 1238.798887] __do_sys_io_uring_enter+0x6b2/0x1890 [ 1238.799478] ? find_held_lock+0x2c/0x110 [ 1238.799969] ? io_submit_sqes+0x8610/0x8610 [ 1238.800508] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1238.801090] ? wait_for_completion_io+0x270/0x270 [ 1238.801687] ? rcu_read_lock_any_held+0x75/0xa0 [ 1238.802244] ? vfs_write+0x354/0xb10 [ 1238.802698] ? fput_many+0x2f/0x1a0 [ 1238.803139] ? ksys_write+0x1a9/0x260 [ 1238.803602] ? __ia32_sys_read+0xb0/0xb0 [ 1238.804093] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1238.804730] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1238.805353] do_syscall_64+0x33/0x40 [ 1238.805815] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1238.806433] RIP: 0033:0x7f17a5d2cb19 [ 1238.806880] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1238.809098] RSP: 002b:00007f17a32a2188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1238.810024] RAX: ffffffffffffffda RBX: 00007f17a5e3ff60 RCX: 00007f17a5d2cb19 [ 1238.810887] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003 [ 1238.811747] RBP: 00007f17a32a21d0 R08: 0000000000000000 R09: 0000000000000000 [ 1238.812604] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1238.813461] R13: 00007fff0b454aef R14: 00007f17a32a2300 R15: 0000000000022000 [ 1238.822229] FAULT_INJECTION: forcing a failure. [ 1238.822229] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1238.823684] CPU: 0 PID: 8108 Comm: syz-executor.7 Not tainted 5.10.230 #1 [ 1238.824508] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1238.825498] Call Trace: [ 1238.825825] dump_stack+0x107/0x167 [ 1238.826275] should_fail.cold+0x5/0xa [ 1238.826737] _copy_to_iter+0x264/0x12d0 [ 1238.827234] ? _down_write_nest_lock+0x160/0x160 [ 1238.827818] ? _copy_from_iter_nocache+0xd60/0xd60 [ 1238.828412] ? __virt_addr_valid+0x170/0x5d0 [ 1238.828939] ? __check_object_size+0x319/0x440 [ 1238.829500] seq_read_iter+0xdcb/0x12b0 [ 1238.830001] seq_read+0x3dd/0x5b0 [ 1238.830420] ? seq_read_iter+0x12b0/0x12b0 [ 1238.830939] ? fsnotify_perm.part.0+0x22d/0x620 [ 1238.831504] ? security_file_permission+0xb1/0xe0 [ 1238.832087] ? seq_read_iter+0x12b0/0x12b0 [ 1238.832604] vfs_read+0x228/0x620 [ 1238.833028] __x64_sys_pread64+0x201/0x260 [ 1238.833542] ? ksys_pread64+0x1b0/0x1b0 [ 1238.834031] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1238.834663] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1238.835284] do_syscall_64+0x33/0x40 [ 1238.835729] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1238.836347] RIP: 0033:0x7f3aaff45b19 [ 1238.836805] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1238.839018] RSP: 002b:00007f3aad4bb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 1238.839940] RAX: ffffffffffffffda RBX: 00007f3ab0058f60 RCX: 00007f3aaff45b19 [ 1238.840816] RDX: 0000000020001be3 RSI: 0000000020001100 RDI: 0000000000000003 [ 1238.841680] RBP: 00007f3aad4bb1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1238.842543] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 1238.843413] R13: 00007ffd6712cd0f R14: 00007f3aad4bb300 R15: 0000000000022000 [ 1238.864374] FAULT_INJECTION: forcing a failure. [ 1238.864374] name failslab, interval 1, probability 0, space 0, times 0 [ 1238.865764] CPU: 0 PID: 8109 Comm: syz-executor.2 Not tainted 5.10.230 #1 [ 1238.866594] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1238.867604] Call Trace: [ 1238.867926] dump_stack+0x107/0x167 [ 1238.868370] should_fail.cold+0x5/0xa [ 1238.868829] ? create_object.isra.0+0x3a/0xa20 [ 1238.869382] should_failslab+0x5/0x20 [ 1238.869846] kmem_cache_alloc+0x5b/0x310 [ 1238.870343] create_object.isra.0+0x3a/0xa20 [ 1238.870880] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1238.871495] kmem_cache_alloc_bulk+0x168/0x320 [ 1238.872054] io_submit_sqes+0x6fe6/0x8610 [ 1238.872574] ? __do_sys_io_uring_enter+0x6b2/0x1890 [ 1238.873179] __do_sys_io_uring_enter+0x6b2/0x1890 [ 1238.873777] ? find_held_lock+0x2c/0x110 [ 1238.874270] ? io_submit_sqes+0x8610/0x8610 [ 1238.874799] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1238.875393] ? wait_for_completion_io+0x270/0x270 [ 1238.875975] ? rcu_read_lock_any_held+0x75/0xa0 [ 1238.876534] ? vfs_write+0x354/0xb10 [ 1238.876985] ? fput_many+0x2f/0x1a0 [ 1238.877425] ? ksys_write+0x1a9/0x260 [ 1238.877892] ? __ia32_sys_read+0xb0/0xb0 [ 1238.878383] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1238.879013] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1238.879637] do_syscall_64+0x33/0x40 [ 1238.880085] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1238.880701] RIP: 0033:0x7fd0b0999b19 [ 1238.881150] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1238.883364] RSP: 002b:00007fd0adf0f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1238.884277] RAX: ffffffffffffffda RBX: 00007fd0b0aacf60 RCX: 00007fd0b0999b19 [ 1238.885134] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003 [ 1238.886001] RBP: 00007fd0adf0f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1238.886859] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1238.887717] R13: 00007ffd2a764c5f R14: 00007fd0adf0f300 R15: 0000000000022000 01:50:35 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2) (fail_nth: 6) [ 1238.922694] FAULT_INJECTION: forcing a failure. [ 1238.922694] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1238.924233] CPU: 0 PID: 8158 Comm: syz-executor.7 Not tainted 5.10.230 #1 [ 1238.925061] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1238.926071] Call Trace: [ 1238.926393] dump_stack+0x107/0x167 [ 1238.926835] should_fail.cold+0x5/0xa [ 1238.927300] __alloc_pages_nodemask+0x182/0x600 [ 1238.927859] ? add_mm_counter_fast+0x220/0x220 [ 1238.928412] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1238.929139] ? count_memcg_event_mm.part.0+0x10f/0x2f0 [ 1238.929779] ? lock_downgrade+0x6d0/0x6d0 [ 1238.930276] ? mark_held_locks+0x9e/0xe0 [ 1238.930778] alloc_pages_vma+0xbb/0x410 [ 1238.931263] handle_mm_fault+0x152f/0x3500 [ 1238.931780] ? __pmd_alloc+0x5e0/0x5e0 [ 1238.932255] ? vmacache_find+0x55/0x2a0 [ 1238.932744] do_user_addr_fault+0x56e/0xc60 [ 1238.933272] exc_page_fault+0xa2/0x1a0 [ 1238.933760] asm_exc_page_fault+0x1e/0x30 [ 1238.934263] RIP: 0010:copy_user_generic_string+0x2c/0x40 [ 1238.934914] Code: cb 83 fa 08 72 27 89 f9 83 e1 07 74 15 83 e9 08 f7 d9 29 ca 8a 06 88 07 48 ff c6 48 ff c7 ff c9 75 f2 89 d1 c1 e9 03 83 e2 07 48 a5 89 d1 f3 a4 31 c0 0f 01 ca e9 03 ab 1d 02 0f 1f 00 0f 01 [ 1238.937127] RSP: 0018:ffff888049e4fae8 EFLAGS: 00050202 [ 1238.937777] RAX: 0000000000000030 RBX: 0000000000000f8d RCX: 0000000000000061 [ 1238.938636] RDX: 0000000000000001 RSI: ffff88804639cc84 RDI: 0000000020002000 [ 1238.939495] RBP: 000000002000137c R08: 0000000000000000 R09: ffff88804639cf8c [ 1238.940354] R10: ffffed1008c739f1 R11: 0000000000000001 R12: ffff88804639c000 [ 1238.941215] R13: 0000000020002309 R14: 00007ffffffff000 R15: 0000000000000000 [ 1238.942105] copyout.part.0+0x10b/0x140 [ 1238.942590] _copy_to_iter+0x293/0x12d0 [ 1238.943079] ? _down_write_nest_lock+0x160/0x160 [ 1238.943653] ? _copy_from_iter_nocache+0xd60/0xd60 [ 1238.944247] ? __virt_addr_valid+0x170/0x5d0 [ 1238.944783] ? __check_object_size+0x319/0x440 [ 1238.945340] seq_read_iter+0xdcb/0x12b0 [ 1238.945846] seq_read+0x3dd/0x5b0 [ 1238.946269] ? seq_read_iter+0x12b0/0x12b0 [ 1238.946792] ? fsnotify_perm.part.0+0x22d/0x620 [ 1238.947358] ? security_file_permission+0xb1/0xe0 [ 1238.947946] ? seq_read_iter+0x12b0/0x12b0 [ 1238.948459] vfs_read+0x228/0x620 [ 1238.948886] __x64_sys_pread64+0x201/0x260 [ 1238.949402] ? ksys_pread64+0x1b0/0x1b0 [ 1238.949895] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1238.950530] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1238.951157] do_syscall_64+0x33/0x40 [ 1238.951608] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1238.952229] RIP: 0033:0x7f3aaff45b19 [ 1238.952678] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1238.954902] RSP: 002b:00007f3aad4bb188 EFLAGS: 00000246 ORIG_RAX: 0000000000000011 [ 1238.955824] RAX: ffffffffffffffda RBX: 00007f3ab0058f60 RCX: 00007f3aaff45b19 [ 1238.956684] RDX: 0000000020001be3 RSI: 0000000020001100 RDI: 0000000000000003 [ 1238.957545] RBP: 00007f3aad4bb1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1238.958412] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 1238.959274] R13: 00007ffd6712cd0f R14: 00007f3aad4bb300 R15: 0000000000022000 [ 1238.967156] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.968438] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.969147] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.970062] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.970805] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.971569] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.972342] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.973271] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.974516] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.975251] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 01:50:35 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 46) 01:50:35 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x100000000000000) [ 1238.992002] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.993156] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.994130] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.994887] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.995701] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.996446] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.997265] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.997997] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.998783] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1238.999530] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 01:50:35 executing program 2: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 3) [ 1239.039242] FAULT_INJECTION: forcing a failure. [ 1239.039242] name failslab, interval 1, probability 0, space 0, times 0 [ 1239.041960] CPU: 1 PID: 8181 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1239.043489] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1239.045358] Call Trace: [ 1239.045962] dump_stack+0x107/0x167 [ 1239.046779] should_fail.cold+0x5/0xa [ 1239.047635] ? p9pdu_readf+0xadb/0x1d40 [ 1239.048533] should_failslab+0x5/0x20 [ 1239.049381] __kmalloc+0x72/0x390 [ 1239.050189] p9pdu_readf+0xadb/0x1d40 [ 1239.051052] ? pipe_poll+0x21b/0x7f0 [ 1239.051905] ? p9pdu_writef+0x100/0x100 [ 1239.052797] ? p9_fd_poll+0x1e0/0x2c0 [ 1239.053681] ? p9_fd_create+0x357/0x4a0 [ 1239.054574] ? p9_conn_create+0x510/0x510 [ 1239.055518] ? p9_client_create+0x798/0x1230 [ 1239.056523] ? kfree+0xd7/0x340 [ 1239.057271] ? do_raw_spin_unlock+0x4f/0x220 [ 1239.058293] p9_client_create+0xaee/0x1230 [ 1239.059266] ? p9_client_flush+0x430/0x430 [ 1239.060229] ? trace_hardirqs_on+0x5b/0x180 [ 1239.061217] ? lockdep_init_map_type+0x2c7/0x780 [ 1239.062311] ? __raw_spin_lock_init+0x36/0x110 [ 1239.063357] v9fs_session_init+0x1dd/0x1680 [ 1239.064323] ? lock_release+0x680/0x680 [ 1239.065240] ? kmem_cache_alloc_trace+0x151/0x320 [ 1239.066348] ? v9fs_show_options+0x690/0x690 [ 1239.067359] ? trace_hardirqs_on+0x5b/0x180 [ 1239.068338] ? kasan_unpoison_shadow+0x33/0x50 [ 1239.069375] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1239.070545] v9fs_mount+0x79/0x8f0 [ 1239.071358] ? v9fs_write_inode+0x60/0x60 [ 1239.072301] legacy_get_tree+0x105/0x220 [ 1239.073232] vfs_get_tree+0x8e/0x300 [ 1239.074074] path_mount+0x1429/0x2120 [ 1239.074948] ? strncpy_from_user+0x9e/0x470 [ 1239.075913] ? finish_automount+0xa90/0xa90 [ 1239.076898] ? getname_flags.part.0+0x1dd/0x4f0 [ 1239.077947] ? _copy_from_user+0xfb/0x1b0 [ 1239.078900] __x64_sys_mount+0x282/0x300 [ 1239.079811] ? copy_mnt_ns+0xa00/0xa00 [ 1239.080712] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1239.081919] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1239.083099] do_syscall_64+0x33/0x40 [ 1239.083950] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1239.085112] RIP: 0033:0x7f20beb15b19 [ 1239.085971] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1239.090182] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1239.091912] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1239.093533] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1239.095174] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1239.096795] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1239.098427] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 [ 1239.161395] FAULT_INJECTION: forcing a failure. [ 1239.161395] name failslab, interval 1, probability 0, space 0, times 0 [ 1239.163961] CPU: 1 PID: 8198 Comm: syz-executor.2 Not tainted 5.10.230 #1 [ 1239.165493] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1239.167368] Call Trace: [ 1239.167966] dump_stack+0x107/0x167 [ 1239.168784] should_fail.cold+0x5/0xa [ 1239.169658] ? create_object.isra.0+0x3a/0xa20 [ 1239.170686] should_failslab+0x5/0x20 [ 1239.171543] kmem_cache_alloc+0x5b/0x310 [ 1239.172457] ? mark_held_locks+0x9e/0xe0 [ 1239.173375] create_object.isra.0+0x3a/0xa20 [ 1239.174368] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1239.175513] kmem_cache_alloc_bulk+0x168/0x320 [ 1239.176547] io_submit_sqes+0x6fe6/0x8610 [ 1239.177514] ? __do_sys_io_uring_enter+0x6b2/0x1890 [ 1239.178649] __do_sys_io_uring_enter+0x6b2/0x1890 [ 1239.179734] ? find_held_lock+0x2c/0x110 [ 1239.180651] ? io_submit_sqes+0x8610/0x8610 [ 1239.181641] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1239.182727] ? wait_for_completion_io+0x270/0x270 [ 1239.183811] ? rcu_read_lock_any_held+0x75/0xa0 [ 1239.184852] ? vfs_write+0x354/0xb10 [ 1239.185696] ? fput_many+0x2f/0x1a0 [ 1239.186522] ? ksys_write+0x1a9/0x260 [ 1239.187385] ? __ia32_sys_read+0xb0/0xb0 [ 1239.188300] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1239.189476] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1239.190647] do_syscall_64+0x33/0x40 [ 1239.191481] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1239.192627] RIP: 0033:0x7fd0b0999b19 [ 1239.193460] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1239.197597] RSP: 002b:00007fd0adf0f188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1239.199301] RAX: ffffffffffffffda RBX: 00007fd0b0aacf60 RCX: 00007fd0b0999b19 [ 1239.200897] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003 [ 1239.202500] RBP: 00007fd0adf0f1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1239.204106] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1239.205710] R13: 00007ffd2a764c5f R14: 00007fd0adf0f300 R15: 0000000000022000 [ 1239.225231] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.227942] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.229381] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.230767] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.232293] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.233865] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.235318] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.236681] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.238103] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.239470] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.240849] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.242307] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.243658] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.245046] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.246420] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.247812] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.249270] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.250623] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.251988] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.257585] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.258954] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.260588] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.261971] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.263754] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.265149] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.266553] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.267922] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.269338] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.270722] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.272114] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.273474] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.274873] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.276365] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.277732] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.279124] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.280507] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.282030] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.283401] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.284791] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.286179] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.287709] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.289076] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.290500] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.291865] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.293302] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.294688] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.296070] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.297465] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.298858] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.300285] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.301680] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.303049] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.304435] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.305810] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.307224] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.308601] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.309996] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.311386] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.312777] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.314166] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.315533] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.316919] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.318320] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.319698] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.321086] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.322491] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.323854] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.325283] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.326669] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.328032] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.329426] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.330801] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.332245] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.333649] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.335025] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.336415] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.337787] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.339162] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.340524] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.341925] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.343370] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.344725] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.346125] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.347485] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.348858] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.350313] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.351675] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.353073] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.354470] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.360029] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.361401] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.363019] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.364383] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.366148] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.367513] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.368911] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.370295] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.371051] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.372132] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.372891] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.374065] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.374817] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.375619] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.376371] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.377118] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.377937] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.378708] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.379465] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.380260] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.380972] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.381737] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.382483] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.383274] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.383972] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.384737] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.385485] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.386279] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.386980] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.387742] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.388488] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.389266] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.389986] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.390766] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.391511] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.392296] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.393014] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.393795] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.394541] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.395317] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.396035] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.396805] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.397556] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.398333] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.399043] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.399806] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.400552] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.401336] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.402062] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.402833] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.403584] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.404359] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.405073] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.405853] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.406600] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.407381] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.408095] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.408862] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.409618] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.410383] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.411083] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.411851] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.412604] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.413382] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.414093] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.414870] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.415623] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.416399] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.417112] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.417928] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.418681] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.419459] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.420162] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.420933] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.421690] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.422456] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.423157] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.423930] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.424677] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.425453] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.426162] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.426934] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.427693] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.428456] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.429154] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.429934] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.430685] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.431481] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.432235] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.432988] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.433734] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.434502] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.435254] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.436005] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.436751] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.437532] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.438292] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.439051] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.439796] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.440567] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.441314] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.442078] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.442826] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.443602] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.444354] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.445102] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.445855] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.446619] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.447379] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.448121] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.448867] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.449656] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.450420] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.451218] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.451935] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.452695] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.453442] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.454226] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.454943] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.455718] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.456461] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.457245] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.458103] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.458874] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.459597] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.460340] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.461050] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.461825] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.462574] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.463359] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.464071] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.464890] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.465643] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.466406] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.467105] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.467876] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.468626] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.469407] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.470126] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.470894] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.471639] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.472420] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.473121] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.473907] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.474652] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.475411] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.476111] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.476876] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.477635] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.478400] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.479100] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.479894] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.480639] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.481407] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.482117] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.482882] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.483626] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.484403] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.485103] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.485910] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.486653] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.487416] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.488119] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.488884] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.489637] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.490401] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.491117] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.491909] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.492657] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.493440] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.494147] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.494911] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.495659] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.496411] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.497108] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.497907] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.498640] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.499547] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.501298] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.502801] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.504375] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.505748] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.507118] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.508504] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1239.509916] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 01:50:52 executing program 2: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 4) 01:50:52 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 47) 01:50:52 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) fork() r1 = fork() ptrace(0x10, r1) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r1) 01:50:52 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x6800000000000000) 01:50:52 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xff01000000000000, 0x0, 0xfdef) 01:50:52 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2) (fail_nth: 7) 01:50:52 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x200000000000000) 01:50:52 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 8) [ 1255.507662] FAULT_INJECTION: forcing a failure. [ 1255.507662] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1255.510658] CPU: 0 PID: 8222 Comm: syz-executor.7 Not tainted 5.10.230 #1 [ 1255.512213] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1255.514083] Call Trace: [ 1255.514697] dump_stack+0x107/0x167 [ 1255.515523] should_fail.cold+0x5/0xa [ 1255.516392] _copy_to_user+0x2e/0x180 [ 1255.517260] simple_read_from_buffer+0xcc/0x160 [ 1255.518334] proc_fail_nth_read+0x198/0x230 [ 1255.519315] ? proc_sessionid_read+0x230/0x230 [ 1255.520347] ? security_file_permission+0xb1/0xe0 [ 1255.521444] ? proc_sessionid_read+0x230/0x230 [ 1255.522488] vfs_read+0x228/0x620 [ 1255.523284] ksys_read+0x12d/0x260 [ 1255.524089] ? vfs_write+0xb10/0xb10 [ 1255.524941] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1255.526128] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1255.527317] do_syscall_64+0x33/0x40 [ 1255.528160] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1255.529320] RIP: 0033:0x7f3aafef869c [ 1255.530169] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1255.534330] RSP: 002b:00007f3aad4bb170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1255.536054] RAX: ffffffffffffffda RBX: 0000000000001209 RCX: 00007f3aafef869c [ 1255.537661] RDX: 000000000000000f RSI: 00007f3aad4bb1e0 RDI: 0000000000000004 [ 1255.539275] RBP: 00007f3aad4bb1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1255.540884] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000001 [ 1255.542501] R13: 00007ffd6712cd0f R14: 00007f3aad4bb300 R15: 0000000000022000 [ 1255.546334] FAULT_INJECTION: forcing a failure. [ 1255.546334] name failslab, interval 1, probability 0, space 0, times 0 [ 1255.549086] CPU: 0 PID: 8215 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1255.550649] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1255.552522] Call Trace: [ 1255.553117] dump_stack+0x107/0x167 [ 1255.553961] should_fail.cold+0x5/0xa [ 1255.554840] ? create_object.isra.0+0x3a/0xa20 [ 1255.555879] should_failslab+0x5/0x20 [ 1255.556750] kmem_cache_alloc+0x5b/0x310 [ 1255.557674] create_object.isra.0+0x3a/0xa20 [ 1255.558673] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1255.559825] __kmalloc+0x16e/0x390 [ 1255.560640] p9pdu_readf+0xadb/0x1d40 [ 1255.561517] ? pipe_poll+0x21b/0x7f0 [ 1255.562370] ? p9pdu_writef+0x100/0x100 [ 1255.563272] ? p9_fd_poll+0x1e0/0x2c0 [ 1255.564144] ? p9_fd_create+0x357/0x4a0 [ 1255.565054] ? p9_conn_create+0x510/0x510 [ 1255.565994] ? p9_client_create+0x798/0x1230 [ 1255.566997] ? kfree+0xd7/0x340 [ 1255.567744] ? do_raw_spin_unlock+0x4f/0x220 [ 1255.568750] p9_client_create+0xaee/0x1230 [ 1255.569721] ? p9_client_flush+0x430/0x430 [ 1255.570690] ? trace_hardirqs_on+0x5b/0x180 [ 1255.571670] ? lockdep_init_map_type+0x2c7/0x780 [ 1255.572743] ? __raw_spin_lock_init+0x36/0x110 [ 1255.573784] v9fs_session_init+0x1dd/0x1680 [ 1255.574773] ? lock_release+0x680/0x680 [ 1255.575687] ? kmem_cache_alloc_trace+0x151/0x320 [ 1255.576777] ? v9fs_show_options+0x690/0x690 [ 1255.577775] ? trace_hardirqs_on+0x5b/0x180 [ 1255.578762] ? kasan_unpoison_shadow+0x33/0x50 [ 1255.579792] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1255.580948] v9fs_mount+0x79/0x8f0 [ 1255.581758] ? v9fs_write_inode+0x60/0x60 [ 1255.582717] legacy_get_tree+0x105/0x220 [ 1255.583636] vfs_get_tree+0x8e/0x300 [ 1255.584480] path_mount+0x1429/0x2120 [ 1255.585346] ? strncpy_from_user+0x9e/0x470 [ 1255.586333] ? finish_automount+0xa90/0xa90 [ 1255.587305] ? getname_flags.part.0+0x1dd/0x4f0 [ 1255.588350] ? _copy_from_user+0xfb/0x1b0 [ 1255.589296] __x64_sys_mount+0x282/0x300 [ 1255.590225] ? copy_mnt_ns+0xa00/0xa00 [ 1255.591109] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1255.592294] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1255.593460] do_syscall_64+0x33/0x40 [ 1255.594310] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1255.595469] RIP: 0033:0x7f20beb15b19 [ 1255.596310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1255.600466] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1255.602405] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1255.604015] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1255.605626] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1255.607243] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1255.609022] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:50:52 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2) 01:50:52 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x300000000000000) [ 1255.629986] FAULT_INJECTION: forcing a failure. [ 1255.629986] name failslab, interval 1, probability 0, space 0, times 0 [ 1255.632575] CPU: 0 PID: 8219 Comm: syz-executor.0 Not tainted 5.10.230 #1 [ 1255.634114] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1255.635991] Call Trace: [ 1255.636588] dump_stack+0x107/0x167 [ 1255.637413] should_fail.cold+0x5/0xa [ 1255.638286] ? create_object.isra.0+0x3a/0xa20 [ 1255.639327] should_failslab+0x5/0x20 [ 1255.640189] kmem_cache_alloc+0x5b/0x310 [ 1255.641107] ? mark_held_locks+0x9e/0xe0 [ 1255.642028] create_object.isra.0+0x3a/0xa20 [ 1255.643023] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1255.644177] kmem_cache_alloc_bulk+0x168/0x320 [ 1255.645219] io_submit_sqes+0x6fe6/0x8610 [ 1255.646195] ? __do_sys_io_uring_enter+0x6b2/0x1890 [ 1255.647321] __do_sys_io_uring_enter+0x6b2/0x1890 [ 1255.648420] ? find_held_lock+0x2c/0x110 [ 1255.649343] ? io_submit_sqes+0x8610/0x8610 [ 1255.650339] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1255.651433] ? wait_for_completion_io+0x270/0x270 [ 1255.652524] ? rcu_read_lock_any_held+0x75/0xa0 [ 1255.653571] ? vfs_write+0x354/0xb10 [ 1255.654423] ? fput_many+0x2f/0x1a0 [ 1255.655245] ? ksys_write+0x1a9/0x260 [ 1255.656104] ? __ia32_sys_read+0xb0/0xb0 [ 1255.657026] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1255.658221] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1255.659390] do_syscall_64+0x33/0x40 [ 1255.660252] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1255.661185] FAULT_INJECTION: forcing a failure. [ 1255.661185] name failslab, interval 1, probability 0, space 0, times 0 [ 1255.661410] RIP: 0033:0x7f17a5d2cb19 [ 1255.661436] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1255.668719] RSP: 002b:00007f17a32a2188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1255.670442] RAX: ffffffffffffffda RBX: 00007f17a5e3ff60 RCX: 00007f17a5d2cb19 [ 1255.672043] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003 [ 1255.673653] RBP: 00007f17a32a21d0 R08: 0000000000000000 R09: 0000000000000000 [ 1255.675276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1255.676879] R13: 00007fff0b454aef R14: 00007f17a32a2300 R15: 0000000000022000 [ 1255.678528] CPU: 1 PID: 8232 Comm: syz-executor.2 Not tainted 5.10.230 #1 [ 1255.679970] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1255.681735] Call Trace: [ 1255.682303] dump_stack+0x107/0x167 [ 1255.683081] should_fail.cold+0x5/0xa [ 1255.683890] ? create_object.isra.0+0x3a/0xa20 [ 1255.684851] should_failslab+0x5/0x20 [ 1255.685648] kmem_cache_alloc+0x5b/0x310 [ 1255.686521] create_object.isra.0+0x3a/0xa20 [ 1255.687462] kmemleak_alloc_percpu+0xa0/0x100 [ 1255.688412] pcpu_alloc+0x4e2/0x1240 [ 1255.689219] __percpu_counter_init+0x10d/0x2d0 [ 1255.690191] io_uring_alloc_task_context+0xcc/0x6a0 [ 1255.691243] ? io_import_iovec+0x1120/0x1120 [ 1255.692167] ? find_held_lock+0x2c/0x110 [ 1255.693030] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1255.694054] __io_uring_add_tctx_node+0x2c6/0x520 [ 1255.695080] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1255.696201] __do_sys_io_uring_enter+0x146f/0x1890 [ 1255.697245] ? find_held_lock+0x2c/0x110 [ 1255.698107] ? io_submit_sqes+0x8610/0x8610 [ 1255.699039] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1255.700059] ? wait_for_completion_io+0x270/0x270 [ 1255.701076] ? rcu_read_lock_any_held+0x75/0xa0 [ 1255.702057] ? vfs_write+0x354/0xb10 [ 1255.702849] ? fput_many+0x2f/0x1a0 [ 1255.703617] ? ksys_write+0x1a9/0x260 [ 1255.704424] ? __ia32_sys_read+0xb0/0xb0 [ 1255.705283] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1255.706396] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1255.707484] do_syscall_64+0x33/0x40 [ 1255.708264] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1255.709339] RIP: 0033:0x7fd0b0999b19 [ 1255.710122] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1255.714054] RSP: 002b:00007fd0adeee188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1255.715670] RAX: ffffffffffffffda RBX: 00007fd0b0aad020 RCX: 00007fd0b0999b19 [ 1255.717172] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003 [ 1255.718675] RBP: 00007fd0adeee1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1255.720186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1255.721681] R13: 00007ffd2a764c5f R14: 00007fd0adeee300 R15: 0000000000022000 01:50:52 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) fork() r1 = fork() ptrace(0x10, r1) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r1) [ 1255.862691] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1255.863937] print_req_error: 337 callbacks suppressed [ 1255.863956] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1255.867179] buffer_io_error: 350 callbacks suppressed [ 1255.868293] Buffer I/O error on dev sr0, logical block 0, async page read [ 1255.869868] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1255.871045] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 7 prio class 0 [ 1255.873431] Buffer I/O error on dev sr0, logical block 1, async page read [ 1255.874911] Buffer I/O error on dev sr0, logical block 2, async page read [ 1255.876376] Buffer I/O error on dev sr0, logical block 3, async page read [ 1255.877838] Buffer I/O error on dev sr0, logical block 4, async page read [ 1255.879306] Buffer I/O error on dev sr0, logical block 5, async page read [ 1255.880764] Buffer I/O error on dev sr0, logical block 6, async page read [ 1255.882232] Buffer I/O error on dev sr0, logical block 7, async page read 01:51:08 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 48) 01:51:08 executing program 2: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 5) 01:51:08 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x400000000000000) 01:51:08 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x6c00000000000000) 01:51:08 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x27c, 0x2) 01:51:08 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) fork() r1 = fork() ptrace(0x10, r1) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r1) 01:51:08 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 9) 01:51:08 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xff0f000000000000, 0x0, 0xfdef) [ 1271.500870] FAULT_INJECTION: forcing a failure. [ 1271.500870] name failslab, interval 1, probability 0, space 0, times 0 [ 1271.503530] CPU: 0 PID: 8359 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1271.505117] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1271.507051] Call Trace: [ 1271.507664] dump_stack+0x107/0x167 [ 1271.508510] should_fail.cold+0x5/0xa [ 1271.509405] should_failslab+0x5/0x20 [ 1271.510289] __kmalloc_track_caller+0x79/0x370 [ 1271.511358] ? kasprintf+0xbb/0xf0 [ 1271.512182] ? __delete_object+0xb3/0x100 [ 1271.513148] kvasprintf+0xb5/0x150 [ 1271.513973] ? bust_spinlocks+0xe0/0xe0 [ 1271.514906] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1271.516136] kasprintf+0xbb/0xf0 [ 1271.516925] ? kvasprintf_const+0x1a0/0x1a0 [ 1271.517929] ? kmem_cache_free+0x249/0x2d0 [ 1271.518928] ? p9_client_create+0xbfa/0x1230 [ 1271.519952] p9_client_create+0xc1b/0x1230 [ 1271.520943] ? p9_client_flush+0x430/0x430 [ 1271.521924] ? trace_hardirqs_on+0x5b/0x180 [ 1271.522934] ? lockdep_init_map_type+0x2c7/0x780 [ 1271.524034] ? __raw_spin_lock_init+0x36/0x110 [ 1271.525100] v9fs_session_init+0x1dd/0x1680 [ 1271.526099] ? lock_release+0x680/0x680 [ 1271.527042] ? kmem_cache_alloc_trace+0x151/0x320 [ 1271.528158] ? v9fs_show_options+0x690/0x690 [ 1271.529188] ? trace_hardirqs_on+0x5b/0x180 [ 1271.530192] ? kasan_unpoison_shadow+0x33/0x50 [ 1271.531260] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1271.532442] v9fs_mount+0x79/0x8f0 [ 1271.533271] ? v9fs_write_inode+0x60/0x60 [ 1271.534234] legacy_get_tree+0x105/0x220 [ 1271.535193] vfs_get_tree+0x8e/0x300 [ 1271.536053] path_mount+0x1429/0x2120 [ 1271.536941] ? strncpy_from_user+0x9e/0x470 [ 1271.537938] ? finish_automount+0xa90/0xa90 [ 1271.538942] ? getname_flags.part.0+0x1dd/0x4f0 [ 1271.540016] ? _copy_from_user+0xfb/0x1b0 [ 1271.540984] __x64_sys_mount+0x282/0x300 [ 1271.541920] ? copy_mnt_ns+0xa00/0xa00 [ 1271.542829] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1271.544042] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1271.545238] do_syscall_64+0x33/0x40 [ 1271.546104] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1271.547301] RIP: 0033:0x7f20beb15b19 [ 1271.548168] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1271.552454] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1271.554227] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1271.555847] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1271.557435] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1271.559045] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1271.560653] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 [ 1271.570657] FAULT_INJECTION: forcing a failure. [ 1271.570657] name failslab, interval 1, probability 0, space 0, times 0 [ 1271.573127] CPU: 1 PID: 8413 Comm: syz-executor.0 Not tainted 5.10.230 #1 [ 1271.574525] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1271.576290] Call Trace: [ 1271.576924] dump_stack+0x107/0x167 [ 1271.577683] should_fail.cold+0x5/0xa [ 1271.578469] ? __io_uring_add_tctx_node+0x15c/0x520 [ 1271.579518] should_failslab+0x5/0x20 [ 1271.580301] kmem_cache_alloc_trace+0x55/0x320 [ 1271.581250] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1271.582249] __io_uring_add_tctx_node+0x15c/0x520 [ 1271.583251] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1271.584352] __do_sys_io_uring_enter+0x146f/0x1890 [ 1271.585374] ? find_held_lock+0x2c/0x110 [ 1271.586223] ? io_submit_sqes+0x8610/0x8610 [ 1271.587135] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1271.588149] ? wait_for_completion_io+0x270/0x270 [ 1271.589139] ? rcu_read_lock_any_held+0x75/0xa0 [ 1271.590124] ? vfs_write+0x354/0xb10 [ 1271.590901] ? fput_many+0x2f/0x1a0 [ 1271.591660] ? ksys_write+0x1a9/0x260 [ 1271.592450] ? __ia32_sys_read+0xb0/0xb0 [ 1271.593291] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1271.594390] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1271.595484] do_syscall_64+0x33/0x40 [ 1271.596248] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1271.597297] RIP: 