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", 0x1000, 0x3}, {&(0x7f0000001440)="8ff619d4e10a7bdfeb4303c35b372b4c093056eeca822a3472c8db4a506fd27568cf605ff9f6d7dd7c61a2f27d9ae1f0d54936359c766b5c178bfc6a16699561a763fe4197f4e1296f08d4e8f90cf050baee67a1749389d0340af0af196459587449a3f0f9d538d2acef8a58914289c28ac1b517e4adc8f282ae58ddf411be818e61d994c39fded33d48b163720fba914e5a136999c1155f17a9dbdde03c5854142cac8f25e33b7998982a28173a2c85e09e58edd6e36cbfcc073047d597f2940c053e24353a50d552f7f4afe8799da13d738788df5f15f3c1fcc08080508283aa88cb27995a360d57f1f41bb6af9b7916fb", 0xf2, 0x40}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) fcntl$setflags(r1, 0x2, 0x1) 10:33:19 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x80086601, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:33:19 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x600, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1578.885584] loop3: detected capacity change from 0 to 41948160 [ 1578.891035] FAT-fs (loop3): Unrecognized mount option "@" or missing value 10:33:19 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 12) 10:33:19 executing program 6: syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r0, 0x5451) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r2) sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r3, @ANYBLOB="04002cbd7000fddbdf2575000000c401f08067000b00677cfd4589c7a40e1aae6b18247eb36f74f8f6793b7df9ae3ca9cfb2f5e87ed1ff361592201a1151eabf57ad6fd1950cd215131f67634030aa5f484986ad830a6243bac401c3ee44bff7cea60e881d5f9b616582cf28ec620ccd97d4ceb48c6727530f00050001000100000005000f004000000008000a000000000005000f000400000038010c80050003000300000003010200a207624e07c5690d555d459080990de6741a392aa42eff746330a20bec78fd393092b5f99f54b2a9f6dadb55db3c0846814e79eb43bf7bcd6295c96e7ca16288a8b27c5a225a6d718ad49f0366f969983400ba504c865cca04e4fa00a4b246fa618936f70fe77c1c3e550a5d12d4a9108e7e4216bc693107c3bd4c06e98ec9399de0e98cf205057cbbf688d8a13dc55472fc31954b846e29dbd7d8889b34ead6c83c9b533b666abd65490f2a7e693d55d91f24d5078eb3d34940c02ea1125e7176e254c6bd5531ed067817f0b3278e3dc492571b7da828e728a6fa55742efa33f430739c320b794841adba4c2875044dce9c8959eebe4a5b52d68f9868719f00280004800a000600ffffffffffff00000a000600ffffffffffff00000a000600ffffffffffff00000c01f0800a000200ee90b393fc10000046000b005cbb9f225903f92e0cffa77bd5369da32f70909f5950f26e59525d4d3c41b9e512f4a5d3b7aaaf8a0e03f2aa73274b24a04b4a689bf05844d0d2ad278696b14fb4c50000b4000d80af0000001263800a6541e18dae533feb73677b5c9d5da0ee4d7366d47dd6fa0b14ca33d3433171a533a29930fb5e0d9ff2ca710ab0c8aa4b331d58b4a7b3cac9c9b4ef9e7cdb1d3d6da7f0877a5c3ce7ff9bf9e936b1bcbe732bd9037f9090bfdee1d3e45c7b700e6aefa488eb013b27cd7291a7b927dc10e794490c85dff0cb49a1dd0f5514c3ce6c90d8457d79fcd2a3756ccd66b5194a5c69358e1199219e40ffdd6771943cb3fe33f442ae2ff2002c01f080050003000600000005000300020000000a000200957ccca020ad0000e4000b0049a0db966a0311d932607f2a479e651b881a56f4da7d14bde06c48822b0d353198bb85750dc9f0cca70174b813fe94ea80477bcf9dd6b03b9186edb85c476d8762dc273e83aaee35def167cc1c8faffc0e86fa311d66813cbea7e234d79e9d3acd30b5ae5a264e9576efabc94efd7a18b93eddabd9b046d12df487392f1217b77f05bd72f95130a2bda683b7a64c3d6477e3681d83c5e45e8fdae553114b304417851d9687ab3b9c6c7e91af7744d16b114820332c31b35f4358643e4137a9e6b264a14e04605648b50e27e3bb5cbbdaac70655fdff371ece3e08885f0da8d700a000800080211000000000005000100000000000a000800080211000000000005000300c9000000f800f08008000a000100008004000500050010007f0000000a0002005a9cbd08ca8e000014000c800500030008000000050003005e000000c0000b003a3801c2eefaea9df8f27b808f751948873b3fa40dd675c2f1b45ab2dbcdf1903fb052565c23c23d861899509fb26a1f672416325f004d2fdd903c5fa86b4bf1e39074929e71f3a466d345a8e660cd8d401a4772051ab211e24ede74314ef8b7a2c04c8a87b4e5603f7592bc89521d454d3528dce3959d8613c413eafce02151dc1f76a1ace92831610ea0894d9f59407f66cbe556e636be5a3d01253ec1c755495e5196efdf7f155cba102e17e2cfa917e79a2a35bb2b6dbca97391"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r5 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r5, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="280026bd704a460300", @ANYRES32=r4, @ANYRES16=r3], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:33:19 executing program 1: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0x18) 10:33:19 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x80087601, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) [ 1578.964162] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1579.043664] FAULT_INJECTION: forcing a failure. [ 1579.043664] name failslab, interval 1, probability 0, space 0, times 0 [ 1579.046091] CPU: 1 PID: 10140 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1579.047604] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1579.049390] Call Trace: [ 1579.049960] dump_stack+0x107/0x167 [ 1579.050746] should_fail.cold+0x5/0xa [ 1579.051590] ? legacy_init_fs_context+0x44/0xe0 [ 1579.052590] should_failslab+0x5/0x20 [ 1579.053407] kmem_cache_alloc_trace+0x55/0x320 [ 1579.054371] ? lockdep_init_map_type+0x2c7/0x780 [ 1579.055411] legacy_init_fs_context+0x44/0xe0 [ 1579.056370] ? generic_parse_monolithic+0x1f0/0x1f0 [ 1579.057424] alloc_fs_context+0x4fd/0x840 [ 1579.058314] path_mount+0xaa3/0x2120 [ 1579.059226] ? strncpy_from_user+0x9e/0x470 [ 1579.060185] ? finish_automount+0xa90/0xa90 [ 1579.061108] ? getname_flags.part.0+0x1dd/0x4f0 [ 1579.062095] ? _copy_from_user+0xfb/0x1b0 [ 1579.062981] __x64_sys_mount+0x282/0x300 [ 1579.063872] ? copy_mnt_ns+0xa00/0xa00 [ 1579.064710] do_syscall_64+0x33/0x40 [ 1579.065500] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1579.066603] RIP: 0033:0x7f20e27f5b19 [ 1579.067421] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1579.071362] RSP: 002b:00007f20dfd6b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1579.073010] RAX: ffffffffffffffda RBX: 00007f20e2908f60 RCX: 00007f20e27f5b19 [ 1579.074590] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1579.076165] RBP: 00007f20dfd6b1d0 R08: 0000000020000680 R09: 0000000000000000 [ 1579.077690] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1579.079209] R13: 00007ffee093143f R14: 00007f20dfd6b300 R15: 0000000000022000 [ 1579.096297] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1579.098308] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1579.099972] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:33:36 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 11) 10:33:36 executing program 6: syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r0, 0x5451) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000bd81b87afc1f961b041591112692a5d1aab19c6a9e208d1c28da156afb4ddd1c034b19e9834dac56f129ae740f48534d34c69c7c8f7a384336ebb2944c29225ff12f8b046906f15c85d62e0a33ee1e26fa8cdafd5b4230f8a3080ce94c020921c94d3d80cf8e3b0005243578f5cb037d73d389cfca1f80e0d2f968feac4f065ffe3cb0ac3a25ca5c1ff5a7d310a614982b1fd43abc07e6b5975ba7d712426b37c55d1e490df0153a78786913ed7637b1d840bfde0e1b7d339417ed280b1ddb49ee61eafedbaaa0a8d2cbc5bdccb0afa62f64ea4ff187fa6628397f9891a1f34aa8dd36d70ce1b5f09bc0043a0bd1f8bdfb33e073ebbcea086bc8e8da27d76939786776a523785c8d9f855bdebf1edf10e03337ab01cd5cf01d1029cd73f7ed80e25303ae4adcc92c32141d362f09f0ddfd8ac96f4ac935755951deec4790aad73f2a0d0ea95e61d823c36e79179362117010e45868e93f897ed1215e540cf9cb2406d5b482db"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r2) sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r3, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r5 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r5, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="280026bd704a460300", @ANYRES32=r4, @ANYRES16=r3], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 1596.278605] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. 10:33:36 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 13) 10:33:36 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x80108906, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:33:36 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x6b8, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:33:36 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') chdir(&(0x7f0000000000)='./file1\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x1) getdents(r0, &(0x7f00000001c0)=""/220, 0xdc) 10:33:36 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 1) 10:33:36 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@noextend}, {@fscache}, {@version_u}]}}) [ 1596.296384] loop3: detected capacity change from 0 to 41948160 [ 1596.303133] FAULT_INJECTION: forcing a failure. [ 1596.303133] name failslab, interval 1, probability 0, space 0, times 0 [ 1596.305613] FAULT_INJECTION: forcing a failure. [ 1596.305613] name failslab, interval 1, probability 0, space 0, times 0 [ 1596.305638] CPU: 0 PID: 10164 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1596.309106] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1596.310446] Call Trace: [ 1596.310873] dump_stack+0x107/0x167 [ 1596.311461] should_fail.cold+0x5/0xa [ 1596.312092] should_failslab+0x5/0x20 [ 1596.312705] __kmalloc_track_caller+0x79/0x370 [ 1596.313424] ? strndup_user+0x74/0xe0 [ 1596.314041] memdup_user+0x22/0xd0 [ 1596.314607] strndup_user+0x74/0xe0 [ 1596.315184] __x64_sys_mount+0x133/0x300 [ 1596.315846] ? copy_mnt_ns+0xa00/0xa00 [ 1596.316478] do_syscall_64+0x33/0x40 [ 1596.317071] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1596.317888] RIP: 0033:0x7fd3b79dfb19 [ 1596.318485] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1596.321444] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1596.322657] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1596.323810] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1596.324944] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1596.326095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1596.327229] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1596.328413] CPU: 1 PID: 10161 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1596.328511] hpet: Lost 1 RTC interrupts [ 1596.329946] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1596.332362] Call Trace: [ 1596.332926] dump_stack+0x107/0x167 [ 1596.333699] should_fail.cold+0x5/0xa [ 1596.334509] ? create_object.isra.0+0x3a/0xa20 [ 1596.335480] should_failslab+0x5/0x20 [ 1596.336304] kmem_cache_alloc+0x5b/0x310 [ 1596.337169] create_object.isra.0+0x3a/0xa20 [ 1596.338098] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1596.339179] kmem_cache_alloc_trace+0x151/0x320 [ 1596.340268] ? lockdep_init_map_type+0x2c7/0x780 [ 1596.341291] legacy_init_fs_context+0x44/0xe0 [ 1596.342245] ? generic_parse_monolithic+0x1f0/0x1f0 [ 1596.343300] alloc_fs_context+0x4fd/0x840 [ 1596.344197] path_mount+0xaa3/0x2120 [ 1596.344995] ? strncpy_from_user+0x9e/0x470 [ 1596.345909] ? finish_automount+0xa90/0xa90 [ 1596.346826] ? getname_flags.part.0+0x1dd/0x4f0 [ 1596.347830] ? _copy_from_user+0xfb/0x1b0 [ 1596.348718] __x64_sys_mount+0x282/0x300 [ 1596.349582] ? copy_mnt_ns+0xa00/0xa00 [ 1596.350429] do_syscall_64+0x33/0x40 [ 1596.351230] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1596.352335] RIP: 0033:0x7f20e27f5b19 [ 1596.352830] FAULT_INJECTION: forcing a failure. [ 1596.352830] name failslab, interval 1, probability 0, space 0, times 0 [ 1596.353124] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1596.353141] RSP: 002b:00007f20dfd6b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1596.360493] RAX: ffffffffffffffda RBX: 00007f20e2908f60 RCX: 00007f20e27f5b19 [ 1596.362002] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1596.363509] RBP: 00007f20dfd6b1d0 R08: 0000000020000680 R09: 0000000000000000 [ 1596.365059] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1596.366598] R13: 00007ffee093143f R14: 00007f20dfd6b300 R15: 0000000000022000 [ 1596.368142] CPU: 0 PID: 10158 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1596.369281] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1596.370617] Call Trace: [ 1596.371042] dump_stack+0x107/0x167 [ 1596.371662] should_fail.cold+0x5/0xa [ 1596.372291] ? create_object.isra.0+0x3a/0xa20 [ 1596.373032] should_failslab+0x5/0x20 [ 1596.373639] kmem_cache_alloc+0x5b/0x310 [ 1596.374303] create_object.isra.0+0x3a/0xa20 [ 1596.375027] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1596.375873] kmem_cache_alloc_trace+0x151/0x320 [ 1596.376597] alloc_fs_context+0x57/0x840 [ 1596.377258] path_mount+0xaa3/0x2120 [ 1596.377865] ? strncpy_from_user+0x9e/0x470 [ 1596.378559] ? finish_automount+0xa90/0xa90 [ 1596.379254] ? getname_flags.part.0+0x1dd/0x4f0 [ 1596.380020] ? _copy_from_user+0xfb/0x1b0 [ 1596.380674] __x64_sys_mount+0x282/0x300 [ 1596.381326] ? copy_mnt_ns+0xa00/0xa00 [ 1596.381960] do_syscall_64+0x33/0x40 [ 1596.382553] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1596.383361] RIP: 0033:0x7f9f6e930b19 [ 1596.383973] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1596.386864] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1596.388095] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1596.389230] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1596.390363] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1596.391501] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1596.392649] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1596.393895] hpet: Lost 1 RTC interrupts [ 1596.422307] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1596.423958] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1596.425590] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:33:36 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x700, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:33:36 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x80108907, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:33:37 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x406e2, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r1, 0x0, 0x2a, &(0x7f0000000800)={0x80000000, {{0x2, 0x4e22, @local}}}, 0x88) r2 = syz_open_dev$mouse(&(0x7f0000000100), 0x4, 0x2) write$P9_RREADLINK(r2, &(0x7f00000001c0)={0x10, 0x17, 0x1, {0x7, './file1'}}, 0x10) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'lo\x00'}) ioctl$F2FS_IOC_FLUSH_DEVICE(r3, 0x4008f50a, &(0x7f0000000200)={0xf09f, 0x6}) openat(r1, &(0x7f0000000000)='./file1\x00', 0x230080, 0x101) 10:33:37 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x7b8, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:33:37 executing program 6: syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r0, 0x5451) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r2) sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r3, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r5 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r5, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="280026bd704a460300", @ANYRES32=r4, @ANYRES16=r3], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:33:37 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0xc0045878, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:33:37 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 14) [ 1596.605160] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. 10:33:37 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 2) [ 1596.636374] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1596.638195] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1596.639892] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1596.669309] FAULT_INJECTION: forcing a failure. [ 1596.669309] name failslab, interval 1, probability 0, space 0, times 0 [ 1596.671169] CPU: 0 PID: 10189 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1596.672307] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1596.673630] Call Trace: [ 1596.674058] dump_stack+0x107/0x167 [ 1596.674642] should_fail.cold+0x5/0xa [ 1596.675258] ? v9fs_mount+0x5a/0x8f0 [ 1596.675869] should_failslab+0x5/0x20 [ 1596.676480] kmem_cache_alloc_trace+0x55/0x320 [ 1596.677203] ? v9fs_write_inode+0x60/0x60 [ 1596.677872] v9fs_mount+0x5a/0x8f0 [ 1596.678437] ? v9fs_write_inode+0x60/0x60 [ 1596.679098] legacy_get_tree+0x105/0x220 [ 1596.679752] vfs_get_tree+0x8e/0x300 [ 1596.680342] path_mount+0x1429/0x2120 [ 1596.680970] ? strncpy_from_user+0x9e/0x470 [ 1596.681653] ? finish_automount+0xa90/0xa90 [ 1596.682345] ? getname_flags.part.0+0x1dd/0x4f0 [ 1596.683096] ? _copy_from_user+0xfb/0x1b0 [ 1596.683779] __x64_sys_mount+0x282/0x300 [ 1596.684457] ? copy_mnt_ns+0xa00/0xa00 [ 1596.685080] do_syscall_64+0x33/0x40 [ 1596.685672] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1596.686487] RIP: 0033:0x7f20e27f5b19 [ 1596.687081] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1596.690038] RSP: 002b:00007f20dfd6b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1596.691272] RAX: ffffffffffffffda RBX: 00007f20e2908f60 RCX: 00007f20e27f5b19 [ 1596.692422] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1596.693570] RBP: 00007f20dfd6b1d0 R08: 0000000020000680 R09: 0000000000000000 [ 1596.694680] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1596.695838] R13: 00007ffee093143f R14: 00007f20dfd6b300 R15: 0000000000022000 [ 1596.711410] FAULT_INJECTION: forcing a failure. [ 1596.711410] name failslab, interval 1, probability 0, space 0, times 0 [ 1596.713280] CPU: 0 PID: 10191 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1596.714391] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1596.715759] Call Trace: [ 1596.716195] dump_stack+0x107/0x167 [ 1596.716773] should_fail.cold+0x5/0xa [ 1596.717391] ? create_object.isra.0+0x3a/0xa20 [ 1596.718117] should_failslab+0x5/0x20 [ 1596.718725] kmem_cache_alloc+0x5b/0x310 [ 1596.719367] create_object.isra.0+0x3a/0xa20 [ 1596.720076] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1596.720874] __kmalloc_track_caller+0x177/0x370 [ 1596.721619] ? strndup_user+0x74/0xe0 [ 1596.722220] memdup_user+0x22/0xd0 [ 1596.722801] strndup_user+0x74/0xe0 [ 1596.723383] __x64_sys_mount+0x133/0x300 [ 1596.724021] ? copy_mnt_ns+0xa00/0xa00 [ 1596.724656] do_syscall_64+0x33/0x40 [ 1596.725246] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1596.726043] RIP: 0033:0x7fd3b79dfb19 [ 1596.726639] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1596.729600] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1596.730808] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1596.731955] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1596.733091] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1596.734238] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1596.735391] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1596.736643] hpet: Lost 1 RTC interrupts 10:33:53 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0xc0045878, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:33:53 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@noextend}, {@version_u}]}}) 10:33:53 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 15) 10:33:53 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffffff, &(0x7f0000000000)='./file1\x00', 0x41, 0x8) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) 10:33:53 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 12) 10:33:53 executing program 6: syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r0, 0x5451) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r2) sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r3, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r5 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r5, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="280026bd704a460300", @ANYRES32=r4, @ANYRES16=r3], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 1613.471138] FAULT_INJECTION: forcing a failure. [ 1613.471138] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1613.473769] CPU: 0 PID: 10209 Comm: syz-executor.1 Not tainted 5.10.234 #1 10:33:53 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x8b8, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:33:53 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 3) [ 1613.475219] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1613.477070] Call Trace: [ 1613.477621] dump_stack+0x107/0x167 [ 1613.478384] should_fail.cold+0x5/0xa [ 1613.479195] _copy_from_user+0x2e/0x1b0 [ 1613.480050] memdup_user+0x65/0xd0 [ 1613.480804] strndup_user+0x74/0xe0 [ 1613.481603] __x64_sys_mount+0x133/0x300 [ 1613.482459] ? copy_mnt_ns+0xa00/0xa00 [ 1613.483289] do_syscall_64+0x33/0x40 [ 1613.484258] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1613.485356] RIP: 0033:0x7fd3b79dfb19 [ 1613.485609] FAULT_INJECTION: forcing a failure. [ 1613.485609] name failslab, interval 1, probability 0, space 0, times 0 [ 1613.486150] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1613.486162] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1613.486181] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1613.486193] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1613.486215] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1613.499045] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1613.500550] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1613.502087] CPU: 1 PID: 10210 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1613.502407] hpet: Lost 1 RTC interrupts [ 1613.503732] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1613.506350] Call Trace: [ 1613.506927] dump_stack+0x107/0x167 [ 1613.507700] should_fail.cold+0x5/0xa [ 1613.508527] ? create_object.isra.0+0x3a/0xa20 [ 1613.509494] should_failslab+0x5/0x20 [ 1613.510128] loop3: detected capacity change from 0 to 41948160 [ 1613.510308] kmem_cache_alloc+0x5b/0x310 [ 1613.510336] ? cred_has_capability.isra.0+0x152/0x2b0 [ 1613.513525] create_object.isra.0+0x3a/0xa20 [ 1613.514460] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1613.515252] FAULT_INJECTION: forcing a failure. [ 1613.515252] name failslab, interval 1, probability 0, space 0, times 0 [ 1613.515543] kmem_cache_alloc_trace+0x151/0x320 [ 1613.518855] ? v9fs_write_inode+0x60/0x60 [ 1613.519735] v9fs_mount+0x5a/0x8f0 [ 1613.520486] ? v9fs_write_inode+0x60/0x60 [ 1613.521365] legacy_get_tree+0x105/0x220 [ 1613.522225] vfs_get_tree+0x8e/0x300 [ 1613.523018] path_mount+0x1429/0x2120 [ 1613.523843] ? strncpy_from_user+0x9e/0x470 [ 1613.524759] ? finish_automount+0xa90/0xa90 [ 1613.525670] ? getname_flags.part.0+0x1dd/0x4f0 [ 1613.526645] ? _copy_from_user+0xfb/0x1b0 [ 1613.527523] __x64_sys_mount+0x282/0x300 [ 1613.528465] ? copy_mnt_ns+0xa00/0xa00 [ 1613.529301] do_syscall_64+0x33/0x40 [ 1613.530090] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1613.531174] RIP: 0033:0x7f20e27f5b19 [ 1613.532002] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1613.535917] RSP: 002b:00007f20dfd6b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1613.537530] RAX: ffffffffffffffda RBX: 00007f20e2908f60 RCX: 00007f20e27f5b19 [ 1613.539049] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1613.540573] RBP: 00007f20dfd6b1d0 R08: 0000000020000680 R09: 0000000000000000 [ 1613.542093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1613.543709] R13: 00007ffee093143f R14: 00007f20dfd6b300 R15: 0000000000022000 [ 1613.545271] CPU: 0 PID: 10204 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1613.546757] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1613.548532] Call Trace: [ 1613.549096] dump_stack+0x107/0x167 [ 1613.549846] should_fail.cold+0x5/0xa [ 1613.550662] ? legacy_init_fs_context+0x44/0xe0 [ 1613.551645] should_failslab+0x5/0x20 [ 1613.552465] kmem_cache_alloc_trace+0x55/0x320 [ 1613.553425] ? lockdep_init_map_type+0x2c7/0x780 [ 1613.554431] legacy_init_fs_context+0x44/0xe0 [ 1613.555374] ? generic_parse_monolithic+0x1f0/0x1f0 [ 1613.556423] alloc_fs_context+0x4fd/0x840 [ 1613.557299] path_mount+0xaa3/0x2120 [ 1613.558103] ? strncpy_from_user+0x9e/0x470 [ 1613.559029] ? finish_automount+0xa90/0xa90 [ 1613.559959] ? getname_flags.part.0+0x1dd/0x4f0 [ 1613.560928] ? _copy_from_user+0xfb/0x1b0 [ 1613.561816] __x64_sys_mount+0x282/0x300 [ 1613.562680] ? copy_mnt_ns+0xa00/0xa00 [ 1613.563503] do_syscall_64+0x33/0x40 [ 1613.564299] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1613.565384] RIP: 0033:0x7f9f6e930b19 [ 1613.566163] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1613.570030] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1613.571625] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1613.573127] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1613.574618] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1613.576116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1613.577637] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1613.579299] hpet: Lost 1 RTC interrupts [ 1613.614389] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. 