0033:0x7f17a5d2cb19 [ 1271.598069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1271.601865] RSP: 002b:00007f17a3281188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1271.603458] RAX: ffffffffffffffda RBX: 00007f17a5e40020 RCX: 00007f17a5d2cb19 [ 1271.604932] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003 [ 1271.606403] RBP: 00007f17a32811d0 R08: 0000000000000000 R09: 0000000000000000 [ 1271.607870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1271.609336] R13: 00007fff0b454aef R14: 00007f17a3281300 R15: 0000000000022000 [ 1271.614508] FAULT_INJECTION: forcing a failure. [ 1271.614508] name failslab, interval 1, probability 0, space 0, times 0 [ 1271.616930] CPU: 1 PID: 8412 Comm: syz-executor.2 Not tainted 5.10.230 #1 [ 1271.618366] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1271.620188] Call Trace: [ 1271.620741] dump_stack+0x107/0x167 [ 1271.621505] should_fail.cold+0x5/0xa [ 1271.622314] ? io_wq_create+0xeb/0xc00 [ 1271.623140] should_failslab+0x5/0x20 [ 1271.623939] __kmalloc+0x72/0x390 [ 1271.624673] io_wq_create+0xeb/0xc00 [ 1271.625467] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1271.626528] ? io_import_iovec+0x1120/0x1120 01:51:08 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x1209, 0x2) 01:51:08 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xffffff7f00000000, 0x0, 0xfdef) [ 1271.627458] ? io_apoll_task_func+0x2d0/0x2d0 [ 1271.628608] ? __io_req_find_next+0x300/0x300 [ 1271.629553] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1271.630565] __io_uring_add_tctx_node+0x2c6/0x520 [ 1271.631586] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1271.632697] __do_sys_io_uring_enter+0x146f/0x1890 [ 1271.633727] ? find_held_lock+0x2c/0x110 [ 1271.634584] ? io_submit_sqes+0x8610/0x8610 [ 1271.635504] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1271.636520] ? wait_for_completion_io+0x270/0x270 [ 1271.637532] ? rcu_read_lock_any_held+0x75/0xa0 [ 1271.638508] ? vfs_write+0x354/0xb10 [ 1271.639294] ? fput_many+0x2f/0x1a0 [ 1271.640068] ? ksys_write+0x1a9/0x260 01:51:08 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x500000000000000) [ 1271.640871] ? __ia32_sys_read+0xb0/0xb0 [ 1271.641848] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1271.642963] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1271.644058] do_syscall_64+0x33/0x40 [ 1271.644841] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1271.645917] RIP: 0033:0x7fd0b0999b19 [ 1271.646709] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1271.650544] RSP: 002b:00007fd0adeee188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1271.652144] RAX: ffffffffffffffda RBX: 00007fd0b0aad020 RCX: 00007fd0b0999b19 [ 1271.653630] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003 [ 1271.655134] RBP: 00007fd0adeee1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1271.656621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1271.658113] R13: 00007ffd2a764c5f R14: 00007fd0adeee300 R15: 0000000000022000 01:51:08 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x40002ce3, 0x2) 01:51:08 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x7400000000000000) 01:51:08 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) fork() r1 = fork() ptrace(0x10, r1) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r1) 01:51:08 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0xffffffff00000000, 0x0, 0xfdef) 01:51:08 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 49) 01:51:08 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x3) [ 1271.874613] FAULT_INJECTION: forcing a failure. [ 1271.874613] name failslab, interval 1, probability 0, space 0, times 0 [ 1271.877108] CPU: 0 PID: 8486 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1271.878559] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1271.880317] Call Trace: [ 1271.880877] dump_stack+0x107/0x167 [ 1271.881645] should_fail.cold+0x5/0xa [ 1271.882449] ? create_object.isra.0+0x3a/0xa20 [ 1271.883422] should_failslab+0x5/0x20 [ 1271.884226] kmem_cache_alloc+0x5b/0x310 [ 1271.885080] ? vsnprintf+0x4ba/0x1600 [ 1271.885887] create_object.isra.0+0x3a/0xa20 [ 1271.886813] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1271.887882] __kmalloc_track_caller+0x177/0x370 [ 1271.888859] ? kasprintf+0xbb/0xf0 [ 1271.889615] kvasprintf+0xb5/0x150 [ 1271.890358] ? bust_spinlocks+0xe0/0xe0 [ 1271.891194] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1271.892308] kasprintf+0xbb/0xf0 [ 1271.893017] ? kvasprintf_const+0x1a0/0x1a0 [ 1271.893923] ? kmem_cache_free+0x249/0x2d0 [ 1271.894831] ? p9_client_create+0xbfa/0x1230 [ 1271.895754] p9_client_create+0xc1b/0x1230 [ 1271.896652] ? p9_client_flush+0x430/0x430 [ 1271.897542] ? trace_hardirqs_on+0x5b/0x180 [ 1271.898441] ? lockdep_init_map_type+0x2c7/0x780 [ 1271.899438] ? __raw_spin_lock_init+0x36/0x110 [ 1271.900398] v9fs_session_init+0x1dd/0x1680 [ 1271.901297] ? lock_release+0x680/0x680 [ 1271.902135] ? kmem_cache_alloc_trace+0x151/0x320 [ 1271.903148] ? v9fs_show_options+0x690/0x690 [ 1271.904073] ? trace_hardirqs_on+0x5b/0x180 [ 1271.904978] ? kasan_unpoison_shadow+0x33/0x50 [ 1271.905932] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1271.907008] v9fs_mount+0x79/0x8f0 [ 1271.907747] ? v9fs_write_inode+0x60/0x60 [ 1271.908606] legacy_get_tree+0x105/0x220 [ 1271.909459] vfs_get_tree+0x8e/0x300 [ 1271.910230] path_mount+0x1429/0x2120 [ 1271.911035] ? strncpy_from_user+0x9e/0x470 [ 1271.911920] ? finish_automount+0xa90/0xa90 [ 1271.912818] ? getname_flags.part.0+0x1dd/0x4f0 [ 1271.913780] ? _copy_from_user+0xfb/0x1b0 [ 1271.914659] __x64_sys_mount+0x282/0x300 [ 1271.915506] ? copy_mnt_ns+0xa00/0xa00 [ 1271.916321] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1271.917404] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1271.918472] do_syscall_64+0x33/0x40 [ 1271.919250] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1271.920315] RIP: 0033:0x7f20beb15b19 [ 1271.921085] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1271.924928] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1271.926500] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1271.927972] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1271.929436] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1271.930905] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1271.932369] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:51:23 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x4) 01:51:23 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) fork() r1 = fork() ptrace(0x10, r1) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r1) 01:51:23 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 50) 01:51:23 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 10) 01:51:23 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x600000000000000) 01:51:23 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x7a00000000000000) 01:51:23 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x2, 0xfdef) 01:51:23 executing program 2: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 6) [ 1286.980892] FAULT_INJECTION: forcing a failure. [ 1286.980892] name failslab, interval 1, probability 0, space 0, times 0 [ 1286.983825] CPU: 0 PID: 8604 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1286.985371] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1286.987259] Call Trace: [ 1286.987859] dump_stack+0x107/0x167 [ 1286.988685] should_fail.cold+0x5/0xa [ 1286.989559] should_failslab+0x5/0x20 [ 1286.990422] __kmalloc_track_caller+0x79/0x370 [ 1286.991473] ? kstrdup_const+0x53/0x80 [ 1286.992353] ? kasprintf+0xbb/0xf0 [ 1286.993156] kstrdup+0x36/0x70 [ 1286.993889] kstrdup_const+0x53/0x80 [ 1286.994735] kmem_cache_create_usercopy+0x12f/0x2f0 [ 1286.995878] p9_client_create+0xc6a/0x1230 [ 1286.996844] ? p9_client_flush+0x430/0x430 [ 1286.997805] ? trace_hardirqs_on+0x5b/0x180 [ 1286.998789] ? lockdep_init_map_type+0x2c7/0x780 [ 1286.999869] ? __raw_spin_lock_init+0x36/0x110 [ 1287.000910] v9fs_session_init+0x1dd/0x1680 [ 1287.001883] ? lock_release+0x680/0x680 [ 1287.002789] ? kmem_cache_alloc_trace+0x151/0x320 [ 1287.003885] ? v9fs_show_options+0x690/0x690 [ 1287.004884] ? trace_hardirqs_on+0x5b/0x180 [ 1287.005853] ? kasan_unpoison_shadow+0x33/0x50 [ 1287.006873] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1287.008025] v9fs_mount+0x79/0x8f0 [ 1287.008828] ? v9fs_write_inode+0x60/0x60 [ 1287.009761] legacy_get_tree+0x105/0x220 [ 1287.010672] vfs_get_tree+0x8e/0x300 [ 1287.011514] path_mount+0x1429/0x2120 [ 1287.012375] ? strncpy_from_user+0x9e/0x470 [ 1287.013350] ? finish_automount+0xa90/0xa90 [ 1287.014319] ? getname_flags.part.0+0x1dd/0x4f0 [ 1287.015371] ? _copy_from_user+0xfb/0x1b0 [ 1287.016316] __x64_sys_mount+0x282/0x300 [ 1287.017224] ? copy_mnt_ns+0xa00/0xa00 [ 1287.018105] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1287.019295] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1287.020453] do_syscall_64+0x33/0x40 [ 1287.021292] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1287.022446] RIP: 0033:0x7f20beb15b19 [ 1287.023289] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1287.027445] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1287.029151] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1287.030751] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1287.032361] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1287.033966] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1287.035579] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 [ 1287.037347] kmem_cache_create(9p-fcall-cache-76) failed with error -12 [ 1287.038877] CPU: 0 PID: 8604 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1287.040422] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1287.042310] Call Trace: [ 1287.042996] dump_stack+0x107/0x167 [ 1287.043835] kmem_cache_create_usercopy.cold+0x17/0x65 [ 1287.045034] p9_client_create+0xc6a/0x1230 [ 1287.046066] ? p9_client_flush+0x430/0x430 [ 1287.047019] ? trace_hardirqs_on+0x5b/0x180 [ 1287.048001] ? lockdep_init_map_type+0x2c7/0x780 [ 1287.049075] ? __raw_spin_lock_init+0x36/0x110 [ 1287.050111] v9fs_session_init+0x1dd/0x1680 [ 1287.051083] ? lock_release+0x680/0x680 [ 1287.051999] ? kmem_cache_alloc_trace+0x151/0x320 [ 1287.053088] ? v9fs_show_options+0x690/0x690 [ 1287.054086] ? trace_hardirqs_on+0x5b/0x180 [ 1287.055058] ? kasan_unpoison_shadow+0x33/0x50 [ 1287.056095] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1287.057237] v9fs_mount+0x79/0x8f0 [ 1287.058038] ? v9fs_write_inode+0x60/0x60 [ 1287.058974] legacy_get_tree+0x105/0x220 [ 1287.059898] vfs_get_tree+0x8e/0x300 [ 1287.060741] path_mount+0x1429/0x2120 [ 1287.061607] ? strncpy_from_user+0x9e/0x470 [ 1287.062582] ? finish_automount+0xa90/0xa90 [ 1287.063562] ? getname_flags.part.0+0x1dd/0x4f0 [ 1287.064610] ? _copy_from_user+0xfb/0x1b0 [ 1287.065550] __x64_sys_mount+0x282/0x300 [ 1287.066468] ? copy_mnt_ns+0xa00/0xa00 [ 1287.067361] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1287.068542] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1287.069710] do_syscall_64+0x33/0x40 [ 1287.070550] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1287.071710] RIP: 0033:0x7f20beb15b19 [ 1287.072545] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1287.076714] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1287.078434] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1287.080045] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1287.081655] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1287.083282] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1287.084891] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:51:23 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x5) 01:51:23 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0xffffffff00000000) [ 1287.143714] FAULT_INJECTION: forcing a failure. [ 1287.143714] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1287.146420] CPU: 0 PID: 8618 Comm: syz-executor.0 Not tainted 5.10.230 #1 [ 1287.147973] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1287.149855] Call Trace: [ 1287.150460] dump_stack+0x107/0x167 [ 1287.151297] should_fail.cold+0x5/0xa [ 1287.152181] _copy_from_user+0x2e/0x1b0 [ 1287.153101] iovec_from_user+0x141/0x400 [ 1287.154037] __import_iovec+0x67/0x590 [ 1287.154930] ? perf_trace_lock+0xac/0x490 [ 1287.155894] io_import_iovec+0x581/0x1120 [ 1287.156849] ? io_complete_rw+0x230/0x230 [ 1287.157789] ? lock_downgrade+0x6d0/0x6d0 [ 1287.158732] ? unwind_next_frame+0x13ef/0x1a90 [ 1287.159779] io_read+0xe14/0x11e0 [ 1287.160585] ? kiocb_done+0xc90/0xc90 [ 1287.161448] ? mark_lock+0xf5/0x2df0 [ 1287.162296] ? lock_chain_count+0x20/0x20 [ 1287.163257] ? lock_chain_count+0x20/0x20 [ 1287.164193] ? stack_trace_save+0x8c/0xc0 [ 1287.165134] ? __lockdep_reset_lock+0x180/0x180 [ 1287.166191] ? lock_acquire+0x197/0x470 [ 1287.167107] ? __lock_acquire+0xbb1/0x5b00 [ 1287.168077] io_issue_sqe+0x2e8a/0x77b0 [ 1287.168985] ? perf_trace_lock+0xac/0x490 [ 1287.169921] ? lock_chain_count+0x20/0x20 [ 1287.170857] ? io_connect+0x610/0x610 [ 1287.171737] ? lock_acquire+0x197/0x470 [ 1287.172631] ? find_held_lock+0x2c/0x110 [ 1287.173550] ? __fget_files+0x2cf/0x520 [ 1287.174446] ? lock_downgrade+0x6d0/0x6d0 [ 1287.175395] __io_queue_sqe+0x90/0x9d0 [ 1287.176278] ? io_issue_sqe+0x77b0/0x77b0 [ 1287.177207] ? __fget_files+0x2f8/0x520 [ 1287.178105] ? __io_file_supports_nowait+0x2c4/0x510 [ 1287.179264] ? io_prep_rw+0x7f5/0x1050 [ 1287.180148] io_submit_sqes+0x44aa/0x8610 [ 1287.181121] ? __do_sys_io_uring_enter+0x6b2/0x1890 [ 1287.182242] __do_sys_io_uring_enter+0x6b2/0x1890 [ 1287.183343] ? find_held_lock+0x2c/0x110 [ 1287.184272] ? io_submit_sqes+0x8610/0x8610 [ 1287.185251] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1287.186340] ? wait_for_completion_io+0x270/0x270 [ 1287.187441] ? rcu_read_lock_any_held+0x75/0xa0 [ 1287.188487] ? vfs_write+0x354/0xb10 [ 1287.189328] ? fput_many+0x2f/0x1a0 [ 1287.190146] ? ksys_write+0x1a9/0x260 [ 1287.191004] ? __ia32_sys_read+0xb0/0xb0 [ 1287.191936] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1287.193114] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1287.194278] do_syscall_64+0x33/0x40 [ 1287.195116] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1287.196278] RIP: 0033:0x7f17a5d2cb19 [ 1287.197115] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1287.201263] RSP: 002b:00007f17a32a2188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1287.202975] RAX: ffffffffffffffda RBX: 00007f17a5e3ff60 RCX: 00007f17a5d2cb19 [ 1287.204589] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003 [ 1287.206198] RBP: 00007f17a32a21d0 R08: 0000000000000000 R09: 0000000000000000 [ 1287.207810] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1287.209419] R13: 00007fff0b454aef R14: 00007f17a32a2300 R15: 0000000000022000 01:51:23 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x3, 0xfdef) 01:51:23 executing program 2: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 01:51:23 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x700000000000000) 01:51:23 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x6) [ 1287.335658] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1287.336980] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1287.339273] Buffer I/O error on dev sr0, logical block 0, async page read [ 1287.341033] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1287.342687] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1287.344943] Buffer I/O error on dev sr0, logical block 1, async page read [ 1287.346673] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1287.348164] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1287.350434] Buffer I/O error on dev sr0, logical block 2, async page read [ 1287.352368] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1287.353636] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1287.355894] Buffer I/O error on dev sr0, logical block 3, async page read [ 1287.357629] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1287.358942] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1287.361283] Buffer I/O error on dev sr0, logical block 4, async page read [ 1287.363854] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1287.365164] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1287.367445] Buffer I/O error on dev sr0, logical block 5, async page read [ 1287.369248] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1287.370517] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1287.372769] Buffer I/O error on dev sr0, logical block 6, async page read [ 1287.374508] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1287.375793] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1287.378039] Buffer I/O error on dev sr0, logical block 7, async page read [ 1287.379825] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1287.381364] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1287.383633] Buffer I/O error on dev sr0, logical block 0, async page read [ 1287.385407] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1287.386683] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1287.388928] Buffer I/O error on dev sr0, logical block 1, async page read [ 1287.390679] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1287.392169] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1287.393652] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1287.395088] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1287.396540] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1287.397954] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1287.399455] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1287.422537] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1287.423926] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1287.425399] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1287.426094] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1287.427197] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1287.427886] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1287.428601] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1287.429306] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1287.429968] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1287.434488] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 01:51:39 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0xffffffffffffffff) 01:51:39 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x4, 0xfdef) 01:51:39 executing program 2: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 01:51:40 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) fork() r1 = fork() ptrace(0x10, r1) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r1) 01:51:40 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x900000000000000) 01:51:40 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 51) 01:51:40 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 11) 01:51:40 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x7) [ 1303.362889] FAULT_INJECTION: forcing a failure. [ 1303.362889] name failslab, interval 1, probability 0, space 0, times 0 [ 1303.364342] CPU: 0 PID: 8748 Comm: syz-executor.0 Not tainted 5.10.230 #1 [ 1303.365176] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1303.366185] Call Trace: [ 1303.366522] dump_stack+0x107/0x167 [ 1303.366968] should_fail.cold+0x5/0xa [ 1303.367432] ? io_setup_async_rw+0x180/0x580 [ 1303.368000] should_failslab+0x5/0x20 [ 1303.368467] __kmalloc+0x72/0x390 [ 1303.368893] io_setup_async_rw+0x180/0x580 [ 1303.369424] ? iov_iter_restore+0x195/0x3a0 [ 1303.369946] io_read+0x775/0x11e0 [ 1303.370374] ? lock_chain_count+0x20/0x20 [ 1303.370882] ? kiocb_done+0xc90/0xc90 [ 1303.371342] ? mark_lock+0xf5/0x2df0 [ 1303.371796] ? lock_chain_count+0x20/0x20 [ 1303.372306] ? mark_held_locks+0x9e/0xe0 [ 1303.372800] ? mark_held_locks+0x9e/0xe0 [ 1303.373294] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1303.373932] ? asm_sysvec_call_function_single+0x12/0x20 [ 1303.374589] ? trace_hardirqs_on+0x5b/0x180 [ 1303.375110] ? asm_sysvec_call_function_single+0x12/0x20 [ 1303.375778] ? io_issue_sqe+0x134/0x77b0 [ 1303.376280] io_issue_sqe+0x2e8a/0x77b0 [ 1303.376766] ? perf_trace_lock+0xac/0x490 [ 1303.377272] ? lock_chain_count+0x20/0x20 [ 1303.377788] ? io_connect+0x610/0x610 [ 1303.378252] ? lock_acquire+0x197/0x470 [ 1303.378738] ? find_held_lock+0x2c/0x110 [ 1303.379234] ? __fget_files+0x2cf/0x520 [ 1303.379725] ? lock_downgrade+0x6d0/0x6d0 [ 1303.380240] __io_queue_sqe+0x90/0x9d0 [ 1303.380713] ? io_issue_sqe+0x77b0/0x77b0 [ 1303.381212] ? __fget_files+0x2f8/0x520 [ 1303.381708] ? __io_file_supports_nowait+0x2c4/0x510 [ 1303.382320] ? io_prep_rw+0x7f5/0x1050 [ 1303.382793] io_submit_sqes+0x44aa/0x8610 [ 1303.383311] ? __do_sys_io_uring_enter+0x6b2/0x1890 [ 1303.383943] __do_sys_io_uring_enter+0x6b2/0x1890 [ 1303.384551] ? find_held_lock+0x2c/0x110 [ 1303.385045] ? io_submit_sqes+0x8610/0x8610 [ 1303.385577] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1303.386160] ? wait_for_completion_io+0x270/0x270 [ 1303.386745] ? rcu_read_lock_any_held+0x75/0xa0 [ 1303.387309] ? vfs_write+0x354/0xb10 [ 1303.387757] ? fput_many+0x2f/0x1a0 [ 1303.388206] ? ksys_write+0x1a9/0x260 [ 1303.388667] ? __ia32_sys_read+0xb0/0xb0 [ 1303.389159] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1303.389791] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1303.390426] do_syscall_64+0x33/0x40 [ 1303.390890] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1303.391534] RIP: 0033:0x7f17a5d2cb19 [ 1303.392005] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1303.394256] RSP: 002b:00007f17a32a2188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1303.395231] RAX: ffffffffffffffda RBX: 00007f17a5e3ff60 RCX: 00007f17a5d2cb19 [ 1303.396136] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003 [ 1303.397026] RBP: 00007f17a32a21d0 R08: 0000000000000000 R09: 0000000000000000 [ 1303.397940] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1303.398839] R13: 00007fff0b454aef R14: 00007f17a32a2300 R15: 0000000000022000 [ 1303.411452] FAULT_INJECTION: forcing a failure. [ 1303.411452] name failslab, interval 1, probability 0, space 0, times 0 [ 1303.413705] CPU: 1 PID: 8751 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1303.414974] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 01:51:40 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0xa00000000000000) [ 1303.416532] Call Trace: [ 1303.417203] dump_stack+0x107/0x167 [ 1303.417889] should_fail.cold+0x5/0xa [ 1303.418599] ? create_object.isra.0+0x3a/0xa20 [ 1303.419467] should_failslab+0x5/0x20 [ 1303.420208] kmem_cache_alloc+0x5b/0x310 [ 1303.420959] create_object.isra.0+0x3a/0xa20 [ 1303.421775] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1303.422728] __kmalloc_track_caller+0x177/0x370 [ 1303.423587] ? kstrdup_const+0x53/0x80 [ 1303.424325] kstrdup+0x36/0x70 [ 1303.424936] kstrdup_const+0x53/0x80 [ 1303.425640] kmem_cache_create_usercopy+0x12f/0x2f0 [ 1303.426576] p9_client_create+0xc6a/0x1230 [ 1303.427371] ? p9_client_flush+0x430/0x430 [ 1303.428213] ? trace_hardirqs_on+0x5b/0x180 [ 1303.429062] ? lockdep_init_map_type+0x2c7/0x780 [ 1303.429993] ? __raw_spin_lock_init+0x36/0x110 [ 1303.430869] v9fs_session_init+0x1dd/0x1680 [ 1303.431689] ? lock_release+0x680/0x680 [ 1303.432474] ? kmem_cache_alloc_trace+0x151/0x320 [ 1303.433392] ? v9fs_show_options+0x690/0x690 [ 1303.434238] ? trace_hardirqs_on+0x5b/0x180 [ 1303.435058] ? kasan_unpoison_shadow+0x33/0x50 [ 1303.435942] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1303.436914] v9fs_mount+0x79/0x8f0 [ 1303.437595] ? v9fs_write_inode+0x60/0x60 [ 1303.438393] legacy_get_tree+0x105/0x220 [ 1303.439155] vfs_get_tree+0x8e/0x300 [ 1303.439860] path_mount+0x1429/0x2120 [ 1303.440601] ? strncpy_from_user+0x9e/0x470 [ 1303.441422] ? finish_automount+0xa90/0xa90 [ 1303.442244] ? getname_flags.part.0+0x1dd/0x4f0 [ 1303.443147] ? _copy_from_user+0xfb/0x1b0 [ 1303.443965] __x64_sys_mount+0x282/0x300 [ 1303.444740] ? copy_mnt_ns+0xa00/0xa00 [ 1303.445484] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1303.446503] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1303.447526] do_syscall_64+0x33/0x40 [ 1303.448259] entry_SYSCALL_64_after_hwframe+0x67/0xd1 01:51:40 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 12) [ 1303.449269] RIP: 0033:0x7f20beb15b19 [ 1303.450136] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1303.453674] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1303.455136] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1303.456533] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1303.457905] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1303.459281] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1303.460675] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:51:40 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x8) 01:51:40 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x4800000000000000) 01:51:40 executing program 2: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x2, 0x0, 0x0, 0x0) 01:51:40 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x5, 0xfdef) [ 1303.539334] FAULT_INJECTION: forcing a failure. [ 1303.539334] name failslab, interval 1, probability 0, space 0, times 0 [ 1303.541686] CPU: 1 PID: 8823 Comm: syz-executor.0 Not tainted 5.10.230 #1 [ 1303.543008] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1303.544600] Call Trace: [ 1303.545105] dump_stack+0x107/0x167 [ 1303.545810] should_fail.cold+0x5/0xa [ 1303.546529] ? create_object.isra.0+0x3a/0xa20 [ 1303.547388] should_failslab+0x5/0x20 [ 1303.548115] kmem_cache_alloc+0x5b/0x310 [ 1303.548887] create_object.isra.0+0x3a/0xa20 [ 1303.549712] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1303.550684] __kmalloc+0x16e/0x390 [ 1303.551360] io_setup_async_rw+0x180/0x580 [ 1303.552167] ? iov_iter_restore+0x195/0x3a0 [ 1303.552972] io_read+0x775/0x11e0 [ 1303.553635] ? kiocb_done+0xc90/0xc90 [ 1303.554355] ? mark_lock+0xf5/0x2df0 [ 1303.555075] ? lock_chain_count+0x20/0x20 [ 1303.555900] ? lock_acquire+0x197/0x470 [ 1303.556648] ? __lock_acquire+0xbb1/0x5b00 [ 1303.557450] io_issue_sqe+0x2e8a/0x77b0 [ 1303.558235] ? perf_trace_lock+0xac/0x490 [ 1303.559011] ? SOFTIRQ_verbose+0x10/0x10 [ 1303.559764] ? lock_chain_count+0x20/0x20 [ 1303.560555] ? io_connect+0x610/0x610 [ 1303.561286] ? lock_acquire+0x197/0x470 [ 1303.562036] ? find_held_lock+0x2c/0x110 [ 1303.562843] ? __fget_files+0x2cf/0x520 [ 1303.563594] ? lock_downgrade+0x6d0/0x6d0 [ 1303.564387] __io_queue_sqe+0x90/0x9d0 [ 1303.565140] ? io_issue_sqe+0x77b0/0x77b0 [ 1303.565909] ? __fget_files+0x2f8/0x520 [ 1303.566650] ? __io_file_supports_nowait+0x2c4/0x510 [ 1303.567616] ? io_prep_rw+0x7f5/0x1050 [ 1303.568446] io_submit_sqes+0x44aa/0x8610 [ 1303.569251] ? __do_sys_io_uring_enter+0x6b2/0x1890 [ 1303.570189] __do_sys_io_uring_enter+0x6b2/0x1890 [ 1303.571088] ? find_held_lock+0x2c/0x110 [ 1303.571860] ? io_submit_sqes+0x8610/0x8610 [ 1303.572676] ? __mutex_unlock_slowpath+0xe1/0x600 01:51:40 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) fork() r1 = fork() ptrace(0x10, r1) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r1) [ 1303.573603] ? wait_for_completion_io+0x270/0x270 [ 1303.574668] ? rcu_read_lock_any_held+0x75/0xa0 [ 1303.575554] ? vfs_write+0x354/0xb10 [ 1303.576288] ? fput_many+0x2f/0x1a0 [ 1303.576997] ? ksys_write+0x1a9/0x260 [ 1303.577711] ? __ia32_sys_read+0xb0/0xb0 [ 1303.578482] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1303.579468] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1303.580465] do_syscall_64+0x33/0x40 [ 1303.581192] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1303.582151] RIP: 0033:0x7f17a5d2cb19 [ 1303.582848] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1303.586287] RSP: 002b:00007f17a32a2188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1303.587729] RAX: ffffffffffffffda RBX: 00007f17a5e3ff60 RCX: 00007f17a5d2cb19 [ 1303.589090] RDX: 0000000000000000 RSI: 00000000000058ab RDI: 0000000000000003 [ 1303.590456] RBP: 00007f17a32a21d0 R08: 0000000000000000 R09: 0000000000000000 [ 1303.591812] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1303.593179] R13: 00007fff0b454aef R14: 00007f17a32a2300 R15: 0000000000022000 [ 1303.611146] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.611909] print_req_error: 17 callbacks suppressed [ 1303.611920] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1303.614041] buffer_io_error: 22 callbacks suppressed [ 1303.614047] Buffer I/O error on dev sr0, logical block 0, async page read [ 1303.615671] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.616375] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1303.617652] Buffer I/O error on dev sr0, logical block 1, async page read [ 1303.618628] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.619335] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1303.620639] Buffer I/O error on dev sr0, logical block 2, async page read [ 1303.622089] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.622803] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1303.624079] Buffer I/O error on dev sr0, logical block 3, async page read [ 1303.625046] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.625763] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1303.627048] Buffer I/O error on dev sr0, logical block 4, async page read [ 1303.628034] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.628734] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1303.630001] Buffer I/O error on dev sr0, logical block 5, async page read [ 1303.630964] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.631661] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1303.632931] Buffer I/O error on dev sr0, logical block 6, async page read [ 1303.633904] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.634604] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1303.635874] Buffer I/O error on dev sr0, logical block 7, async page read [ 1303.636856] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.637559] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1303.638828] Buffer I/O error on dev sr0, logical block 0, async page read [ 1303.639793] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.640497] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1303.641781] Buffer I/O error on dev sr0, logical block 1, async page read [ 1303.642759] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.643519] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.644369] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.645095] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.645941] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.646745] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.647602] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.648378] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.649196] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.649929] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.650755] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.651519] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.652354] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.653092] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.653914] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.656137] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.656938] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.657739] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.658488] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.659246] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.670031] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.671564] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.672827] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.674024] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.675401] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.676778] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.678042] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.679395] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.682323] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.683713] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.684937] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.686126] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.687418] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.688631] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.689869] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.691283] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.692595] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.693860] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.695071] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.696300] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.697834] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.699023] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.700271] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.701532] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.702682] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.704043] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.705306] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.706435] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1303.726948] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1303.728256] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1303.729098] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1303.729935] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 01 00 00 01 00 01:52:02 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 52) 01:52:02 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x4c00000000000000) 01:52:02 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) (fail_nth: 13) 01:52:02 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) fork() r1 = fork() openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r1) 01:52:02 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x27e) 01:52:02 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x0) 01:52:02 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x6, 0xfdef) 01:52:02 executing program 2: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x3, 0x0, 0x0, 0x0) [ 1325.818380] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.819126] print_req_error: 49 callbacks suppressed [ 1325.819138] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1325.821171] buffer_io_error: 54 callbacks suppressed [ 1325.821179] Buffer I/O error on dev sr0, logical block 0, async page read [ 1325.825283] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.825977] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1325.827290] Buffer I/O error on dev sr0, logical block 1, async page read [ 1325.828317] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.829021] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1325.830341] Buffer I/O error on dev sr0, logical block 2, async page read [ 1325.831392] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.832091] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1325.833753] Buffer I/O error on dev sr0, logical block 3, async page read [ 1325.834766] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.835494] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1325.836782] Buffer I/O error on dev sr0, logical block 4, async page read [ 1325.837792] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.838593] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1325.839894] Buffer I/O error on dev sr0, logical block 5, async page read [ 1325.840927] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.841652] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1325.842962] Buffer I/O error on dev sr0, logical block 6, async page read [ 1325.843996] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.844730] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1325.846015] Buffer I/O error on dev sr0, logical block 7, async page read [ 1325.847065] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.847792] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1325.849125] Buffer I/O error on dev sr0, logical block 0, async page read [ 1325.850145] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.850866] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1325.852136] Buffer I/O error on dev sr0, logical block 1, async page read [ 1325.853246] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.854040] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.854918] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.855720] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.856582] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.857393] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.858253] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.859021] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.859861] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.860648] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.861496] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.862292] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.863097] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.863909] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.864801] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.865611] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.866512] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.867335] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.867633] FAULT_INJECTION: forcing a failure. [ 1325.867633] name failslab, interval 1, probability 0, space 0, times 0 [ 1325.868203] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.870763] CPU: 0 PID: 8995 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1325.872796] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1325.874670] Call Trace: [ 1325.875272] dump_stack+0x107/0x167 [ 1325.876091] should_fail.cold+0x5/0xa [ 1325.876988] ? create_object.isra.0+0x3a/0xa20 [ 1325.878028] should_failslab+0x5/0x20 [ 1325.878886] kmem_cache_alloc+0x5b/0x310 [ 1325.879807] create_object.isra.0+0x3a/0xa20 [ 1325.880801] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1325.881952] kmem_cache_alloc+0x159/0x310 [ 1325.882894] kmem_cache_create_usercopy+0x190/0x2f0 [ 1325.884032] p9_client_create+0xc6a/0x1230 [ 1325.885003] ? p9_client_flush+0x430/0x430 [ 1325.885957] ? trace_hardirqs_on+0x5b/0x180 01:52:02 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x6800000000000000) [ 1325.886937] ? lockdep_init_map_type+0x2c7/0x780 [ 1325.888201] ? __raw_spin_lock_init+0x36/0x110 [ 1325.889266] v9fs_session_init+0x1dd/0x1680 [ 1325.890258] ? lock_release+0x680/0x680 [ 1325.891188] ? kmem_cache_alloc_trace+0x151/0x320 [ 1325.892287] ? v9fs_show_options+0x690/0x690 [ 1325.893309] ? trace_hardirqs_on+0x5b/0x180 [ 1325.894283] ? kasan_unpoison_shadow+0x33/0x50 [ 1325.895309] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1325.896460] v9fs_mount+0x79/0x8f0 [ 1325.897281] ? v9fs_write_inode+0x60/0x60 [ 1325.898220] legacy_get_tree+0x105/0x220 [ 1325.899135] vfs_get_tree+0x8e/0x300 [ 1325.899979] path_mount+0x1429/0x2120 [ 1325.900857] ? strncpy_from_user+0x9e/0x470 [ 1325.901828] ? finish_automount+0xa90/0xa90 [ 1325.902804] ? getname_flags.part.0+0x1dd/0x4f0 [ 1325.903850] ? _copy_from_user+0xfb/0x1b0 [ 1325.904809] __x64_sys_mount+0x282/0x300 [ 1325.905793] ? copy_mnt_ns+0xa00/0xa00 [ 1325.906897] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1325.908357] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1325.909813] do_syscall_64+0x33/0x40 [ 1325.910848] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1325.912272] RIP: 0033:0x7f20beb15b19 [ 1325.913310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1325.917800] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1325.919565] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1325.921168] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1325.922768] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1325.924366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1325.925970] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 [ 1325.928076] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 01:52:02 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x6c00000000000000) [ 1325.931545] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.933118] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.934567] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.936114] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.937539] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.939020] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.940430] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.941820] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.943233] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.966223] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1325.966828] FAULT_INJECTION: forcing a failure. [ 1325.966828] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1325.969258] CPU: 1 PID: 9001 Comm: syz-executor.0 Not tainted 5.10.230 #1 [ 1325.970093] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1325.971099] Call Trace: [ 1325.971430] dump_stack+0x107/0x167 [ 1325.971876] should_fail.cold+0x5/0xa [ 1325.972343] _copy_to_user+0x2e/0x180 [ 1325.972819] simple_read_from_buffer+0xcc/0x160 [ 1325.973389] proc_fail_nth_read+0x198/0x230 [ 1325.973915] ? proc_sessionid_read+0x230/0x230 [ 1325.974472] ? security_file_permission+0xb1/0xe0 [ 1325.975061] ? proc_sessionid_read+0x230/0x230 [ 1325.975622] vfs_read+0x228/0x620 [ 1325.976049] ksys_read+0x12d/0x260 [ 1325.976483] ? vfs_write+0xb10/0xb10 [ 1325.976945] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1325.977582] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1325.978211] do_syscall_64+0x33/0x40 [ 1325.978661] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1325.979285] RIP: 0033:0x7f17a5cdf69c [ 1325.979739] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1325.981983] RSP: 002b:00007f17a32a2170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1325.982910] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f17a5cdf69c [ 1325.983777] RDX: 000000000000000f RSI: 00007f17a32a21e0 RDI: 000000000000000a [ 1325.984641] RBP: 00007f17a32a21d0 R08: 0000000000000000 R09: 0000000000000000 [ 1325.985511] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1325.986373] R13: 00007fff0b454aef R14: 00007f17a32a2300 R15: 0000000000022000 01:52:02 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x6be) 01:52:02 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x7400000000000000) 01:52:02 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x8, 0xfdef) 01:52:02 executing program 2: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x5, 0x0, 0x0, 0x0) [ 1326.080687] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.085459] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.086346] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.087305] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.091472] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.095790] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.096539] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.097296] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 01:52:02 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x0) [ 1326.098388] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.099122] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.099915] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.101434] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.102228] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.103015] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.103881] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.104877] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.105710] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.106473] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.107200] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.108063] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.108867] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.109662] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.110747] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.111848] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.112646] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.114428] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.115211] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.115914] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.116767] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.117508] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.119028] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.125452] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 01:52:02 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x72e) [ 1326.127156] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.130246] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.132125] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.134319] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.136024] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.137728] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.139769] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.141529] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.143424] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.145468] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.147128] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.148789] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.182268] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.182980] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.184093] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.185077] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.185772] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.186514] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.187232] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.187972] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.188733] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.189462] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.190151] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.192851] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.193556] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.194293] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.194960] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.195946] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.196689] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.197431] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.198119] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.198863] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.199591] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.200331] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.201016] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.201758] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.202489] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 