10:33:54 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 4) 10:33:54 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 16) [ 1613.724282] FAULT_INJECTION: forcing a failure. [ 1613.724282] name failslab, interval 1, probability 0, space 0, times 0 [ 1613.726738] CPU: 0 PID: 10221 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1613.728213] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1613.729967] Call Trace: [ 1613.730530] dump_stack+0x107/0x167 [ 1613.731346] should_fail.cold+0x5/0xa [ 1613.732174] should_failslab+0x5/0x20 [ 1613.732980] __kmalloc_track_caller+0x79/0x370 [ 1613.733941] ? v9fs_session_init+0xa7/0x1680 [ 1613.734868] ? kernel_text_address+0xf2/0x120 [ 1613.735831] kstrdup+0x36/0x70 [ 1613.736512] v9fs_session_init+0xa7/0x1680 [ 1613.737413] ? lock_release+0x680/0x680 [ 1613.738248] ? find_held_lock+0x2c/0x110 [ 1613.739106] ? kmem_cache_alloc_trace+0x151/0x320 [ 1613.740134] ? v9fs_show_options+0x690/0x690 [ 1613.741079] ? trace_hardirqs_on+0x5b/0x180 [ 1613.741990] ? kasan_unpoison_shadow+0x33/0x50 [ 1613.742947] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1613.744030] v9fs_mount+0x79/0x8f0 [ 1613.744780] ? v9fs_write_inode+0x60/0x60 [ 1613.745661] legacy_get_tree+0x105/0x220 [ 1613.746518] vfs_get_tree+0x8e/0x300 [ 1613.747304] path_mount+0x1429/0x2120 [ 1613.748119] ? strncpy_from_user+0x9e/0x470 [ 1613.749042] ? finish_automount+0xa90/0xa90 [ 1613.749949] ? getname_flags.part.0+0x1dd/0x4f0 [ 1613.750927] ? _copy_from_user+0xfb/0x1b0 [ 1613.751809] __x64_sys_mount+0x282/0x300 [ 1613.752668] ? copy_mnt_ns+0xa00/0xa00 [ 1613.753497] do_syscall_64+0x33/0x40 [ 1613.754282] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1613.755380] RIP: 0033:0x7f20e27f5b19 [ 1613.756178] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1613.760084] RSP: 002b:00007f20dfd6b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1613.761723] RAX: ffffffffffffffda RBX: 00007f20e2908f60 RCX: 00007f20e27f5b19 [ 1613.763235] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1613.764757] RBP: 00007f20dfd6b1d0 R08: 0000000020000680 R09: 0000000000000000 [ 1613.766272] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1613.767797] R13: 00007ffee093143f R14: 00007f20dfd6b300 R15: 0000000000022000 [ 1613.769493] hpet: Lost 2 RTC interrupts [ 1613.770591] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1613.772114] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1613.777042] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1613.816601] FAULT_INJECTION: forcing a failure. [ 1613.816601] name failslab, interval 1, probability 0, space 0, times 0 [ 1613.819059] CPU: 0 PID: 10223 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1613.820525] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1613.822279] Call Trace: [ 1613.822850] dump_stack+0x107/0x167 [ 1613.823630] should_fail.cold+0x5/0xa [ 1613.824459] ? copy_mount_options+0x55/0x180 [ 1613.825441] should_failslab+0x5/0x20 [ 1613.826250] kmem_cache_alloc_trace+0x55/0x320 [ 1613.827213] ? _copy_from_user+0xfb/0x1b0 [ 1613.828106] copy_mount_options+0x55/0x180 [ 1613.828998] __x64_sys_mount+0x1a8/0x300 [ 1613.829864] ? copy_mnt_ns+0xa00/0xa00 [ 1613.830700] do_syscall_64+0x33/0x40 [ 1613.831498] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1613.832597] RIP: 0033:0x7fd3b79dfb19 [ 1613.833388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1613.837310] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1613.838940] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1613.840625] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1613.842421] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1613.843954] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1613.845480] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1613.847178] hpet: Lost 1 RTC interrupts 10:34:12 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 5) 10:34:12 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x900, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:34:12 executing program 6: syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r0, 0x5451) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r2) sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r3, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r5 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r5, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="280026bd704a460300", @ANYRES32=r4, @ANYRES16=r3], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:34:12 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:34:12 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0xc0189436, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:34:12 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 13) 10:34:12 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x7, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) 10:34:12 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 17) [ 1631.874989] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1631.882254] FAULT_INJECTION: forcing a failure. [ 1631.882254] name failslab, interval 1, probability 0, space 0, times 0 [ 1631.884811] CPU: 1 PID: 10240 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1631.886303] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1631.888200] Call Trace: [ 1631.888768] dump_stack+0x107/0x167 [ 1631.889548] should_fail.cold+0x5/0xa [ 1631.890364] ? create_object.isra.0+0x3a/0xa20 [ 1631.891345] should_failslab+0x5/0x20 [ 1631.892173] kmem_cache_alloc+0x5b/0x310 [ 1631.893047] create_object.isra.0+0x3a/0xa20 [ 1631.893981] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1631.895075] kmem_cache_alloc_trace+0x151/0x320 [ 1631.896085] ? lockdep_init_map_type+0x2c7/0x780 [ 1631.897101] legacy_init_fs_context+0x44/0xe0 [ 1631.898066] ? generic_parse_monolithic+0x1f0/0x1f0 [ 1631.899116] alloc_fs_context+0x4fd/0x840 [ 1631.900009] path_mount+0xaa3/0x2120 [ 1631.900812] ? strncpy_from_user+0x9e/0x470 [ 1631.901275] FAULT_INJECTION: forcing a failure. [ 1631.901275] name failslab, interval 1, probability 0, space 0, times 0 [ 1631.901722] ? finish_automount+0xa90/0xa90 [ 1631.901745] ? getname_flags.part.0+0x1dd/0x4f0 [ 1631.901780] ? _copy_from_user+0xfb/0x1b0 [ 1631.907237] __x64_sys_mount+0x282/0x300 [ 1631.908119] ? copy_mnt_ns+0xa00/0xa00 [ 1631.908965] do_syscall_64+0x33/0x40 [ 1631.909762] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1631.910847] RIP: 0033:0x7f9f6e930b19 [ 1631.911637] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1631.915536] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1631.917156] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1631.918768] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1631.920310] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1631.921835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1631.923354] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1631.924924] CPU: 0 PID: 10242 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1631.926384] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1631.928133] Call Trace: [ 1631.928693] dump_stack+0x107/0x167 [ 1631.929463] should_fail.cold+0x5/0xa [ 1631.930359] ? create_object.isra.0+0x3a/0xa20 [ 1631.931198] FAULT_INJECTION: forcing a failure. [ 1631.931198] name failslab, interval 1, probability 0, space 0, times 0 [ 1631.931477] should_failslab+0x5/0x20 [ 1631.931508] kmem_cache_alloc+0x5b/0x310 [ 1631.935673] create_object.isra.0+0x3a/0xa20 [ 1631.936665] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1631.937768] kmem_cache_alloc_trace+0x151/0x320 [ 1631.938765] ? _copy_from_user+0xfb/0x1b0 [ 1631.939650] copy_mount_options+0x55/0x180 [ 1631.940552] __x64_sys_mount+0x1a8/0x300 [ 1631.941405] ? copy_mnt_ns+0xa00/0xa00 [ 1631.942237] do_syscall_64+0x33/0x40 [ 1631.943017] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1631.944109] RIP: 0033:0x7fd3b79dfb19 [ 1631.944890] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1631.948747] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1631.950333] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1631.951819] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1631.953321] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1631.954821] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1631.956320] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1631.957843] CPU: 1 PID: 10241 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1631.958163] hpet: Lost 1 RTC interrupts [ 1631.959437] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1631.962102] Call Trace: [ 1631.962682] dump_stack+0x107/0x167 [ 1631.963473] should_fail.cold+0x5/0xa [ 1631.964321] ? create_object.isra.0+0x3a/0xa20 [ 1631.965313] should_failslab+0x5/0x20 [ 1631.965747] loop3: detected capacity change from 0 to 41948160 [ 1631.966136] kmem_cache_alloc+0x5b/0x310 [ 1631.966163] create_object.isra.0+0x3a/0xa20 [ 1631.969185] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1631.970280] __kmalloc_track_caller+0x177/0x370 [ 1631.971281] ? v9fs_session_init+0xa7/0x1680 [ 1631.972241] ? kernel_text_address+0xf2/0x120 [ 1631.973208] kstrdup+0x36/0x70 [ 1631.973899] v9fs_session_init+0xa7/0x1680 [ 1631.974818] ? lock_release+0x680/0x680 [ 1631.975669] ? find_held_lock+0x2c/0x110 [ 1631.976554] ? kmem_cache_alloc_trace+0x151/0x320 [ 1631.977586] ? v9fs_show_options+0x690/0x690 [ 1631.978544] ? trace_hardirqs_on+0x5b/0x180 [ 1631.979473] ? kasan_unpoison_shadow+0x33/0x50 [ 1631.980460] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1631.981709] v9fs_mount+0x79/0x8f0 [ 1631.982470] ? v9fs_write_inode+0x60/0x60 [ 1631.983370] legacy_get_tree+0x105/0x220 [ 1631.984248] vfs_get_tree+0x8e/0x300 [ 1631.985050] path_mount+0x1429/0x2120 [ 1631.985870] ? strncpy_from_user+0x9e/0x470 [ 1631.986790] ? finish_automount+0xa90/0xa90 [ 1631.987709] ? getname_flags.part.0+0x1dd/0x4f0 [ 1631.988711] ? _copy_from_user+0xfb/0x1b0 [ 1631.989604] __x64_sys_mount+0x282/0x300 [ 1631.990468] ? copy_mnt_ns+0xa00/0xa00 [ 1631.991312] do_syscall_64+0x33/0x40 [ 1631.992119] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1631.993216] RIP: 0033:0x7f20e27f5b19 [ 1631.994017] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1631.998060] RSP: 002b:00007f20dfd6b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1631.999682] RAX: ffffffffffffffda RBX: 00007f20e2908f60 RCX: 00007f20e27f5b19 [ 1632.001215] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1632.002737] RBP: 00007f20dfd6b1d0 R08: 0000000020000680 R09: 0000000000000000 [ 1632.004267] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1632.005788] R13: 00007ffee093143f R14: 00007f20dfd6b300 R15: 0000000000022000 10:34:12 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x9b8, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1632.046360] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1632.047980] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1632.049769] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:34:12 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x195502, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) open(&(0x7f0000000100)='./file0\x00', 0x2, 0x40) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x80200, 0x0) 10:34:12 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0xc020660b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) [ 1632.141259] loop3: detected capacity change from 0 to 41948160 10:34:12 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xa00, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:34:12 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0x2}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:34:12 executing program 6: syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r0, 0x5451) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000bd81b87afc1f961b041591112692a5d1aab19c6a9e208d1c28da156afb4ddd1c034b19e9834dac56f129ae740f48534d34c69c7c8f7a384336ebb2944c29225ff12f8b046906f15c85d62e0a33ee1e26fa8cdafd5b4230f8a3080ce94c020921c94d3d80cf8e3b0005243578f5cb037d73d389cfca1f80e0d2f968feac4f065ffe3cb0ac3a25ca5c1ff5a7d310a614982b1fd43abc07e6b5975ba7d712426b37c55d1e490df0153a78786913ed7637b1d840bfde0e1b7d339417ed280b1ddb49ee61eafedbaaa0a8d2cbc5bdccb0afa62f64ea4ff187fa6628397f9891a1f34aa8dd36d70ce1b5f09bc0043a0bd1f8bdfb33e073ebbcea086bc8e8da27d76939786776a523785c8d9f855bdebf1edf10e03337ab01cd5cf01d1029cd73f7ed80e25303ae4adcc92c32141d362f09f0ddfd8ac96f4ac935755951deec4790aad73f2a0d0ea95e61d823c36e79179362117010e45868e93f897ed1215e540cf9cb2406d5b482db"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r2) sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r3, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r5 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r5, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="280026bd704a460300", @ANYRES32=r4, @ANYRES16=r3], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 1632.257086] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. 10:34:12 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 14) 10:34:12 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xab8, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1632.337161] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1632.338800] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1632.340524] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1632.345603] FAULT_INJECTION: forcing a failure. [ 1632.345603] name failslab, interval 1, probability 0, space 0, times 0 [ 1632.348429] CPU: 1 PID: 10271 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1632.349921] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1632.351716] Call Trace: [ 1632.352302] dump_stack+0x107/0x167 [ 1632.353092] should_fail.cold+0x5/0xa [ 1632.353920] ? v9fs_mount+0x5a/0x8f0 [ 1632.354721] should_failslab+0x5/0x20 [ 1632.355536] kmem_cache_alloc_trace+0x55/0x320 [ 1632.356658] ? v9fs_write_inode+0x60/0x60 [ 1632.357540] v9fs_mount+0x5a/0x8f0 [ 1632.358300] ? v9fs_write_inode+0x60/0x60 [ 1632.359187] legacy_get_tree+0x105/0x220 [ 1632.360073] vfs_get_tree+0x8e/0x300 [ 1632.360873] path_mount+0x1429/0x2120 [ 1632.361696] ? strncpy_from_user+0x9e/0x470 [ 1632.362615] ? finish_automount+0xa90/0xa90 [ 1632.363538] ? getname_flags.part.0+0x1dd/0x4f0 [ 1632.364549] ? _copy_from_user+0xfb/0x1b0 [ 1632.365446] __x64_sys_mount+0x282/0x300 [ 1632.366314] ? copy_mnt_ns+0xa00/0xa00 [ 1632.367160] do_syscall_64+0x33/0x40 [ 1632.367972] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1632.369070] RIP: 0033:0x7f9f6e930b19 [ 1632.369866] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1632.373968] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1632.375590] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1632.377120] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1632.378643] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1632.380177] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1632.381701] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1649.208595] FAULT_INJECTION: forcing a failure. [ 1649.208595] name failslab, interval 1, probability 0, space 0, times 0 [ 1649.210965] CPU: 0 PID: 10282 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1649.212405] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1649.214173] Call Trace: [ 1649.214739] dump_stack+0x107/0x167 [ 1649.215518] should_fail.cold+0x5/0xa [ 1649.216622] ? create_object.isra.0+0x3a/0xa20 [ 1649.217597] should_failslab+0x5/0x20 [ 1649.218413] kmem_cache_alloc+0x5b/0x310 [ 1649.219283] ? cred_has_capability.isra.0+0x152/0x2b0 [ 1649.220397] create_object.isra.0+0x3a/0xa20 [ 1649.221330] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1649.222414] kmem_cache_alloc_trace+0x151/0x320 [ 1649.223410] ? v9fs_write_inode+0x60/0x60 [ 1649.224300] v9fs_mount+0x5a/0x8f0 [ 1649.225057] ? v9fs_write_inode+0x60/0x60 [ 1649.225942] legacy_get_tree+0x105/0x220 [ 1649.226808] vfs_get_tree+0x8e/0x300 [ 1649.227600] path_mount+0x1429/0x2120 [ 1649.228425] ? strncpy_from_user+0x9e/0x470 [ 1649.228449] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1649.229341] ? finish_automount+0xa90/0xa90 [ 1649.229360] ? getname_flags.part.0+0x1dd/0x4f0 [ 1649.229378] ? _copy_from_user+0xfb/0x1b0 [ 1649.229403] __x64_sys_mount+0x282/0x300 [ 1649.229420] ? copy_mnt_ns+0xa00/0xa00 [ 1649.229448] do_syscall_64+0x33/0x40 [ 1649.229466] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1649.229479] RIP: 0033:0x7f9f6e930b19 [ 1649.229503] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1649.231900] loop3: detected capacity change from 0 to 41948160 [ 1649.232212] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1649.245114] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1649.246640] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1649.248174] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1649.249702] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1649.251231] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1649.252967] hpet: Lost 2 RTC interrupts 10:34:29 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 15) 10:34:29 executing program 6: syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r0, 0x5451) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r2) sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r3, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r5 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r5, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="280026bd704a460300", @ANYRES32=r4, @ANYRES16=r3], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:34:29 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x406e2, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r1, 0x0, 0x2a, &(0x7f0000000800)={0x80000000, {{0x2, 0x4e22, @local}}}, 0x88) openat(r1, &(0x7f0000000100)='./file1\x00', 0x100, 0x2) chdir(&(0x7f0000000040)='./file0\x00') ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) openat(r2, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) 10:34:29 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0x3}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:34:29 executing program 4: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x195502, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) open(&(0x7f0000000100)='./file0\x00', 0x2, 0x40) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x80200, 0x0) 10:34:29 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 18) 10:34:29 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb00, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:34:29 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 6) [ 1649.275519] FAULT_INJECTION: forcing a failure. [ 1649.275519] name failslab, interval 1, probability 0, space 0, times 0 [ 1649.278029] CPU: 0 PID: 10298 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1649.279485] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1649.281230] Call Trace: [ 1649.281776] dump_stack+0x107/0x167 [ 1649.282528] should_fail.cold+0x5/0xa [ 1649.283317] should_failslab+0x5/0x20 [ 1649.284111] __kmalloc_track_caller+0x79/0x370 [ 1649.285072] ? v9fs_session_init+0xe9/0x1680 [ 1649.285982] ? kernel_text_address+0xf2/0x120 [ 1649.286944] kstrdup+0x36/0x70 [ 1649.287606] v9fs_session_init+0xe9/0x1680 [ 1649.288520] ? lock_release+0x680/0x680 [ 1649.289335] ? find_held_lock+0x2c/0x110 [ 1649.290212] ? kmem_cache_alloc_trace+0x151/0x320 [ 1649.291240] ? v9fs_show_options+0x690/0x690 [ 1649.292196] ? trace_hardirqs_on+0x5b/0x180 [ 1649.293124] ? kasan_unpoison_shadow+0x33/0x50 [ 1649.294103] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1649.295188] v9fs_mount+0x79/0x8f0 [ 1649.295945] ? v9fs_write_inode+0x60/0x60 [ 1649.296843] legacy_get_tree+0x105/0x220 [ 1649.297713] vfs_get_tree+0x8e/0x300 [ 1649.298507] path_mount+0x1429/0x2120 [ 1649.299325] ? strncpy_from_user+0x9e/0x470 [ 1649.300290] ? finish_automount+0xa90/0xa90 [ 1649.301216] ? getname_flags.part.0+0x1dd/0x4f0 [ 1649.302212] ? _copy_from_user+0xfb/0x1b0 [ 1649.303107] __x64_sys_mount+0x282/0x300 [ 1649.303940] ? copy_mnt_ns+0xa00/0xa00 [ 1649.304792] do_syscall_64+0x33/0x40 [ 1649.305592] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1649.306694] RIP: 0033:0x7f20e27f5b19 [ 1649.307491] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1649.311611] RSP: 002b:00007f20dfd6b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1649.313253] RAX: ffffffffffffffda RBX: 00007f20e2908f60 RCX: 00007f20e27f5b19 [ 1649.314774] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1649.316310] RBP: 00007f20dfd6b1d0 R08: 0000000020000680 R09: 0000000000000000 [ 1649.317841] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1649.319363] R13: 00007ffee093143f R14: 00007f20dfd6b300 R15: 0000000000022000 [ 1649.321147] hpet: Lost 2 RTC interrupts [ 1649.326936] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1649.328531] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1649.332012] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1649.347197] FAULT_INJECTION: forcing a failure. [ 1649.347197] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1649.349735] CPU: 1 PID: 10301 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1649.351199] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1649.352967] Call Trace: [ 1649.353531] dump_stack+0x107/0x167 [ 1649.354307] should_fail.cold+0x5/0xa [ 1649.355123] _copy_from_user+0x2e/0x1b0 [ 1649.355976] copy_mount_options+0x76/0x180 [ 1649.357041] __x64_sys_mount+0x1a8/0x300 [ 1649.357905] ? copy_mnt_ns+0xa00/0xa00 [ 1649.358742] do_syscall_64+0x33/0x40 [ 1649.359537] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1649.360636] RIP: 0033:0x7fd3b79dfb19 [ 1649.361426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1649.365330] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1649.366948] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1649.368466] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1649.369980] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1649.371489] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1649.373150] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 10:34:29 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) rename(&(0x7f0000000000)='./file0\x00', &(0x7f0000000100)='./file1\x00') getdents(r0, &(0x7f00000001c0)=""/214, 0xd6) 10:34:29 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0x4}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) [ 1649.426937] loop3: detected capacity change from 0 to 41948160 10:34:29 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x1020, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:34:29 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0x5}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:34:29 executing program 4: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x195502, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) open(&(0x7f0000000100)='./file0\x00', 0x2, 0x40) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x80200, 0x0) 10:34:30 executing program 6: syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r0, 0x5451) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r2) sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r3, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r5 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r5, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="280026bd704a460300", @ANYRES32=r4, @ANYRES16=r3], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:34:30 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0, {0x47}}, './file0\x00'}) read(r1, &(0x7f0000000200)=""/70, 0x46) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f00000001c0)=0x400) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) openat$incfs(r2, &(0x7f0000000000)='.pending_reads\x00', 0x20200, 0x10) recvmsg(r2, &(0x7f0000001800)={0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000440)=""/159, 0x9f}, {&(0x7f0000000500)=""/182, 0xb6}, {&(0x7f0000000280)=""/50, 0x32}, {&(0x7f0000000300)=""/9, 0x9}, {&(0x7f00000005c0)=""/202, 0xca}, {&(0x7f00000006c0)=""/89, 0x59}, {&(0x7f0000000740)=""/47, 0x2f}], 0x7, &(0x7f0000000800)=""/4096, 0x1000}, 0x10001) [ 1649.509297] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. 10:34:30 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x1803, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1649.665613] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1649.667232] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1649.669292] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:34:47 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 19) 10:34:47 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 16) 10:34:47 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x2000, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:34:47 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0x6}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:34:47 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x101000, 0x5) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x85e04, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x406e2, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r3, 0x0, 0x2a, &(0x7f0000000800)={0x80000000, {{0x2, 0x4e22, @local}}}, 0x88) bind$packet(r3, &(0x7f0000000200)={0x11, 0x1b, r1, 0x1, 0x1, 0x6, @local}, 0x14) setsockopt$inet6_IPV6_PKTINFO(r2, 0x29, 0x32, &(0x7f0000000040)={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, r1}, 0xfffffffffffffec8) fchmod(r2, 0x0) openat2(r2, &(0x7f0000000100)='./file1\x00', &(0x7f00000001c0)={0x600682, 0x1b, 0x8}, 0x18) 10:34:47 executing program 4: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x195502, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) open(&(0x7f0000000100)='./file0\x00', 0x2, 0x40) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x80200, 0x0) 10:34:47 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 7) 10:34:47 executing program 6: syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r0, 0x5451) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r2) sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r3, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r5 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r5, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="280026bd704a460300", @ANYRES32=r4, @ANYRES16=r3], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 1666.587986] FAULT_INJECTION: forcing a failure. [ 1666.587986] name failslab, interval 1, probability 0, space 0, times 0 [ 1666.591530] CPU: 0 PID: 10336 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1666.593317] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1666.595444] Call Trace: [ 1666.596132] dump_stack+0x107/0x167 [ 1666.597088] should_fail.cold+0x5/0xa [ 1666.598099] should_failslab+0x5/0x20 [ 1666.599089] __kmalloc_track_caller+0x79/0x370 [ 1666.600248] ? v9fs_session_init+0xa7/0x1680 [ 1666.601383] ? kernel_text_address+0xf2/0x120 [ 1666.602525] kstrdup+0x36/0x70 [ 1666.603355] v9fs_session_init+0xa7/0x1680 [ 1666.604490] ? lock_release+0x680/0x680 [ 1666.605514] ? find_held_lock+0x2c/0x110 [ 1666.606601] ? kmem_cache_alloc_trace+0x151/0x320 10:34:47 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x2010, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1666.607846] ? v9fs_show_options+0x690/0x690 [ 1666.609129] ? trace_hardirqs_on+0x5b/0x180 [ 1666.610231] ? kasan_unpoison_shadow+0x33/0x50 [ 1666.611397] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1666.612710] v9fs_mount+0x79/0x8f0 [ 1666.613617] ? v9fs_write_inode+0x60/0x60 [ 1666.614677] legacy_get_tree+0x105/0x220 [ 1666.615714] vfs_get_tree+0x8e/0x300 [ 1666.616678] path_mount+0x1429/0x2120 [ 1666.617662] ? strncpy_from_user+0x9e/0x470 [ 1666.618762] ? finish_automount+0xa90/0xa90 [ 1666.619865] ? getname_flags.part.0+0x1dd/0x4f0 [ 1666.621064] ? _copy_from_user+0xfb/0x1b0 [ 1666.622130] __x64_sys_mount+0x282/0x300 [ 1666.623165] ? copy_mnt_ns+0xa00/0xa00 [ 1666.624167] do_syscall_64+0x33/0x40 [ 1666.625101] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1666.626182] RIP: 0033:0x7f9f6e930b19 [ 1666.626971] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1666.630874] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1666.632491] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1666.634849] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1666.636525] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1666.638038] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1666.639570] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1666.639650] FAULT_INJECTION: forcing a failure. [ 1666.639650] name failslab, interval 1, probability 0, space 0, times 0 [ 1666.641493] hpet: Lost 2 RTC interrupts [ 1666.643752] CPU: 1 PID: 10346 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1666.646143] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1666.647912] Call Trace: [ 1666.648500] dump_stack+0x107/0x167 [ 1666.649292] should_fail.cold+0x5/0xa [ 1666.650119] ? getname_flags.part.0+0x50/0x4f0 [ 1666.651112] should_failslab+0x5/0x20 [ 1666.651938] kmem_cache_alloc+0x5b/0x310 [ 1666.652834] getname_flags.part.0+0x50/0x4f0 [ 1666.653796] ? _copy_from_user+0xfb/0x1b0 [ 1666.654694] user_path_at_empty+0xa1/0x100 [ 1666.655613] __x64_sys_mount+0x1e9/0x300 [ 1666.656507] ? copy_mnt_ns+0xa00/0xa00 [ 1666.657362] do_syscall_64+0x33/0x40 [ 1666.658135] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1666.659249] RIP: 0033:0x7fd3b79dfb19 [ 1666.660055] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1666.664057] RSP: 002b:00007fd3b4f34188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1666.665710] RAX: ffffffffffffffda RBX: 00007fd3b7af3020 RCX: 00007fd3b79dfb19 [ 1666.667266] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1666.668819] RBP: 00007fd3b4f341d0 R08: 0000000020000680 R09: 0000000000000000 [ 1666.670486] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1666.672033] R13: 00007ffff0f39bcf R14: 00007fd3b4f34300 R15: 0000000000022000 [ 1666.675109] FAULT_INJECTION: forcing a failure. [ 1666.675109] name failslab, interval 1, probability 0, space 0, times 0 [ 1666.677530] CPU: 0 PID: 10335 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1666.679019] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1666.680814] Call Trace: [ 1666.681384] dump_stack+0x107/0x167 [ 1666.682166] should_fail.cold+0x5/0xa [ 1666.682987] ? create_object.isra.0+0x3a/0xa20 [ 1666.683979] should_failslab+0x5/0x20 [ 1666.684847] kmem_cache_alloc+0x5b/0x310 [ 1666.685734] create_object.isra.0+0x3a/0xa20 [ 1666.686677] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1666.687776] __kmalloc_track_caller+0x177/0x370 [ 1666.688056] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1666.688791] ? v9fs_session_init+0xe9/0x1680 [ 1666.688810] ? kernel_text_address+0xf2/0x120 [ 1666.688834] kstrdup+0x36/0x70 [ 1666.688852] v9fs_session_init+0xe9/0x1680 [ 1666.688872] ? lock_release+0x680/0x680 [ 1666.688889] ? find_held_lock+0x2c/0x110 [ 1666.688916] ? kmem_cache_alloc_trace+0x151/0x320 [ 1666.694230] loop3: detected capacity change from 0 to 41948160 [ 1666.694957] ? v9fs_show_options+0x690/0x690 [ 1666.694985] ? trace_hardirqs_on+0x5b/0x180 [ 1666.695007] ? kasan_unpoison_shadow+0x33/0x50 [ 1666.700879] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1666.701977] v9fs_mount+0x79/0x8f0 [ 1666.702737] ? v9fs_write_inode+0x60/0x60 [ 1666.703626] legacy_get_tree+0x105/0x220 [ 1666.704516] vfs_get_tree+0x8e/0x300 [ 1666.705324] path_mount+0x1429/0x2120 [ 1666.705347] ? strncpy_from_user+0x9e/0x470 [ 1666.705366] ? finish_automount+0xa90/0xa90 [ 1666.705384] ? getname_flags.part.0+0x1dd/0x4f0 [ 1666.705402] ? _copy_from_user+0xfb/0x1b0 [ 1666.705436] __x64_sys_mount+0x282/0x300 [ 1666.710772] ? copy_mnt_ns+0xa00/0xa00 [ 1666.711616] do_syscall_64+0x33/0x40 [ 1666.712430] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1666.713537] RIP: 0033:0x7f20e27f5b19 [ 1666.714336] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1666.718260] RSP: 002b:00007f20dfd6b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1666.719876] RAX: ffffffffffffffda RBX: 00007f20e2908f60 RCX: 00007f20e27f5b19 [ 1666.721404] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1666.722915] RBP: 00007f20dfd6b1d0 R08: 0000000020000680 R09: 0000000000000000 [ 1666.724437] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1666.725975] R13: 00007ffee093143f R14: 00007f20dfd6b300 R15: 0000000000022000 [ 1666.727701] hpet: Lost 2 RTC interrupts 10:34:47 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0x3}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:34:47 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 17) [ 1666.791396] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1666.793042] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1666.795623] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:34:47 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 8) 10:34:47 executing program 3: recvmmsg$unix(0xffffffffffffffff, &(0x7f0000004400)=[{{&(0x7f0000000240), 0x6e, &(0x7f0000000900)=[{&(0x7f0000000440)=""/181, 0xb5}, {&(0x7f0000000500)=""/143, 0x8f}, {&(0x7f00000005c0)=""/70, 0x46}, {&(0x7f0000000640)=""/190, 0xbe}, {&(0x7f0000000700)=""/233, 0xe9}, {&(0x7f0000000800)=""/195, 0xc3}], 0x6, &(0x7f0000000980)=[@rights={{0x10}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x80}}, {{&(0x7f0000000a00), 0x6e, &(0x7f0000000e80)=[{&(0x7f0000000a80)=""/73, 0x49}, {&(0x7f0000000b00)=""/128, 0x80}, {&(0x7f0000000b80)=""/248, 0xf8}, {&(0x7f0000000c80)=""/232, 0xe8}, {&(0x7f0000000d80)=""/82, 0x52}, {&(0x7f0000000e00)=""/100, 0x64}], 0x6, &(0x7f0000000100)=[@cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x38}}, {{&(0x7f0000000f00)=@abs, 0x6e, &(0x7f00000022c0)=[{&(0x7f0000000f80)=""/211, 0xd3}, {&(0x7f0000001080)=""/240, 0xf0}, {&(0x7f0000001180)=""/4096, 0x1000}, {&(0x7f0000000300)=""/7, 0x7}, {&(0x7f0000002180)=""/66, 0x42}, {&(0x7f0000002200)=""/79, 0x4f}, {&(0x7f0000002280)=""/42, 0x2a}], 0x7, &(0x7f0000002340)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x120}}, {{0x0, 0x0, &(0x7f0000002700)=[{&(0x7f0000002480)=""/165, 0xa5}, {&(0x7f0000002540)=""/65, 0x41}, {&(0x7f00000025c0)=""/251, 0xfb}, {&(0x7f00000026c0)}], 0x4, &(0x7f0000002740)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xa0}}, {{&(0x7f0000002800)=@abs, 0x6e, &(0x7f0000002900)=[{&(0x7f0000002880)=""/45, 0x2d}, {&(0x7f00000028c0)=""/23, 0x17}], 0x2}}, {{&(0x7f0000002940), 0x6e, &(0x7f0000002bc0)=[{&(0x7f00000029c0)}, {&(0x7f0000002a00)=""/252, 0xfc}, {&(0x7f0000002b00)=""/5, 0x5}, {&(0x7f0000002b40)=""/39, 0x27}, {&(0x7f0000002b80)=""/9, 0x9}], 0x5, &(0x7f0000002c40)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xb0}}, {{&(0x7f0000002d00), 0x6e, &(0x7f00000042c0)=[{&(0x7f0000002d80)=""/246, 0xf6}, {&(0x7f0000002e80)=""/112, 0x70}, {&(0x7f0000002f00)=""/161, 0xa1}, {&(0x7f0000002fc0)=""/250, 0xfa}, {&(0x7f00000030c0)=""/123, 0x7b}, {&(0x7f0000003140)=""/191, 0xbf}, {&(0x7f0000003200)=""/52, 0x34}, {&(0x7f0000003240)=""/69, 0x45}, {&(0x7f00000032c0)=""/4096, 0x1000}, {0xfffffffffffffffd}], 0xa, &(0x7f0000004380)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x68}}], 0x7, 0x40000000, 0x0) perf_event_open(&(0x7f00000001c0)={0x4, 0x80, 0x3, 0x6, 0x8, 0x7, 0x0, 0x69d3, 0x9001, 0x2, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x6, 0x0, @perf_bp={&(0x7f0000000000), 0x4}, 0x4d100, 0x0, 0xfff, 0x9, 0x3, 0x5, 0x0, 0x0, 0x335f, 0x0, 0x5}, r0, 0xb, 0xffffffffffffffff, 0x8) r1 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) socket$nl_generic(0x10, 0x3, 0x10) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r1, &(0x7f0000000340)=""/214, 0xd6) 10:34:47 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0x7}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:34:47 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x2202, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:34:47 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 1) [ 1666.919525] FAULT_INJECTION: forcing a failure. [ 1666.919525] name failslab, interval 1, probability 0, space 0, times 0 [ 1666.922090] CPU: 0 PID: 10368 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1666.923554] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1666.925318] Call Trace: [ 1666.925874] dump_stack+0x107/0x167 [ 1666.926640] should_fail.cold+0x5/0xa [ 1666.927471] ? create_object.isra.0+0x3a/0xa20 [ 1666.928474] should_failslab+0x5/0x20 [ 1666.929282] kmem_cache_alloc+0x5b/0x310 [ 1666.930151] create_object.isra.0+0x3a/0xa20 [ 1666.931089] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1666.932166] kmem_cache_alloc+0x159/0x310 [ 1666.933061] getname_flags.part.0+0x50/0x4f0 [ 1666.934009] ? _copy_from_user+0xfb/0x1b0 [ 1666.934441] loop3: detected capacity change from 0 to 41948160 [ 1666.934929] user_path_at_empty+0xa1/0x100 [ 1666.934952] __x64_sys_mount+0x1e9/0x300 [ 1666.934975] ? copy_mnt_ns+0xa00/0xa00 [ 1666.938844] do_syscall_64+0x33/0x40 [ 1666.939637] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1666.940721] RIP: 0033:0x7fd3b79dfb19 [ 1666.941510] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1666.945408] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1666.947015] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1666.948530] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1666.950040] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1666.951546] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1666.953066] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1666.954743] hpet: Lost 1 RTC interrupts [ 1667.013047] FAULT_INJECTION: forcing a failure. [ 1667.013047] name failslab, interval 1, probability 0, space 0, times 0 [ 1667.015559] CPU: 0 PID: 10376 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1667.017068] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1667.018854] Call Trace: [ 1667.019426] dump_stack+0x107/0x167 [ 1667.020217] should_fail.cold+0x5/0xa [ 1667.021073] should_failslab+0x5/0x20 [ 1667.021883] __kmalloc_track_caller+0x79/0x370 [ 1667.022850] ? v9fs_session_init+0xa7/0x1680 [ 1667.023782] ? kernel_text_address+0xf2/0x120 [ 1667.024746] kstrdup+0x36/0x70 [ 1667.025432] v9fs_session_init+0xa7/0x1680 [ 1667.026323] ? lock_release+0x680/0x680 [ 1667.027168] ? find_held_lock+0x2c/0x110 [ 1667.028034] ? kmem_cache_alloc_trace+0x151/0x320 [ 1667.029101] ? v9fs_show_options+0x690/0x690 [ 1667.030072] ? trace_hardirqs_on+0x5b/0x180 [ 1667.030994] ? kasan_unpoison_shadow+0x33/0x50 [ 1667.031959] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1667.033060] v9fs_mount+0x79/0x8f0 [ 1667.033818] ? v9fs_write_inode+0x60/0x60 [ 1667.034712] legacy_get_tree+0x105/0x220 [ 1667.035569] vfs_get_tree+0x8e/0x300 [ 1667.036369] path_mount+0x1429/0x2120 [ 1667.037179] ? strncpy_from_user+0x9e/0x470 [ 1667.038095] ? finish_automount+0xa90/0xa90 [ 1667.039014] ? getname_flags.part.0+0x1dd/0x4f0 [ 1667.040001] ? _copy_from_user+0xfb/0x1b0 [ 1667.040893] __x64_sys_mount+0x282/0x300 [ 1667.041753] ? copy_mnt_ns+0xa00/0xa00 [ 1667.042591] do_syscall_64+0x33/0x40 [ 1667.043381] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1667.044472] RIP: 0033:0x7f9f6e930b19 [ 1667.045260] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1667.049178] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1667.050790] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1667.052299] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1667.053827] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1667.055343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1667.056862] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1667.058504] hpet: Lost 1 RTC interrupts 10:35:03 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 18) 10:35:03 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0x8}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) [ 1683.232634] FAULT_INJECTION: forcing a failure. [ 1683.232634] name failslab, interval 1, probability 0, space 0, times 0 [ 1683.235137] CPU: 0 PID: 10386 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1683.236606] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1683.238362] Call Trace: [ 1683.238922] dump_stack+0x107/0x167 [ 1683.239690] should_fail.cold+0x5/0xa [ 1683.240496] ? p9_client_create+0xaf/0x1230 [ 1683.241420] should_failslab+0x5/0x20 [ 1683.242221] kmem_cache_alloc_trace+0x55/0x320 [ 1683.243181] ? find_held_lock+0x2c/0x110 [ 1683.244052] p9_client_create+0xaf/0x1230 [ 1683.245181] ? lock_downgrade+0x6d0/0x6d0 [ 1683.246069] ? p9_client_flush+0x430/0x430 [ 1683.246967] ? trace_hardirqs_on+0x5b/0x180 [ 1683.247914] ? lockdep_init_map_type+0x2c7/0x780 [ 1683.248924] ? __raw_spin_lock_init+0x36/0x110 [ 1683.249887] v9fs_session_init+0x1dd/0x1680 [ 1683.250799] ? lock_release+0x680/0x680 [ 1683.251643] ? kmem_cache_alloc_trace+0x151/0x320 [ 1683.252665] ? v9fs_show_options+0x690/0x690 [ 1683.253594] ? trace_hardirqs_on+0x5b/0x180 [ 1683.254499] ? kasan_unpoison_shadow+0x33/0x50 [ 1683.255457] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1683.256523] v9fs_mount+0x79/0x8f0 [ 1683.257276] ? v9fs_write_inode+0x60/0x60 [ 1683.258150] legacy_get_tree+0x105/0x220 [ 1683.259006] vfs_get_tree+0x8e/0x300 [ 1683.259791] path_mount+0x1429/0x2120 [ 1683.260603] ? strncpy_from_user+0x9e/0x470 [ 1683.261514] ? finish_automount+0xa90/0xa90 [ 1683.262422] ? getname_flags.part.0+0x1dd/0x4f0 [ 1683.263405] ? _copy_from_user+0xfb/0x1b0 [ 1683.264283] __x64_sys_mount+0x282/0x300 [ 1683.265148] ? copy_mnt_ns+0xa00/0xa00 [ 1683.265975] do_syscall_64+0x33/0x40 [ 1683.266761] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1683.267844] RIP: 0033:0x7f20e27f5b19 [ 1683.268644] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1683.272457] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1683.272508] RSP: 002b:00007f20dfd6b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1683.275865] RAX: ffffffffffffffda RBX: 00007f20e2908f60 RCX: 00007f20e27f5b19 [ 1683.277374] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1683.278866] RBP: 00007f20dfd6b1d0 R08: 0000000020000680 R09: 0000000000000000 [ 1683.279332] loop3: detected capacity change from 0 to 41948160 [ 1683.280356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1683.280368] R13: 00007ffee093143f R14: 00007f20dfd6b300 R15: 0000000000022000 [ 1683.280754] hpet: Lost 2 RTC interrupts [ 1683.286636] FAULT_INJECTION: forcing a failure. [ 1683.286636] name failslab, interval 1, probability 0, space 0, times 0 10:35:03 executing program 6: syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r0, 0x5451) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000bd81b87afc1f961b041591112692a5d1aab19c6a9e208d1c28da156afb4ddd1c034b19e9834dac56f129ae740f48534d34c69c7c8f7a384336ebb2944c29225ff12f8b046906f15c85d62e0a33ee1e26fa8cdafd5b4230f8a3080ce94c020921c94d3d80cf8e3b0005243578f5cb037d73d389cfca1f80e0d2f968feac4f065ffe3cb0ac3a25ca5c1ff5a7d310a614982b1fd43abc07e6b5975ba7d712426b37c55d1e490df0153a78786913ed7637b1d840bfde0e1b7d339417ed280b1ddb49ee61eafedbaaa0a8d2cbc5bdccb0afa62f64ea4ff187fa6628397f9891a1f34aa8dd36d70ce1b5f09bc0043a0bd1f8bdfb33e073ebbcea086bc8e8da27d76939786776a523785c8d9f855bdebf1edf10e03337ab01cd5cf01d1029cd73f7ed80e25303ae4adcc92c32141d362f09f0ddfd8ac96f4ac935755951deec4790aad73f2a0d0ea95e61d823c36e79179362117010e45868e93f897ed1215e540cf9cb2406d5b482db"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r2) sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r3, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r5 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r5, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="280026bd704a460300", @ANYRES32=r4, @ANYRES16=r3], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:35:03 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x27b8, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:35:03 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:35:03 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) recvmmsg(0xffffffffffffffff, &(0x7f0000000100)=[{{&(0x7f00000001c0), 0x80, &(0x7f0000000640)=[{&(0x7f0000000000)=""/21, 0x15}, {&(0x7f0000000240)=""/84, 0x54}, {&(0x7f0000000440)=""/197, 0xc5}, {&(0x7f0000000540)=""/89, 0x59}, {&(0x7f00000005c0)=""/97, 0x61}], 0x5, &(0x7f00000006c0)=""/116, 0x74}, 0x1}], 0x1, 0x40000000, &(0x7f0000000300)={0x0, 0x3938700}) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) 10:35:03 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 20) 10:35:03 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 9) [ 1683.289015] CPU: 1 PID: 10396 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1683.290709] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1683.292458] Call Trace: [ 1683.293021] dump_stack+0x107/0x167 [ 1683.293776] should_fail.cold+0x5/0xa [ 1683.294569] should_failslab+0x5/0x20 [ 1683.295359] __kmalloc_track_caller+0x79/0x370 [ 1683.296300] ? v9fs_session_init+0xa7/0x1680 [ 1683.297235] ? kernel_text_address+0xf2/0x120 [ 1683.298160] kstrdup+0x36/0x70 [ 1683.298839] v9fs_session_init+0xa7/0x1680 [ 1683.299720] ? lock_release+0x680/0x680 [ 1683.300574] ? find_held_lock+0x2c/0x110 [ 1683.301416] ? kmem_cache_alloc_trace+0x151/0x320 [ 1683.302433] ? v9fs_show_options+0x690/0x690 [ 1683.303364] ? trace_hardirqs_on+0x5b/0x180 [ 1683.304274] ? kasan_unpoison_shadow+0x33/0x50 [ 1683.305225] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1683.306286] v9fs_mount+0x79/0x8f0 [ 1683.307020] ? v9fs_write_inode+0x60/0x60 [ 1683.307424] FAULT_INJECTION: forcing a failure. [ 1683.307424] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1683.307889] legacy_get_tree+0x105/0x220 [ 1683.307916] vfs_get_tree+0x8e/0x300 [ 1683.312077] path_mount+0x1429/0x2120 [ 1683.312909] ? strncpy_from_user+0x9e/0x470 [ 1683.313814] ? finish_automount+0xa90/0xa90 [ 1683.314729] ? getname_flags.part.0+0x1dd/0x4f0 [ 1683.315701] ? _copy_from_user+0xfb/0x1b0 [ 1683.316595] __x64_sys_mount+0x282/0x300 [ 1683.317451] ? copy_mnt_ns+0xa00/0xa00 [ 1683.318287] do_syscall_64+0x33/0x40 [ 1683.319083] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1683.320172] RIP: 0033:0x7f9f6e930b19 [ 1683.320971] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1683.324891] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1683.326646] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1683.328164] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1683.329687] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1683.331201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1683.332734] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1683.334285] CPU: 0 PID: 10399 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1683.335784] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1683.337569] Call Trace: [ 1683.338137] dump_stack+0x107/0x167 [ 1683.338918] should_fail.cold+0x5/0xa [ 1683.339743] strncpy_from_user+0x34/0x470 [ 1683.340647] getname_flags.part.0+0x95/0x4f0 [ 1683.341624] ? _copy_from_user+0xfb/0x1b0 [ 1683.342520] user_path_at_empty+0xa1/0x100 [ 1683.343435] __x64_sys_mount+0x1e9/0x300 [ 1683.344306] ? copy_mnt_ns+0xa00/0xa00 [ 1683.345169] do_syscall_64+0x33/0x40 [ 1683.345968] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1683.347074] RIP: 0033:0x7fd3b79dfb19 [ 1683.347877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1683.351844] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1683.353476] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1683.355007] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1683.356533] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1683.358068] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1683.359599] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1683.361288] hpet: Lost 1 RTC interrupts 10:35:03 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 21) 10:35:03 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 19) [ 1683.416170] FAULT_INJECTION: forcing a failure. [ 1683.416170] name failslab, interval 1, probability 0, space 0, times 0 [ 1683.418726] CPU: 1 PID: 10407 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1683.420310] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1683.422090] Call Trace: [ 1683.422658] dump_stack+0x107/0x167 [ 1683.423447] should_fail.cold+0x5/0xa [ 1683.424256] ? create_object.isra.0+0x3a/0xa20 [ 1683.425236] should_failslab+0x5/0x20 [ 1683.426045] kmem_cache_alloc+0x5b/0x310 [ 1683.426909] create_object.isra.0+0x3a/0xa20 [ 1683.427847] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1683.428941] __kmalloc_track_caller+0x177/0x370 [ 1683.429931] ? v9fs_session_init+0xe9/0x1680 [ 1683.430873] ? kernel_text_address+0xf2/0x120 [ 1683.431849] kstrdup+0x36/0x70 [ 1683.432538] v9fs_session_init+0xe9/0x1680 [ 1683.433457] ? lock_release+0x680/0x680 [ 1683.434315] ? find_held_lock+0x2c/0x110 [ 1683.435265] ? kmem_cache_alloc_trace+0x151/0x320 [ 1683.436291] ? v9fs_show_options+0x690/0x690 [ 1683.437246] ? trace_hardirqs_on+0x5b/0x180 [ 1683.438159] ? kasan_unpoison_shadow+0x33/0x50 [ 1683.439124] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1683.440206] v9fs_mount+0x79/0x8f0 [ 1683.440969] ? v9fs_write_inode+0x60/0x60 [ 1683.441857] legacy_get_tree+0x105/0x220 [ 1683.442720] vfs_get_tree+0x8e/0x300 [ 1683.443513] path_mount+0x1429/0x2120 [ 1683.444328] ? strncpy_from_user+0x9e/0x470 [ 1683.445258] ? finish_automount+0xa90/0xa90 [ 1683.446176] ? getname_flags.part.0+0x1dd/0x4f0 [ 1683.447160] ? _copy_from_user+0xfb/0x1b0 [ 1683.448045] __x64_sys_mount+0x282/0x300 [ 1683.448910] ? copy_mnt_ns+0xa00/0xa00 [ 1683.449745] do_syscall_64+0x33/0x40 [ 1683.450624] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1683.451723] RIP: 0033:0x7f9f6e930b19 [ 1683.452517] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1683.456459] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1683.458108] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1683.459652] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1683.461181] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1683.462687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1683.464205] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1683.467202] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1683.468787] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 10:35:04 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0x9}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) [ 1683.479438] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1683.491498] FAULT_INJECTION: forcing a failure. [ 1683.491498] name failslab, interval 1, probability 0, space 0, times 0 [ 1683.493963] CPU: 1 PID: 10408 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1683.495433] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1683.497199] Call Trace: [ 1683.497867] dump_stack+0x107/0x167 [ 1683.498647] should_fail.cold+0x5/0xa [ 1683.499460] ? create_object.isra.0+0x3a/0xa20 [ 1683.500443] should_failslab+0x5/0x20 [ 1683.501268] kmem_cache_alloc+0x5b/0x310 [ 1683.502132] ? kernel_text_address+0xf2/0x120 [ 1683.503093] create_object.isra.0+0x3a/0xa20 [ 1683.504028] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1683.505141] kmem_cache_alloc_trace+0x151/0x320 [ 1683.506128] ? find_held_lock+0x2c/0x110 [ 1683.506998] p9_client_create+0xaf/0x1230 [ 1683.507879] ? lock_downgrade+0x6d0/0x6d0 [ 1683.508774] ? p9_client_flush+0x430/0x430 [ 1683.509670] ? trace_hardirqs_on+0x5b/0x180 [ 1683.510591] ? lockdep_init_map_type+0x2c7/0x780 [ 1683.511606] ? __raw_spin_lock_init+0x36/0x110 [ 1683.512591] v9fs_session_init+0x1dd/0x1680 [ 1683.513586] ? lock_release+0x680/0x680 [ 1683.514445] ? kmem_cache_alloc_trace+0x151/0x320 [ 1683.515466] ? v9fs_show_options+0x690/0x690 [ 1683.516415] ? trace_hardirqs_on+0x5b/0x180 [ 1683.517346] ? kasan_unpoison_shadow+0x33/0x50 [ 1683.518319] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1683.519392] v9fs_mount+0x79/0x8f0 [ 1683.520150] ? v9fs_write_inode+0x60/0x60 [ 1683.521042] legacy_get_tree+0x105/0x220 [ 1683.521904] vfs_get_tree+0x8e/0x300 [ 1683.522699] path_mount+0x1429/0x2120 [ 1683.523518] ? strncpy_from_user+0x9e/0x470 [ 1683.524431] ? finish_automount+0xa90/0xa90 [ 1683.525365] ? getname_flags.part.0+0x1dd/0x4f0 [ 1683.526359] ? _copy_from_user+0xfb/0x1b0 [ 1683.527237] __x64_sys_mount+0x282/0x300 [ 1683.528100] ? copy_mnt_ns+0xa00/0xa00 [ 1683.529028] do_syscall_64+0x33/0x40 [ 1683.529821] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1683.530912] RIP: 0033:0x7f20e27f5b19 [ 1683.531702] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1683.535618] RSP: 002b:00007f20dfd6b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1683.537242] RAX: ffffffffffffffda RBX: 00007f20e2908f60 RCX: 00007f20e27f5b19 [ 1683.538763] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1683.540278] RBP: 00007f20dfd6b1d0 R08: 0000000020000680 R09: 0000000000000000 [ 1683.541809] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1683.543327] R13: 00007ffee093143f R14: 00007f20dfd6b300 R15: 0000000000022000 10:35:04 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x28b8, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:35:04 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') chdir(&(0x7f0000000000)='./file1\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) 10:35:04 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x2, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:35:04 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 