01:52:02 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 53) 01:52:02 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) fork() r1 = fork() openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r1) [ 1326.228832] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1326.285093] FAULT_INJECTION: forcing a failure. [ 1326.285093] name failslab, interval 1, probability 0, space 0, times 0 [ 1326.286526] CPU: 1 PID: 9130 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1326.287317] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1326.288266] Call Trace: [ 1326.288573] dump_stack+0x107/0x167 [ 1326.289000] should_fail.cold+0x5/0xa [ 1326.289447] ? create_object.isra.0+0x3a/0xa20 [ 1326.289976] should_failslab+0x5/0x20 [ 1326.290417] kmem_cache_alloc+0x5b/0x310 [ 1326.290884] create_object.isra.0+0x3a/0xa20 [ 1326.291388] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1326.291974] kmem_cache_alloc+0x159/0x310 [ 1326.292459] kmem_cache_create_usercopy+0x190/0x2f0 [ 1326.293049] p9_client_create+0xc6a/0x1230 [ 1326.293542] ? p9_client_flush+0x430/0x430 [ 1326.294031] ? trace_hardirqs_on+0x5b/0x180 [ 1326.294528] ? lockdep_init_map_type+0x2c7/0x780 [ 1326.295075] ? __raw_spin_lock_init+0x36/0x110 [ 1326.295609] v9fs_session_init+0x1dd/0x1680 [ 1326.296105] ? lock_release+0x680/0x680 [ 1326.296569] ? kmem_cache_alloc_trace+0x151/0x320 [ 1326.297135] ? v9fs_show_options+0x690/0x690 [ 1326.297648] ? trace_hardirqs_on+0x5b/0x180 [ 1326.298142] ? kasan_unpoison_shadow+0x33/0x50 [ 1326.298667] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1326.299256] v9fs_mount+0x79/0x8f0 [ 1326.299666] ? v9fs_write_inode+0x60/0x60 [ 1326.300142] legacy_get_tree+0x105/0x220 [ 1326.300615] vfs_get_tree+0x8e/0x300 [ 1326.301040] path_mount+0x1429/0x2120 [ 1326.301482] ? strncpy_from_user+0x9e/0x470 [ 1326.301978] ? finish_automount+0xa90/0xa90 [ 1326.302481] ? getname_flags.part.0+0x1dd/0x4f0 [ 1326.303011] ? _copy_from_user+0xfb/0x1b0 [ 1326.303492] __x64_sys_mount+0x282/0x300 [ 1326.303958] ? copy_mnt_ns+0xa00/0xa00 [ 1326.304412] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1326.305021] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1326.305617] do_syscall_64+0x33/0x40 [ 1326.306046] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1326.306648] RIP: 0033:0x7f20beb15b19 [ 1326.307074] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1326.309196] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1326.310094] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1326.310921] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1326.311736] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1326.312542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1326.313360] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:52:15 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) fork() r1 = fork() openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r1) 01:52:15 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0xc, 0xfdef) 01:52:15 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 54) 01:52:15 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x7a00000000000000) 01:52:15 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 01:52:15 executing program 6: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendfile(r0, r0, &(0x7f0000000000)=0x1, 0x100) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r1, &(0x7f0000001100)=""/4095, 0xae3, 0x0) 01:52:15 executing program 2: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x7, 0x0, 0x0, 0x0) 01:52:15 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x766) [ 1339.286504] FAULT_INJECTION: forcing a failure. [ 1339.286504] name failslab, interval 1, probability 0, space 0, times 0 [ 1339.289777] CPU: 0 PID: 9255 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1339.291629] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1339.293892] Call Trace: [ 1339.294621] dump_stack+0x107/0x167 [ 1339.295608] should_fail.cold+0x5/0xa [ 1339.296644] ? create_object.isra.0+0x3a/0xa20 [ 1339.297894] should_failslab+0x5/0x20 [ 1339.298929] kmem_cache_alloc+0x5b/0x310 [ 1339.300031] create_object.isra.0+0x3a/0xa20 [ 1339.301227] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1339.302590] kmem_cache_alloc_node+0x169/0x330 [ 1339.303825] __kmem_cache_create+0x10e/0x520 [ 1339.305015] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1339.306170] p9_client_create+0xc6a/0x1230 [ 1339.307313] ? p9_client_flush+0x430/0x430 [ 1339.308461] ? trace_hardirqs_on+0x5b/0x180 [ 1339.309642] ? lockdep_init_map_type+0x2c7/0x780 [ 1339.310928] ? __raw_spin_lock_init+0x36/0x110 [ 1339.312166] v9fs_session_init+0x1dd/0x1680 [ 1339.313342] ? lock_release+0x680/0x680 [ 1339.314420] ? kmem_cache_alloc_trace+0x151/0x320 [ 1339.315721] ? v9fs_show_options+0x690/0x690 [ 1339.316912] ? trace_hardirqs_on+0x5b/0x180 [ 1339.317922] ? kasan_unpoison_shadow+0x33/0x50 [ 1339.319154] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1339.320530] v9fs_mount+0x79/0x8f0 [ 1339.321509] ? v9fs_write_inode+0x60/0x60 [ 1339.322628] legacy_get_tree+0x105/0x220 [ 1339.323719] vfs_get_tree+0x8e/0x300 [ 1339.324726] path_mount+0x1429/0x2120 [ 1339.325769] ? strncpy_from_user+0x9e/0x470 [ 1339.326940] ? finish_automount+0xa90/0xa90 [ 1339.328099] ? getname_flags.part.0+0x1dd/0x4f0 [ 1339.329157] ? _copy_from_user+0xfb/0x1b0 [ 1339.330279] __x64_sys_mount+0x282/0x300 [ 1339.331370] ? copy_mnt_ns+0xa00/0xa00 [ 1339.332427] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1339.333847] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1339.335233] do_syscall_64+0x33/0x40 [ 1339.336252] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1339.337645] RIP: 0033:0x7f20beb15b19 [ 1339.338653] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1339.343641] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1339.345734] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1339.347657] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1339.349597] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1339.351518] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1339.353438] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:52:16 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x782) 01:52:16 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) fork() ptrace(0x10, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, 0x0) 01:52:16 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0xf, 0xfdef) 01:52:16 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x84, 0x20, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x0) syz_io_uring_setup(0x7ce8, &(0x7f00000000c0)={0x0, 0x26a4, 0x10, 0x0, 0x23a}, &(0x7f0000feb000/0x13000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000140)) syz_io_uring_submit(r1, 0x0, &(0x7f0000000180)=@IORING_OP_CLOSE={0x13, 0x1, 0x0, r0}, 0x2) 01:52:16 executing program 2: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x9, 0x0, 0x0, 0x0) 01:52:16 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 01:52:16 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0xffffffff00000000) [ 1339.588618] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1339.590226] print_req_error: 100 callbacks suppressed [ 1339.590244] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1339.594597] buffer_io_error: 102 callbacks suppressed [ 1339.594608] Buffer I/O error on dev sr0, logical block 0, async page read [ 1339.617038] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1339.618642] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 4 prio class 0 [ 1339.621359] Buffer I/O error on dev sr0, logical block 1, async page read [ 1339.623281] Buffer I/O error on dev sr0, logical block 2, async page read [ 1339.625232] Buffer I/O error on dev sr0, logical block 3, async page read [ 1339.627152] Buffer I/O error on dev sr0, logical block 4, async page read [ 1339.631782] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1339.633363] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 3 prio class 0 [ 1339.636128] Buffer I/O error on dev sr0, logical block 5, async page read [ 1339.638028] Buffer I/O error on dev sr0, logical block 6, async page read [ 1339.639928] Buffer I/O error on dev sr0, logical block 7, async page read [ 1339.673323] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1339.676215] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1339.678054] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1339.679831] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 02 00 [ 1339.681903] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 8 prio class 0 [ 1339.684587] Buffer I/O error on dev sr0, logical block 0, async page read [ 1339.686493] Buffer I/O error on dev sr0, logical block 1, async page read 01:52:29 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) fork() ptrace(0x10, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, 0x0) 01:52:29 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x10, 0xfdef) 01:52:29 executing program 2: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0xa, 0x0, 0x0, 0x0) 01:52:29 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x80800) openat(r1, &(0x7f00000000c0)='./file0\x00', 0x10800, 0x57) creat(&(0x7f0000000100)='./file0\x00', 0x100) r2 = syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', 0x942, 0x5, &(0x7f0000000540)=[{&(0x7f00000001c0)="b99c67fc3d4d7ad7971309b3f62c3f8a03f58c2df395644fac18a862cf566c1383f2daa55536dfbcf989e6353d1debf196cd6c4edeeebbe46891b4eb38cea1c49f9cbdf80cdcf83b1b3435ce2b0069bdc55ee123bcf97a5637347a5880ee5c504483f744de632b2ec9c83b56cb5a7a9048a4937c2b3bc0ad5010bf25ed9b3d3976c68a42", 0x84, 0xeac}, {&(0x7f0000000280)="822545c7d687989a19620d960a078cdbbdccb5d6ea6febbe4f1188a63a22c31ab344ef02c9289a4644012e6658f786d75d8fe7e7244cbb64378ebeec0db000fc56", 0x41, 0x3}, {&(0x7f0000000300)="5fbabbed4b194fbb826c5520d44d13edac8e1a24f8ec81e828c72d633284d4f7fbaa8555c7478460be4497176d31505b3d56821e0bab63edfd945b42c6c1a3bc4803b37b2cf7a3599b7b26f4f8408b8065023494510da77609c80bed30f953478d93aa4aac2bb7d54e0b384ae84025763e657788a33973cf6416", 0x7a, 0xff}, {&(0x7f0000000380)="936650f9efe9c9e19a8e519ab80c379476a49260496498a27e0dc61583e2a5d182ada1e767e8262bcd89a342f8f2962baa274f19a896822a0e3ba972ad18bf489cff070a8e05a8029bb5ab7a4729dadd79439c8bf3f0596dbd66396fd122a9495df47719927aa0658818fb2d451129a82fe8932166b005f8c7b0a3c266842c13819999b05e601a60e1f168", 0x8b, 0xffffffffffff8001}, {&(0x7f0000000440)="f769e18b0b3e455e2a0a255286e2b4baff91edae9e8ea699199a4d97f5f45cab0fff8d9455a8b39933de23825a47cbd9b8e3eb326ae646d0f66226b3bed871ce303a242fea35361f2dc91f4b4685cd0d10e5979e2b2850a22ae88bb87cb758e9ea090a096ec56498715d804d44601d91531db241abae13f141a55f95465c7c387aedbf6dc781e6fe07b94f3dd874e9cc5ce78a7c2462fcf43fdb2eb8b7ebbfd3597ef4971b6791fedd5a28e0965f1eba6c361ee70747866ae833f47d6a2a07734bca06e3bf72a5f59d600f58", 0xcc, 0x2}], 0x20000, &(0x7f00000005c0)={[{@mode={'mode', 0x3d, 0x1}}, {@block={'block', 0x3d, 0x800}}, {@cruft}, {@block={'block', 0x3d, 0x400}}, {@nocompress}, {@hide}, {@check_strict}], [{@fsname={'fsname', 0x3d, '\''}}, {@euid_lt={'euid<', 0xee01}}, {@fscontext={'fscontext', 0x3d, 'sysadm_u'}}, {@obj_type={'obj_type', 0x3d, 'smaps\x00'}}]}) openat(r2, &(0x7f0000000680)='./file0\x00', 0x100, 0x42) pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x0) 01:52:29 executing program 7: r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_LINKINFO_GET(r1, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000f80)={0x20, r0, 0xb61ed15f7a3f2b73, 0x0, 0x0, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}]}]}, 0x20}}, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000140)={'wlan1\x00'}) sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x24, r0, 0x900, 0x70bd26, 0x25dfdbfe, {}, [@ETHTOOL_A_COALESCE_RX_USECS={0x8, 0x2, 0x9}, @ETHTOOL_A_COALESCE_TX_USECS_HIGH={0x8, 0x15, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x20008010}, 0x4004000) r2 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r2, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2) 01:52:29 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0xffffffffffffffff) 01:52:29 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x2, 0x0, 0x0, 0x0) 01:52:29 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 55) [ 1352.538635] FAULT_INJECTION: forcing a failure. [ 1352.538635] name failslab, interval 1, probability 0, space 0, times 0 [ 1352.540283] CPU: 0 PID: 9399 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1352.541247] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1352.542418] Call Trace: [ 1352.542791] dump_stack+0x107/0x167 [ 1352.543310] should_fail.cold+0x5/0xa [ 1352.543853] ? create_object.isra.0+0x3a/0xa20 [ 1352.544499] should_failslab+0x5/0x20 [ 1352.545031] kmem_cache_alloc+0x5b/0x310 [ 1352.545618] create_object.isra.0+0x3a/0xa20 [ 1352.546241] kmemleak_alloc_percpu+0xa0/0x100 [ 1352.546872] pcpu_alloc+0x4e2/0x1240 [ 1352.547423] __kmem_cache_create+0x35a/0x520 [ 1352.548045] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1352.548746] p9_client_create+0xc6a/0x1230 [ 1352.549352] ? p9_client_flush+0x430/0x430 [ 1352.549950] ? trace_hardirqs_on+0x5b/0x180 [ 1352.550566] ? lockdep_init_map_type+0x2c7/0x780 [ 1352.551236] ? __raw_spin_lock_init+0x36/0x110 [ 1352.551883] v9fs_session_init+0x1dd/0x1680 [ 1352.552491] ? lock_release+0x680/0x680 [ 1352.553059] ? kmem_cache_alloc_trace+0x151/0x320 [ 1352.553746] ? v9fs_show_options+0x690/0x690 [ 1352.554378] ? trace_hardirqs_on+0x5b/0x180 [ 1352.554984] ? kasan_unpoison_shadow+0x33/0x50 [ 1352.555624] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1352.556340] v9fs_mount+0x79/0x8f0 [ 1352.556842] ? v9fs_write_inode+0x60/0x60 [ 1352.557426] legacy_get_tree+0x105/0x220 [ 1352.558004] vfs_get_tree+0x8e/0x300 [ 1352.558528] path_mount+0x1429/0x2120 [ 1352.559071] ? strncpy_from_user+0x9e/0x470 [ 1352.559674] ? finish_automount+0xa90/0xa90 [ 1352.560285] ? getname_flags.part.0+0x1dd/0x4f0 [ 1352.560935] ? _copy_from_user+0xfb/0x1b0 [ 1352.561520] __x64_sys_mount+0x282/0x300 [ 1352.562095] ? copy_mnt_ns+0xa00/0xa00 [ 1352.562641] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1352.563364] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1352.564092] do_syscall_64+0x33/0x40 [ 1352.564608] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1352.565318] RIP: 0033:0x7f20beb15b19 [ 1352.565844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1352.568405] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1352.569465] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1352.570464] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1352.571459] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1352.572456] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1352.573459] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:52:29 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2) sendmsg$IPVS_CMD_GET_INFO(r0, &(0x7f0000000200)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x114, 0x0, 0x800, 0x70bd27, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_SERVICE={0x4}, @IPVS_CMD_ATTR_SERVICE={0x30, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@empty}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x8}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e22}, @IPVS_SVC_ATTR_PE_NAME={0x8}]}, @IPVS_CMD_ATTR_DAEMON={0x40, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_STATE={0x8}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x7fff}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x40}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5, 0x8, 0x9}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @rand_addr=0x64010101}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'erspan0\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x95}, @IPVS_CMD_ATTR_SERVICE={0x14, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x3}, @IPVS_SVC_ATTR_PORT={0x6, 0x4, 0x4e22}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0xec0}, @IPVS_CMD_ATTR_DEST={0xc, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_TYPE={0x5}]}, @IPVS_CMD_ATTR_DAEMON={0x54, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x2}, @IPVS_DAEMON_ATTR_SYNC_MAXLEN={0x6, 0x4, 0x2}, @IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'vcan0\x00'}, @IPVS_DAEMON_ATTR_MCAST_TTL={0x5}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @dev={0xfe, 0x80, '\x00', 0x1d}}, @IPVS_DAEMON_ATTR_MCAST_GROUP={0x8, 0x5, @private=0xa010100}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8, 0x3, 0x2}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x8}]}, 0x114}, 0x1, 0x0, 0x0, 0x8000}, 0x20000000) [ 1352.627710] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1352.629223] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1352.631342] buffer_io_error: 6 callbacks suppressed [ 1352.631354] Buffer I/O error on dev sr0, logical block 0, async page read [ 1352.647062] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1352.648059] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 7 prio class 0 [ 1352.649413] Buffer I/O error on dev sr0, logical block 1, async page read [ 1352.650386] Buffer I/O error on dev sr0, logical block 2, async page read [ 1352.651356] Buffer I/O error on dev sr0, logical block 3, async page read [ 1352.652305] Buffer I/O error on dev sr0, logical block 4, async page read [ 1352.653252] Buffer I/O error on dev sr0, logical block 5, async page read [ 1352.654227] Buffer I/O error on dev sr0, logical block 6, async page read [ 1352.655189] Buffer I/O error on dev sr0, logical block 7, async page read 01:52:29 executing program 4: syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x82482, 0x102) getdents64(r0, 0x0, 0x0) lseek(r0, 0xfffffffffffff014, 0x0) getdents64(r0, &(0x7f00000001c0)=""/251, 0xfb) fsetxattr$trusted_overlay_nlink(r0, &(0x7f0000000000), &(0x7f0000000100)={'U+', 0x5}, 0x16, 0x1) pread64(0xffffffffffffffff, &(0x7f0000001100)=""/4095, 0xfff, 0x400) getsockopt$IP6T_SO_GET_REVISION_MATCH(0xffffffffffffffff, 0x29, 0x44, &(0x7f0000000040)={'icmp6\x00'}, &(0x7f00000000c0)=0x1e) [ 1352.684102] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1352.685337] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1352.687475] Buffer I/O error on dev sr0, logical block 0, async page read [ 1352.689556] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1352.690743] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1352.692864] Buffer I/O error on dev sr0, logical block 1, async page read [ 1352.694521] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1352.695721] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1352.698001] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1352.699357] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1352.701755] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1352.702965] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1352.705274] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1352.706452] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1352.708716] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1352.709928] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1352.714219] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1352.715390] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 01:52:29 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) fork() ptrace(0x10, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, 0x0) 01:52:29 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x12, 0xfdef) 01:52:29 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x0) 01:52:29 executing program 7: pread64(0xffffffffffffffff, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2) 01:52:29 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x6, 0x0, 0x0, 0x0) 01:52:29 executing program 2: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0xd, 0x0, 0x0, 0x0) [ 1352.878046] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1352.879907] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1352.881318] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1352.882653] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1352.884028] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1352.885476] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1352.887951] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1352.902109] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1352.903447] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1352.904244] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1352.904962] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1352.927843] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 01:52:43 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0xc, 0x0, 0x0, 0x0) 01:52:43 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x64, 0xfdef) 01:52:43 executing program 2: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0xf, 0x0, 0x0, 0x0) 01:52:43 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 56) 01:52:43 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r1, &(0x7f0000002100)=""/4096, 0x1000, 0xa8e) vmsplice(r1, &(0x7f00000004c0)=[{&(0x7f00000000c0)="d26543f35a00f66d1f04d77f22a57bfc46e89ae305e8876f7334a854c5b55c87a83708f0f5d0aaadfb15ca09de294cec833ecda252ef67fa8054dabb1ea654e684c85206c1d65b44444b64be568240a07df95c341fdffcf615625862ca152394ee431268fa2814cfba785c6765cf7b95088b0704ab444bea0ed12cd0a1153b3c5e10f6b764778338ce3605a7222db3cffb440b9edcde7dd2b3bc58b94a49fb111033cb3ca0f1a9dbbd17fcf5b3905f10634be6b2c99120114e8221c2a2c1f90ac948905c2cef0259460e93d0dc1eed3ec9a2520b779d11fe799725e9cca0e020656d86a95703b468b531a2a3", 0xec}, {&(0x7f00000001c0)="04b38fae0a4fb0d4b96fd35637d4bbe099cd77f95dd304f7aa539904d3b5c8ff20ec1cef31a1fd1045356cc5c556efd81829a554858818deeb1310332b804560c07348c7c7864dc9e1036a0a2216c64607b80e401ad4540f7ec0a4fbd6e1834b031ab43f0a3ef0e64321a6116aff7535792bf9b92a", 0x75}, {&(0x7f0000000240)="887d2a2e47abf9c264b10260ad0c50bb2cb76371ff6810f44bb87bedb50d029a66f36d4467c78d921ac13962bcb9e5ab6fa4a3fa2edfe8649b071480cb22b7b0c323df76dd6279c82cd80fccdaaaad740e5e4859f974bb5189501660b736d671db803e58575e17a92721f690a8999b2fc400024b202c31ded5bdb46c7d92011d78e4c9441a05d913d70fb9e753", 0x8d}, {&(0x7f0000000300)="d0f0ce5e4f94e4f4e27908eaa4d61c520240415aacf1662a521474888c9b4a53e07fc157edf64a925bdf71f7f511258979e50c6f2abd78345a76b8b0a2082bbf35ab386d840ef945b5009c0787c537306ea366c30fad1c2ac05487cc45226eef9409d850c3b45a6f1d685da89a0b355d0647f826330f7b717c62c5ddbe133c1a00bc267ef3fc07806a9cb9f3567db6fdb642826c4f28b5fc7789861d3fa574fc1abacd29630e1c7416e2143f24931429f0ba086150b12089e19463499fab1fadc5267b4140f2850eb670eb77c602bf7c2f87baafbec9ef515914571a0bfc81c1", 0xe0}, {&(0x7f0000000400)="0ffa6d9a53083717aef51f1dd4fefb05aa6e4ee001d919c952485b0fd3d0343c838f6300eb240bdbf58845d8ec9de7edc412e0f3f4572d60bab435f62ea1856104fc6dea70f49ba5d1b57c9da39aef1392330ce4885cfd327d6f92232403110af53ccb9e999ac8fd6208a5bd9374674edcbdae84fef845afa6563799f09f42f99d97cb8db6f7384de59f4a1a19422e0eab068bb37b5b39588e49971b7a93720dbe7c22e8939a21b64b65d6f1", 0xac}, {&(0x7f0000000040)="f052ff395dc8f3b3638179a3469700214c", 0x11}], 0x6, 