10) 10:35:04 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x0) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 1683.643755] FAULT_INJECTION: forcing a failure. [ 1683.643755] name failslab, interval 1, probability 0, space 0, times 0 [ 1683.646275] CPU: 1 PID: 10419 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1683.647751] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1683.649528] Call Trace: [ 1683.650096] dump_stack+0x107/0x167 [ 1683.650878] should_fail.cold+0x5/0xa [ 1683.651689] ? alloc_fs_context+0x57/0x840 [ 1683.652604] should_failslab+0x5/0x20 [ 1683.653416] kmem_cache_alloc_trace+0x55/0x320 [ 1683.654513] alloc_fs_context+0x57/0x840 [ 1683.655389] path_mount+0xaa3/0x2120 [ 1683.656187] ? strncpy_from_user+0x9e/0x470 [ 1683.657120] ? finish_automount+0xa90/0xa90 [ 1683.658038] ? getname_flags.part.0+0x1dd/0x4f0 [ 1683.659033] ? _copy_from_user+0xfb/0x1b0 [ 1683.659921] __x64_sys_mount+0x282/0x300 [ 1683.660792] ? copy_mnt_ns+0xa00/0xa00 [ 1683.661638] do_syscall_64+0x33/0x40 [ 1683.662429] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1683.663519] RIP: 0033:0x7fd3b79dfb19 [ 1683.664315] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1683.668237] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1683.670002] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1683.671498] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1683.673032] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1683.674573] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1683.676086] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 10:35:04 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x29b8, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:35:04 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0xa}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) [ 1683.690352] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1683.795195] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1683.796732] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1683.798474] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:35:20 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 11) 10:35:20 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x0) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:35:20 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x2ab8, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:35:20 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x3, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:35:20 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 22) 10:35:20 executing program 3: ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) setsockopt$inet6_IPV6_PKTINFO(r1, 0x29, 0x32, &(0x7f0000000040)={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, r0}, 0xfffffffffffffec8) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000006c0)=ANY=[@ANYBLOB="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"], 0x34}}, 0x0) getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000500)={0x0, @empty, @dev}, &(0x7f0000000540)=0xc) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(r1, 0x89f0, &(0x7f0000000600)={'ip6tnl0\x00', &(0x7f0000000580)={'syztnl2\x00', r0, 0x2f, 0xe1, 0xd8, 0x80000001, 0x0, @empty, @private2, 0x7800, 0x80, 0x1ff, 0x401}}) ioctl$sock_ipv6_tunnel_SIOCADDPRL(0xffffffffffffffff, 0x89f5, &(0x7f00000008c0)={'sit0\x00', &(0x7f0000000840)={'ip6_vti0\x00', r0, 0x2f, 0x80, 0x8, 0xc3, 0x4, @private0, @private0, 0x7800, 0x7800, 0x1, 0xff}}) ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f0000000a40)={'syztnl0\x00', &(0x7f00000009c0)={'sit0\x00', r0, 0x2f, 0x1, 0x40, 0xffffffff, 0xc0, @private1={0xfc, 0x1, '\x00', 0x1}, @remote, 0x10, 0x8000, 0xfffffffd, 0x2}}) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r8 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) setsockopt$inet6_IPV6_PKTINFO(r8, 0x29, 0x32, &(0x7f0000000040)={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, r7}, 0xfffffffffffffec8) sendmsg$ETHTOOL_MSG_CHANNELS_GET(0xffffffffffffffff, &(0x7f0000000c40)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000c00)={&(0x7f0000000a80)={0x14c, 0x0, 0x100, 0x70bd29, 0x25dfdbfe, {}, [@HEADER={0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}, @HEADER={0x4}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vcan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r0}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @HEADER={0x94, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'erspan0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syzkaller0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6gre0\x00'}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}]}, @HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}]}, 0x14c}, 0x1, 0x0, 0x0, 0x40010}, 0x400c010) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r10 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) setsockopt$inet6_IPV6_PKTINFO(r10, 0x29, 0x32, &(0x7f0000000040)={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, r9}, 0xfffffffffffffec8) r11 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x46, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f00000001c0)=ANY=[@ANYRESOCT, @ANYRESDEC, @ANYRES64=r0, @ANYRES32=r2, @ANYRES16, @ANYBLOB="ca0b743a8c24741af5f7eedd5bc430454842ff88bd37f0c18f2bbe128c251e7f8abc44e0a8fb6a650182b788c607b8ec6d7c7a03b6f8dd807901aadbe7552dcbf2c4b17370230fee145e9141462f9bcae7eee56615efae444d", @ANYRESOCT=r9]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r11, &(0x7f0000000340)=""/214, 0xd6) 10:35:20 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0xb}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:35:20 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 20) [ 1700.168602] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1700.175759] FAULT_INJECTION: forcing a failure. [ 1700.175759] name failslab, interval 1, probability 0, space 0, times 0 [ 1700.178506] CPU: 0 PID: 10449 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1700.180022] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1700.180029] Call Trace: [ 1700.180054] dump_stack+0x107/0x167 [ 1700.180075] should_fail.cold+0x5/0xa [ 1700.180097] ? p9_client_create+0xaf/0x1230 [ 1700.180120] should_failslab+0x5/0x20 [ 1700.180139] kmem_cache_alloc_trace+0x55/0x320 [ 1700.180157] ? find_held_lock+0x2c/0x110 [ 1700.180180] p9_client_create+0xaf/0x1230 [ 1700.180200] ? lock_downgrade+0x6d0/0x6d0 [ 1700.180224] ? p9_client_flush+0x430/0x430 [ 1700.180244] ? trace_hardirqs_on+0x5b/0x180 [ 1700.180265] ? lockdep_init_map_type+0x2c7/0x780 [ 1700.180289] FAULT_INJECTION: forcing a failure. [ 1700.180289] name failslab, interval 1, probability 0, space 0, times 0 10:35:20 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x2bb8, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:35:20 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x4, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1700.180304] ? __raw_spin_lock_init+0x36/0x110 [ 1700.180330] v9fs_session_init+0x1dd/0x1680 10:35:20 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 23) 10:35:20 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0xc}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) [ 1700.180349] ? lock_release+0x680/0x680 [ 1700.180376] ? kmem_cache_alloc_trace+0x151/0x320 [ 1700.180394] ? v9fs_show_options+0x690/0x690 [ 1700.180420] ? trace_hardirqs_on+0x5b/0x180 10:35:20 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 21) [ 1700.180439] ? kasan_unpoison_shadow+0x33/0x50 [ 1700.180458] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1700.180477] v9fs_mount+0x79/0x8f0 [ 1700.180495] ? v9fs_write_inode+0x60/0x60 [ 1700.180516] legacy_get_tree+0x105/0x220 [ 1700.180537] vfs_get_tree+0x8e/0x300 [ 1700.180555] path_mount+0x1429/0x2120 [ 1700.180580] ? strncpy_from_user+0x9e/0x470 [ 1700.180598] ? finish_automount+0xa90/0xa90 [ 1700.180617] ? getname_flags.part.0+0x1dd/0x4f0 10:35:20 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 12) [ 1700.180635] ? _copy_from_user+0xfb/0x1b0 [ 1700.180660] __x64_sys_mount+0x282/0x300 [ 1700.180677] ? copy_mnt_ns+0xa00/0xa00 [ 1700.180705] do_syscall_64+0x33/0x40 10:35:20 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x0) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="04002cbd7000fddbdf2575000000c401f08067000b00677cfd4589c7a40e1aae6b18247eb36f74f8f6793b7df9ae3ca9cfb2f5e87ed1ff361592201a1151eabf57ad6fd1950cd215131f67634030aa5f484986ad830a6243bac401c3ee44bff7cea60e881d5f9b616582cf28ec620ccd97d4ceb48c6727530f00050001000100000005000f004000000008000a000000000005000f000400000038010c80050003000300000003010200a207624e07c5690d555d459080990de6741a392aa42eff746330a20bec78fd393092b5f99f54b2a9f6dadb55db3c0846814e79eb43bf7bcd6295c96e7ca16288a8b27c5a225a6d718ad49f0366f969983400ba504c865cca04e4fa00a4b246fa618936f70fe77c1c3e550a5d12d4a9108e7e4216bc693107c3bd4c06e98ec9399de0e98cf205057cbbf688d8a13dc55472fc31954b846e29dbd7d8889b34ead6c83c9b533b666abd65490f2a7e693d55d91f24d5078eb3d34940c02ea1125e7176e254c6bd5531ed067817f0b3278e3dc492571b7da828e728a6fa55742efa33f430739c320b794841adba4c2875044dce9c8959eebe4a5b52d68f9868719f00280004800a000600ffffffffffff00000a000600ffffffffffff00000a000600ffffffffffff00000c01f0800a000200ee90b393fc10000046000b005cbb9f225903f92e0cffa77bd5369da32f70909f5950f26e59525d4d3c41b9e512f4a5d3b7aaaf8a0e03f2aa73274b24a04b4a689bf05844d0d2ad278696b14fb4c50000b4000d80af0000001263800a6541e18dae533feb73677b5c9d5da0ee4d7366d47dd6fa0b14ca33d3433171a533a29930fb5e0d9ff2ca710ab0c8aa4b331d58b4a7b3cac9c9b4ef9e7cdb1d3d6da7f0877a5c3ce7ff9bf9e936b1bcbe732bd9037f9090bfdee1d3e45c7b700e6aefa488eb013b27cd7291a7b927dc10e794490c85dff0cb49a1dd0f5514c3ce6c90d8457d79fcd2a3756ccd66b5194a5c69358e1199219e40ffdd6771943cb3fe33f442ae2ff2002c01f080050003000600000005000300020000000a000200957ccca020ad0000e4000b0049a0db966a0311d932607f2a479e651b881a56f4da7d14bde06c48822b0d353198bb85750dc9f0cca70174b813fe94ea80477bcf9dd6b03b9186edb85c476d8762dc273e83aaee35def167cc1c8faffc0e86fa311d66813cbea7e234d79e9d3acd30b5ae5a264e9576efabc94efd7a18b93eddabd9b046d12df487392f1217b77f05bd72f95130a2bda683b7a64c3d6477e3681d83c5e45e8fdae553114b304417851d9687ab3b9c6c7e91af7744d16b114820332c31b35f4358643e4137a9e6b264a14e04605648b50e27e3bb5cbbdaac70655fdff371ece3e08885f0da8d700a000800080211000000000005000100000000000a000800080211000000000005000300c9000000f800f08008000a000100008004000500050010007f0000000a0002005a9cbd08ca8e000014000c800500030008000000050003005e000000c0000b003a3801c2eefaea9df8f27b808f751948873b3fa40dd675c2f1b45ab2dbcdf1903fb052565c23c23d861899509fb26a1f672416325f004d2fdd903c5fa86b4bf1e39074929e71f3a466d345a8e660cd8d401a4772051ab211e24ede74314ef8b7a2c04c8a87b4e5603f7592bc89521d454d3528dce3959d8613c413eafce02151dc1f76a1ace92831610ea0894d9f59407f66cbe556e636be5a3d01253ec1c755495e5196efdf7f155cba102e17e2cfa917e79a2a35bb2b6dbca97391"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 1700.180724] entry_SYSCALL_64_after_hwframe+0x67/0xd1 10:35:20 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x2cb8, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1700.180755] RIP: 0033:0x7f9f6e930b19 [ 1700.180785] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 10:35:20 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1700.180800] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1700.180827] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1700.180842] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1700.180857] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1700.180872] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1700.180887] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1700.180931] CPU: 1 PID: 10451 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1700.180944] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1700.180952] Call Trace: [ 1700.180978] dump_stack+0x107/0x167 [ 1700.181003] should_fail.cold+0x5/0xa [ 1700.181028] ? create_object.isra.0+0x3a/0xa20 [ 1700.181053] should_failslab+0x5/0x20 [ 1700.181081] kmem_cache_alloc+0x5b/0x310 [ 1700.181109] create_object.isra.0+0x3a/0xa20 [ 1700.181128] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1700.181157] kmem_cache_alloc_trace+0x151/0x320 [ 1700.181183] alloc_fs_context+0x57/0x840 [ 1700.181221] path_mount+0xaa3/0x2120 [ 1700.181250] ? strncpy_from_user+0x9e/0x470 [ 1700.181271] ? finish_automount+0xa90/0xa90 [ 1700.181293] ? getname_flags.part.0+0x1dd/0x4f0 [ 1700.181315] ? _copy_from_user+0xfb/0x1b0 [ 1700.181345] __x64_sys_mount+0x282/0x300 [ 1700.181365] ? copy_mnt_ns+0xa00/0xa00 [ 1700.181398] do_syscall_64+0x33/0x40 [ 1700.181420] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1700.181434] RIP: 0033:0x7fd3b79dfb19 [ 1700.181455] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1700.181468] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1700.181492] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1700.181505] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1700.181519] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1700.181531] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1700.181557] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1700.186660] FAULT_INJECTION: forcing a failure. [ 1700.186660] name failslab, interval 1, probability 0, space 0, times 0 [ 1700.186678] CPU: 1 PID: 10450 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1700.186688] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1700.186694] Call Trace: [ 1700.186712] dump_stack+0x107/0x167 [ 1700.186731] should_fail.cold+0x5/0xa [ 1700.186764] should_failslab+0x5/0x20 [ 1700.186783] __kmalloc_track_caller+0x79/0x370 [ 1700.186801] ? p9_client_create+0x41d/0x1230 [ 1700.186826] kstrdup+0x36/0x70 [ 1700.186846] p9_client_create+0x41d/0x1230 [ 1700.186866] ? lock_downgrade+0x6d0/0x6d0 [ 1700.186891] ? p9_client_flush+0x430/0x430 [ 1700.186911] ? trace_hardirqs_on+0x5b/0x180 [ 1700.186931] ? lockdep_init_map_type+0x2c7/0x780 [ 1700.186952] ? __raw_spin_lock_init+0x36/0x110 [ 1700.186975] v9fs_session_init+0x1dd/0x1680 [ 1700.186995] ? lock_release+0x680/0x680 [ 1700.187021] ? kmem_cache_alloc_trace+0x151/0x320 [ 1700.187039] ? v9fs_show_options+0x690/0x690 [ 1700.187065] ? trace_hardirqs_on+0x5b/0x180 [ 1700.187086] ? kasan_unpoison_shadow+0x33/0x50 [ 1700.187103] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1700.187123] v9fs_mount+0x79/0x8f0 [ 1700.187141] ? v9fs_write_inode+0x60/0x60 [ 1700.187160] legacy_get_tree+0x105/0x220 [ 1700.187180] vfs_get_tree+0x8e/0x300 [ 1700.187196] path_mount+0x1429/0x2120 [ 1700.187218] ? strncpy_from_user+0x9e/0x470 [ 1700.187236] ? finish_automount+0xa90/0xa90 [ 1700.187254] ? getname_flags.part.0+0x1dd/0x4f0 [ 1700.187271] ? _copy_from_user+0xfb/0x1b0 [ 1700.187296] __x64_sys_mount+0x282/0x300 [ 1700.187313] ? copy_mnt_ns+0xa00/0xa00 [ 1700.187340] do_syscall_64+0x33/0x40 [ 1700.187358] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1700.187370] RIP: 0033:0x7f20e27f5b19 [ 1700.187387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1700.187397] RSP: 002b:00007f20dfd6b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1700.187416] RAX: ffffffffffffffda RBX: 00007f20e2908f60 RCX: 00007f20e27f5b19 [ 1700.187427] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1700.187438] RBP: 00007f20dfd6b1d0 R08: 0000000020000680 R09: 0000000000000000 [ 1700.187448] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1700.187459] R13: 00007ffee093143f R14: 00007f20dfd6b300 R15: 0000000000022000 [ 1700.256343] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1700.256358] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1700.256607] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1700.332088] loop3: detected capacity change from 0 to 135266304 [ 1700.336257] FAT-fs (loop3): Unrecognized mount option "01‡" or missing value [ 1700.364321] FAULT_INJECTION: forcing a failure. [ 1700.364321] name failslab, interval 1, probability 0, space 0, times 0 [ 1700.364343] CPU: 1 PID: 10467 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1700.364353] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1700.364359] Call Trace: [ 1700.364383] dump_stack+0x107/0x167 [ 1700.364403] should_fail.cold+0x5/0xa [ 1700.364423] ? create_object.isra.0+0x3a/0xa20 [ 1700.364444] should_failslab+0x5/0x20 [ 1700.364462] kmem_cache_alloc+0x5b/0x310 [ 1700.364480] ? kernel_text_address+0xf2/0x120 [ 1700.364503] create_object.isra.0+0x3a/0xa20 [ 1700.364518] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1700.364542] kmem_cache_alloc_trace+0x151/0x320 [ 1700.364559] ? find_held_lock+0x2c/0x110 [ 1700.364584] p9_client_create+0xaf/0x1230 [ 1700.364602] ? lock_downgrade+0x6d0/0x6d0 [ 1700.364627] ? p9_client_flush+0x430/0x430 [ 1700.364646] ? trace_hardirqs_on+0x5b/0x180 [ 1700.364667] ? lockdep_init_map_type+0x2c7/0x780 [ 1700.364695] ? __raw_spin_lock_init+0x36/0x110 [ 1700.364718] v9fs_session_init+0x1dd/0x1680 [ 1700.364738] ? lock_release+0x680/0x680 [ 1700.364776] ? kmem_cache_alloc_trace+0x151/0x320 [ 1700.364794] ? v9fs_show_options+0x690/0x690 [ 1700.364820] ? trace_hardirqs_on+0x5b/0x180 [ 1700.364844] ? kasan_unpoison_shadow+0x33/0x50 [ 1700.364861] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1700.364881] v9fs_mount+0x79/0x8f0 [ 1700.364899] ? v9fs_write_inode+0x60/0x60 [ 1700.364919] legacy_get_tree+0x105/0x220 [ 1700.364938] vfs_get_tree+0x8e/0x300 [ 1700.364955] path_mount+0x1429/0x2120 [ 1700.364978] ? strncpy_from_user+0x9e/0x470 [ 1700.364996] ? finish_automount+0xa90/0xa90 [ 1700.365014] ? getname_flags.part.0+0x1dd/0x4f0 [ 1700.365032] ? _copy_from_user+0xfb/0x1b0 [ 1700.365058] __x64_sys_mount+0x282/0x300 [ 1700.365075] ? copy_mnt_ns+0xa00/0xa00 [ 1700.365102] do_syscall_64+0x33/0x40 [ 1700.365121] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1700.365133] RIP: 0033:0x7f9f6e930b19 [ 1700.365151] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1700.365162] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1700.365182] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1700.365193] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1700.365204] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1700.365214] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1700.365225] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1700.370068] FAULT_INJECTION: forcing a failure. [ 1700.370068] name failslab, interval 1, probability 0, space 0, times 0 [ 1700.370087] CPU: 1 PID: 10465 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1700.370096] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1700.370102] Call Trace: [ 1700.370120] dump_stack+0x107/0x167 [ 1700.370140] should_fail.cold+0x5/0xa [ 1700.370164] ? create_object.isra.0+0x3a/0xa20 [ 1700.370192] should_failslab+0x5/0x20 [ 1700.370214] kmem_cache_alloc+0x5b/0x310 [ 1700.370236] ? lock_downgrade+0x6d0/0x6d0 [ 1700.370265] create_object.isra.0+0x3a/0xa20 [ 1700.370287] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1700.370317] __kmalloc_track_caller+0x177/0x370 [ 1700.370334] ? p9_client_create+0x41d/0x1230 [ 1700.370359] kstrdup+0x36/0x70 [ 1700.370379] p9_client_create+0x41d/0x1230 [ 1700.370398] ? lock_downgrade+0x6d0/0x6d0 [ 1700.370422] ? p9_client_flush+0x430/0x430 [ 1700.370441] ? trace_hardirqs_on+0x5b/0x180 [ 1700.370461] ? lockdep_init_map_type+0x2c7/0x780 [ 1700.370481] ? __raw_spin_lock_init+0x36/0x110 [ 1700.370504] v9fs_session_init+0x1dd/0x1680 [ 1700.370523] ? lock_release+0x680/0x680 [ 1700.370550] ? kmem_cache_alloc_trace+0x151/0x320 [ 1700.370568] ? v9fs_show_options+0x690/0x690 [ 1700.370594] ? trace_hardirqs_on+0x5b/0x180 [ 1700.370612] ? kasan_unpoison_shadow+0x33/0x50 [ 1700.370629] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1700.370648] v9fs_mount+0x79/0x8f0 [ 1700.370667] ? v9fs_write_inode+0x60/0x60 [ 1700.370685] legacy_get_tree+0x105/0x220 [ 1700.370705] vfs_get_tree+0x8e/0x300 [ 1700.370721] path_mount+0x1429/0x2120 [ 1700.370750] ? strncpy_from_user+0x9e/0x470 [ 1700.370768] ? finish_automount+0xa90/0xa90 [ 1700.370787] ? getname_flags.part.0+0x1dd/0x4f0 [ 1700.370804] ? _copy_from_user+0xfb/0x1b0 [ 1700.370829] __x64_sys_mount+0x282/0x300 [ 1700.370846] ? copy_mnt_ns+0xa00/0xa00 [ 1700.370873] do_syscall_64+0x33/0x40 [ 1700.370891] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1700.370902] RIP: 0033:0x7f20e27f5b19 [ 1700.370919] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1700.370929] RSP: 002b:00007f20dfd6b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1700.370949] RAX: ffffffffffffffda RBX: 00007f20e2908f60 RCX: 00007f20e27f5b19 [ 1700.370960] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1700.370970] RBP: 00007f20dfd6b1d0 R08: 0000000020000680 R09: 0000000000000000 [ 1700.370981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1700.370992] R13: 00007ffee093143f R14: 00007f20dfd6b300 R15: 0000000000022000 [ 1700.440163] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1700.449595] FAULT_INJECTION: forcing a failure. [ 1700.449595] name failslab, interval 1, probability 0, space 0, times 0 [ 1700.449619] CPU: 0 PID: 10474 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1700.449630] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1700.449636] Call Trace: [ 1700.449662] dump_stack+0x107/0x167 [ 1700.449682] should_fail.cold+0x5/0xa [ 1700.449704] ? create_object.isra.0+0x3a/0xa20 [ 1700.449726] should_failslab+0x5/0x20 [ 1700.449755] kmem_cache_alloc+0x5b/0x310 [ 1700.449778] create_object.isra.0+0x3a/0xa20 [ 1700.449795] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1700.449826] kmem_cache_alloc_trace+0x151/0x320 [ 1700.449848] alloc_fs_context+0x57/0x840 [ 1700.449872] path_mount+0xaa3/0x2120 [ 1700.449897] ? strncpy_from_user+0x9e/0x470 [ 1700.449915] ? finish_automount+0xa90/0xa90 [ 1700.449934] ? getname_flags.part.0+0x1dd/0x4f0 [ 1700.449953] ? _copy_from_user+0xfb/0x1b0 [ 1700.449978] __x64_sys_mount+0x282/0x300 [ 1700.449995] ? copy_mnt_ns+0xa00/0xa00 [ 1700.450023] do_syscall_64+0x33/0x40 [ 1700.450042] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1700.450055] RIP: 0033:0x7fd3b79dfb19 [ 1700.450073] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1700.450083] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1700.450104] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1700.450115] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1700.450127] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1700.450137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1700.450148] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1700.536943] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1700.536961] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1700.537215] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1700.885077] loop3: detected capacity change from 0 to 135266304 [ 1700.891483] FAT-fs (loop3): Unrecognized mount option "01‡" or missing value 10:35:36 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') creat(&(0x7f0000000100)='./file1\x00', 0x49) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x2, 0x64) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) 10:35:36 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x6, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:35:36 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0xd}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) [ 1716.229445] FAULT_INJECTION: forcing a failure. [ 1716.229445] name failslab, interval 1, probability 0, space 0, times 0 [ 1716.232321] CPU: 1 PID: 10494 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1716.234004] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1716.235989] Call Trace: [ 1716.236619] dump_stack+0x107/0x167 [ 1716.237514] should_fail.cold+0x5/0xa [ 1716.238426] should_failslab+0x5/0x20 [ 1716.239332] __kmalloc_track_caller+0x79/0x370 10:35:36 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 13) 10:35:36 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 24) 10:35:36 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x2db8, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:35:36 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 22) 10:35:36 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000bd81b87afc1f961b041591112692a5d1aab19c6a9e208d1c28da156afb4ddd1c034b19e9834dac56f129ae740f48534d34c69c7c8f7a384336ebb2944c29225ff12f8b046906f15c85d62e0a33ee1e26fa8cdafd5b4230f8a3080ce94c020921c94d3d80cf8e3b0005243578f5cb037d73d389cfca1f80e0d2f968feac4f065ffe3cb0ac3a25ca5c1ff5a7d310a614982b1fd43abc07e6b5975ba7d712426b37c55d1e490df0153a78786913ed7637b1d840bfde0e1b7d339417ed280b1ddb49ee61eafedbaaa0a8d2cbc5bdccb0afa62f64ea4ff187fa6628397f9891a1f34aa8dd36d70ce1b5f09bc0043a0bd1f8bdfb33e073ebbcea086bc8e8da27d76939786776a523785c8d9f855bdebf1edf10e03337ab01cd5cf01d1029cd73f7ed80e25303ae4adcc92c32141d362f09f0ddfd8ac96f4ac935755951deec4790aad73f2a0d0ea95e61d823c36e79179362117010e45868e93f897ed1215e540cf9cb2406d5b482db"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, 0x0, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 1716.240413] ? p9_client_create+0x51e/0x1230 [ 1716.241630] kmemdup_nul+0x2d/0xa0 [ 1716.242468] p9_client_create+0x51e/0x1230 [ 1716.243471] ? p9_client_flush+0x430/0x430 [ 1716.244471] ? trace_hardirqs_on+0x5b/0x180 [ 1716.245516] ? lockdep_init_map_type+0x2c7/0x780 [ 1716.246631] ? __raw_spin_lock_init+0x36/0x110 [ 1716.247769] v9fs_session_init+0x1dd/0x1680 [ 1716.248806] ? lock_release+0x680/0x680 [ 1716.249779] ? kmem_cache_alloc_trace+0x151/0x320 [ 1716.250912] ? v9fs_show_options+0x690/0x690 [ 1716.251972] ? trace_hardirqs_on+0x5b/0x180 [ 1716.253041] ? kasan_unpoison_shadow+0x33/0x50 [ 1716.254138] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1716.255358] v9fs_mount+0x79/0x8f0 [ 1716.256208] ? v9fs_write_inode+0x60/0x60 [ 1716.257215] legacy_get_tree+0x105/0x220 [ 1716.258196] vfs_get_tree+0x8e/0x300 [ 1716.259087] path_mount+0x1429/0x2120 [ 1716.260004] ? strncpy_from_user+0x9e/0x470 [ 1716.261043] ? finish_automount+0xa90/0xa90 [ 1716.262080] ? getname_flags.part.0+0x1dd/0x4f0 [ 1716.263212] ? _copy_from_user+0xfb/0x1b0 [ 1716.264362] __x64_sys_mount+0x282/0x300 [ 1716.265353] ? copy_mnt_ns+0xa00/0xa00 [ 1716.265868] FAULT_INJECTION: forcing a failure. [ 1716.265868] name failslab, interval 1, probability 0, space 0, times 0 [ 1716.266287] do_syscall_64+0x33/0x40 [ 1716.266320] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1716.271221] RIP: 0033:0x7f20e27f5b19 [ 1716.272102] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1716.276463] RSP: 002b:00007f20dfd6b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1716.278267] RAX: ffffffffffffffda RBX: 00007f20e2908f60 RCX: 00007f20e27f5b19 [ 1716.280045] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1716.281757] RBP: 00007f20dfd6b1d0 R08: 0000000020000680 R09: 0000000000000000 [ 1716.283438] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1716.285122] R13: 00007ffee093143f R14: 00007f20dfd6b300 R15: 0000000000022000 [ 1716.286821] CPU: 0 PID: 10501 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1716.288316] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1716.290094] Call Trace: [ 1716.290662] dump_stack+0x107/0x167 [ 1716.291437] should_fail.cold+0x5/0xa [ 1716.292251] ? create_object.isra.0+0x3a/0xa20 [ 1716.293237] should_failslab+0x5/0x20 [ 1716.294056] kmem_cache_alloc+0x5b/0x310 [ 1716.294760] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1716.294948] create_object.isra.0+0x3a/0xa20 [ 1716.297837] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1716.298919] kmem_cache_alloc_trace+0x151/0x320 [ 1716.299924] ? lockdep_init_map_type+0x2c7/0x780 [ 1716.300958] legacy_init_fs_context+0x44/0xe0 [ 1716.301911] ? generic_parse_monolithic+0x1f0/0x1f0 [ 1716.302965] alloc_fs_context+0x4fd/0x840 [ 1716.303847] path_mount+0xaa3/0x2120 [ 1716.304644] ? strncpy_from_user+0x9e/0x470 [ 1716.305569] ? finish_automount+0xa90/0xa90 [ 1716.306483] ? getname_flags.part.0+0x1dd/0x4f0 [ 1716.307472] ? _copy_from_user+0xfb/0x1b0 [ 1716.308354] __x64_sys_mount+0x282/0x300 [ 1716.309231] ? copy_mnt_ns+0xa00/0xa00 [ 1716.310066] do_syscall_64+0x33/0x40 [ 1716.310854] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1716.311935] RIP: 0033:0x7fd3b79dfb19 [ 1716.312723] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1716.316630] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1716.318254] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1716.319764] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1716.321290] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1716.322799] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1716.324307] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1716.326082] hpet: Lost 2 RTC interrupts [ 1716.335257] loop3: detected capacity change from 0 to 41948160 [ 1716.348158] FAULT_INJECTION: forcing a failure. [ 1716.348158] name failslab, interval 1, probability 0, space 0, times 0 [ 1716.350705] CPU: 0 PID: 10502 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1716.352270] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1716.354124] Call Trace: [ 1716.354688] dump_stack+0x107/0x167 [ 1716.355478] should_fail.cold+0x5/0xa [ 1716.356321] should_failslab+0x5/0x20 [ 1716.357189] __kmalloc_track_caller+0x79/0x370 [ 1716.358173] ? p9_client_create+0x41d/0x1230 [ 1716.359136] kstrdup+0x36/0x70 [ 1716.359835] p9_client_create+0x41d/0x1230 [ 1716.360754] ? lock_downgrade+0x6d0/0x6d0 [ 1716.361671] ? p9_client_flush+0x430/0x430 [ 1716.362571] ? trace_hardirqs_on+0x5b/0x180 [ 1716.363505] ? lockdep_init_map_type+0x2c7/0x780 [ 1716.364529] ? __raw_spin_lock_init+0x36/0x110 [ 1716.365537] v9fs_session_init+0x1dd/0x1680 [ 1716.366479] ? lock_release+0x680/0x680 [ 1716.367346] ? kmem_cache_alloc_trace+0x151/0x320 [ 1716.368455] ? v9fs_show_options+0x690/0x690 [ 1716.369649] ? trace_hardirqs_on+0x5b/0x180 [ 1716.370623] ? kasan_unpoison_shadow+0x33/0x50 [ 1716.371611] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1716.372712] v9fs_mount+0x79/0x8f0 [ 1716.373493] ? v9fs_write_inode+0x60/0x60 [ 1716.374392] legacy_get_tree+0x105/0x220 [ 1716.375272] vfs_get_tree+0x8e/0x300 [ 1716.376078] path_mount+0x1429/0x2120 [ 1716.376907] ? strncpy_from_user+0x9e/0x470 [ 1716.377863] ? finish_automount+0xa90/0xa90 [ 1716.378801] ? getname_flags.part.0+0x1dd/0x4f0 [ 1716.379805] ? _copy_from_user+0xfb/0x1b0 [ 1716.380705] __x64_sys_mount+0x282/0x300 [ 1716.381588] ? copy_mnt_ns+0xa00/0xa00 [ 1716.382439] do_syscall_64+0x33/0x40 [ 1716.383244] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1716.384396] RIP: 0033:0x7f9f6e930b19 [ 1716.385268] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1716.386029] FAULT_INJECTION: forcing a failure. [ 1716.386029] name failslab, interval 1, probability 0, space 0, times 0 [ 1716.389286] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1716.389308] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1716.389320] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1716.389331] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1716.389342] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1716.389362] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1716.401100] CPU: 1 PID: 10510 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1716.401467] hpet: Lost 2 RTC interrupts [ 1716.402742] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1716.405521] Call Trace: [ 1716.406094] dump_stack+0x107/0x167 [ 1716.406879] should_fail.cold+0x5/0xa [ 1716.407700] ? create_object.isra.0+0x3a/0xa20 [ 1716.408688] should_failslab+0x5/0x20 [ 1716.409527] kmem_cache_alloc+0x5b/0x310 [ 1716.410407] create_object.isra.0+0x3a/0xa20 [ 1716.411348] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1716.412441] __kmalloc_track_caller+0x177/0x370 [ 1716.413460] ? p9_client_create+0x51e/0x1230 [ 1716.414414] kmemdup_nul+0x2d/0xa0 [ 1716.415176] p9_client_create+0x51e/0x1230 [ 1716.416091] ? p9_client_flush+0x430/0x430 [ 1716.417013] ? trace_hardirqs_on+0x5b/0x180 [ 1716.417943] ? lockdep_init_map_type+0x2c7/0x780 [ 1716.418961] ? __raw_spin_lock_init+0x36/0x110 [ 1716.420073] v9fs_session_init+0x1dd/0x1680 [ 1716.421017] ? lock_release+0x680/0x680 10:35:36 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 25) 10:35:36 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x7, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1716.421880] ? kmem_cache_alloc_trace+0x151/0x320 [ 1716.423049] ? v9fs_show_options+0x690/0x690 [ 1716.423998] ? trace_hardirqs_on+0x5b/0x180 [ 1716.424922] ? kasan_unpoison_shadow+0x33/0x50 [ 1716.425912] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1716.426998] v9fs_mount+0x79/0x8f0 [ 1716.427758] ? v9fs_write_inode+0x60/0x60 [ 1716.428648] legacy_get_tree+0x105/0x220 [ 1716.429542] vfs_get_tree+0x8e/0x300 [ 1716.430344] path_mount+0x1429/0x2120 [ 1716.431169] ? strncpy_from_user+0x9e/0x470 [ 1716.432094] ? finish_automount+0xa90/0xa90 [ 1716.433029] ? getname_flags.part.0+0x1dd/0x4f0 [ 1716.434031] ? _copy_from_user+0xfb/0x1b0 [ 1716.434930] __x64_sys_mount+0x282/0x300 [ 1716.435897] ? copy_mnt_ns+0xa00/0xa00 [ 1716.436744] do_syscall_64+0x33/0x40 [ 1716.437568] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1716.438677] RIP: 0033:0x7f20e27f5b19 [ 1716.439474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1716.443457] RSP: 002b:00007f20dfd6b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1716.445113] RAX: ffffffffffffffda RBX: 00007f20e2908f60 RCX: 00007f20e27f5b19 [ 1716.446652] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1716.448190] RBP: 00007f20dfd6b1d0 R08: 0000000020000680 R09: 0000000000000000 [ 1716.449735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1716.451367] R13: 00007ffee093143f R14: 00007f20dfd6b300 R15: 0000000000022000 [ 1716.460757] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1716.462508] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1716.464670] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:35:37 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x8, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:35:37 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, 0x0, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:35:37 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x2e00, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:35:37 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0xe}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) [ 1716.596453] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. 10:35:37 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000000), 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x406e2, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r1, 0x0, 0x2a, &(0x7f0000000800)={0x80000000, {{0x2, 0x4e22, @local}}}, 0x88) accept(r1, &(0x7f0000000100)=@l2tp6={0xa, 0x0, 0x0, @private2}, &(0x7f0000000000)=0x80) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) 10:35:37 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 26) [ 1716.682255] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1716.683843] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1716.685704] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1716.733218] FAULT_INJECTION: forcing a failure. [ 1716.733218] name failslab, interval 1, probability 0, space 0, times 0 [ 1716.735842] CPU: 0 PID: 10532 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1716.737314] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1716.739065] Call Trace: [ 1716.739632] dump_stack+0x107/0x167 [ 1716.740401] should_fail.cold+0x5/0xa [ 1716.741220] should_failslab+0x5/0x20 [ 1716.742026] __kmalloc_track_caller+0x79/0x370 [ 1716.742991] ? p9_client_create+0x598/0x1230 [ 1716.743919] ? kfree+0xd7/0x340 [ 1716.744623] kmemdup_nul+0x2d/0xa0 [ 1716.745382] p9_client_create+0x598/0x1230 [ 1716.746285] ? p9_client_flush+0x430/0x430 [ 1716.747209] ? trace_hardirqs_on+0x5b/0x180 [ 1716.748146] ? lockdep_init_map_type+0x2c7/0x780 [ 1716.749209] ? __raw_spin_lock_init+0x36/0x110 [ 1716.750180] v9fs_session_init+0x1dd/0x1680 [ 1716.751110] ? lock_release+0x680/0x680 [ 1716.751972] ? kmem_cache_alloc_trace+0x151/0x320 [ 1716.753016] ? v9fs_show_options+0x690/0x690 [ 1716.753965] ? trace_hardirqs_on+0x5b/0x180 [ 1716.754891] ? kasan_unpoison_shadow+0x33/0x50 [ 1716.755918] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1716.757043] v9fs_mount+0x79/0x8f0 [ 1716.757822] ? v9fs_write_inode+0x60/0x60 [ 1716.758733] legacy_get_tree+0x105/0x220 [ 1716.759631] vfs_get_tree+0x8e/0x300 [ 1716.760448] path_mount+0x1429/0x2120 [ 1716.761305] ? strncpy_from_user+0x9e/0x470 [ 1716.762252] ? finish_automount+0xa90/0xa90 [ 1716.763198] ? getname_flags.part.0+0x1dd/0x4f0 [ 1716.764220] ? _copy_from_user+0xfb/0x1b0 [ 1716.765145] __x64_sys_mount+0x282/0x300 [ 1716.766034] ? copy_mnt_ns+0xa00/0xa00 [ 1716.766897] do_syscall_64+0x33/0x40 [ 1716.767714] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1716.768837] RIP: 0033:0x7f20e27f5b19 [ 1716.769664] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1716.773715] RSP: 002b:00007f20dfd6b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1716.775392] RAX: ffffffffffffffda RBX: 00007f20e2908f60 RCX: 00007f20e27f5b19 [ 1716.776977] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1716.778546] RBP: 00007f20dfd6b1d0 R08: 0000000020000680 R09: 0000000000000000 [ 1716.780115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1716.781695] R13: 00007ffee093143f R14: 00007f20dfd6b300 R15: 0000000000022000 [ 1716.783477] hpet: Lost 2 RTC interrupts 10:35:54 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 27) 10:35:54 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x9, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:35:54 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, 0x0, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:35:54 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x2eb8, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:35:54 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 14) 10:35:54 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0xf}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:35:54 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 23) 10:35:54 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) mount$9p_fd(0x0, &(0x7f00000008c0)='./file1\x00', &(0x7f0000000900), 0x1000, &(0x7f0000000940)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@privport}, {@mmap}], [{@measure}, {@fowner_lt={'fowner<', 0xee01}}, {@fsuuid={'fsuuid', 0x3d, {[0x63, 0x30, 0x33, 0x32, 0x33, 0x61, 0x30, 0x38], 0x2d, [0x62, 0x31, 0x61, 0x64], 0x2d, [0x66, 0x31, 0x35, 0x62], 0x2d, [0x63, 0x36, 0x30, 0x36], 0x2d, [0x34, 0x33, 0x61, 0x63, 0x32, 0x34, 0x63, 0x31]}}}, {@obj_type={'obj_type', 0x3d, '&\\'}}, {@fsuuid={'fsuuid', 0x3d, {[0x38, 0x62, 0x61, 0x61, 0x35, 0x62, 0x66, 0x33], 0x2d, [0x30, 0x5, 0x62, 0x66], 0x2d, [0x64, 0x61, 0x31, 0x64], 0x2d, [0x38, 0x66, 0x63, 0x32], 0x2d, [0x0, 0x32, 0x36, 0x39, 0x65, 0x39, 0x64, 0x39]}}}, {@dont_appraise}]}}) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) statx(r0, &(0x7f0000000680)='./file1\x00', 0x0, 0x800, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r3, 0x0) syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000100)='./file1\x00', 0x1, 0x5, &(0x7f0000000600)=[{&(0x7f00000001c0)="bba899ddb281cb521bd7f5f7da9bc43f05011abc5f8f497590642682b8fe7b40a68b0f494c58ba94d8f2fa9cfc5d9935eb4a2b52a25d176d5f0a11a832ab03ef874c9fa3d0b2eab9562cc88298e951235bb91adc96ca7d9186026bf8050c0fb4d667519b771484e381ded9b164fb340ccd5b565a353a59d34a7970d9a533db6c4f1d11b7853847de4a2704172d162197c5bf9265fb49491e5e654b6e1f8c22cf2141d7340f8b67efd2fa38e9b10ec9ebe513b116e2ab3d9bc9d02413e3fe39da7b66a37b08a1e2c0a17a368602de5df0cec1d1a8b95cedd3a2", 0xd9, 0x2}, {&(0x7f0000000300)="1e10c03f248e41a424fb96869e600f7768ce9ad2f20acfd9046b3d80", 0x1c, 0x8}, {&(0x7f0000000440)="a7cee417e096c55a67f450f4a546b01fa5ed90a44b58a7f2c4045dbc8d1bd0d7e0f5340656a1bf7f2214755945a61343b390442b316ce6b9f735715691f8671caa018de86ac6ed4bb5fe41c790f5922e6e24667bfc8c5e59a20722aa82dcd3838c53adf136b743a037570dea59062b7b6e1327216bee", 0x76, 0x3ff}, {&(0x7f00000004c0)="7957045dea73b33d05010d06a80f0964d9052864266b3d7216e6a237bbdad35bab64512a77e3e9b254d38f3f36d5a1dcbf8a26b4175c615d913e5be69d749d0c18dc0d86505d5ae9dc945b61a6b64bbd0a9fa70f", 0x54, 0xfffffffffffffc01}, {&(0x7f0000000540)="21a1b5f459039706c6182220eff05d328dce714d45564a8f70a1683877c27a5e7d56aa2aa5ac9f326920f35a82cfcb462ab9e78727f066cbbda31d5870de5dfda57f3c3ebba14815da6faa731fb7e823b2ae1499cd7eb759a2fa53b8036d68ea9191d8a25a3f33ddfff7499fd829356ff54270d97286844082ab817fdbea1b82388f70e1f0f0b997d38256343dcb61b083f790e21c9d22819bdec55935d34e91e41575c8c6cdbbfa5ee908a6e26545258ddaa61bb41ccb497dc4e637ac", 0xbd, 0x2}], 0x840, &(0x7f00000007c0)={[{@nr_inodes={'nr_inodes', 0x3d, [0x2d]}}, {@gid={'gid', 0x3d, r2}}, {@uid={'uid', 0x3d, 0xee01}}, {@mpol={'mpol', 0x3d, {'local', '=static', @val={0x3a, [0x2c, 0x37, 0x35, 0x32]}}}}, {@huge_advise}], [{@fowner_lt={'fowner<', 0xee00}}, {@context={'context', 0x3d, 'unconfined_u'}}, {@fsmagic={'fsmagic', 0x3d, 0x3}}, {@fowner_lt={'fowner<', r3}}]}) [ 1734.133310] loop3: detected capacity change from 0 to 41948160 [ 1734.190977] FAULT_INJECTION: forcing a failure. [ 1734.190977] name failslab, interval 1, probability 0, space 0, times 0 [ 1734.193347] CPU: 0 PID: 10553 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1734.194816] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1734.196591] Call Trace: [ 1734.197174] dump_stack+0x107/0x167 [ 1734.197968] should_fail.cold+0x5/0xa [ 1734.198791] ? v9fs_mount+0x5a/0x8f0 [ 1734.199367] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1734.199604] should_failslab+0x5/0x20 [ 1734.202249] kmem_cache_alloc_trace+0x55/0x320 [ 1734.202736] FAULT_INJECTION: forcing a failure. [ 1734.202736] name failslab, interval 1, probability 0, space 0, times 0 [ 1734.203215] ? v9fs_write_inode+0x60/0x60 [ 1734.203231] v9fs_mount+0x5a/0x8f0 [ 1734.203253] ? v9fs_write_inode+0x60/0x60 [ 1734.208047] legacy_get_tree+0x105/0x220 [ 1734.208910] vfs_get_tree+0x8e/0x300 [ 1734.209713] path_mount+0x1429/0x2120 [ 1734.210526] ? strncpy_from_user+0x9e/0x470 [ 1734.211441] ? finish_automount+0xa90/0xa90 [ 1734.212357] ? getname_flags.part.0+0x1dd/0x4f0 [ 1734.213343] ? _copy_from_user+0xfb/0x1b0 [ 1734.214229] __x64_sys_mount+0x282/0x300 [ 1734.215089] ? copy_mnt_ns+0xa00/0xa00 [ 1734.215925] do_syscall_64+0x33/0x40 [ 1734.216715] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1734.217816] RIP: 0033:0x7fd3b79dfb19 [ 1734.218604] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1734.222522] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1734.224136] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1734.225664] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1734.227180] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1734.228697] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1734.230220] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1734.231770] CPU: 1 PID: 10555 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1734.231939] hpet: Lost 1 RTC interrupts [ 1734.233334] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1734.236008] Call Trace: [ 1734.236576] dump_stack+0x107/0x167 [ 1734.237359] should_fail.cold+0x5/0xa [ 1734.238182] ? create_object.isra.0+0x3a/0xa20 [ 1734.239144] should_failslab+0x5/0x20 [ 1734.239944] kmem_cache_alloc+0x5b/0x310 [ 1734.240798] ? lock_downgrade+0x6d0/0x6d0 [ 1734.241684] create_object.isra.0+0x3a/0xa20 [ 1734.242605] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1734.243681] __kmalloc_track_caller+0x177/0x370 [ 1734.244658] ? p9_client_create+0x41d/0x1230 [ 1734.245605] kstrdup+0x36/0x70 [ 1734.246284] p9_client_create+0x41d/0x1230 [ 1734.247176] ? lock_downgrade+0x6d0/0x6d0 [ 1734.248150] ? p9_client_flush+0x430/0x430 [ 1734.249041] ? trace_hardirqs_on+0x5b/0x180 [ 1734.250155] ? lockdep_init_map_type+0x2c7/0x780 [ 1734.251279] ? __raw_spin_lock_init+0x36/0x110 [ 1734.252257] v9fs_session_init+0x1dd/0x1680 [ 1734.253178] ? lock_release+0x680/0x680 [ 1734.254038] ? kmem_cache_alloc_trace+0x151/0x320 [ 1734.255054] ? v9fs_show_options+0x690/0x690 [ 1734.255993] ? trace_hardirqs_on+0x5b/0x180 [ 1734.256904] ? kasan_unpoison_shadow+0x33/0x50 [ 1734.257879] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1734.258951] v9fs_mount+0x79/0x8f0 [ 1734.259700] ? v9fs_write_inode+0x60/0x60 [ 1734.260574] legacy_get_tree+0x105/0x220 [ 1734.261443] vfs_get_tree+0x8e/0x300 [ 1734.262226] path_mount+0x1429/0x2120 [ 1734.263034] ? strncpy_from_user+0x9e/0x470 [ 1734.264032] ? finish_automount+0xa90/0xa90 [ 1734.264940] ? getname_flags.part.0+0x1dd/0x4f0 [ 1734.265940] ? _copy_from_user+0xfb/0x1b0 [ 1734.266821] __x64_sys_mount+0x282/0x300 [ 1734.267677] ? copy_mnt_ns+0xa00/0xa00 [ 1734.268507] do_syscall_64+0x33/0x40 [ 1734.269303] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1734.270384] RIP: 0033:0x7f9f6e930b19 [ 1734.271168] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1734.275056] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1734.276668] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1734.278187] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1734.279780] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1734.281303] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1734.282808] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1734.287229] FAULT_INJECTION: forcing a failure. [ 1734.287229] name failslab, interval 1, probability 0, space 0, times 0 [ 1734.289620] CPU: 1 PID: 10554 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1734.291085] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1734.292843] Call Trace: [ 1734.293412] dump_stack+0x107/0x167 [ 1734.294191] should_fail.cold+0x5/0xa [ 1734.295061] ? create_object.isra.0+0x3a/0xa20 [ 1734.296031] should_failslab+0x5/0x20 [ 1734.296839] kmem_cache_alloc+0x5b/0x310 [ 1734.297731] create_object.isra.0+0x3a/0xa20 [ 1734.298658] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1734.299744] __kmalloc_track_caller+0x177/0x370 [ 1734.300732] ? p9_client_create+0x598/0x1230 [ 1734.301684] kmemdup_nul+0x2d/0xa0 [ 1734.302444] p9_client_create+0x598/0x1230 [ 1734.303351] ? p9_client_flush+0x430/0x430 [ 1734.304245] ? trace_hardirqs_on+0x5b/0x180 [ 1734.305171] ? lockdep_init_map_type+0x2c7/0x780 [ 1734.306174] ? __raw_spin_lock_init+0x36/0x110 [ 1734.307144] v9fs_session_init+0x1dd/0x1680 [ 1734.308060] ? lock_release+0x680/0x680 [ 1734.308908] ? kmem_cache_alloc_trace+0x151/0x320 [ 1734.309937] ? v9fs_show_options+0x690/0x690 [ 1734.310938] ? trace_hardirqs_on+0x5b/0x180 [ 1734.311853] ? kasan_unpoison_shadow+0x33/0x50 [ 1734.312820] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1734.313903] v9fs_mount+0x79/0x8f0 [ 1734.314657] ? v9fs_write_inode+0x60/0x60 [ 1734.315538] legacy_get_tree+0x105/0x220 [ 1734.316400] vfs_get_tree+0x8e/0x300 [ 1734.317196] path_mount+0x1429/0x2120 [ 1734.318009] ? strncpy_from_user+0x9e/0x470 [ 1734.318923] ? finish_automount+0xa90/0xa90 [ 1734.319843] ? getname_flags.part.0+0x1dd/0x4f0 [ 1734.320828] ? _copy_from_user+0xfb/0x1b0 [ 1734.321723] __x64_sys_mount+0x282/0x300 [ 1734.322585] ? copy_mnt_ns+0xa00/0xa00 [ 1734.323421] do_syscall_64+0x33/0x40 [ 1734.324214] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1734.325311] RIP: 0033:0x7f20e27f5b19 [ 1734.326159] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1734.330074] RSP: 002b:00007f20dfd6b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1734.331683] RAX: ffffffffffffffda RBX: 00007f20e2908f60 RCX: 00007f20e27f5b19 [ 1734.333201] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1734.334716] RBP: 00007f20dfd6b1d0 R08: 0000000020000680 R09: 0000000000000000 [ 1734.336226] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1734.337744] R13: 00007ffee093143f R14: 00007f20dfd6b300 R15: 0000000000022000 10:35:54 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 15) 10:35:54 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xa, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1734.375216] FAULT_INJECTION: forcing a failure. [ 1734.375216] name failslab, interval 1, probability 0, space 0, times 0 [ 1734.377687] CPU: 0 PID: 10562 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1734.379164] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1734.380925] Call Trace: [ 1734.381493] dump_stack+0x107/0x167 [ 1734.382264] should_fail.cold+0x5/0xa [ 1734.383078] ? create_object.isra.0+0x3a/0xa20 [ 1734.384062] should_failslab+0x5/0x20 [ 1734.384889] kmem_cache_alloc+0x5b/0x310 [ 1734.385777] ? cred_has_capability.isra.0+0x152/0x2b0 [ 1734.386861] create_object.isra.0+0x3a/0xa20 [ 1734.387768] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1734.388868] kmem_cache_alloc_trace+0x151/0x320 [ 1734.389863] ? v9fs_write_inode+0x60/0x60 [ 1734.390718] v9fs_mount+0x5a/0x8f0 [ 1734.391487] ? v9fs_write_inode+0x60/0x60 [ 1734.392360] legacy_get_tree+0x105/0x220 [ 1734.393255] vfs_get_tree+0x8e/0x300 [ 1734.394042] path_mount+0x1429/0x2120 [ 1734.394849] ? strncpy_from_user+0x9e/0x470 [ 1734.395762] ? finish_automount+0xa90/0xa90 [ 1734.396669] ? getname_flags.part.0+0x1dd/0x4f0 [ 1734.397665] ? _copy_from_user+0xfb/0x1b0 [ 1734.398524] __x64_sys_mount+0x282/0x300 [ 1734.399383] ? copy_mnt_ns+0xa00/0xa00 [ 1734.400237] do_syscall_64+0x33/0x40 [ 1734.401026] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1734.402093] RIP: 0033:0x7fd3b79dfb19 [ 1734.402871] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1734.406675] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1734.408241] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1734.409716] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1734.411222] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1734.412693] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1734.414170] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1734.415832] hpet: Lost 1 RTC interrupts [ 1734.417177] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1734.420004] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1734.429631] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:35:54 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x5}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) 10:35:54 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x2fb8, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:35:54 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0x10}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) [ 1734.528336] FAT-fs (loop3): bogus number of reserved sectors [ 1734.529991] FAT-fs (loop3): Can't find a valid FAT filesystem 10:35:55 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0x11}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:35:55 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x30b8, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:35:55 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1734.634057] FAT-fs (loop3): bogus number of reserved sectors [ 1734.635878] FAT-fs (loop3): Can't find a valid FAT filesystem 10:36:07 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:36:07 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 28) 10:36:07 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xf, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:36:07 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x31b8, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:36:07 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0x14, 0x2}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:36:07 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 16) 10:36:07 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 24) [ 1747.448913] FAULT_INJECTION: forcing a failure. [ 1747.448913] name failslab, interval 1, probability 0, space 0, times 0 [ 1747.451511] CPU: 1 PID: 10594 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1747.452995] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1747.454751] Call Trace: [ 1747.455318] dump_stack+0x107/0x167 [ 1747.456096] should_fail.cold+0x5/0xa [ 1747.456917] should_failslab+0x5/0x20 [ 1747.457778] __kmalloc_track_caller+0x79/0x370 [ 1747.458747] ? p9_client_create+0x51e/0x1230 [ 1747.459689] kmemdup_nul+0x2d/0xa0 [ 1747.460455] p9_client_create+0x51e/0x1230 [ 1747.461370] ? p9_client_flush+0x430/0x430 [ 1747.462275] ? trace_hardirqs_on+0x5b/0x180 [ 1747.463184] ? lockdep_init_map_type+0x2c7/0x780 [ 1747.464193] ? __raw_spin_lock_init+0x36/0x110 [ 1747.465166] v9fs_session_init+0x1dd/0x1680 [ 1747.466100] ? lock_release+0x680/0x680 [ 1747.467041] ? kmem_cache_alloc_trace+0x151/0x320 [ 1747.468077] ? v9fs_show_options+0x690/0x690 [ 1747.469021] ? trace_hardirqs_on+0x5b/0x180 [ 1747.469964] ? kasan_unpoison_shadow+0x33/0x50 [ 1747.470926] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1747.472010] v9fs_mount+0x79/0x8f0 [ 1747.472758] ? v9fs_write_inode+0x60/0x60 [ 1747.473654] legacy_get_tree+0x105/0x220 [ 1747.474513] vfs_get_tree+0x8e/0x300 [ 1747.475306] path_mount+0x1429/0x2120 [ 1747.476119] ? strncpy_from_user+0x9e/0x470 [ 1747.477040] ? finish_automount+0xa90/0xa90 [ 1747.477972] ? getname_flags.part.0+0x1dd/0x4f0 [ 1747.478969] ? _copy_from_user+0xfb/0x1b0 [ 1747.479859] __x64_sys_mount+0x282/0x300 [ 1747.480727] ? copy_mnt_ns+0xa00/0xa00 [ 1747.481587] do_syscall_64+0x33/0x40 [ 1747.482395] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1747.483576] RIP: 0033:0x7f9f6e930b19 [ 1747.484367] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 10:36:08 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file1\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f00000001c0)="eb3c906d6b66732e666174063c373e60fc8ea8c73d758354000208010004707f00000000f600004da0f0005ba016bd8d4eb0f3c050bdd656f4f70ff2605d491b7e5f1cb77cf56a2ec9f9daf2627df29213f2c5795bb904670e068019abf917", 0x5f}, {0x0, 0x0, 0x1001000a00}], 0xed52aa858cda9ba3, &(0x7f0000000240)=ANY=[]) ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file1/file0\x00'}) recvfrom$unix(r1, &(0x7f0000000100)=""/106, 0x6a, 0x121, &(0x7f0000000240)=@abs={0x1, 0x0, 0x4e1e}, 0x6e) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x391c42, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) setxattr$incfs_size(&(0x7f0000000300)='./file0\x00', &(0x7f0000000440), &(0x7f0000000480)=0x401, 0x8, 0x3) [ 1747.485434] FAULT_INJECTION: forcing a failure. [ 1747.485434] name failslab, interval 1, probability 0, space 0, times 0 [ 1747.488228] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1747.488249] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1747.488260] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1747.488271] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1747.488282] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1747.488294] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1747.500676] CPU: 0 PID: 10604 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1747.502167] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1747.503945] Call Trace: [ 1747.504518] dump_stack+0x107/0x167 [ 1747.505313] should_fail.cold+0x5/0xa [ 1747.506142] ? create_object.isra.0+0x3a/0xa20 [ 1747.507126] should_failslab+0x5/0x20 [ 1747.507951] kmem_cache_alloc+0x5b/0x310 [ 1747.508830] create_object.isra.0+0x3a/0xa20 [ 1747.509778] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1747.510871] __kmalloc_track_caller+0x177/0x370 [ 1747.511871] ? p9_client_create+0x51e/0x1230 [ 1747.512823] kmemdup_nul+0x2d/0xa0 [ 1747.513587] p9_client_create+0x51e/0x1230 [ 1747.514544] ? p9_client_flush+0x430/0x430 [ 1747.515456] ? trace_hardirqs_on+0x5b/0x180 [ 1747.516391] ? lockdep_init_map_type+0x2c7/0x780 [ 1747.517424] ? __raw_spin_lock_init+0x36/0x110 [ 1747.518414] v9fs_session_init+0x1dd/0x1680 [ 1747.519348] ? lock_release+0x680/0x680 [ 1747.520214] ? kmem_cache_alloc_trace+0x151/0x320 [ 1747.521250] ? v9fs_show_options+0x690/0x690 [ 1747.522205] ? trace_hardirqs_on+0x5b/0x180 [ 1747.523129] ? kasan_unpoison_shadow+0x33/0x50 [ 1747.524098] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1747.525185] v9fs_mount+0x79/0x8f0 [ 1747.525947] ? v9fs_write_inode+0x60/0x60 [ 1747.526839] legacy_get_tree+0x105/0x220 [ 1747.527703] vfs_get_tree+0x8e/0x300 [ 1747.528499] path_mount+0x1429/0x2120 [ 1747.529328] ? strncpy_from_user+0x9e/0x470 [ 1747.530252] ? finish_automount+0xa90/0xa90 [ 1747.531176] ? getname_flags.part.0+0x1dd/0x4f0 [ 1747.532172] ? _copy_from_user+0xfb/0x1b0 [ 1747.533063] __x64_sys_mount+0x282/0x300 [ 1747.533937] ? copy_mnt_ns+0xa00/0xa00 [ 1747.534782] do_syscall_64+0x33/0x40 [ 1747.535581] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1747.536693] RIP: 0033:0x7f20e27f5b19 [ 1747.537505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1747.541447] RSP: 002b:00007f20dfd6b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1747.543079] RAX: ffffffffffffffda RBX: 00007f20e2908f60 RCX: 00007f20e27f5b19 [ 1747.544595] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1747.546125] RBP: 00007f20dfd6b1d0 R08: 0000000020000680 R09: 0000000000000000 [ 1747.547636] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1747.549149] R13: 00007ffee093143f R14: 00007f20dfd6b300 R15: 0000000000022000 [ 1747.550855] hpet: Lost 2 RTC interrupts [ 1747.558885] FAULT_INJECTION: forcing a failure. [ 1747.558885] name failslab, interval 1, probability 0, space 0, times 0 [ 1747.561482] CPU: 0 PID: 10607 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1747.562952] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1747.564734] Call Trace: [ 1747.565317] dump_stack+0x107/0x167 [ 1747.566116] should_fail.cold+0x5/0xa 10:36:08 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 25) 10:36:08 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x32b8, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1747.566954] should_failslab+0x5/0x20 [ 1747.567899] __kmalloc_track_caller+0x79/0x370 [ 1747.568869] ? v9fs_session_init+0xa7/0x1680 [ 1747.569825] kstrdup+0x36/0x70 [ 1747.570512] v9fs_session_init+0xa7/0x1680 [ 1747.571418] ? find_held_lock+0x2c/0x110 [ 1747.572291] ? kmem_cache_alloc_trace+0x151/0x320 [ 1747.573327] ? v9fs_show_options+0x690/0x690 [ 1747.574273] ? trace_hardirqs_on+0x5b/0x180 [ 1747.575196] ? kasan_unpoison_shadow+0x33/0x50 [ 1747.576169] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1747.577282] v9fs_mount+0x79/0x8f0 [ 1747.578052] ? v9fs_write_inode+0x60/0x60 [ 1747.578936] legacy_get_tree+0x105/0x220 [ 1747.579804] vfs_get_tree+0x8e/0x300 [ 1747.580596] path_mount+0x1429/0x2120 [ 1747.581423] ? strncpy_from_user+0x9e/0x470 [ 1747.582342] ? finish_automount+0xa90/0xa90 [ 1747.583262] ? getname_flags.part.0+0x1dd/0x4f0 [ 1747.584251] ? _copy_from_user+0xfb/0x1b0 [ 1747.585142] __x64_sys_mount+0x282/0x300 [ 1747.586016] ? copy_mnt_ns+0xa00/0xa00 [ 1747.586855] do_syscall_64+0x33/0x40 [ 1747.587651] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1747.588740] RIP: 0033:0x7fd3b79dfb19 [ 1747.589544] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1747.593480] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1747.595101] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1747.596621] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1747.598156] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1747.599679] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1747.601202] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1747.602929] hpet: Lost 1 RTC interrupts [ 1747.606635] loop3: detected capacity change from 0 to 41948160 [ 1747.616204] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1747.626336] FAULT_INJECTION: forcing a failure. [ 1747.626336] name failslab, interval 1, probability 0, space 0, times 0 [ 1747.629365] CPU: 1 PID: 10617 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1747.630842] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1747.632606] Call Trace: [ 1747.633175] dump_stack+0x107/0x167 [ 1747.633966] should_fail.cold+0x5/0xa [ 1747.634780] ? create_object.isra.0+0x3a/0xa20 [ 1747.635759] should_failslab+0x5/0x20 [ 1747.636578] kmem_cache_alloc+0x5b/0x310 [ 1747.637459] create_object.isra.0+0x3a/0xa20 [ 1747.638398] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1747.639624] __kmalloc_track_caller+0x177/0x370 [ 1747.640621] ? p9_client_create+0x51e/0x1230 [ 1747.641577] kmemdup_nul+0x2d/0xa0 [ 1747.642339] p9_client_create+0x51e/0x1230 [ 1747.643247] ? p9_client_flush+0x430/0x430 [ 1747.644145] ? trace_hardirqs_on+0x5b/0x180 [ 1747.645064] ? lockdep_init_map_type+0x2c7/0x780 [ 1747.646086] ? __raw_spin_lock_init+0x36/0x110 [ 1747.647060] v9fs_session_init+0x1dd/0x1680 [ 1747.647975] ? lock_release+0x680/0x680 [ 1747.648826] ? kmem_cache_alloc_trace+0x151/0x320 [ 1747.649862] ? v9fs_show_options+0x690/0x690 [ 1747.650813] ? trace_hardirqs_on+0x5b/0x180 [ 1747.651730] ? kasan_unpoison_shadow+0x33/0x50 [ 1747.652705] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1747.653852] v9fs_mount+0x79/0x8f0 [ 1747.654773] ? v9fs_write_inode+0x60/0x60 [ 1747.655654] legacy_get_tree+0x105/0x220 [ 1747.656515] vfs_get_tree+0x8e/0x300 [ 1747.657319] path_mount+0x1429/0x2120 [ 1747.658137] ? strncpy_from_user+0x9e/0x470 [ 1747.659048] ? finish_automount+0xa90/0xa90 [ 1747.659960] ? getname_flags.part.0+0x1dd/0x4f0 [ 1747.660946] ? _copy_from_user+0xfb/0x1b0 [ 1747.661841] __x64_sys_mount+0x282/0x300 [ 1747.662699] ? copy_mnt_ns+0xa00/0xa00 [ 1747.663533] do_syscall_64+0x33/0x40 [ 1747.664328] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1747.665448] RIP: 0033:0x7f9f6e930b19 [ 1747.666246] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1747.670328] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1747.671967] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1747.673498] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1747.675028] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1747.676550] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1747.678094] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 10:36:08 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x33b8, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:36:08 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x10, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:36:08 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0x14, 0x3}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) [ 1747.710214] loop3: detected capacity change from 0 to 41948160 10:36:08 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 26) [ 1747.753344] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1747.755072] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1747.756864] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:36:08 executing program 3: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000300)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = syz_mount_image$nfs4(&(0x7f0000000000), &(0x7f0000000100)='./file1\x00', 0x57, 0x1, &(0x7f0000000200)=[{&(0x7f00000001c0)="b50271cdb5ab72feca71ff9eca35214e0a25dd41645a367b0e7c2d659afb", 0x1e, 0x6}], 0x1024004, &(0x7f0000000240)={[{']'}]}) chdir(&(0x7f0000000440)='./file1\x00') getdents(r1, &(0x7f0000000340)=""/214, 0xd6) r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x406e2, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f0000000800)={0x80000000, {{0x2, 0x4e22, @local}}}, 0x88) ioctl$AUTOFS_DEV_IOCTL_FAIL(r2, 0xc0189377, &(0x7f0000000040)={{0x1, 0x1, 0x18, r1, {0x15ac, 0x1}}, './file0\x00'}) r3 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2000002, 0x80010, r0, 0x8000000) syz_io_uring_submit(r3, 0x0, &(0x7f0000000280)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x4, 0x0, @fd_index=0x4, 0x9, 0x0, 0x4, 0x5}, 0x765) [ 1747.808181] FAULT_INJECTION: forcing a failure. [ 1747.808181] name failslab, interval 1, probability 0, space 0, times 0 [ 1747.810696] CPU: 1 PID: 10631 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1747.812185] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1747.813971] Call Trace: [ 1747.814540] dump_stack+0x107/0x167 [ 1747.815320] should_fail.cold+0x5/0xa [ 1747.816148] should_failslab+0x5/0x20 [ 1747.816966] __kmalloc_track_caller+0x79/0x370 [ 1747.817950] ? p9_client_create+0x598/0x1230 [ 1747.818888] ? kfree+0xd7/0x340 [ 1747.819598] kmemdup_nul+0x2d/0xa0 [ 1747.820358] p9_client_create+0x598/0x1230 [ 1747.821271] ? p9_client_flush+0x430/0x430 [ 1747.822177] ? trace_hardirqs_on+0x5b/0x180 [ 1747.823099] ? lockdep_init_map_type+0x2c7/0x780 [ 1747.824111] ? __raw_spin_lock_init+0x36/0x110 [ 1747.825093] v9fs_session_init+0x1dd/0x1680 [ 1747.826025] ? lock_release+0x680/0x680 [ 1747.827056] ? kmem_cache_alloc_trace+0x151/0x320 [ 1747.828102] ? v9fs_show_options+0x690/0x690 [ 1747.829067] ? trace_hardirqs_on+0x5b/0x180 [ 1747.829993] ? kasan_unpoison_shadow+0x33/0x50 [ 1747.830960] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1747.832039] v9fs_mount+0x79/0x8f0 [ 1747.832793] ? v9fs_write_inode+0x60/0x60 [ 1747.833714] legacy_get_tree+0x105/0x220 [ 1747.834578] vfs_get_tree+0x8e/0x300 [ 1747.835372] path_mount+0x1429/0x2120 [ 1747.836192] ? strncpy_from_user+0x9e/0x470 [ 1747.837105] ? finish_automount+0xa90/0xa90 [ 1747.838027] ? getname_flags.part.0+0x1dd/0x4f0 [ 1747.839016] ? _copy_from_user+0xfb/0x1b0 [ 1747.839911] __x64_sys_mount+0x282/0x300 [ 1747.840768] ? copy_mnt_ns+0xa00/0xa00 [ 1747.841614] do_syscall_64+0x33/0x40 [ 1747.842550] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1747.843638] RIP: 0033:0x7f9f6e930b19 [ 1747.844428] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1747.848347] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1747.849971] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1747.851488] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1747.853005] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1747.854526] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1747.856041] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1747.889439] loop3: detected capacity change from 0 to 41948160 10:36:23 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 1762.949069] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. 10:36:23 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x34b8, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:36:23 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x2e, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:36:23 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 17) 10:36:23 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0x14, 0x4}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:36:23 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 27) 10:36:23 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 29) 10:36:23 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r1 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000000, 0x10010, 0xffffffffffffffff, 0x8000000) r2 = syz_open_dev$mouse(&(0x7f0000000000), 0x1, 0x1) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, {0x3, r3}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x6000, @fd, 0xfffffffffffffffa, &(0x7f0000000100), 0x0, 0x0, 0x0, {0x0, r3}}, 0x1) syz_io_uring_submit(r1, 0x0, &(0x7f0000000100)=@IORING_OP_CONNECT={0x10, 0x1, 0x0, r2, 0x80, &(0x7f00000001c0)=@in={0x2, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x0, 0x0, 0x1, {0x0, r3}}, 0x7fff) r4 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) ioctl$sock_SIOCGIFVLAN_SET_VLAN_NAME_TYPE_CMD(r4, 0x8982, &(0x7f0000000240)={0x6, 'bond_slave_0\x00', {0x5}, 0x20}) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) [ 1762.987167] FAULT_INJECTION: forcing a failure. [ 1762.987167] name failslab, interval 1, probability 0, space 0, times 0 [ 1762.989125] FAULT_INJECTION: forcing a failure. [ 1762.989125] name failslab, interval 1, probability 0, space 0, times 0 [ 1762.991039] CPU: 0 PID: 10652 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1762.993391] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1762.995151] Call Trace: [ 1762.995721] dump_stack+0x107/0x167 [ 1762.996493] should_fail.cold+0x5/0xa [ 1762.997300] ? create_object.isra.0+0x3a/0xa20 [ 1762.998325] should_failslab+0x5/0x20 [ 1762.999150] kmem_cache_alloc+0x5b/0x310 [ 1763.000027] create_object.isra.0+0x3a/0xa20 [ 1763.000967] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1763.002075] __kmalloc_track_caller+0x177/0x370 [ 1763.003073] ? p9_client_create+0x598/0x1230 [ 1763.004025] kmemdup_nul+0x2d/0xa0 [ 1763.004797] p9_client_create+0x598/0x1230 [ 1763.005726] ? p9_client_flush+0x430/0x430 [ 1763.006633] ? trace_hardirqs_on+0x5b/0x180 [ 1763.007566] ? lockdep_init_map_type+0x2c7/0x780 [ 1763.008584] ? __raw_spin_lock_init+0x36/0x110 [ 1763.009585] v9fs_session_init+0x1dd/0x1680 [ 1763.010508] ? lock_release+0x680/0x680 [ 1763.011369] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1763.012523] ? trace_hardirqs_on+0x5b/0x180 [ 1763.013449] ? v9fs_show_options+0x690/0x690 [ 1763.014418] ? _raw_spin_unlock_irqrestore+0x25/0x40 [ 1763.015512] ? kasan_unpoison_shadow+0x33/0x50 [ 1763.016503] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1763.017601] v9fs_mount+0x79/0x8f0 [ 1763.018372] ? v9fs_write_inode+0x60/0x60 [ 1763.019262] legacy_get_tree+0x105/0x220 [ 1763.020132] vfs_get_tree+0x8e/0x300 [ 1763.020933] path_mount+0x1429/0x2120 [ 1763.021767] ? strncpy_from_user+0x9e/0x470 [ 1763.022688] ? finish_automount+0xa90/0xa90 [ 1763.023612] ? getname_flags.part.0+0x1dd/0x4f0 [ 1763.024612] ? _copy_from_user+0xfb/0x1b0 [ 1763.025523] __x64_sys_mount+0x282/0x300 [ 1763.026576] ? copy_mnt_ns+0xa00/0xa00 [ 1763.027427] do_syscall_64+0x33/0x40 [ 1763.028399] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1763.029509] RIP: 0033:0x7f9f6e930b19 [ 1763.030481] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1763.034412] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1763.036038] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1763.037565] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1763.039095] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1763.040631] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1763.042162] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1763.043719] CPU: 1 PID: 10649 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1763.043952] hpet: Lost 2 RTC interrupts [ 1763.045318] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1763.045335] Call Trace: [ 1763.048675] dump_stack+0x107/0x167 [ 1763.049271] FAULT_INJECTION: forcing a failure. [ 1763.049271] name failslab, interval 1, probability 0, space 0, times 0 [ 1763.049466] should_fail.cold+0x5/0xa [ 1763.052628] ? create_object.isra.0+0x3a/0xa20 [ 1763.053623] should_failslab+0x5/0x20 [ 1763.054442] kmem_cache_alloc+0x5b/0x310 [ 1763.055313] ? cred_has_capability.isra.0+0x152/0x2b0 [ 1763.056415] create_object.isra.0+0x3a/0xa20 [ 1763.057352] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1763.058446] kmem_cache_alloc_trace+0x151/0x320 [ 1763.059441] ? v9fs_write_inode+0x60/0x60 [ 1763.060321] v9fs_mount+0x5a/0x8f0 [ 1763.061203] ? v9fs_write_inode+0x60/0x60 [ 1763.062107] legacy_get_tree+0x105/0x220 [ 1763.062979] vfs_get_tree+0x8e/0x300 [ 1763.063774] path_mount+0x1429/0x2120 [ 1763.064598] ? strncpy_from_user+0x9e/0x470 [ 1763.065525] ? finish_automount+0xa90/0xa90 [ 1763.066449] ? getname_flags.part.0+0x1dd/0x4f0 [ 1763.067448] ? _copy_from_user+0xfb/0x1b0 [ 1763.068341] __x64_sys_mount+0x282/0x300 [ 1763.069206] ? copy_mnt_ns+0xa00/0xa00 [ 1763.070058] do_syscall_64+0x33/0x40 [ 1763.070854] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1763.071949] RIP: 0033:0x7fd3b79dfb19 [ 1763.072742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1763.076813] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1763.078448] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1763.079966] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1763.081498] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1763.083025] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1763.084552] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1763.086117] CPU: 0 PID: 10659 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1763.087611] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1763.089379] Call Trace: [ 1763.089971] dump_stack+0x107/0x167 [ 1763.090759] should_fail.cold+0x5/0xa [ 1763.091579] ? create_object.isra.0+0x3a/0xa20 [ 1763.092603] should_failslab+0x5/0x20 [ 1763.093425] kmem_cache_alloc+0x5b/0x310 [ 1763.094317] create_object.isra.0+0x3a/0xa20 [ 1763.095258] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1763.096355] __kmalloc_track_caller+0x177/0x370 [ 1763.097355] ? p9_client_create+0x598/0x1230 [ 1763.098320] kmemdup_nul+0x2d/0xa0 [ 1763.099089] p9_client_create+0x598/0x1230 [ 1763.100004] ? p9_client_flush+0x430/0x430 [ 1763.100910] ? trace_hardirqs_on+0x5b/0x180 [ 1763.101852] ? lockdep_init_map_type+0x2c7/0x780 [ 1763.102864] ? __raw_spin_lock_init+0x36/0x110 [ 1763.103847] v9fs_session_init+0x1dd/0x1680 [ 1763.104766] ? lock_release+0x680/0x680 [ 1763.105643] ? kmem_cache_alloc_trace+0x151/0x320 [ 1763.106674] ? v9fs_show_options+0x690/0x690 [ 1763.107627] ? trace_hardirqs_on+0x5b/0x180 [ 1763.108553] ? kasan_unpoison_shadow+0x33/0x50 [ 1763.109541] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1763.110622] v9fs_mount+0x79/0x8f0 [ 1763.111389] ? v9fs_write_inode+0x60/0x60 [ 1763.112282] legacy_get_tree+0x105/0x220 [ 1763.113154] vfs_get_tree+0x8e/0x300 [ 1763.113975] path_mount+0x1429/0x2120 [ 1763.114805] ? strncpy_from_user+0x9e/0x470 [ 1763.115732] ? finish_automount+0xa90/0xa90 [ 1763.116659] ? getname_flags.part.0+0x1dd/0x4f0 [ 1763.117665] ? _copy_from_user+0xfb/0x1b0 [ 1763.118552] __x64_sys_mount+0x282/0x300 [ 1763.119419] ? copy_mnt_ns+0xa00/0xa00 [ 1763.120256] do_syscall_64+0x33/0x40 [ 1763.121058] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1763.122165] RIP: 0033:0x7f20e27f5b19 [ 1763.122972] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1763.126876] RSP: 002b:00007f20dfd6b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1763.128835] RAX: ffffffffffffffda RBX: 00007f20e2908f60 RCX: 00007f20e27f5b19 [ 1763.130705] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1763.132557] RBP: 00007f20dfd6b1d0 R08: 0000000020000680 R09: 0000000000000000 [ 1763.134427] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 10:36:23 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x48, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1763.136262] R13: 00007ffee093143f R14: 00007f20dfd6b300 R15: 0000000000022000 [ 1763.138213] hpet: Lost 2 RTC interrupts 10:36:23 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x3f00, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1763.145555] loop3: detected capacity change from 0 to 41948160 10:36:23 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0x14, 0x5}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) [ 1763.208475] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1763.210095] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1763.214079] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:36:23 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x4000, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:36:23 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:36:23 executing program 3: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x30, 0x19, 0xc25, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @pid}, @typed={0x14, 0xf, 0x0, 0x0, @ipv6=@mcast2}]}, 0x30}}, 0x0) fork() fork() fcntl$getflags(r0, 0x3) r1 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r1, &(0x7f0000000340)=""/214, 0xd6) [ 1763.336535] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. 10:36:23 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x4c, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:36:23 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0x14, 0x6}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) [ 1763.384040] netlink: 'syz-executor.3': attribute type 15 has an invalid length. 10:36:23 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 18) [ 1763.412290] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1763.414237] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1763.416148] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1763.481006] FAULT_INJECTION: forcing a failure. [ 1763.481006] name failslab, interval 1, probability 0, space 0, times 0 [ 1763.483570] CPU: 0 PID: 10693 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1763.485009] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1763.486737] Call Trace: [ 1763.487297] dump_stack+0x107/0x167 [ 1763.488064] should_fail.cold+0x5/0xa [ 1763.488878] should_failslab+0x5/0x20 [ 1763.489700] __kmalloc_track_caller+0x79/0x370 [ 1763.490668] ? v9fs_session_init+0xe9/0x1680 [ 1763.491591] ? kernel_text_address+0xf2/0x120 [ 1763.492541] kstrdup+0x36/0x70 [ 1763.493231] v9fs_session_init+0xe9/0x1680 [ 1763.494082] netlink: 'syz-executor.3': attribute type 15 has an invalid length. [ 1763.494135] ? lock_release+0x680/0x680 [ 1763.496736] ? find_held_lock+0x2c/0x110 [ 1763.497608] ? kmem_cache_alloc_trace+0x151/0x320 [ 1763.498880] ? v9fs_show_options+0x690/0x690 [ 1763.499813] ? trace_hardirqs_on+0x5b/0x180 [ 1763.500711] ? kasan_unpoison_shadow+0x33/0x50 [ 1763.501685] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1763.502744] v9fs_mount+0x79/0x8f0 [ 1763.503486] ? v9fs_write_inode+0x60/0x60 [ 1763.504554] legacy_get_tree+0x105/0x220 [ 1763.505426] vfs_get_tree+0x8e/0x300 [ 1763.506252] path_mount+0x1429/0x2120 [ 1763.507058] ? strncpy_from_user+0x9e/0x470 [ 1763.507980] ? finish_automount+0xa90/0xa90 [ 1763.508882] ? getname_flags.part.0+0x1dd/0x4f0 [ 1763.510114] ? _copy_from_user+0xfb/0x1b0 [ 1763.510988] __x64_sys_mount+0x282/0x300 [ 1763.512044] ? copy_mnt_ns+0xa00/0xa00 [ 1763.512894] do_syscall_64+0x33/0x40 [ 1763.513875] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1763.514936] RIP: 0033:0x7fd3b79dfb19 [ 1763.515731] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1763.519572] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1763.521173] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1763.522681] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1763.524167] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1763.525663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1763.527136] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1763.528766] hpet: Lost 1 RTC interrupts [ 1778.850165] FAULT_INJECTION: forcing a failure. [ 1778.850165] name failslab, interval 1, probability 0, space 0, times 0 [ 1778.851496] CPU: 0 PID: 10707 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1778.852290] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1778.853247] Call Trace: [ 1778.853562] dump_stack+0x107/0x167 [ 1778.853986] should_fail.cold+0x5/0xa [ 1778.854432] should_failslab+0x5/0x20 [ 1778.854872] __kmalloc_track_caller+0x79/0x370 [ 1778.855396] ? parse_opts.part.0+0x8e/0x340 [ 1778.855897] kstrdup+0x36/0x70 [ 1778.856267] parse_opts.part.0+0x8e/0x340 [ 1778.856753] ? p9_fd_show_options+0x1c0/0x1c0 [ 1778.857280] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1778.857917] ? quarantine_put+0x8b/0x1a0 [ 1778.858382] ? trace_hardirqs_on+0x5b/0x180 [ 1778.858880] ? kfree+0xd7/0x340 [ 1778.859262] p9_fd_create+0x98/0x4a0 [ 1778.859693] ? p9_conn_create+0x510/0x510 [ 1778.860171] ? p9_client_create+0x798/0x1230 [ 1778.860676] ? kfree+0xd7/0x340 [ 1778.861057] p9_client_create+0x7ff/0x1230 [ 1778.861555] ? p9_client_flush+0x430/0x430 [ 1778.862125] ? trace_hardirqs_on+0x5b/0x180 [ 1778.862711] ? lockdep_init_map_type+0x2c7/0x780 [ 1778.863345] ? __raw_spin_lock_init+0x36/0x110 [ 1778.863964] v9fs_session_init+0x1dd/0x1680 [ 1778.864554] ? lock_release+0x680/0x680 [ 1778.865071] ? kmem_cache_alloc_trace+0x151/0x320 [ 1778.865711] ? v9fs_show_options+0x690/0x690 [ 1778.866276] ? trace_hardirqs_on+0x5b/0x180 [ 1778.866835] ? kasan_unpoison_shadow+0x33/0x50 [ 1778.867418] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1778.868062] v9fs_mount+0x79/0x8f0 [ 1778.868520] ? v9fs_write_inode+0x60/0x60 [ 1778.869053] legacy_get_tree+0x105/0x220 [ 1778.869613] vfs_get_tree+0x8e/0x300 [ 1778.870129] path_mount+0x1429/0x2120 [ 1778.870636] ? strncpy_from_user+0x9e/0x470 [ 1778.871189] ? finish_automount+0xa90/0xa90 [ 1778.871735] ? getname_flags.part.0+0x1dd/0x4f0 [ 1778.872347] ? _copy_from_user+0xfb/0x1b0 [ 1778.872893] __x64_sys_mount+0x282/0x300 [ 1778.873416] ? copy_mnt_ns+0xa00/0xa00 [ 1778.874268] do_syscall_64+0x33/0x40 [ 1778.874755] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1778.875412] RIP: 0033:0x7f9f6e930b19 [ 1778.875900] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1778.878260] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1778.879235] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1778.880144] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1778.881033] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1778.881866] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1778.882205] FAULT_INJECTION: forcing a failure. [ 1778.882205] name failslab, interval 1, probability 0, space 0, times 0 [ 1778.882682] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1778.882913] hpet: Lost 1 RTC interrupts [ 1778.885723] CPU: 1 PID: 10708 Comm: syz-executor.1 Not tainted 5.10.234 #1 10:36:39 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 19) 10:36:39 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x4084, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:36:39 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 30) 10:36:39 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300), 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:36:39 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x68, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:36:39 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0x14, 0x7}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:36:39 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 28) [ 1778.887533] 9pnet: Insufficient options for proto=fd [ 1778.889258] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1778.889266] Call Trace: [ 1778.889296] dump_stack+0x107/0x167 [ 1778.889320] should_fail.cold+0x5/0xa 10:36:39 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e6661741fad2d34cc679e024f9dc500", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) setsockopt$inet6_IPV6_PKTINFO(r2, 0x29, 0x32, &(0x7f0000000040)={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, r1}, 0xfffffffffffffec8) fchmod(r2, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000100), 0x400084, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@access_user}, {@msize={'msize', 0x3d, 0x6}}], [{@obj_user={'obj_user', 0x3d, 'vfat\x00'}}]}}) pipe2(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80000) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r2, 0xc018937b, &(0x7f0000000400)={{0x1, 0x1, 0x18, r0, {0xffffffffffffffff, 0xee00}}, './file0\x00'}) fchownat(r3, &(0x7f0000000280)='./file0\x00', r4, 0x0, 0x100) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000300)=""/217, 0xd9) [ 1778.889346] ? create_object.isra.0+0x3a/0xa20 [ 1778.889372] should_failslab+0x5/0x20 [ 1778.889395] kmem_cache_alloc+0x5b/0x310 [ 1778.889423] create_object.isra.0+0x3a/0xa20 [ 1778.889442] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1778.889471] __kmalloc_track_caller+0x177/0x370 [ 1778.889492] ? v9fs_session_init+0xe9/0x1680 [ 1778.889514] ? kernel_text_address+0xf2/0x120 [ 1778.889543] kstrdup+0x36/0x70 [ 1778.889564] v9fs_session_init+0xe9/0x1680 [ 1778.889590] ? lock_release+0x680/0x680 [ 1778.889610] ? find_held_lock+0x2c/0x110 [ 1778.889639] ? kmem_cache_alloc_trace+0x151/0x320 [ 1778.889661] ? v9fs_show_options+0x690/0x690 [ 1778.889709] ? trace_hardirqs_on+0x5b/0x180 [ 1778.889731] ? kasan_unpoison_shadow+0x33/0x50 [ 1778.889752] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1778.889776] v9fs_mount+0x79/0x8f0 [ 1778.889798] ? v9fs_write_inode+0x60/0x60 [ 1778.889823] legacy_get_tree+0x105/0x220 [ 1778.889847] vfs_get_tree+0x8e/0x300 [ 1778.889867] path_mount+0x1429/0x2120 [ 1778.889897] ? strncpy_from_user+0x9e/0x470 [ 1778.889918] ? finish_automount+0xa90/0xa90 [ 1778.889941] ? getname_flags.part.0+0x1dd/0x4f0 [ 1778.889963] ? _copy_from_user+0xfb/0x1b0 [ 1778.889993] __x64_sys_mount+0x282/0x300 [ 1778.890013] ? copy_mnt_ns+0xa00/0xa00 [ 1778.890048] do_syscall_64+0x33/0x40 [ 1778.890071] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1778.890086] RIP: 0033:0x7fd3b79dfb19 [ 1778.890108] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1778.890121] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1778.890145] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1778.890164] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1778.890177] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1778.890190] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1778.890204] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1778.908176] loop3: detected capacity change from 0 to 41948160 [ 1778.915536] FAULT_INJECTION: forcing a failure. [ 1778.915536] name failslab, interval 1, probability 0, space 0, times 0 [ 1778.920328] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1778.921548] CPU: 0 PID: 10719 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1778.921556] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1778.921560] Call Trace: [ 1778.921577] dump_stack+0x107/0x167 [ 1778.921589] should_fail.cold+0x5/0xa [ 1778.921606] should_failslab+0x5/0x20 [ 1778.921619] __kmalloc_track_caller+0x79/0x370 [ 1778.921631] ? match_number+0xaf/0x1d0 [ 1778.921654] kmemdup_nul+0x2d/0xa0 [ 1778.928350] match_number+0xaf/0x1d0 [ 1778.928793] ? match_u64+0x190/0x190 [ 1778.929235] ? __kmalloc_track_caller+0x2c6/0x370 [ 1778.929821] ? memcpy+0x39/0x60 [ 1778.930219] parse_opts.part.0+0x1f3/0x340 [ 1778.930723] ? p9_fd_show_options+0x1c0/0x1c0 [ 1778.931262] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1778.931887] ? trace_hardirqs_on+0x5b/0x180 [ 1778.932398] ? kfree+0xd7/0x340 [ 1778.932798] p9_fd_create+0x98/0x4a0 [ 1778.933240] ? p9_conn_create+0x510/0x510 [ 1778.933752] ? p9_client_create+0x798/0x1230 [ 1778.934271] ? kfree+0xd7/0x340 [ 1778.934666] p9_client_create+0x7ff/0x1230 [ 1778.935172] ? p9_client_flush+0x430/0x430 [ 1778.935673] ? trace_hardirqs_on+0x5b/0x180 [ 1778.936212] ? lockdep_init_map_type+0x2c7/0x780 [ 1778.936775] ? __raw_spin_lock_init+0x36/0x110 [ 1778.937318] v9fs_session_init+0x1dd/0x1680 [ 1778.937844] ? lock_release+0x680/0x680 [ 1778.938317] ? kmem_cache_alloc_trace+0x151/0x320 [ 1778.938888] ? v9fs_show_options+0x690/0x690 [ 1778.939413] ? trace_hardirqs_on+0x5b/0x180 [ 1778.939925] ? kasan_unpoison_shadow+0x33/0x50 [ 1778.940465] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1778.941069] v9fs_mount+0x79/0x8f0 [ 1778.941502] ? v9fs_write_inode+0x60/0x60 [ 1778.942012] legacy_get_tree+0x105/0x220 [ 1778.942494] vfs_get_tree+0x8e/0x300 [ 1778.942943] path_mount+0x1429/0x2120 [ 1778.943411] ? strncpy_from_user+0x9e/0x470 [ 1778.943921] ? finish_automount+0xa90/0xa90 [ 1778.944434] ? getname_flags.part.0+0x1dd/0x4f0 [ 1778.944982] ? _copy_from_user+0xfb/0x1b0 [ 1778.945481] __x64_sys_mount+0x282/0x300 [ 1778.945977] ? copy_mnt_ns+0xa00/0xa00 [ 1778.946446] do_syscall_64+0x33/0x40 [ 1778.946903] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1778.947514] RIP: 0033:0x7f20e27f5b19 [ 1778.947957] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1778.950162] RSP: 002b:00007f20dfd6b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1778.951076] RAX: ffffffffffffffda RBX: 00007f20e2908f60 RCX: 00007f20e27f5b19 [ 1778.951931] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1778.952785] RBP: 00007f20dfd6b1d0 R08: 0000000020000680 R09: 0000000000000000 [ 1778.953644] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1778.954516] R13: 00007ffee093143f R14: 00007f20dfd6b300 R15: 0000000000022000 [ 1778.955492] hpet: Lost 1 RTC interrupts [ 1778.967134] FAT-fs (loop3): invalid media value (0xc5) [ 1778.967997] FAT-fs (loop3): Can't find a valid FAT filesystem 10:36:39 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x6c, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1779.003545] loop3: detected capacity change from 0 to 41948160 [ 1779.007132] FAT-fs (loop3): Unrecognized mount option "" or missing value 10:36:39 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x4200, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:36:39 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0x14, 0x8}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) [ 1779.034715] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1779.036535] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1779.038509] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:36:39 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 20) 10:36:39 executing program 3: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'lo\x00'}) r1 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file1\x00', 0x0, 0x1, &(0x7f0000000000)=[{&(0x7f0000000440)="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", 0x1000, 0x7fffffff}], 0x0, &(0x7f0000000180)=ANY=[@ANYRES32, @ANYRES32=r0]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101342, 0x0) getdents(r1, &(0x7f0000000340)=""/214, 0xd6) setxattr$incfs_metadata(&(0x7f00000000c0)='./file1\x00', &(0x7f00000001c0), &(0x7f0000000200)="acf9142010bb1a8e0507739ea3f340c231129292fbcb981c0c0df0ffb486cf958a2fa45a56d9d227814c7dab0820dc76f1e33dcca7d5", 0x36, 0x1) [ 1779.105355] FAULT_INJECTION: forcing a failure. [ 1779.105355] name failslab, interval 1, probability 0, space 0, times 0 [ 1779.107866] CPU: 1 PID: 10738 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1779.108304] 9pnet: Insufficient options for proto=fd [ 1779.109415] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1779.109423] Call Trace: [ 1779.109446] dump_stack+0x107/0x167 [ 1779.109467] should_fail.cold+0x5/0xa [ 1779.114137] ? p9_client_create+0xaf/0x1230 [ 1779.115102] should_failslab+0x5/0x20 [ 1779.115953] kmem_cache_alloc_trace+0x55/0x320 [ 1779.116977] ? find_held_lock+0x2c/0x110 [ 1779.117896] p9_client_create+0xaf/0x1230 [ 1779.118820] ? lock_downgrade+0x6d0/0x6d0 [ 1779.119754] ? p9_client_flush+0x430/0x430 [ 1779.120699] ? trace_hardirqs_on+0x5b/0x180 [ 1779.121663] ? lockdep_init_map_type+0x2c7/0x780 [ 1779.122740] ? __raw_spin_lock_init+0x36/0x110 [ 1779.123844] v9fs_session_init+0x1dd/0x1680 [ 1779.124821] ? kmem_cache_alloc_trace+0x151/0x320 [ 1779.125914] ? v9fs_show_options+0x690/0x690 [ 1779.126906] ? trace_hardirqs_on+0x5b/0x180 [ 1779.127869] ? kasan_unpoison_shadow+0x33/0x50 [ 1779.128886] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1779.129494] loop3: detected capacity change from 0 to 135266304 [ 1779.130052] v9fs_mount+0x79/0x8f0 [ 1779.130075] ? v9fs_write_inode+0x60/0x60 [ 1779.132469] legacy_get_tree+0x105/0x220 [ 1779.132926] FAT-fs (loop3): Unrecognized mount option "ÿÿÿÿ" or missing value [ 1779.133372] vfs_get_tree+0x8e/0x300 [ 1779.133393] path_mount+0x1429/0x2120 [ 1779.135907] ? strncpy_from_user+0x9e/0x470 [ 1779.136869] ? finish_automount+0xa90/0xa90 [ 1779.137837] ? getname_flags.part.0+0x1dd/0x4f0 [ 1779.138876] ? _copy_from_user+0xfb/0x1b0 [ 1779.139891] __x64_sys_mount+0x282/0x300 [ 1779.140795] ? copy_mnt_ns+0xa00/0xa00 [ 1779.141682] do_syscall_64+0x33/0x40 [ 1779.142511] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1779.143650] RIP: 0033:0x7fd3b79dfb19 [ 1779.144481] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1779.148590] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1779.150293] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1779.151881] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1779.153491] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1779.155194] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1779.156787] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 10:36:39 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 31) [ 1779.236483] FAULT_INJECTION: forcing a failure. [ 1779.236483] name failslab, interval 1, probability 0, space 0, times 0 [ 1779.238993] CPU: 1 PID: 10745 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1779.240544] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1779.242405] Call Trace: [ 1779.243003] dump_stack+0x107/0x167 [ 1779.243831] should_fail.cold+0x5/0xa [ 1779.244679] ? create_object.isra.0+0x3a/0xa20 [ 1779.245709] should_failslab+0x5/0x20 [ 1779.246559] kmem_cache_alloc+0x5b/0x310 [ 1779.247468] create_object.isra.0+0x3a/0xa20 [ 1779.248445] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1779.249645] __kmalloc_track_caller+0x177/0x370 [ 1779.250683] ? match_number+0xaf/0x1d0 [ 1779.251551] kmemdup_nul+0x2d/0xa0 [ 1779.252336] match_number+0xaf/0x1d0 [ 1779.253160] ? match_u64+0x190/0x190 [ 1779.253994] ? __kmalloc_track_caller+0x2c6/0x370 [ 1779.255059] ? memcpy+0x39/0x60 [ 1779.255796] parse_opts.part.0+0x1f3/0x340 [ 1779.256732] ? p9_fd_show_options+0x1c0/0x1c0 [ 1779.257739] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1779.258902] ? trace_hardirqs_on+0x5b/0x180 [ 1779.259857] ? kfree+0xd7/0x340 [ 1779.260592] p9_fd_create+0x98/0x4a0 [ 1779.261420] ? p9_conn_create+0x510/0x510 [ 1779.262345] ? p9_client_create+0x798/0x1230 [ 1779.263313] ? kfree+0xd7/0x340 [ 1779.264051] p9_client_create+0x7ff/0x1230 [ 1779.265090] ? p9_client_flush+0x430/0x430 [ 1779.266035] ? trace_hardirqs_on+0x5b/0x180 [ 1779.266991] ? lockdep_init_map_type+0x2c7/0x780 [ 1779.268041] ? __raw_spin_lock_init+0x36/0x110 [ 1779.269055] v9fs_session_init+0x1dd/0x1680 [ 1779.270026] ? lock_release+0x680/0x680 [ 1779.270921] ? kmem_cache_alloc_trace+0x151/0x320 [ 1779.271994] ? v9fs_show_options+0x690/0x690 [ 1779.272979] ? trace_hardirqs_on+0x5b/0x180 [ 1779.273940] ? kasan_unpoison_shadow+0x33/0x50 [ 1779.274959] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1779.276084] v9fs_mount+0x79/0x8f0 [ 1779.276876] ? v9fs_write_inode+0x60/0x60 [ 1779.277810] legacy_get_tree+0x105/0x220 [ 1779.278717] vfs_get_tree+0x8e/0x300 [ 1779.279546] path_mount+0x1429/0x2120 [ 1779.280494] ? strncpy_from_user+0x9e/0x470 [ 1779.281447] ? finish_automount+0xa90/0xa90 [ 1779.282414] ? getname_flags.part.0+0x1dd/0x4f0 [ 1779.283453] ? _copy_from_user+0xfb/0x1b0 [ 1779.284377] __x64_sys_mount+0x282/0x300 [ 1779.285276] ? copy_mnt_ns+0xa00/0xa00 [ 1779.286158] do_syscall_64+0x33/0x40 [ 1779.286981] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1779.288117] RIP: 0033:0x7f20e27f5b19 [ 1779.288938] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1779.293035] RSP: 002b:00007f20dfd6b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1779.294733] RAX: ffffffffffffffda RBX: 00007f20e2908f60 RCX: 00007f20e27f5b19 [ 1779.296408] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1779.297999] RBP: 00007f20dfd6b1d0 R08: 0000000020000680 R09: 0000000000000000 [ 1779.299585] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1779.301159] R13: 00007ffee093143f R14: 00007f20dfd6b300 R15: 0000000000022000 10:36:57 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x74, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:36:57 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 32) [ 1797.026177] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. 10:36:57 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0x14, 0x9}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:36:57 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) syz_io_uring_setup(0x7154, &(0x7f0000001a00)={0x0, 0xf48d, 0x20, 0x3, 0x1ec}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000400000/0xc00000)=nil, &(0x7f0000001a80), &(0x7f0000001ac0)=0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8914, &(0x7f0000000140)={'lo\x00'}) syz_io_uring_submit(0x0, r2, &(0x7f0000001b00)=@IORING_OP_FSYNC={0x3, 0x1, 0x0, @fd=r3, 0x0, 0x0, 0x0, 0x1, 0xe3e1d7dc81507eec}, 0x100) setresuid(0x0, r1, 0x0) r4 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file1\x00', 0xe10, 0x8, &(0x7f0000001880)=[{&(0x7f00000001c0)="6547d9448ca396d942e552c8e90fe9d4cfa55250a46f8e3f529a489439d0ebd44c0c158fcff42308fd71ec4865056c08703a54", 0x33, 0x9}, {&(0x7f0000000440)="40737b0afd01e55ecf0b6ae23b51154ea473fde669af10c40026532c7af5e035f4f2a570e5511abe3c07992be4cb343d2461548037469116381a5809f4aed2badb7ff0ec17f2988dbb63b753a3bdcf14db5a74f747dc80cf6245754716de971729f40b17ca202d96a9bf33ebe9cd1794e7aff239af560bb4d2fc5aa7a9e5a47fc1a9ef7fc312a8ef7e23ffab5b452089918c52cb346e312a8dd126a97c1379654103258bc3ed76703ca00e6c0a56cb17ddc4d895e8e0e620dcfb4db2c9e23dd7524584f75cd39cfcfab0d49614313df356e16a83b0d67c2efe16a2e880056c6e170b133eedc4751a607ea75dc5be35735e50323fddceaf54713cdeab5b10517e0283bc91ba5db705fbd11f8b90c92ecfa0633357d787339c23919c1f02ed807534f7dbd55c319ad35ccf8e439ccca5e17829047448fd18a9504ea5ee917ab0d0f6fde687c8e5e46c6951265378e73efd2cdb8071e3eb1b7a3063f1b1e70e716896b98214b1c0c43f103d0b0c06aa701354f29756984977f9fe19b9a9026c69a3f956ea696a46fee4782ed41fe518702c89afe0f160159a973155d6b0e65059984a77b42b6241ebc845e34bc67a2cdae35c910445cc463cfa64980904f4ad8c7710f2e4e851036eeb284f99f1a509a46feae4d77fc2f4efa909eaaf881ce4c6c722fb3cc05c83fefe7a7bc1aa095d7b5e5255d7bb131632ad226bc15930641717e1452bf165b5bef6c872babcab73d18fa701b70333e6af41e18e736b8b1a42b21e1258518a3dce0ce0b03533f845d2d23e1d06c5a92cd6ec24003f1d82ee67ee76b2faf049950a2d392043c9f68feb9c195c03538f391f39b1877b14c936127f70a7e67e73c849eb869b452c02fc5c16db939febc3c285c56564698502e6e06505fa637da8b208b40198459d7537aa8e054ed622b0fb5c36ffd138c9ceb8d24cab7a9cf7e3f8a256fbe8a9796db66435f3bf6efb07e3114d0dba2a61a4124404d868a9ce65fadce5b99783f3d20b417427032c943f5db840e882f643d64a896518d9649b926be46dcc08960bce3d6d575474c7702f8eae8bcfa1253ebe82c2bd6278e19ba889876e4e31d7cbaffc7bf5dbbadb14d24cd69bf21625849ee94b23d42cf813d6d0e3a9f1b524889cc90e999488950927066bcc228398b53864b4eade515bf4891e46366bcb5e04dbb862c63fa8f2d8bff8ea7b6a17cb9ed9480dee1fd5edbdb1473f1b0ad1130bdef805b2e2a4febd05a6656d7d22ba481a8272900db668fb1c5e96e195f3a70652a8c8588e0a6eac7bc05c5903a786d6182508a08cebd59f079468c5882524b0b00cb5ff272ceb7fe3ff73d3b9ec9a9187df1efbee75d320bccc22228a19c7310b152598f770bf4117ddf3dbff724186603caf3bcb126d96da3e41306fbca1dc5c47761214f9cac4b12d0215c3a2b97c5b28d6b8cf089f2ab11a56f46f1b67a06b98661f4e66bdade1e583eb075836cb783c748ce7c0a32c174137feeb8b07cb8e42583508ababbb07c579ed94a13e416c63913095d049f28d2605e648e42da213b4c30640b60c6e0abccb69a22d248f69f3cf430b6a9a578e7eefb2ee24d37712aad7b4f0d6d820a3608921a97d3c9e2621ab24c43bf588fad3b2461db255b28eec55b0ad147b1228f34abbe2d4112af5ba963e0b89fbb74185ed957946707d6503c221fc8f3e65d927cd194d033aeee6c38b26a60eaa5e482deaf96fff199d8de4f5f98f8e6196e341918786f49eca17eb7b2b925aed67f42092f4734410b6bd0acab58aa2341d9237744002a78670952f93228db0f1aebd5483fefe6d1b2733c05dca773d03a70dc26763ae997c0cb2af9d3e87f73423a7beca3c838b4b08d7bab19b901354e289cf822081e1cfde1617a7710f6c463d26eb3345f62aac0d7fdabbe5a55c4078803bb2d4886d23eb25d571257f2151b5f8922b1a9a79f8d48be4e8abfee67e6ca36419e1c913a871615dcdabe0e9eaaff0870a7bd7cd05d96834bb3fac5a441d8f66a0d4c9b6678d1742d73402090905306e2ab58640d9ede25780d5e6fd61bbaf2b0057ad45e54ac572f2e2f6ea4cefad1842d8ea600f19e7ec766ecaa5cbaf04ad9a671c2947331fff7503b0f88a7ef47a23277b2dfaf172e0440a36000669275179959bfa1a28dcc5ab57a05f413cb2fafdfd662758377c4a2ebb4e7930d4ae31283cea99fea30751bc4c3f4b5ec0732fe4f27c76ca8822d84894ae46394c009b9ac9afc411ab4487f67cadfdaa2f20cb00f2dd23be2b258c2abc6ad931f76b2901f6e7afa7083555928aed4586f192d73021f0ef0e8e848bf5bf8b3ccf339a7b7d3272d1457111ff70cf6ba11295aedb63046cd0df37b4ba92d6568ca5f1746a749e1c150e723df9645010f54cd244944ce8b8f6597a41da4918ea0f7813c2fcd7cde2abcf42e0b19b8b408155ef399edeef7c80bcf7f49c27e2b8cf0bf050363aeb5527ff353a92103ba9c02ec683b7f3b71971dcd62075b023182c0ab2713f3505fc8c57efab091e509332b747ee15e6f3dc0c77802c9ee6a8e6dfc51a6380144a01a1163efa0871d5c9f8d77801982b973b04368c88fc4b4cdaa1e2420105b66be71b41e2749d04daee9cae2e6c93900e0ebf7bcfb50f3c801ee21a3c66950c02996393535ab8afb86d5b88ef4cee28006303d7dac9931f0ac8f1ec93b4fa3adfba6cfcc03e21ca7db7bf6077f265b800bdbdd91d2cc29a00e3bf849c6530fbe4e63baff54e5c2ba1429dcacbdda7af6ac9c9228e4cf8de0aac506dcd0ef669d456dbe17e50b3ffc8393bc570a5ed167246db805a27c85c9971beedf8545380a70324f11e54c24808cca37efc775ab111b95b00676af5d2bd95eedebe2c238bbc6e81fff318f8a9b22c21323b209cf5bc45d57939472bdf054df5ed6773ef6c9438c1563cf31f80dd9232cf7233a658feaa10bafd2b70763c7a94a8dc259b0047c08337558bfe00fc44651fd7bc252c3298e10db3c2b9a73adbf505d57fe6282b0828e857956166dde0601fcd366393722af19a109e8873fd319d2f3620742a129962a7de2c86df5f5526b15fc399ecb75585f51f9987b579c4f10c60128c2f67c5cf691ea4223e48fe8deea4686522d907a567d4827918967b739535f5df9e971a70d257e3df83cb4f334200a43e1759c4646a650a46738a05086f60eb232088438c4d915a9798c83b84549cd3b758ec78e25ca6d8e7989f947195f266ebf9ce26c8ce3e60cf46e2b3e2c02252790b44b2c7fc41ce621093c2a435f537f769d86715185aebe3b71f86a3e5260652dee814f5b84bd91a0239ad9d221fa86d91ae25aa46f5903cab20fca95a2b9418531ab99d5958cb3c2119294f179116f22a28bef0d1b8bde1093b6c933df4eb66da04387fa915f57c094dbca57b834d4bae941340309518105e3cf6081531cf4c0b6617cfee30db77d2ba003769b3647a04d4d3966869bc9d62a416721f78f4a29b3d27409e1f2ee1a35d2b19ca553a7468bc3c9af9c18d313186f20462e1241ddf019bf14a9beb03e94bbd3bc7f7fadf1dd2c6c125a987d4c32a4a668061c6a424dd461da97953f5987c88bf21b9cdcf9b3f2827d8aa020489db3d5f3d729a1556c29749561a363ed9f23321afce19bc4e622094454cf4cd2b49cf8714dbe24e6ab0b4e8703f22487c28dd749b397986f9e10d06130d0d2123cedc2b999a7a5a7e4a0a2611b1eb63fa410edb67874f1fd5c19bb890725075ee4e3a5c8a382d0bae70fe382a19e49ce7573159fbb0e357fa13c58ebc9c3476599b7f8c18ae29a54958a5ce3e5c068f4cd9d19fe53bcccf94ccea4e257a2edb74161f1f0e25d891ac9db5e04a2b2264d83d991c489f5f1ccea3661098338095be83bd4ae601b8cde693aed7aa974a012f6224223a83564f30786442cf7721ca633f726e9b8a90e7977258bbe0be303c4e871c56c793eef50ce9adaf3c4e9b923d970a7663891fefa8a2e48ffc5b241b9a054fd295325238ac703269a139faba0a28267521540c301513c68bfa4f92675831523fe700fe02d7ad3c0179cad7bb10b7ad32116ff0d27372c469acebf5a6c1b83f711e00857328a512d86471803145ad23cefeba005b64878898f95ed56009b1f37051c12f97e41686179215fc9bbb6efa16800102c2400e087ed995b736af0639a2acc11cbb536f02ebc3cf98b2af49822cca79531fea4d6943a7f0b64ff59d6537b0241703ba6b8e8799070d2ba045d1d61033063921062310258eb089e27b2938cd334c6661fad3de6dc3a7a83d266b3a5309d061b547485272aaeef3856376db22000495bb6a09c1249d5b92e165fa3ccfbb368933332a4ccf6a303eef69b0d4cc9efd88ace53ddd51898d56a18d09b2b4b950313a48617d058c3de405c764ed6c1c332903dcd4eb3481245692a397d2a0ada423e01dcae67accbf70379877ceebde3f8c119c9a9c14aef07e81fe177de4b815dc35c0ee69f39bb05a2378cfd39c17764ebd851ccde5ed2c00aad838084b3310994798fef657b55d78c499e3954ffa88fca34e151c8be7b7da058c32d33c261b9b065d96149cae3292f3be24e9b3199929e08505fab6f766a59e30faef6fde30c674b8a4b8a07ea3f482d19ecc87f48b004ce795dfac59040925620741e7f6d896bf06c9123a7353f4810fc5517520d9642d9f966dcca186630aa4838501fa91b133714b53ec460234d07a8142db2fd8042d9a44c3804f00efc2adb396d6846be41b5abde7759b8abdb8c6af44350b0881aa9e8a30f42756a0237836ff77fd03cb9c5b97b5a965be73ddaefa5e668fa3b10d8dcd0735155efd07420fdb570bcde72ef62b96f839ca8a84d0d1acaf36f0c24c682a8fa3ed55ba8249eef027a9478c618310161d77558531fc1820084a36e747849977c02f716e3072cbf40540ccfc6f68b8c108808d789245fd50d3c29a44401936fb851ddf7740178c22a3b374feb0691dfe598b576f5691a04bb19f7515dcfad036ce9c1a5f627de71fce8ab6cc0f55656e746390b3105e04b30204b22c05c2f28ce1d325033d043b90cbc93fc3b197e33d5e82f07b0170db34aa19fe4b1cc2f8e55bf972a279a1519276e169f90b50aa695130d9e36aebe581c922ebcddeef392aab1d43c8e32400034e066cbdc8f3f0fddbe31bdc049a5458ff7c93bf35a51dbc5205f79fd8d8ebc9199c19d7e438d99c7266544e67b717db7955937acd6bd47c20858f6c188d83866500682a0aade6301be0d15b81e7365b0c5bd24b68356e459742cee728c9cfb8cead6e1704126b1344809fa906a740b7d244ccde980905cd70f8ff0f76a9c2e208e99ecf042f822996367703f00fea29391a013183cd3702ec858c02488f99ec7fc139bdaddbf127ec2b15def84513371956875a1b2472f0552c3e9540423141da1e9fb88a9bd68f3b136619c161edefaa64f22049b6919a35c4288facfb604b12dbdf7304c07a9963ffeef574186ed98601e2b6e0a02f56c35539fe45712dcd78a2b8abd4a701739efe11c4d7a9757523286a9a5d5f60bd9f62472580871f5553912ec73081f909025539c81a591ac7f9f1a1467129fb59ec725516fb1b4eed60e539aed48a534918aa424832c8d2b9916d8113c995dedb577281f5d3b7e6ae5810266fa7ffeb18aa55b5ac9622273648725e7ba5d219a029a37ea7eb168398c2a02cfbd4c4a0fd073a8383e047567218f9abea382fbf2517ecf0fa4ddeff12d281a663b593e3547a410abdfe60afa237b6a980414753b2565e994650c3", 