0x8) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000000)={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x7}) 01:52:43 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) r1 = fork() ptrace(0x10, r1) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r1) 01:52:43 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xa}, 0x2000, 0x0, 0x0, 0x5, 0xfffffffffffffffd}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r0, 0x0, 0x0) lseek(r0, 0xfffffffffffff014, 0x0) r1 = open_tree(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)={0x28, 0x10, 0x1, 0x0, 0x0, {}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @nested={0xa, 0x0, 0x0, 0x1, [@generic="487fec864b24"]}]}, 0x28}}, 0x0) r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), r2) sendmsg$TIPC_NL_BEARER_GET(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000240)={&(0x7f00000002c0)={0x88, r3, 0x2, 0x70bd2c, 0x25dfdbff, {}, [@TIPC_NLA_SOCK={0x74, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x2c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x4}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7ff}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x5}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0xdf00}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x40}]}, @TIPC_NLA_SOCK_CON={0x3c, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x7}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x9}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x8}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x393}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x40}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x2}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x4f}]}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0x1ff}]}]}, 0x88}, 0x1, 0x0, 0x0, 0x90}, 0x40090) sendmsg$TIPC_NL_MON_GET(r1, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000200)={&(0x7f00000006c0)={0x14, r3, 0x200, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4080}, 0x8000) sendmsg$TIPC_NL_PEER_REMOVE(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000100)={&(0x7f00000002c0)={0x3d4, r3, 0x20, 0x70bd26, 0x25dfdbfe, {}, [@TIPC_NLA_MEDIA={0xc8, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1c}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x20}, @TIPC_NLA_PROP_WIN={0x8}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0x34, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x20}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x5}]}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_MTU={0x8}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x80}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x800}]}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x3}]}, @TIPC_NLA_NODE={0xc0, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0x1c, 0x3, "0bc1b730fc6c440c5f3b68967640e20a6d0f902e1c3bda7f"}, @TIPC_NLA_NODE_ID={0x9, 0x3, "1a1331c7ce"}, @TIPC_NLA_NODE_ID={0x3b, 0x3, "62ebcdae6c83a7bec353f65fac30159e80735590ab93f56b1c9d09a23547a2fae6a7ed61188c8237797614d803fdd49880b742f429cbaa"}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x7}, @TIPC_NLA_NODE_KEY={0x4a, 0x4, {'gcm(aes)\x00', 0x22, "92f8646877d8dc58b06be2fb0ab6852026f70a90ee60cd9e361d020fbe81b47c5fb8"}}]}, @TIPC_NLA_LINK={0x40, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}]}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}, @TIPC_NLA_LINK={0x8c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xffffffff}]}, @TIPC_NLA_LINK_PROP={0x54, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1a}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x3}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x81}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x5}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1000}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffff9}, @TIPC_NLA_PROP_MTU={0x8}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x17}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xae}]}]}, @TIPC_NLA_PUBL={0x4}, @TIPC_NLA_MEDIA={0x7c, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x1f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x2}]}, @TIPC_NLA_MEDIA_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xa}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x90}]}, @TIPC_NLA_MEDIA_PROP={0x14, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x4}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8}]}]}, @TIPC_NLA_NET={0x30, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xfffffffffffff312}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x1f}, @TIPC_NLA_NET_ADDR={0x8}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xe951}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x1}]}, @TIPC_NLA_LINK={0x30, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}]}, @TIPC_NLA_SOCK={0x80, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_FLAG={0x8, 0x1, 0xff}]}, @TIPC_NLA_SOCK_CON={0x54, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0xb831}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x80000001}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x4}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x1}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x4cb}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x200}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x2}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x28}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x401}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x8}]}, @TIPC_NLA_SOCK_CON={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x200}]}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}, @TIPC_NLA_SOCK_REF={0x8, 0x2, 0xfffffffc}, @TIPC_NLA_SOCK_HAS_PUBL={0x4}]}]}, 0x3d4}, 0x1, 0x0, 0x0, 0x4090}, 0x40000) getdents64(r0, &(0x7f00000001c0)=""/251, 0xfb) read(r0, &(0x7f0000000000)=""/55, 0x37) r4 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r4, &(0x7f0000001100)=""/4095, 0xae3, 0x0) 01:52:43 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pipe(&(0x7f00000003c0)={0xffffffffffffffff}) r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_SB_POOL_SET(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x54, r2, 0x1, 0x70bd25, 0x25dfdbfb, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x6}, {0x6, 0x11, 0x1ff}, {0x8}, {0x5, 0x14, 0x1}}]}, 0x54}}, 0x48061) sendmsg$DEVLINK_CMD_PORT_SPLIT(r1, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000140)={&(0x7f0000000240)={0x6c, r2, 0x0, 0x70bd2d, 0x25dfdbff, {}, [{{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}, {0x8, 0x9, 0x2}}, {{@pci={{0x8}, {0x11}}, {0x8}}, {0x8, 0x9, 0x2}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x48c4}, 0x0) sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x3c, r2, 0x8, 0x70bd27, 0x25dfdbff, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, 0xffffffffffffffff}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x44011}, 0xc0) pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x0) [ 1366.791650] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1366.797571] FAULT_INJECTION: forcing a failure. [ 1366.797571] name failslab, interval 1, probability 0, space 0, times 0 [ 1366.801075] CPU: 0 PID: 9651 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1366.803089] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1366.805483] Call Trace: [ 1366.806267] dump_stack+0x107/0x167 [ 1366.807326] should_fail.cold+0x5/0xa [ 1366.808439] ? create_object.isra.0+0x3a/0xa20 [ 1366.809765] should_failslab+0x5/0x20 [ 1366.810751] kmem_cache_alloc+0x5b/0x310 [ 1366.811641] ? mark_held_locks+0x9e/0xe0 [ 1366.812547] create_object.isra.0+0x3a/0xa20 [ 1366.813520] kmemleak_alloc_percpu+0xa0/0x100 [ 1366.814519] pcpu_alloc+0x4e2/0x1240 [ 1366.815358] __kmem_cache_create+0x35a/0x520 [ 1366.816330] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1366.817439] p9_client_create+0xc6a/0x1230 [ 1366.818395] ? p9_client_flush+0x430/0x430 [ 1366.819324] ? trace_hardirqs_on+0x5b/0x180 [ 1366.820275] ? lockdep_init_map_type+0x2c7/0x780 [ 1366.821319] ? __raw_spin_lock_init+0x36/0x110 [ 1366.822331] v9fs_session_init+0x1dd/0x1680 [ 1366.823268] ? lock_release+0x680/0x680 [ 1366.824306] ? kmem_cache_alloc_trace+0x151/0x320 [ 1366.825540] ? v9fs_show_options+0x690/0x690 [ 1366.826694] ? trace_hardirqs_on+0x5b/0x180 [ 1366.827799] ? kasan_unpoison_shadow+0x33/0x50 [ 1366.828973] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1366.830290] v9fs_mount+0x79/0x8f0 [ 1366.831278] ? v9fs_write_inode+0x60/0x60 [ 1366.832428] legacy_get_tree+0x105/0x220 [ 1366.833548] vfs_get_tree+0x8e/0x300 [ 1366.834557] path_mount+0x1429/0x2120 [ 1366.835599] ? strncpy_from_user+0x9e/0x470 [ 1366.836777] ? finish_automount+0xa90/0xa90 [ 1366.837958] ? getname_flags.part.0+0x1dd/0x4f0 [ 1366.839240] ? _copy_from_user+0xfb/0x1b0 [ 1366.840394] __x64_sys_mount+0x282/0x300 [ 1366.841507] ? copy_mnt_ns+0xa00/0xa00 [ 1366.842600] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1366.844030] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1366.845427] do_syscall_64+0x33/0x40 [ 1366.846434] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1366.847826] RIP: 0033:0x7f20beb15b19 [ 1366.848822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1366.853791] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1366.855832] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1366.857745] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1366.859663] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1366.861573] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1366.863508] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:52:43 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x400000, 0x0) ioctl$BTRFS_IOC_SUBVOL_CREATE(r0, 0x5000940e, &(0x7f00000000c0)={{r1}, "e699b4db4d8efd4b38a72bf054c2ed3ab5e9bfb9d1988316bdeb3492f8b918cebd3a09d4020c280d96e8b5ecf213d688ffb415419ad467dacb8c78a1f5348a56b27b08ee9a9475ff0cd3f6afaa1ae5092c2cc433d8b59f35b9e74ae540e738cd317d446e8d17f18ba6d2aee0deb96314171292eb2b4d6a51ac62a39d3a33be65eab9461069af0f70af9b08cc5525fb16df76a853af519119868d8443c59d71a2a26678012f537d738a9c31e19da58efdf6e0cb6bc1da81ea9efa990385fba2501e0f5bcd314da06f219560a0e2387bf557430a53d25953919526d3677f7560f97e13c890baeb46b0d4b53a66e45c519f4030113d520fc3618349fc940f795965557687eb73bb2ab3727f9f44bcff82dc3762fb7ab90ca13a663964526f48bff4ba1f8579ac27163a14742db7ff47e1cecb35c48ff241b19c09b1a282165521f2fc15962981be677c04bb47810346e5aadf94106c373a3f94add2f971f1eb0d6a17e39dafab9fb85fb2e96e0495ffb0281f8a929c889914734c25805befd826fd68204aa99a216c8725aa5da947a8829e66c3d30f62b20b1f4480cf4550e588fc01038284483796690523747207d77d6497fa94d8bce38974a12b2192e69a13796deb7b703d76561e8d38e9ac95b80886d97a0c8d4aa1dfc49324a66a961e031a8ef20b08b5dbfe10250a8d21433d23e5f8775877371122e0a174f734047c27df5537685f22f15add7ac5770a4015050de0b1b0df7abd52452d06f1ac0239226a6fd284b2c51fe39262944b54a46e821cbcaed3e9fa26cb5dd11496795c825d518a80ba8f30e5d56690c66f5927213c7a128ae1b748ffd3e1d4505112f4640ccc44946f5efa3585773bd9c24e34df25c254d69d6e482eb5754ae77b66bdadcd6e63285f94a8b0a6ab5b0112726fc66026b17e62e47e01fb38149e4c53ded1fe341a6fb16ea3d8b117f33a307a5f35eeb529c5365a3ae86d50505009b5593fa5afe2db6821f0ad6e2f46500cff4c49ae2b8bffd6a7bda8c7038130d523e0541df240208a763c5a118f5f9cf1fc909234e3903745ba5946f4859eaa4d53bfb4dfc54b707888cbb484ac7cd25694d9937a1ec020a32939a3dcf8d813c9fd06e266231c3b7ee12d1b2d73db8da7d4e57e2e7aae7a25560b19b079b936fbcac90568002f853e8ed440d6a0120c7b7bd5ae219d819cbd0c9ff44658af8c5b7fd3808692f19a76547372b2456073950e127740432f400e296b9b6febb0a02b3197f3d3e0e2d95049955e68c9ea779e7bad9f7b98a327b851d55a4db05cfe8428c890b95c3c48a7e3a3e67e00f35b1f4f99c37cdec82adbe9a8e36c5feaedac22666ca00699c675e1f9f2471f39be549eb40a67c4397478f1bb0420ba55c7abfbd87346174bd6a970c82a2fedaedfda1ccc62f384b6132fed28487956102fe141e2198e36e612bb8df2efb0faa8131c542b3d1976c0df49356b542825d89e653c2eed0ce7093b91e09f90c26930c1c05fb60e69409e29c9c8830cdfc09882f83df2e898bd6cb982db310a29d68347573f08edea607887fd769ff62077140a407ff7fd8d77d5e9fbe0fef9d2c01e27979b94d88e6743a17af012c5b8e04c5220974735e2b015b3f2d3484e2ed280fbf4cfa0190f908fb6c24a7061bb3ade80f1fafd0bf006195db6e936abc1dd77cc57ab4a040bcce71d00f0e376c75251456e14b4a68fc0723888d51e2d5ba838ac3be0018c2ff4dd3634be10af689207b524124c8278cbed980820a161b07cbc68391ac23999f895adba2872c462448bfa32b8eeca970df36881d3c5da5f6d9140aa4077d1ceb7fb1d6df5765f3f014bb2c87694d0ecfc5228013ae2da846f75e49eb185dd1898e7dfe34e886793439a06e5a1b3d401a960289f0523949c3e5c897f89d027cc29f4b174db21268fc880d19a17f4e8b236d1f00fc92a23a39d4a6a9f1a12711b4d9878123584daf1aad4e7249d7efbfcaaa3c183a70b3f39936ef327051676af902a3b0afeecf9c8e8087cc6bed4081a3e16ce44968a4601ce4659fbc6a91fa972a2d76a55dd7d03706ad24b2a2cd097fd665d72736295bc28c6e653818bf5e9be018062f4718e190c4863ded3d4d56c12ce2d80ca1d7979520aa530d2b2c71b1bf2a5eade7bef110c7a409101ab7c96d6403d915e0ef0c5559fab49cb7c6aa86038ce5129b632394a5a3d6211ad17d7677d71ff66e8be7f78c09f507d80fc952671ca19bc3f0394da3620e07624ccf5646e9150ab79b85441227423b104a758b7bc8f16c74d9cebac6e3dca61a25e5db23cb03f66cbd22138db9c25c6540e5e73151a257b1e53487c3bafa7cd071f5924892959b2c54643226b9546daabe73b9ad46c8a06b4ea00d116673119eeaf331b49ac163b0816cf4c2f60bbceabbf6892c61444e38dabbe15d887d9f3c436977e5b9eb8694faf3e2298016ee003ba38da9ee04e84391a76087be77e9bb66da5ff72f454aa42a0609a083d337fece365fbc89077f02bd9b457d2fba02ddda3ce3479a98f218a3ccc88d9d1ecdb06b7487df3412d74d5d542169b0ebffd710c2b1b99c1a4705711da71f6961e639ddd0cb49db22f10155050862de5b29cfff9c783be7aebbb1eef7f5143703ba3afbec48b1129b9c26fdbfce03b552d117c9bb44c203e63dca1ad0a7ced187e4132701659d0a9a6b6c60ad46ceaa313ba97410ab19b17540855a2c3be60d9602dab20b841046c78e21a598ade285136faafad909bc37372ad9b50295c5a95f00141bad928cdbd88386298de4f1dca77afb65ef53983d6dd6f073148088077a1ec64df842ff76ed33c4340591209bd9eecdbff65db9b22875ac472aee4fca2ec951265fed03b7cf240a30b886816cefc078706227cca0c2702362ca7fab1cec2494d8615700ce3ff6c9e8ead365b25fc18ac9db4aedb66b4900a91fe09fdef8f4bf35bcb2c9bfbb515fe711d23d5d569f2380aefdae11d7c4c898ea25a2c5eb764641a15ba29a95867aa30fcf992d472e61f459405c9a287c8b335319c8b8521a97b25fced1a7168190fdaf764b94f292c590ad894cbcf0f8e744683940c3b2194b62c677b7cb5d4940cea7dfadf414f85f9a18426d25418f29b6f9bad524b023aa107644d2bd93bc04a86fd979a25f792609f6d15d80d24530b84d0baec4390ccbe15d20b54a952fbc24fad84b72845a80bbe030e59512198828763c5a850974ad317993a4825283b45c444c54b2dbcdb454581477d51b8fb577257b8c9d19da8c7f099e9900ef0b5adf54280818ac18680e405710ec44d4e1cdcb04637c90500d3e577538e29eaedab809a79f07c8a45b9985b3d21f0a5f8b65e0b2561085456d69e06b86b590da7253ee67556cd8c9507324f8e64b8cae3a477b9d5cb7eb0789d67c38846f6175c9df64ccdab4b8393b5a74095aebfe2bf2be94ceefbd8b3c70966be7546fae025dec5cdb17abed7208d7eaf25f56870f2838b3bc06a1be4ff43be2c96508c1788ce974fd702805d7ed65653858b8eb6dc6d5402ebb019672a0276f93dbf7ec3eb5edff0bb5dfffd280dc9c76d22a9b1a79e860e0e5d1855f1c9c3ff077ad2333cf10c668b17de4b46f764b25cadbad2c48c6e219f5b3b2efd961e6d4e05058a1b9336c2758240815407bc2a1cc06e7df7e6f6fdc2f8237626650513fce0e100918f76efba03d6b5e1ff39c013751683af605965961bdd119caab76996ba143049033ec721f45d10dc5cf91bd0c5935b44d3cd3897441816d91c1da35c726424687152ae14fac8975d1652159eeefb8721ee9cff49bc3a9676ee80d4dc9164d5e031490d21c464cbebd1f941a093c3476ab48120f90f32233b3ba238d8cf4ed01b227f85cd95dc010345d7c3f538d754cabd0034da5c2329d9a4d2436ef6f3a8c5b765b8bc3ada45c135db0ac40dcf0c3831e174fcf67f93b45474444423f73dbd921c80ee4fad9d4e924dead25c92c5ceab8dbab8d71a19ec4e5cb1dd36e87a1c4b8a06bbc453ce8f9d0433465b2959959f64f0aeb8130c406ad9c77fc512693f47947bb5ea3ecc82e469136d4e027a8318f23c970a9b2089f8997309399e52c973a51fb0c4d7b856e22cfee6e8721088bb5bf690f39106d7cdf6e2abdeb5480939154eba22059f97bd218fb220bfb341452298e6de00c86b428ea5a4c8d8e932a18815efc5467f4f0f4abef5cc375c8b3f3c6f6e2a19baa28ad7b1adf9a16a6da89af676c79bc72b6e8a309c9199327593db55504c46559f6b08600aec5033f2c109cddf26e0b6df80e468f22ed9b3d3af0453b395eda24f27f45151bfedf4ebfdfe93eebbce9f2032049a3aad94e9c149cedcea0934ade00cbfe43a5f731a9366fa64bc383599ef43a2e13c6bedc5e8714e75b7d52c7dd1059642f3c41f14b8758f204eaeb63b19093147ea2877ba08c556a2d9cd3f2f9546e3718e40813e6c907e7e537655e218edaaf621c30c62df3795447aecf3d54f75507a03ec738da4be7dd079d175e60d93f712a31a5bad2f0037d846de992b049cd11e6f94215042b734dc9cbc94e1c7a403a11abb4c884a8c071f30ccd7e32a0778e1780afd805fc9065e63cc3af5179ba5a7774055e63e3be1323b8edd75e34811e6a300b602a3c741f04f18e3a36bf280a74e067371228fc053891abd57a55f54c0fa5603b9e41dbc26171860d973486894e5140758a96d1df8a220de0adbc36add69897daf0c40cf9c72c70b38f2b8d0b41c12b43ed8939bd5c0e0620e3dc28611d83013b27d4d2a0ab0921aedb3ac105a4fc2d1574699e98c16cd416b908d4e766ae166354c244644f2866b8dc2e331b6cd200550e9f94a37566d904230749f882c0a3d28ae693e5109cdba827253a896d62d46092d08ae2c898dddb550e65b76d7b5839bf4c37becc385aa1c106eb03e6c710ea46935f3cce737dd1dd960180cdbb90d15fcefabb7e308852ec656055fc9eb1a853cbbc09751f5d211c30d7e50862c895e2054899c54402d753205d7c30762b4f748c66027ce4fe04fe6f997256f27efa513aaa4b018d0990c66ef1e4a8c31b38ef8208c2b5031d302634bfa168e867f7400446493bf3ee8097865f4076f03bbf242e8951fe8b81caaa3fb19daa16c46a7ffe1617afba196418e212b793fb1e3e76281a0de9f9e346914a7fd621a3db6bd54452dd847e56d629d95278823fecb277e1a01304d26344b9a81c76c15413b98b7e45d07708c067f85d356dcf31acf259afcdff626354b8b8809959c5af642fe7ebc29fdda40c9f7be822e459f4e708c614a6654ba02b43f62f3e03e7feeb07b34e8b446423d1af60b845639cfe71bec4c913326a4d6ded4a316d1094b3d78be43b98b3968c7dce0a4bb20216be1dab95e582dd07aee6c32110323475728b3f6af7ca2fde46331a8f4e99bb2e0bbaf39311acad57df0b4c414dfd0965489b11358ff7ff0f88a26eb9e08f37157e36dbeb0e1769f229db3cc528a4c970825065fba84d8e538cc5c889c24a267e014de6836bf34ea95b8f83ca1e3e225d0426bc7041fa8b8f60077a8b27d3ce2772195602a713ecff926ef482608739112a1add7674db673f7585e26046a36e47ec97f132c52b91ee7d39a43420ce42e0c07cc4d73c4068f884023fe389864e55e2c4d899868493fca1bab59840cf898270584bcb0a78f58db2590772394a9ad5e843f99747f200bb4d27f4b6bab0c83430d10c9568be23df35f5950284cada8379146a5c7f2e615c6457c2cc70031f8d7ee7dce7cda44f055"}) fallocate(r0, 0x47, 0x5, 0x4) r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r2, 0xc018937b, &(0x7f00000010c0)={{0x1, 0x1, 0x18, r0, {0xee00, 0xee01}}, './file0\x00'}) 01:52:43 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x10b, 0xfdef) 01:52:43 executing program 2: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x11, 0x0, 0x0, 0x0) 01:52:43 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/icmp\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xfff, 0x0) 01:52:43 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x12, 0x0, 0x0, 0x0) [ 1367.113956] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1367.115200] print_req_error: 12 callbacks suppressed [ 1367.115219] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1367.118495] buffer_io_error: 22 callbacks suppressed [ 1367.118507] Buffer I/O error on dev sr0, logical block 0, async page read [ 1367.121228] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1367.122451] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1367.124581] Buffer I/O error on dev sr0, logical block 1, async page read 01:52:43 executing program 7: syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') [ 1367.142104] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1367.143669] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 6 prio class 0 [ 1367.146178] Buffer I/O error on dev sr0, logical block 2, async page read [ 1367.147907] Buffer I/O error on dev sr0, logical block 3, async page read [ 1367.149636] Buffer I/O error on dev sr0, logical block 4, async page read [ 1367.151374] Buffer I/O error on dev sr0, logical block 5, async page read [ 1367.153105] Buffer I/O error on dev sr0, logical block 6, async page read [ 1367.154858] Buffer I/O error on dev sr0, logical block 7, async page read 01:52:43 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) r1 = fork() ptrace(0x10, r1) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r1) [ 1367.202302] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1367.204681] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1367.206366] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1367.207980] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 02 00 [ 1367.209858] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 8 prio class 0 [ 1367.212317] Buffer I/O error on dev sr0, logical block 0, async page read [ 1367.214249] Buffer I/O error on dev sr0, logical block 1, async page read 01:52:57 executing program 5: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) r1 = fork() ptrace(0x10, r1) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r1) 01:52:57 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 57) 01:52:57 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x110, 0xfdef) 01:52:57 executing program 6: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x7}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x0) 01:52:57 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x18, 0x0, 0x0, 0x0) [ 1381.036851] FAULT_INJECTION: forcing a failure. [ 1381.036851] name failslab, interval 1, probability 0, space 0, times 0 [ 1381.038594] CPU: 0 PID: 9914 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1381.039565] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1381.040728] Call Trace: [ 1381.041107] dump_stack+0x107/0x167 [ 1381.041622] should_fail.cold+0x5/0xa [ 1381.042168] should_failslab+0x5/0x20 [ 1381.042722] __kmalloc_track_caller+0x79/0x370 [ 1381.043372] ? kstrdup_const+0x53/0x80 [ 1381.043925] kstrdup+0x36/0x70 [ 1381.044380] kstrdup_const+0x53/0x80 [ 1381.044908] kvasprintf_const+0x10c/0x1a0 [ 1381.045500] kobject_set_name_vargs+0x56/0x150 [ 1381.046141] kobject_init_and_add+0xc9/0x160 [ 1381.046776] ? kobject_create_and_add+0xb0/0xb0 [ 1381.047438] ? wait_for_completion_io+0x270/0x270 [ 1381.048126] ? kernfs_name_hash+0xe7/0x110 [ 1381.048719] ? kernfs_find_ns+0x256/0x380 01:52:57 executing program 7: syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(0xffffffffffffffff, &(0x7f0000001100)=""/4093, 0xffd, 0x4) 01:52:57 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r1, 0x0, 0x0) lseek(r1, 0xfffffffffffff014, 0x0) getdents64(r1, &(0x7f00000001c0)=""/251, 0xfb) setsockopt(r0, 0x1, 0x1ff, &(0x7f0000000300)="1825d6cb3fc525db939937c29b2c2810c84301464f902ae7d43c5c79e733f3102c7668fdccdd7c748126fc6124e1dbcde62dc0b2aab504c1863c5b7b63f03b6d4a7f6b0a0ba55c6efe7bcb5d0870ac6f16be932ecc088f22fe30d6f322927ad2b38f3d69478c2f5927a7050626586700e5a0948471c3083daa741915f5dc56e9007bc5befbb3b90de1", 0x89) sendfile(r1, 0xffffffffffffffff, &(0x7f0000000180)=0x2, 0x7) readv(r0, &(0x7f0000000100)=[{&(0x7f0000000000)=""/88, 0x58}, {&(0x7f00000000c0)=""/50, 0x32}], 0x2) r2 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r2, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r3, 0x0, 0x0) lseek(r3, 0xfffffffffffff014, 0x0) getdents64(r3, &(0x7f00000001c0)=""/251, 0xfb) openat(r3, &(0x7f00000002c0)='./file0\x00', 0x400, 0x80) setsockopt$packet_tx_ring(r2, 0x107, 0xd, &(0x7f0000000140)=@req={0xffff1abb, 0x6, 0x7, 0x80000000}, 0x10) r4 = syz_open_dev$sg(&(0x7f00000003c0), 0x9, 0x4003) flock(r4, 0xd) pread64(r0, &(0x7f0000001100)=""/4095, 0xfff, 0xfffffffffffffffd) 01:52:57 executing program 2: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x23, 0x0, 0x0, 0x0) [ 1381.049308] sysfs_slab_add+0x172/0x200 [ 1381.050034] __kmem_cache_create+0x3db/0x520 [ 1381.050665] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1381.051384] p9_client_create+0xc6a/0x1230 [ 1381.052000] ? p9_client_flush+0x430/0x430 [ 1381.052607] ? trace_hardirqs_on+0x5b/0x180 [ 1381.053224] ? lockdep_init_map_type+0x2c7/0x780 [ 1381.053898] ? __raw_spin_lock_init+0x36/0x110 [ 1381.054565] v9fs_session_init+0x1dd/0x1680 [ 1381.055183] ? lock_release+0x680/0x680 [ 1381.055760] ? kmem_cache_alloc_trace+0x151/0x320 [ 1381.056441] ? v9fs_show_options+0x690/0x690 [ 1381.057076] ? trace_hardirqs_on+0x5b/0x180 [ 1381.057689] ? kasan_unpoison_shadow+0x33/0x50 [ 1381.058340] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1381.059073] v9fs_mount+0x79/0x8f0 [ 1381.059581] ? v9fs_write_inode+0x60/0x60 [ 1381.060172] legacy_get_tree+0x105/0x220 [ 1381.060752] vfs_get_tree+0x8e/0x300 [ 1381.061279] path_mount+0x1429/0x2120 [ 1381.061825] ? strncpy_from_user+0x9e/0x470 [ 1381.062437] ? finish_automount+0xa90/0xa90 [ 1381.063057] ? getname_flags.part.0+0x1dd/0x4f0 [ 1381.063705] ? _copy_from_user+0xfb/0x1b0 [ 1381.064300] __x64_sys_mount+0x282/0x300 [ 1381.064878] ? copy_mnt_ns+0xa00/0xa00 [ 1381.065436] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1381.066182] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1381.066927] do_syscall_64+0x33/0x40 [ 1381.067455] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1381.068182] RIP: 0033:0x7f20beb15b19 [ 1381.068711] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1381.071367] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1381.072503] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1381.073507] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1381.074575] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1381.075583] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1381.076591] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 [ 1381.077720] kobject: can not set name properly! [ 1381.078462] kmem_cache_create(9p-fcall-cache-83) failed with error -12 [ 1381.079430] CPU: 0 PID: 9914 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1381.080385] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1381.081549] Call Trace: [ 1381.081921] dump_stack+0x107/0x167 [ 1381.082434] kmem_cache_create_usercopy.cold+0x17/0x65 [ 1381.083180] p9_client_create+0xc6a/0x1230 [ 1381.083782] ? p9_client_flush+0x430/0x430 [ 1381.084378] ? trace_hardirqs_on+0x5b/0x180 [ 1381.084983] ? lockdep_init_map_type+0x2c7/0x780 [ 1381.085650] ? __raw_spin_lock_init+0x36/0x110 [ 1381.086293] v9fs_session_init+0x1dd/0x1680 [ 1381.086914] ? lock_release+0x680/0x680 [ 1381.087467] ? kmem_cache_alloc_trace+0x151/0x320 [ 1381.088144] ? v9fs_show_options+0x690/0x690 [ 1381.088769] ? trace_hardirqs_on+0x5b/0x180 [ 1381.089373] ? kasan_unpoison_shadow+0x33/0x50 [ 1381.090016] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1381.090735] v9fs_mount+0x79/0x8f0 [ 1381.091238] ? v9fs_write_inode+0x60/0x60 [ 1381.091821] legacy_get_tree+0x105/0x220 [ 1381.092392] vfs_get_tree+0x8e/0x300 [ 1381.092915] path_mount+0x1429/0x2120 [ 1381.093450] ? strncpy_from_user+0x9e/0x470 [ 1381.094056] ? finish_automount+0xa90/0xa90 [ 1381.094657] ? getname_flags.part.0+0x1dd/0x4f0 [ 1381.095287] ? _copy_from_user+0xfb/0x1b0 [ 1381.095864] __x64_sys_mount+0x282/0x300 [ 1381.096418] ? copy_mnt_ns+0xa00/0xa00 [ 1381.096958] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1381.097672] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1381.098388] do_syscall_64+0x33/0x40 [ 1381.098911] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1381.099635] RIP: 0033:0x7f20beb15b19 [ 1381.100141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1381.102656] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1381.103690] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1381.104680] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1381.105688] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1381.106688] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1381.107868] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 01:52:57 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f00000000c0)=""/4108, 0x100c, 0x2) [ 1381.116273] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.117532] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1381.119757] buffer_io_error: 6 callbacks suppressed [ 1381.119769] Buffer I/O error on dev sr0, logical block 0, async page read [ 1381.123237] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.124493] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1381.126724] Buffer I/O error on dev sr0, logical block 1, async page read [ 1381.128489] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.130557] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1381.132779] Buffer I/O error on dev sr0, logical block 2, async page read [ 1381.134552] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.135819] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1381.138002] Buffer I/O error on dev sr0, logical block 3, async page read [ 1381.140302] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.141594] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1381.143806] Buffer I/O error on dev sr0, logical block 4, async page read [ 1381.145508] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.146754] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1381.148938] Buffer I/O error on dev sr0, logical block 5, async page read [ 1381.150693] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.151927] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1381.154108] Buffer I/O error on dev sr0, logical block 6, async page read [ 1381.157767] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.159009] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1381.161172] Buffer I/O error on dev sr0, logical block 7, async page read [ 1381.162878] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.164128] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1381.166335] Buffer I/O error on dev sr0, logical block 0, async page read [ 1381.171291] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.172028] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1381.173977] Buffer I/O error on dev sr0, logical block 1, async page read [ 1381.179269] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.180072] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.180890] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.181923] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.182749] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.183557] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.184559] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.185384] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.186212] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.187014] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.187838] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.188638] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.191220] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.192002] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.192839] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.193640] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.194452] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.197303] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.198079] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.198975] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.199779] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.201016] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.201834] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.202644] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.203450] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.204256] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.205035] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.205832] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.206646] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.207455] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.208272] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.209037] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.209833] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.210639] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.211432] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.212226] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.213003] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.213796] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.214609] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.215410] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.216205] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.216966] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.217759] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.218569] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.219367] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.220165] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.220945] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.221744] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.222554] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.223348] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.224108] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.224916] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.225721] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.226537] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.227340] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.228102] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.228883] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.229675] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.230476] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.231265] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.232015] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.232800] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.233604] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.234401] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.235200] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.236032] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.236822] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.237603] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.238377] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.239169] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.239938] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.240719] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.241690] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.242478] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.243258] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.243995] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.245165] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.245910] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.246758] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.247538] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.248339] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.249086] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.249860] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.250650] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.251440] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.252251] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1381.292210] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1381.293446] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1381.294305] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1381.295115] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 02 00 01:52:57 executing program 6: semget(0x2, 0x3, 0x484) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xfff, 0x80000000400) r1 = semget$private(0x0, 0x2, 0x182) semop(r1, &(0x7f0000000000)=[{0x2, 0x4}, {0x3, 0x6, 0x800}, {0x4, 0x0, 0x800}, {0x3, 0x400, 0x1800}], 0x4) 01:52:58 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x281, 0xfdef) 01:52:58 executing program 5: creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) fork() r0 = fork() ptrace(0x10, r0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r0) 01:52:58 executing program 7: syz_open_procfs(0x0, &(0x7f0000000080)='sched\x00') r0 = socket$inet6_icmp(0xa, 0x2, 0x3a) pread64(r0, &(0x7f00000000c0)=""/4110, 0x100e, 0x2) 01:52:58 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x1e, 0x0, 0x0, 0x0) 01:52:58 executing program 2: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x8e, 0x0, 0x0, 0x0) 01:52:58 executing program 4: open(&(0x7f0000000040)='./file0\x00', 0x301100, 0x20) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00'}) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/if_inet6\x00') pread64(r1, &(0x7f0000001100)=""/4095, 0x20001be3, 0x0) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r2, 0x0, 0x0) lseek(r2, 0xfffffffffffff010, 0x2) getdents64(r2, &(0x7f00000001c0)=""/251, 0xfb) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000100)) r3 = dup3(r0, r1, 0x0) readv(r3, &(0x7f00000004c0)=[{&(0x7f0000000300)=""/40, 0x28}, {&(0x7f0000000340)=""/101, 0x65}, {&(0x7f00000003c0)=""/1, 0x1}, {&(0x7f0000000400)=""/162, 0xa2}], 0x4) [ 1381.562856] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1381.564050] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1381.564873] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1381.565678] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 02 00 01:53:10 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x24, 0x0, 0x0, 0x0) 01:53:10 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') r1 = openat2(r0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x101000, 0x41, 0xd}, 0x18) read(r1, &(0x7f00000000c0)=""/145, 0x91) pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2) 01:53:10 executing program 2: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x300, 0x0, 0x0, 0x0) 01:53:10 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x300, 0xfdef) 01:53:10 executing program 6: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$INCFS_IOC_READ_FILE_SIGNATURE(r0, 0x8010671f, &(0x7f00000002c0)={&(0x7f0000000140)=""/108, 0x6c}) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r1, 0x0, 0x0) lseek(r1, 0xfffffffffffff014, 0x0) getdents64(r1, &(0x7f00000001c0)=""/251, 0xfb) getdents64(r1, &(0x7f00000000c0)=""/119, 0x77) r2 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r2, &(0x7f0000001100)=""/4095, 0xae3, 0x0) 01:53:10 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 58) 01:53:10 executing program 4: syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r0, 0x0, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) lseek(r0, 0xfffffffffffff014, 0x0) getdents64(r0, &(0x7f00000001c0)=""/251, 0xfb) r1 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) pread64(r1, &(0x7f0000002100)=""/4086, 0x1011, 0x2000000000008) 01:53:10 executing program 5: creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) fork() r0 = fork() ptrace(0x10, r0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r0) 01:53:10 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') r1 = eventfd2(0x401, 0x0) dup3(0xffffffffffffffff, r1, 0x0) pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2) 01:53:10 executing program 4: syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r0, 0x0, 0x0) lseek(r0, 0xfffffffffffff014, 0x0) getdents64(r0, &(0x7f00000001c0)=""/251, 0xfb) pread64(r0, &(0x7f00000000c0)=""/4095, 0xfff, 0x0) [ 1393.806747] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1393.808411] print_req_error: 88 callbacks suppressed [ 1393.808431] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1393.812292] buffer_io_error: 102 callbacks suppressed [ 1393.812306] Buffer I/O error on dev sr0, logical block 0, async page read [ 1393.815610] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1393.817063] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1393.819627] Buffer I/O error on dev sr0, logical block 1, async page read [ 1393.821559] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1393.823036] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1393.823527] FAULT_INJECTION: forcing a failure. [ 1393.823527] name failslab, interval 1, probability 0, space 0, times 0 [ 1393.825580] Buffer I/O error on dev sr0, logical block 2, async page read [ 1393.827159] CPU: 0 PID: 10082 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1393.827175] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1393.828991] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1393.829827] Call Trace: [ 1393.829845] dump_stack+0x107/0x167 [ 1393.829860] should_fail.cold+0x5/0xa [ 1393.829881] ? create_object.isra.0+0x3a/0xa20 [ 1393.832046] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 5 prio class 0 [ 1393.832694] should_failslab+0x5/0x20 [ 1393.832707] kmem_cache_alloc+0x5b/0x310 [ 1393.832726] create_object.isra.0+0x3a/0xa20 [ 1393.833405] Buffer I/O error on dev sr0, logical block 3, async page read [ 1393.833837] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1393.833857] __kmalloc_track_caller+0x177/0x370 [ 1393.834834] Buffer I/O error on dev sr0, logical block 4, async page read [ 1393.835390] ? kstrdup_const+0x53/0x80 [ 1393.835408] kstrdup+0x36/0x70 [ 1393.835427] kstrdup_const+0x53/0x80 [ 1393.837854] Buffer I/O error on dev sr0, logical block 5, async page read [ 1393.838314] kvasprintf_const+0x10c/0x1a0 [ 1393.838329] kobject_set_name_vargs+0x56/0x150 [ 1393.838347] kobject_init_and_add+0xc9/0x160 [ 1393.839371] Buffer I/O error on dev sr0, logical block 6, async page read [ 1393.839878] ? kobject_create_and_add+0xb0/0xb0 [ 1393.841533] Buffer I/O error on dev sr0, logical block 7, async page read [ 1393.842151] ? wait_for_completion_io+0x270/0x270 [ 1393.851357] ? kernfs_name_hash+0xe7/0x110 [ 1393.851954] ? kernfs_find_ns+0x256/0x380 [ 1393.852540] sysfs_slab_add+0x172/0x200 [ 1393.853098] __kmem_cache_create+0x3db/0x520 [ 1393.853716] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1393.854430] p9_client_create+0xc6a/0x1230 [ 1393.855037] ? p9_client_flush+0x430/0x430 [ 1393.855628] ? trace_hardirqs_on+0x5b/0x180 [ 1393.856228] ? lockdep_init_map_type+0x2c7/0x780 [ 1393.856896] ? __raw_spin_lock_init+0x36/0x110 [ 1393.857540] v9fs_session_init+0x1dd/0x1680 [ 1393.858137] ? lock_release+0x680/0x680 [ 1393.858682] ? kmem_cache_alloc_trace+0x151/0x320 [ 1393.859338] ? v9fs_show_options+0x690/0x690 [ 1393.859940] ? trace_hardirqs_on+0x5b/0x180 [ 1393.860504] ? kasan_unpoison_shadow+0x33/0x50 [ 1393.861133] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1393.861823] v9fs_mount+0x79/0x8f0 [ 1393.862309] ? v9fs_write_inode+0x60/0x60 [ 1393.862879] legacy_get_tree+0x105/0x220 [ 1393.863438] vfs_get_tree+0x8e/0x300 [ 1393.863943] path_mount+0x1429/0x2120 [ 1393.864467] ? strncpy_from_user+0x9e/0x470 [ 1393.865053] ? finish_automount+0xa90/0xa90 [ 1393.865618] ? getname_flags.part.0+0x1dd/0x4f0 [ 1393.866250] ? _copy_from_user+0xfb/0x1b0 [ 1393.866822] __x64_sys_mount+0x282/0x300 [ 1393.867377] ? copy_mnt_ns+0xa00/0xa00 [ 1393.867906] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1393.868614] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1393.869317] do_syscall_64+0x33/0x40 [ 1393.869822] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1393.870509] RIP: 0033:0x7f20beb15b19 [ 1393.871018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1393.873509] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1393.874534] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1393.875466] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1393.876432] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1393.877390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1393.878354] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 [ 1393.885298] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1393.886032] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1393.887402] Buffer I/O error on dev sr0, logical block 0, async page read [ 1393.888595] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1393.889354] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1393.890823] Buffer I/O error on dev sr0, logical block 1, async page read [ 1393.891874] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1393.892625] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1393.894080] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1393.894832] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1393.896272] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1393.896999] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1393.916307] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1393.917649] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 3 prio class 0 01:53:10 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x321, 0xfdef) 01:53:10 executing program 4: prctl$PR_SET_IO_FLUSHER(0x39, 0x1) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x0) 01:53:10 executing program 2: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x500, 0x0, 0x0, 0x0) 01:53:10 executing program 7: r0 = mmap$IORING_OFF_CQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x2000000, 0x20010, 0xffffffffffffffff, 0x8000000) syz_io_uring_setup(0x1d, &(0x7f0000000100), &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000280)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x9}, 0x0) syz_io_uring_submit(r0, r2, &(0x7f0000000000)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x2007, @fd, 0x4d, 0xba9, 0x7, 0x1}, 0x7) r3 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r3, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2) 01:53:10 executing program 6: r0 = perf_event_open(&(0x7f0000000040)={0x6, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x0, @perf_bp={0x0}}, 0x0, 0x7, 0xffffffffffffffff, 0x0) r1 = fork() ptrace(0x10, r1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) write$binfmt_elf64(r0, &(0x7f0000000600)=ANY=[@ANYBLOB="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"/2208], 0x8a0) setsockopt$inet6_tcp_int(r3, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendfile(r3, r2, 0x0, 0x9bbb) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x3, 0x3f, 0x5, 0x8, 0x0, 0x7, 0x88008, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x3, @perf_bp={&(0x7f0000000040), 0x1}, 0x4800, 0x100000000, 0x8, 0x1, 0xc3, 0x584, 0x800, 0x0, 0x3, 0x0, 0x9}, r1, 0x5, r2, 0x0) ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f0000000300)=0x0) r5 = syz_open_procfs(r4, &(0x7f00000002c0)='net/rpc\x00') pwrite64(r5, &(0x7f00000000c0)="63410cef4ce8ee1c0c41fca85edd9ea708989d70739a72a4b747c3f40b4164a4e258a9ca3f3d5269634a1e59878bb2f80857f2d892b6b9ed5ffd6cf12e5d66368bbf0238012d2ffc25b3af1408e73272cbec6350653acd85161223e0909d10a8c2c6cec079ebf2136a8c2cc45cfe94f50c55aa14978effc3465bd959712f581665c97e2adc13b10d3ace83bb06c8e4016ac9012a40500d15c5a64d0910c4d25a3deab5dd09df0b53376f41b747ddba3a9acd2c8d920c", 0xb6, 0xfffffffffffffff8) pread64(r5, &(0x7f0000001100)=""/4095, 0xae3, 0x0) sendmsg$inet6(r5, &(0x7f0000000440)={&(0x7f0000000000)={0xa, 0x4e24, 0xcf0, @remote, 0x1}, 0x1c, &(0x7f0000000280)=[{&(0x7f0000002100)="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", 0x1000}, {&(0x7f0000000180)="ef6c8be741d6350b5f342a1178c40524636298e038563063b639efd35613b2adf837434e679de5e3228c43b461c3645f137346f43c9f5fe6a51caf51493f8ff4141e76b9226da75d51e4669845a8a83a566356826264af9bd237e424b593c486e8269de7012e547cb66f35f8f10315ce2d8640e76ed669997a024ee82026f9038f2c29dfbc632acca79e8dc6a2c3a0a75d856f66d78a43b26377e607d3713d7cabe8a05bc5bc6e8dc60db6fd2cdc51176aa967afe37b7d73e1c74664cd3f04f5ba98b303fe8ea00714fc3d2d18751807b2524b9ae669383775d2c8bf90f2252131928e005aa0dd363fa10cb300c36e7a67ad", 0xf2}], 0x2, &(0x7f0000000480)=[@pktinfo={{0x24, 0x29, 0x32, {@local}}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0xffffffff}}, @tclass={{0x14, 0x29, 0x43, 0xfffff888}}, @rthdrdstopts={{0x128, 0x29, 0x37, {0x0, 0x22, '\x00', [@hao={0xc9, 0x10, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}}, @enc_lim, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, @generic={0x7, 0xa5, "61aee159c478625759df9972213ce480ea2f7283916d74354ee24abeaf171df68f646732d06cd69fb9bbba18ba42c5a914013a05d24fca1381e083a09d6c0ed5e99aebfbbdb2286cc48caa45f1d5c41a04061b84dda6226ac4ffd56bd5c7698995a5bf04bb93f243ecbe39c367c1819d50a787686e693a9aa0eda1a3f841531e01467b03c0456071c811b3ed5efb7dcc9e0f0439c52dcc05dc62afd3b1584b4ee36193771e"}, @hao={0xc9, 0x10, @dev={0xfe, 0x80, '\x00', 0x27}}, @ra={0x5, 0x2, 0x7fff}, @pad1, @generic={0x1, 0x32, "51ea825f5dbb29a762418afc6e87e5f8526d0fcdee7e7cbfe340d73a6fcf6c1c3ae4549f49e3f1cc3ab90e36ac690a01487f"}]}}}], 0x180}, 0x0) 01:53:10 executing program 5: creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) fork() r0 = fork() ptrace(0x10, r0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r0) 01:53:10 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x500, 0xfdef) 01:53:10 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x2a, 0x0, 0x0, 0x0) [ 1394.101968] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.104964] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.106740] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.108536] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.110120] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.111739] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.113565] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.115113] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.116710] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.119885] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.121408] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.122924] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.124465] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.125983] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.127524] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.129022] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.130559] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.132017] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.139990] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.142481] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.143337] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.144071] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 01:53:10 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 59) 01:53:10 executing program 4: syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') r0 = mq_open(&(0x7f0000000000)='smaps\x00', 0x40, 0x18a, &(0x7f0000000040)={0xfff, 0x6, 0x100000001, 0x7}) pread64(r0, &(0x7f0000001100)=""/4095, 0xfff, 0x0) [ 1394.162376] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.163264] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.174767] FAULT_INJECTION: forcing a failure. [ 1394.174767] name failslab, interval 1, probability 0, space 0, times 0 [ 1394.177527] CPU: 1 PID: 10133 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1394.179185] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1394.181137] Call Trace: [ 1394.181762] dump_stack+0x107/0x167 [ 1394.182628] should_fail.cold+0x5/0xa [ 1394.183554] should_failslab+0x5/0x20 [ 1394.184460] __kmalloc_track_caller+0x79/0x370 [ 1394.185536] ? kstrdup_const+0x53/0x80 [ 1394.186463] kstrdup+0x36/0x70 [ 1394.187247] kstrdup_const+0x53/0x80 [ 1394.188129] __kernfs_new_node+0x9d/0x860 [ 1394.189119] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1394.190253] ? lock_acquire+0x197/0x470 [ 1394.191211] ? perf_trace_lock+0xac/0x490 [ 1394.192215] ? __lockdep_reset_lock+0x180/0x180 [ 1394.193330] kernfs_new_node+0x18d/0x250 [ 1394.194293] kernfs_create_dir_ns+0x49/0x160 [ 1394.195355] sysfs_create_dir_ns+0x127/0x290 [ 1394.196393] ? sysfs_create_mount_point+0xb0/0xb0 [ 1394.197786] ? rwlock_bug.part.0+0x90/0x90 [ 1394.198732] ? do_raw_spin_unlock+0x4f/0x220 [ 1394.199730] kobject_add_internal+0x25e/0xa30 [ 1394.200739] kobject_init_and_add+0x101/0x160 [ 1394.201736] ? kobject_create_and_add+0xb0/0xb0 [ 1394.202773] ? wait_for_completion_io+0x270/0x270 01:53:10 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x105142, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r2, &(0x7f0000000480)="af", 0x1, 0x1000000) fallocate(r1, 0x3, 0x0, 0x8000) fallocate(r0, 0x0, 0x600, 0xfdef) 01:53:10 executing program 7: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) r1 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000002140)='/proc/thread-self/attr/current\x00', 0x2, 0x0) syz_open_procfs(0xffffffffffffffff, &(0x7f0000002280)='net/rfcomm\x00') dup2(r1, r0) getsockopt$inet_mreq(r0, 0x0, 0x20, &(0x7f0000000040)={@multicast1, @empty}, &(0x7f0000000080)=0x8) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) getdents64(r2, 0x0, 0x0) lseek(r2, 0xfffffffffffff014, 0x0) r3 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r3, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) setsockopt$packet_drop_memb(r3, 0x107, 0x2, &(0x7f00000022c0)={0x0, 0x1, 0x6, @broadcast}, 0x10) getdents64(r2, &(0x7f00000001c0)=""/251, 0xfb) pwritev(r2, &(0x7f0000002100)=[{&(0x7f00000000c0)="7ad865b7848e825b2f782ae462d5d3f09191", 0x12}, {&(0x7f0000000100)="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", 0x1000}], 0x2, 0x8, 0x10001) r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/raw6\x00') pread64(r4, &(0x7f0000001100)=""/4095, 0x20001be3, 0x2) sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000002240)={&(0x7f0000002180)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000002200)={&(0x7f00000021c0)={0x20, 0x0, 0x9, 0x5, 0x0, 0x0, {0x7, 0x0, 0x3}, [@NFCTH_NAME={0x9, 0x1, 'syz1\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000}, 0x40000) 01:53:10 executing program 6: perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}}, 0x0, 0xfffffffffffffffc, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x0) [ 1394.203850] ? kernfs_name_hash+0xe7/0x110 [ 1394.204968] ? kernfs_find_ns+0x256/0x380 [ 1394.205927] sysfs_slab_add+0x172/0x200 [ 1394.206814] __kmem_cache_create+0x3db/0x520 [ 1394.207812] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1394.208924] p9_client_create+0xc6a/0x1230 [ 1394.209873] ? p9_client_flush+0x430/0x430 01:53:10 executing program 0: r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) creat(&(0x7f0000000040)='./file0\x00', 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_uring_enter(r0, 0x58ab, 0x30, 0x0, 0x0, 0x0) [ 1394.210810] ? trace_hardirqs_on+0x5b/0x180 [ 1394.211848] ? lockdep_init_map_type+0x2c7/0x780 [ 1394.212900] ? __raw_spin_lock_init+0x36/0x110 [ 1394.213917] v9fs_session_init+0x1dd/0x1680 [ 1394.214873] ? lock_release+0x680/0x680 [ 1394.215778] ? kmem_cache_alloc_trace+0x151/0x320 [ 1394.216853] ? v9fs_show_options+0x690/0x690 [ 1394.217837] ? trace_hardirqs_on+0x5b/0x180 [ 1394.218790] ? kasan_unpoison_shadow+0x33/0x50 [ 1394.219810] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1394.220946] v9fs_mount+0x79/0x8f0 [ 1394.221739] ? v9fs_write_inode+0x60/0x60 [ 1394.222656] legacy_get_tree+0x105/0x220 [ 1394.223565] vfs_get_tree+0x8e/0x300 [ 1394.224389] path_mount+0x1429/0x2120 [ 1394.225239] ? strncpy_from_user+0x9e/0x470 [ 1394.226193] ? finish_automount+0xa90/0xa90 [ 1394.227156] ? getname_flags.part.0+0x1dd/0x4f0 [ 1394.228183] ? _copy_from_user+0xfb/0x1b0 [ 1394.229122] __x64_sys_mount+0x282/0x300 [ 1394.230026] ? copy_mnt_ns+0xa00/0xa00 [ 1394.230901] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1394.232064] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1394.233208] do_syscall_64+0x33/0x40 [ 1394.234045] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1394.235179] RIP: 0033:0x7f20beb15b19 [ 1394.236001] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1394.240064] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1394.241739] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1394.243319] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1394.244890] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1394.246457] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 01:53:10 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') openat(r0, &(0x7f0000000000)='./file0\x00', 0x10080, 0x2) pread64(r0, &(0x7f0000001100)=""/4095, 0x20001be3, 0x0) [ 1394.248033] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 [ 1394.252480] kobject_add_internal failed for 9p-fcall-cache-85 (error: -12 parent: slab) [ 1394.254740] kmem_cache_create(9p-fcall-cache-85) failed with error -12 [ 1394.256264] CPU: 1 PID: 10133 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1394.257789] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1394.259624] Call Trace: [ 1394.260208] dump_stack+0x107/0x167 [ 1394.261018] kmem_cache_create_usercopy.cold+0x17/0x65 [ 1394.262184] p9_client_create+0xc6a/0x1230 [ 1394.263138] ? p9_client_flush+0x430/0x430 [ 1394.264077] ? trace_hardirqs_on+0x5b/0x180 [ 1394.265034] ? lockdep_init_map_type+0x2c7/0x780 [ 1394.266082] ? __raw_spin_lock_init+0x36/0x110 [ 1394.267106] v9fs_session_init+0x1dd/0x1680 [ 1394.268059] ? lock_release+0x680/0x680 [ 1394.268947] ? kmem_cache_alloc_trace+0x151/0x320 [ 1394.270008] ? v9fs_show_options+0x690/0x690 [ 1394.271001] ? trace_hardirqs_on+0x5b/0x180 [ 1394.271960] ? kasan_unpoison_shadow+0x33/0x50 [ 1394.272966] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1394.274091] v9fs_mount+0x79/0x8f0 [ 1394.274881] ? v9fs_write_inode+0x60/0x60 [ 1394.275807] legacy_get_tree+0x105/0x220 [ 1394.276708] vfs_get_tree+0x8e/0x300 [ 1394.277530] path_mount+0x1429/0x2120 [ 1394.278379] ? strncpy_from_user+0x9e/0x470 [ 1394.279339] ? finish_automount+0xa90/0xa90 [ 1394.280292] ? getname_flags.part.0+0x1dd/0x4f0 [ 1394.281320] ? _copy_from_user+0xfb/0x1b0 [ 1394.282247] __x64_sys_mount+0x282/0x300 [ 1394.283152] ? copy_mnt_ns+0xa00/0xa00 [ 1394.284021] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1394.285179] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1394.286321] do_syscall_64+0x33/0x40 [ 1394.287151] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1394.288281] RIP: 0033:0x7f20beb15b19 [ 1394.289105] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1394.293176] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1394.294853] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1394.296434] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1394.298013] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1394.299602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 01:53:10 executing program 5: open_by_handle_at(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB='?'], 0x0) fork() r0 = fork() ptrace(0x10, r0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ptrace(0x10, r0) [ 1394.301179] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 [ 1394.342087] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1394.343521] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1394.344500] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1394.345448] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 02 00 01:53:11 executing program 4: r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xfff, 0x7) 01:53:11 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x644e2, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c63616335f23d6d6d61702c6e6f657874656e64"]) (fail_nth: 60) [ 1394.381019] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.382407] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.383774] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.385117] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.386468] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.387872] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.392279] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.393624] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.395013] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.396360] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.397697] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.401217] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.422885] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.424238] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.425165] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.426006] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.427002] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.427888] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.428895] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.429788] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.430705] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.431593] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.432488] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.433353] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.434237] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.435078] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.435942] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.436817] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.437680] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.438574] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.439457] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.440345] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.441216] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.442050] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.442936] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.443817] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.444704] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.445570] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.446457] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.447320] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.448070] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.448816] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.449558] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.450266] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.450927] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.451631] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.452374] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.453036] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.453728] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.454450] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.455127] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.455816] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.456501] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.457184] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.457855] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.458570] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.459269] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.459932] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.460639] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.461334] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.461994] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.462727] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.463438] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.464100] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.464809] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.465507] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.466224] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.466889] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.467603] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.468324] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.469001] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.469698] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.470443] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.471117] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.471811] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.472527] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.473217] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.473879] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.474644] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.475382] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.476077] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.476817] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.477545] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.478291] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.494080] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1394.584443] FAULT_INJECTION: forcing a failure. [ 1394.584443] name failslab, interval 1, probability 0, space 0, times 0 [ 1394.585832] CPU: 0 PID: 10266 Comm: syz-executor.1 Not tainted 5.10.230 #1 [ 1394.586663] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1394.587668] Call Trace: [ 1394.587991] dump_stack+0x107/0x167 [ 1394.588436] should_fail.cold+0x5/0xa [ 1394.588900] ? create_object.isra.0+0x3a/0xa20 [ 1394.589452] should_failslab+0x5/0x20 [ 1394.589909] kmem_cache_alloc+0x5b/0x310 [ 1394.590398] ? arch_stack_walk+0x5e/0xf0 [ 1394.590889] create_object.isra.0+0x3a/0xa20 [ 1394.591434] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1394.592046] __kmalloc_track_caller+0x177/0x370 [ 1394.592579] ? kstrdup_const+0x53/0x80 [ 1394.593052] kstrdup+0x36/0x70 [ 1394.593440] kstrdup_const+0x53/0x80 [ 1394.593890] __kernfs_new_node+0x9d/0x860 [ 1394.594399] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1394.594977] ? lock_acquire+0x197/0x470 [ 1394.595465] ? perf_trace_lock+0xac/0x490 [ 1394.595971] ? __lockdep_reset_lock+0x180/0x180 [ 1394.596530] kernfs_new_node+0x18d/0x250 [ 1394.597019] kernfs_create_dir_ns+0x49/0x160 [ 1394.597549] sysfs_create_dir_ns+0x127/0x290 [ 1394.598078] ? sysfs_create_mount_point+0xb0/0xb0 [ 1394.598652] ? rwlock_bug.part.0+0x90/0x90 [ 1394.599149] ? do_raw_spin_unlock+0x4f/0x220 [ 1394.599681] kobject_add_internal+0x25e/0xa30 [ 1394.600224] kobject_init_and_add+0x101/0x160 [ 1394.600768] ? kobject_create_and_add+0xb0/0xb0 [ 1394.601334] ? wait_for_completion_io+0x270/0x270 [ 1394.601909] ? kernfs_name_hash+0xe7/0x110 [ 1394.602419] ? kernfs_find_ns+0x256/0x380 [ 1394.602919] sysfs_slab_add+0x172/0x200 [ 1394.603404] __kmem_cache_create+0x3db/0x520 [ 1394.603938] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1394.604541] p9_client_create+0xc6a/0x1230 [ 1394.605074] ? p9_client_flush+0x430/0x430 [ 1394.605581] ? trace_hardirqs_on+0x5b/0x180 [ 1394.606097] ? lockdep_init_map_type+0x2c7/0x780 [ 1394.606663] ? __raw_spin_lock_init+0x36/0x110 [ 1394.607221] v9fs_session_init+0x1dd/0x1680 [ 1394.607736] ? lock_release+0x680/0x680 [ 1394.608215] ? kmem_cache_alloc_trace+0x151/0x320 [ 1394.608791] ? v9fs_show_options+0x690/0x690 [ 1394.609320] ? trace_hardirqs_on+0x5b/0x180 [ 1394.609846] ? kasan_unpoison_shadow+0x33/0x50 [ 1394.610390] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1394.611006] v9fs_mount+0x79/0x8f0 [ 1394.611434] ? v9fs_write_inode+0x60/0x60 [ 1394.611932] legacy_get_tree+0x105/0x220 [ 1394.612423] vfs_get_tree+0x8e/0x300 [ 1394.612869] path_mount+0x1429/0x2120 [ 1394.613327] ? strncpy_from_user+0x9e/0x470 [ 1394.613842] ? finish_automount+0xa90/0xa90 [ 1394.614356] ? getname_flags.part.0+0x1dd/0x4f0 [ 1394.614912] ? _copy_from_user+0xfb/0x1b0 [ 1394.615418] __x64_sys_mount+0x282/0x300 [ 1394.615902] ? copy_mnt_ns+0xa00/0xa00 [ 1394.616368] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1394.616993] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1394.617608] do_syscall_64+0x33/0x40 [ 1394.618053] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1394.618665] RIP: 0033:0x7f20beb15b19 [ 1394.619125] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1394.621315] RSP: 002b:00007f20bc08b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1394.622222] RAX: ffffffffffffffda RBX: 00007f20bec28f60 RCX: 00007f20beb15b19 [ 1394.623097] RDX: 0000000020000000 RSI: 0000000020000040 RDI: 0000000000000000 [ 1394.623952] RBP: 00007f20bc08b1d0 R08: 0000000020000080 R09: 0000000000000000 [ 1394.624808] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1394.625661] R13: 00007ffd62515a8f R14: 00007f20bc08b300 R15: 0000000000022000 [ 1406.953790] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak) BUG: memory leak unreferenced object 0xffff88800eb8ff80 (size 32): comm "syz-executor.1", pid 10133, jiffies 4296061119 (age 20.060s) hex dump (first 32 bytes): 39 70 2d 66 63 61 6c 6c 2d 63 61 63 68 65 2d 38 9p-fcall-cache-8 35 00 b8 0e 80 88 ff ff 00 00 00 00 00 00 00 00 5............... backtrace: [<000000004447bbbc>] kstrdup+0x36/0x70 [<00000000aca52b34>] kstrdup_const+0x53/0x80 [<00000000fb0bfbbf>] kvasprintf_const+0x10c/0x1a0 [<00000000c8fda896>] kobject_set_name_vargs+0x56/0x150 [<00000000f103c625>] kobject_init_and_add+0xc9/0x160 [<00000000ea45ddf8>] sysfs_slab_add+0x172/0x200 [<000000006b51d980>] __kmem_cache_create+0x3db/0x520 [<000000001c8cfd82>] kmem_cache_create_usercopy+0x1db/0x2f0 [<000000006849f881>] p9_client_create+0xc6a/0x1230 [<00000000f2594ee4>] v9fs_session_init+0x1dd/0x1680 [<00000000a44f223c>] v9fs_mount+0x79/0x8f0 [<000000001bdda1de>] legacy_get_tree+0x105/0x220 [<0000000090ec24c8>] vfs_get_tree+0x8e/0x300 [<00000000436cddb1>] path_mount+0x1429/0x2120 [<00000000d3b74018>] __x64_sys_mount+0x282/0x300 [<00000000364aa63f>] do_syscall_64+0x33/0x40 BUG: leak checking failed VM DIAGNOSIS: 01:53:31 Registers: info registers vcpu 0 RAX=0000000000000001 RBX=1ffff11008cecf46 RCX=ffffffff812752ef RDX=0000000000000000 RSI=0000000000000008 RDI=ffffffff85677788 RBP=0000000000000001 RSP=ffff888046767a20 R8 =0000000000000000 R9 =ffffffff8567778f R10=fffffbfff0aceef1 R11=0000000000000001 R12=0000000000000000 R13=0000000000000000 R14=ffff88800ca85458 R15=0000000000000000 RIP=ffffffff812752fc RFL=00000047 [---Z-PC] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f2590f96030 CR3=000000000990e000 CR4=00350ef0 DR0=0000000100000000 DR1=0000000100000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=000000000011060a EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000004183f03b00000000 XMM03=0000ff00000000000000000000000000 XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=ffffffff83e7c900 RBX=0000000000000001 RCX=ffffffff83e644dc RDX=0000000000000000 RSI=0000000000000000 RDI=ffffffff83e7cf08 RBP=ffffed100112f000 RSP=ffff888008987e70 R8 =0000000000000001 R9 =ffff88806cf3c12b R10=ffffed100d9e7825 R11=0000000000000001 R12=0000000000000001 R13=ffffffff85677788 R14=0000000000000000 R15=dffffc0000000000 RIP=ffffffff83e7c90e RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ffc7b7fc6c0 CR3=000000001af14000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=656a626f206465636e6572656665726e XMM02=3a29323320657a697328203038666638 XMM03=303120646970202c22312e726f747563 XMM04=6c6c6163662d70392020383320643220 XMM05=32206336206336203136203336203636 XMM06=73657479622032332074737269662820 XMM07=2e303220656761282039313131363036 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000