0x1000}, {&(0x7f0000001440)="d3e67a71e3a4d0da3d9205037462e0d1c1965cad1b8ba6304d8491a21e63a38a67b5ea258d337e204c4711ea88f0bc6dd5f748357d5e50725c373c643ccef20b460fa4ba53094a5d4a252fd12acfbe6ec734e347c4014ec91339413f63eb1b32419dbf4090de48965cbbc96f51dd4b892967540375f7b2696ceb90a962ebac961b924d89c555bf02e19c180f4cb2189e0db5ff675b73256d33cb20bffd2b4a06ba93babf724e858f2710e62beccf5c14c4bb3d1ea2f48d8481ec41d2614943b37e6e", 0xc2, 0x8a}, {&(0x7f0000001540)="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", 0xfc, 0xd42}, {&(0x7f0000000200)="d85bfe5c94ec00adef52e12704ee83bbf2596ac4dfd963e31c5f29f494ed4c77fab64d87de1b2ac833921d9414740e843c83cf4cf5bf56ae0461f0af207280ac4e843ab19df3b6712a3cac883f99b0a0c4a892f6f3d363d00f38959a8d7c96cf78021a831f6c5bb52e493f5207067a5316e5e47b6f8edbbd5c707c7ca388e4eb1153430e91ad19d09d0b38e6e259bdfdf8a84875c9c4871f949073b152b41bf1a1048b82540e103548a50209d40e9c", 0xaf, 0x20}, {&(0x7f0000001640)="079257940b32b7034df849b242ddc80214aaae607d24125d6a2da9ad0d21e6565f803f8a86654ef482c81800c8e95e0824e8523445caca4726b7c3fa4f2e2cc878ecb554a43d294563d1348a0ad47bd22ff1481f203ed6fffc6220531b97cd9dc5ff9e943fa3fc39ba59b5ddea4c0c2f03db5c553e9ba7e031ba299c0c6d433aae5e7fecf12939cac25a25", 0x8b, 0x8}, {&(0x7f0000001700)="c239f2d4f1ef3755022c97fcf6a86d1792c682a642f160463f39920436318c81b9b950269cf5aa7eeb62f601f095c29cef0c60a02a53cdad2e0daef65df53cac154a2a36353f82434a4baf7f3f93dcfa4ffdd2e2205e556b183b904361a7bb8332b8186207061e3429aafe0a2a87f3f44953ef44cf072a1eb2ef33f4f91051dbb59d32a391b4e8c243a508d9625c54a895454994a249c23a2692f79ab17256adf222e4e0aaa5647976f6c378a060ebca19d76a178ea51baa20e2849324d4971c3b7a36b042eb10b7c39ff7d5acc144c27d61eb6e044854", 0xd7, 0x100000000}, {&(0x7f0000001800)="c8961cfe427d8cb9d3d528b92fb51e4c05f5dee8021f134dc1c26c191cc19e25b833eccf37078855b290d4c0188928244a6af45f83ca4a35b1971997a9e6fa4f3f97b50661354bcb0b1e13f6e85390b5764ea79d9d97acf805ca7d20c92327df3003816f2467d79df923cd05a561562c5b35bcabe283c4bdf5e73e66f169d089", 0x80, 0xfffffffffffffbff}], 0x2, &(0x7f0000001940)={[{@data_journal}, {@minixdf}, {@data_ordered}, {@grpquota}, {@nodiscard}], [{@permit_directio}, {@dont_hash}, {@fowner_gt={'fowner>', r1}}, {@rootcontext={'rootcontext', 0x3d, 'system_u'}}]}) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) mknodat$loop(r4, &(0x7f0000000300)='./file0\x00', 0x20, 0x1) 10:36:57 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x4800, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:36:57 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 29) 10:36:57 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 21) 10:36:57 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300), 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 1797.031890] FAULT_INJECTION: forcing a failure. [ 1797.031890] name failslab, interval 1, probability 0, space 0, times 0 [ 1797.035210] CPU: 1 PID: 10759 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1797.035919] FAULT_INJECTION: forcing a failure. [ 1797.035919] name failslab, interval 1, probability 0, space 0, times 0 [ 1797.037081] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1797.037095] Call Trace: [ 1797.037137] dump_stack+0x107/0x167 [ 1797.042394] should_fail.cold+0x5/0xa [ 1797.043419] ? create_object.isra.0+0x3a/0xa20 [ 1797.044626] should_failslab+0x5/0x20 [ 1797.045703] kmem_cache_alloc+0x5b/0x310 [ 1797.046801] ? kernel_text_address+0xf2/0x120 [ 1797.048009] create_object.isra.0+0x3a/0xa20 [ 1797.049170] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1797.050543] kmem_cache_alloc_trace+0x151/0x320 [ 1797.051791] ? find_held_lock+0x2c/0x110 [ 1797.052876] p9_client_create+0xaf/0x1230 [ 1797.053990] ? lock_downgrade+0x6d0/0x6d0 [ 1797.055100] ? p9_client_flush+0x430/0x430 [ 1797.056227] ? trace_hardirqs_on+0x5b/0x180 [ 1797.057401] ? lockdep_init_map_type+0x2c7/0x780 [ 1797.058668] ? __raw_spin_lock_init+0x36/0x110 [ 1797.059698] v9fs_session_init+0x1dd/0x1680 [ 1797.060646] ? lock_release+0x680/0x680 [ 1797.061603] ? kmem_cache_alloc_trace+0x151/0x320 [ 1797.062686] ? v9fs_show_options+0x690/0x690 [ 1797.063663] ? trace_hardirqs_on+0x5b/0x180 [ 1797.064617] ? kasan_unpoison_shadow+0x33/0x50 [ 1797.065636] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1797.066771] v9fs_mount+0x79/0x8f0 [ 1797.067568] ? v9fs_write_inode+0x60/0x60 [ 1797.068491] legacy_get_tree+0x105/0x220 [ 1797.069409] vfs_get_tree+0x8e/0x300 [ 1797.070233] path_mount+0x1429/0x2120 [ 1797.071082] ? strncpy_from_user+0x9e/0x470 [ 1797.072042] ? finish_automount+0xa90/0xa90 [ 1797.072993] ? getname_flags.part.0+0x1dd/0x4f0 [ 1797.074049] ? _copy_from_user+0xfb/0x1b0 [ 1797.074972] __x64_sys_mount+0x282/0x300 [ 1797.075881] ? copy_mnt_ns+0xa00/0xa00 [ 1797.076761] do_syscall_64+0x33/0x40 [ 1797.077631] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1797.078996] RIP: 0033:0x7fd3b79dfb19 [ 1797.079955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1797.084509] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1797.086261] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1797.087899] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1797.089534] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1797.091179] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1797.092880] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1797.094539] CPU: 0 PID: 10757 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1797.095339] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1797.096287] Call Trace: [ 1797.096593] dump_stack+0x107/0x167 [ 1797.097008] should_fail.cold+0x5/0xa [ 1797.097037] loop3: detected capacity change from 0 to 41948160 [ 1797.097457] ? create_object.isra.0+0x3a/0xa20 [ 1797.099351] should_failslab+0x5/0x20 [ 1797.099795] kmem_cache_alloc+0x5b/0x310 [ 1797.100259] ? legacy_get_tree+0x105/0x220 [ 1797.100750] ? vfs_get_tree+0x8e/0x300 [ 1797.101218] create_object.isra.0+0x3a/0xa20 [ 1797.101740] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1797.102337] __kmalloc_track_caller+0x177/0x370 [ 1797.102879] ? parse_opts.part.0+0x8e/0x340 [ 1797.103379] kstrdup+0x36/0x70 [ 1797.103751] parse_opts.part.0+0x8e/0x340 [ 1797.104229] ? p9_fd_show_options+0x1c0/0x1c0 [ 1797.104752] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1797.105347] ? quarantine_put+0x8b/0x1a0 [ 1797.105817] ? trace_hardirqs_on+0x5b/0x180 [ 1797.106321] ? kfree+0xd7/0x340 [ 1797.106715] p9_fd_create+0x98/0x4a0 [ 1797.107146] ? p9_conn_create+0x510/0x510 [ 1797.107622] ? p9_client_create+0x798/0x1230 [ 1797.108146] ? kfree+0xd7/0x340 [ 1797.108538] p9_client_create+0x7ff/0x1230 [ 1797.109033] ? p9_client_flush+0x430/0x430 [ 1797.109516] ? trace_hardirqs_on+0x5b/0x180 [ 1797.110029] ? lockdep_init_map_type+0x2c7/0x780 [ 1797.110575] ? __raw_spin_lock_init+0x36/0x110 [ 1797.111108] v9fs_session_init+0x1dd/0x1680 [ 1797.111604] ? lock_release+0x680/0x680 [ 1797.112070] ? kmem_cache_alloc_trace+0x151/0x320 [ 1797.112622] ? v9fs_show_options+0x690/0x690 [ 1797.113143] ? trace_hardirqs_on+0x5b/0x180 [ 1797.113639] ? kasan_unpoison_shadow+0x33/0x50 [ 1797.114188] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1797.114776] v9fs_mount+0x79/0x8f0 [ 1797.115188] ? v9fs_write_inode+0x60/0x60 [ 1797.115673] legacy_get_tree+0x105/0x220 [ 1797.116143] vfs_get_tree+0x8e/0x300 [ 1797.116576] path_mount+0x1429/0x2120 [ 1797.117016] ? strncpy_from_user+0x9e/0x470 [ 1797.117510] ? finish_automount+0xa90/0xa90 [ 1797.118015] ? getname_flags.part.0+0x1dd/0x4f0 [ 1797.118548] ? _copy_from_user+0xfb/0x1b0 [ 1797.119032] __x64_sys_mount+0x282/0x300 [ 1797.119503] ? copy_mnt_ns+0xa00/0xa00 [ 1797.119962] do_syscall_64+0x33/0x40 [ 1797.120388] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1797.120975] RIP: 0033:0x7f9f6e930b19 [ 1797.121400] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1797.123554] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1797.124447] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1797.125271] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1797.126088] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1797.126912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1797.127735] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1797.128645] hpet: Lost 1 RTC interrupts [ 1797.147724] FAULT_INJECTION: forcing a failure. [ 1797.147724] name failslab, interval 1, probability 0, space 0, times 0 [ 1797.150442] CPU: 1 PID: 10768 Comm: syz-executor.7 Not tainted 5.10.234 #1 [ 1797.152225] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1797.154430] Call Trace: [ 1797.155100] dump_stack+0x107/0x167 [ 1797.156047] should_fail.cold+0x5/0xa [ 1797.157030] should_failslab+0x5/0x20 [ 1797.157073] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1797.158039] __kmalloc_track_caller+0x79/0x370 [ 1797.158065] ? match_number+0xaf/0x1d0 [ 1797.158996] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1797.160208] ? kfree+0xd7/0x340 [ 1797.160243] kmemdup_nul+0x2d/0xa0 [ 1797.160267] match_number+0xaf/0x1d0 [ 1797.160290] ? match_u64+0x190/0x190 [ 1797.160312] ? __kmalloc_track_caller+0x2c6/0x370 [ 1797.160334] ? memcpy+0x39/0x60 [ 1797.160364] parse_opts.part.0+0x1f3/0x340 [ 1797.160985] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1797.162580] ? p9_fd_show_options+0x1c0/0x1c0 [ 1797.162611] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1797.172033] ? trace_hardirqs_on+0x5b/0x180 [ 1797.173036] ? kfree+0xd7/0x340 [ 1797.173811] p9_fd_create+0x98/0x4a0 [ 1797.174683] ? p9_conn_create+0x510/0x510 [ 1797.175645] ? p9_client_create+0x798/0x1230 [ 1797.176663] ? kfree+0xd7/0x340 [ 1797.177435] p9_client_create+0x7ff/0x1230 [ 1797.178432] ? p9_client_flush+0x430/0x430 [ 1797.179414] ? trace_hardirqs_on+0x5b/0x180 [ 1797.180419] ? lockdep_init_map_type+0x2c7/0x780 [ 1797.181518] ? __raw_spin_lock_init+0x36/0x110 [ 1797.182581] v9fs_session_init+0x1dd/0x1680 [ 1797.183560] ? lock_release+0x680/0x680 [ 1797.184475] ? kmem_cache_alloc_trace+0x151/0x320 [ 1797.185566] ? v9fs_show_options+0x690/0x690 [ 1797.186631] ? trace_hardirqs_on+0x5b/0x180 [ 1797.187610] ? kasan_unpoison_shadow+0x33/0x50 [ 1797.188645] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1797.189798] v9fs_mount+0x79/0x8f0 [ 1797.190613] ? v9fs_write_inode+0x60/0x60 [ 1797.191554] legacy_get_tree+0x105/0x220 [ 1797.192477] vfs_get_tree+0x8e/0x300 [ 1797.193449] path_mount+0x1429/0x2120 [ 1797.194326] ? strncpy_from_user+0x9e/0x470 [ 1797.195301] ? finish_automount+0xa90/0xa90 [ 1797.196276] ? getname_flags.part.0+0x1dd/0x4f0 [ 1797.197333] ? _copy_from_user+0xfb/0x1b0 [ 1797.198291] __x64_sys_mount+0x282/0x300 [ 1797.199217] ? copy_mnt_ns+0xa00/0xa00 [ 1797.200114] do_syscall_64+0x33/0x40 [ 1797.200967] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1797.202178] RIP: 0033:0x7f20e27f5b19 [ 1797.203021] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1797.207197] RSP: 002b:00007f20dfd6b188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1797.208920] RAX: ffffffffffffffda RBX: 00007f20e2908f60 RCX: 00007f20e27f5b19 [ 1797.210573] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1797.212203] RBP: 00007f20dfd6b1d0 R08: 0000000020000680 R09: 0000000000000000 [ 1797.213827] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1797.215463] R13: 00007ffee093143f R14: 00007f20dfd6b300 R15: 0000000000022000 [ 1797.217871] 9pnet: Insufficient options for proto=fd 10:36:57 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 30) 10:36:57 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0x14, 0xa}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) [ 1797.235935] FAULT_INJECTION: forcing a failure. [ 1797.235935] name failslab, interval 1, probability 0, space 0, times 0 [ 1797.238607] CPU: 1 PID: 10777 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1797.240192] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1797.242094] Call Trace: [ 1797.242697] dump_stack+0x107/0x167 [ 1797.243527] should_fail.cold+0x5/0xa [ 1797.244397] ? create_object.isra.0+0x3a/0xa20 [ 1797.245437] should_failslab+0x5/0x20 [ 1797.246309] kmem_cache_alloc+0x5b/0x310 [ 1797.247226] ? legacy_get_tree+0x105/0x220 [ 1797.248182] ? vfs_get_tree+0x8e/0x300 [ 1797.249118] create_object.isra.0+0x3a/0xa20 [ 1797.250125] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1797.251293] __kmalloc_track_caller+0x177/0x370 [ 1797.252357] ? parse_opts.part.0+0x8e/0x340 [ 1797.253341] kstrdup+0x36/0x70 [ 1797.254086] parse_opts.part.0+0x8e/0x340 [ 1797.255031] ? p9_fd_show_options+0x1c0/0x1c0 [ 1797.256063] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1797.257261] ? quarantine_put+0x8b/0x1a0 [ 1797.258202] ? trace_hardirqs_on+0x5b/0x180 [ 1797.259182] ? kfree+0xd7/0x340 [ 1797.259939] p9_fd_create+0x98/0x4a0 [ 1797.260788] ? p9_conn_create+0x510/0x510 [ 1797.261729] ? p9_client_create+0x798/0x1230 [ 1797.262733] ? kfree+0xd7/0x340 [ 1797.263495] p9_client_create+0x7ff/0x1230 [ 1797.264519] ? p9_client_flush+0x430/0x430 [ 1797.265483] ? trace_hardirqs_on+0x5b/0x180 [ 1797.266473] ? lockdep_init_map_type+0x2c7/0x780 [ 1797.267553] ? __raw_spin_lock_init+0x36/0x110 [ 1797.268593] v9fs_session_init+0x1dd/0x1680 [ 1797.269568] ? lock_release+0x680/0x680 [ 1797.270486] ? kmem_cache_alloc_trace+0x151/0x320 [ 1797.271579] ? v9fs_show_options+0x690/0x690 [ 1797.272587] ? trace_hardirqs_on+0x5b/0x180 [ 1797.273561] ? kasan_unpoison_shadow+0x33/0x50 [ 1797.274609] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1797.275758] v9fs_mount+0x79/0x8f0 [ 1797.276562] ? v9fs_write_inode+0x60/0x60 [ 1797.277510] legacy_get_tree+0x105/0x220 [ 1797.278442] vfs_get_tree+0x8e/0x300 [ 1797.279283] path_mount+0x1429/0x2120 [ 1797.280230] ? strncpy_from_user+0x9e/0x470 [ 1797.281214] ? finish_automount+0xa90/0xa90 [ 1797.282203] ? getname_flags.part.0+0x1dd/0x4f0 [ 1797.283260] ? _copy_from_user+0xfb/0x1b0 [ 1797.284200] __x64_sys_mount+0x282/0x300 [ 1797.285121] ? copy_mnt_ns+0xa00/0xa00 [ 1797.286026] do_syscall_64+0x33/0x40 [ 1797.286878] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1797.288038] RIP: 0033:0x7f9f6e930b19 [ 1797.288888] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1797.293077] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1797.294820] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1797.296513] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1797.298140] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 10:36:57 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x4c00, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1797.299756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 10:36:57 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 33) [ 1797.301498] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 10:36:57 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x7a, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:36:57 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0x14, 0xb}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:36:57 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300), 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:36:57 executing program 3: chdir(&(0x7f0000000240)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x101142, 0x9) openat2(r0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000100)={0x20080, 0x80, 0x4}, 0x18) getdents(0xffffffffffffffff, &(0x7f0000000340)=""/214, 0xd6) [ 1797.390234] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. 10:36:57 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 22) [ 1797.455368] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1797.457078] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1797.458864] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1797.469002] FAULT_INJECTION: forcing a failure. [ 1797.469002] name failslab, interval 1, probability 0, space 0, times 0 [ 1797.471448] CPU: 0 PID: 10799 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1797.472917] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1797.474672] Call Trace: [ 1797.475226] dump_stack+0x107/0x167 [ 1797.476046] should_fail.cold+0x5/0xa [ 1797.476958] should_failslab+0x5/0x20 [ 1797.477897] __kmalloc_track_caller+0x79/0x370 [ 1797.478989] ? p9_client_create+0x41d/0x1230 [ 1797.480055] kstrdup+0x36/0x70 [ 1797.480835] p9_client_create+0x41d/0x1230 [ 1797.481844] ? lock_downgrade+0x6d0/0x6d0 [ 1797.482847] ? p9_client_flush+0x430/0x430 [ 1797.483912] ? trace_hardirqs_on+0x5b/0x180 [ 1797.484932] ? lockdep_init_map_type+0x2c7/0x780 [ 1797.486081] ? __raw_spin_lock_init+0x36/0x110 [ 1797.487178] v9fs_session_init+0x1dd/0x1680 [ 1797.488214] ? lock_release+0x680/0x680 [ 1797.489190] ? kmem_cache_alloc_trace+0x151/0x320 [ 1797.490351] ? v9fs_show_options+0x690/0x690 [ 1797.491405] ? trace_hardirqs_on+0x5b/0x180 [ 1797.492438] ? kasan_unpoison_shadow+0x33/0x50 [ 1797.493521] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1797.494743] v9fs_mount+0x79/0x8f0 [ 1797.495596] ? v9fs_write_inode+0x60/0x60 [ 1797.496575] legacy_get_tree+0x105/0x220 [ 1797.497542] vfs_get_tree+0x8e/0x300 [ 1797.498430] path_mount+0x1429/0x2120 [ 1797.499337] ? strncpy_from_user+0x9e/0x470 [ 1797.500365] ? finish_automount+0xa90/0xa90 [ 1797.501390] ? getname_flags.part.0+0x1dd/0x4f0 [ 1797.502492] ? _copy_from_user+0xfb/0x1b0 [ 1797.503490] __x64_sys_mount+0x282/0x300 [ 1797.504448] ? copy_mnt_ns+0xa00/0xa00 [ 1797.505374] do_syscall_64+0x33/0x40 [ 1797.506264] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1797.507466] RIP: 0033:0x7fd3b79dfb19 [ 1797.508349] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1797.512689] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1797.514512] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1797.516202] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1797.517912] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1797.519589] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1797.521279] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1797.523152] hpet: Lost 2 RTC interrupts 10:37:15 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 31) 10:37:15 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 23) 10:37:15 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x110, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:37:15 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:37:15 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x6001, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:37:15 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000000)='./file1\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) [ 1814.891120] FAULT_INJECTION: forcing a failure. [ 1814.891120] name failslab, interval 1, probability 0, space 0, times 0 [ 1814.893540] CPU: 0 PID: 10805 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1814.895025] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1814.896783] Call Trace: [ 1814.897347] dump_stack+0x107/0x167 [ 1814.898133] should_fail.cold+0x5/0xa 10:37:15 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0x14, 0xc}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:37:15 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 1814.898954] ? create_object.isra.0+0x3a/0xa20 [ 1814.900106] should_failslab+0x5/0x20 [ 1814.900916] kmem_cache_alloc+0x5b/0x310 [ 1814.901772] create_object.isra.0+0x3a/0xa20 [ 1814.902704] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1814.903779] __kmalloc_track_caller+0x177/0x370 [ 1814.904756] ? match_number+0xaf/0x1d0 [ 1814.905626] kmemdup_nul+0x2d/0xa0 [ 1814.906395] match_number+0xaf/0x1d0 [ 1814.907182] ? match_u64+0x190/0x190 [ 1814.907969] ? __kmalloc_track_caller+0x2c6/0x370 [ 1814.908820] FAULT_INJECTION: forcing a failure. [ 1814.908820] name failslab, interval 1, probability 0, space 0, times 0 [ 1814.908996] ? memcpy+0x39/0x60 [ 1814.912526] parse_opts.part.0+0x1f3/0x340 [ 1814.913433] ? p9_fd_show_options+0x1c0/0x1c0 [ 1814.914406] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1814.915524] ? trace_hardirqs_on+0x5b/0x180 [ 1814.916453] ? kfree+0xd7/0x340 [ 1814.917173] p9_fd_create+0x98/0x4a0 [ 1814.917962] ? p9_conn_create+0x510/0x510 [ 1814.918927] ? p9_client_create+0x798/0x1230 [ 1814.919901] ? kfree+0xd7/0x340 [ 1814.920659] p9_client_create+0x7ff/0x1230 [ 1814.921583] ? p9_client_flush+0x430/0x430 [ 1814.922599] ? trace_hardirqs_on+0x5b/0x180 [ 1814.923513] ? lockdep_init_map_type+0x2c7/0x780 [ 1814.924520] ? __raw_spin_lock_init+0x36/0x110 [ 1814.925495] v9fs_session_init+0x1dd/0x1680 [ 1814.926416] ? lock_release+0x680/0x680 [ 1814.927267] ? kmem_cache_alloc_trace+0x151/0x320 [ 1814.928285] ? v9fs_show_options+0x690/0x690 [ 1814.929225] ? trace_hardirqs_on+0x5b/0x180 [ 1814.930148] ? kasan_unpoison_shadow+0x33/0x50 [ 1814.931112] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1814.932191] v9fs_mount+0x79/0x8f0 [ 1814.932951] ? v9fs_write_inode+0x60/0x60 [ 1814.933838] legacy_get_tree+0x105/0x220 [ 1814.934710] vfs_get_tree+0x8e/0x300 [ 1814.935495] path_mount+0x1429/0x2120 [ 1814.936307] ? strncpy_from_user+0x9e/0x470 [ 1814.937218] ? finish_automount+0xa90/0xa90 [ 1814.938144] ? getname_flags.part.0+0x1dd/0x4f0 [ 1814.939131] ? _copy_from_user+0xfb/0x1b0 [ 1814.940011] __x64_sys_mount+0x282/0x300 [ 1814.940864] ? copy_mnt_ns+0xa00/0xa00 [ 1814.941697] do_syscall_64+0x33/0x40 [ 1814.942502] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1814.943586] RIP: 0033:0x7f9f6e930b19 [ 1814.944374] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1814.948283] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1814.949895] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1814.951408] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1814.952918] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1814.954436] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1814.955953] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1814.957511] CPU: 1 PID: 10815 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1814.958006] hpet: Lost 3 RTC interrupts [ 1814.959256] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1814.961960] Call Trace: [ 1814.962545] dump_stack+0x107/0x167 [ 1814.963373] should_fail.cold+0x5/0xa [ 1814.964189] ? create_object.isra.0+0x3a/0xa20 [ 1814.965164] should_failslab+0x5/0x20 [ 1814.965978] kmem_cache_alloc+0x5b/0x310 [ 1814.966852] ? lock_downgrade+0x6d0/0x6d0 [ 1814.967738] create_object.isra.0+0x3a/0xa20 [ 1814.968678] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1814.969765] __kmalloc_track_caller+0x177/0x370 [ 1814.970770] ? p9_client_create+0x41d/0x1230 [ 1814.971709] kstrdup+0x36/0x70 [ 1814.972396] p9_client_create+0x41d/0x1230 [ 1814.973296] ? lock_downgrade+0x6d0/0x6d0 [ 1814.974195] ? p9_client_flush+0x430/0x430 [ 1814.975097] ? trace_hardirqs_on+0x5b/0x180 [ 1814.976014] ? lockdep_init_map_type+0x2c7/0x780 [ 1814.977021] ? __raw_spin_lock_init+0x36/0x110 [ 1814.977996] v9fs_session_init+0x1dd/0x1680 [ 1814.978922] ? lock_release+0x680/0x680 [ 1814.979778] ? kmem_cache_alloc_trace+0x151/0x320 [ 1814.980809] ? v9fs_show_options+0x690/0x690 [ 1814.981749] ? trace_hardirqs_on+0x5b/0x180 [ 1814.982674] ? kasan_unpoison_shadow+0x33/0x50 [ 1814.983776] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1814.984831] v9fs_mount+0x79/0x8f0 [ 1814.985585] ? v9fs_write_inode+0x60/0x60 [ 1814.986486] legacy_get_tree+0x105/0x220 [ 1814.987351] vfs_get_tree+0x8e/0x300 [ 1814.988152] path_mount+0x1429/0x2120 [ 1814.988967] ? strncpy_from_user+0x9e/0x470 [ 1814.989879] ? finish_automount+0xa90/0xa90 [ 1814.990807] ? getname_flags.part.0+0x1dd/0x4f0 [ 1814.991793] ? _copy_from_user+0xfb/0x1b0 [ 1814.992679] __x64_sys_mount+0x282/0x300 [ 1814.993537] ? copy_mnt_ns+0xa00/0xa00 [ 1814.994380] do_syscall_64+0x33/0x40 [ 1814.995171] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1814.996254] RIP: 0033:0x7fd3b79dfb19 [ 1814.997045] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1815.001086] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1815.002708] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1815.004198] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1815.005726] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1815.007534] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1815.009023] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1815.015267] loop3: detected capacity change from 0 to 41948160 10:37:15 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x6800, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1815.050978] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. 10:37:15 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x160, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:37:15 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 32) [ 1815.137121] FAULT_INJECTION: forcing a failure. [ 1815.137121] name failslab, interval 1, probability 0, space 0, times 0 [ 1815.139627] CPU: 1 PID: 10830 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1815.141227] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1815.143019] Call Trace: [ 1815.143590] dump_stack+0x107/0x167 [ 1815.144391] should_fail.cold+0x5/0xa [ 1815.145198] should_failslab+0x5/0x20 [ 1815.146006] __kmalloc_track_caller+0x79/0x370 [ 1815.146974] ? match_number+0xaf/0x1d0 [ 1815.147796] kmemdup_nul+0x2d/0xa0 [ 1815.148538] match_number+0xaf/0x1d0 [ 1815.149321] ? match_u64+0x190/0x190 [ 1815.150112] ? __kmalloc_track_caller+0x2c6/0x370 [ 1815.151131] ? memcpy+0x39/0x60 [ 1815.151835] parse_opts.part.0+0x1f3/0x340 [ 1815.152735] ? p9_fd_show_options+0x1c0/0x1c0 [ 1815.153680] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1815.154803] ? trace_hardirqs_on+0x5b/0x180 [ 1815.155820] ? kfree+0xd7/0x340 [ 1815.156524] p9_fd_create+0x98/0x4a0 [ 1815.157303] ? p9_conn_create+0x510/0x510 [ 1815.158187] ? p9_client_create+0x798/0x1230 [ 1815.159110] ? kfree+0xd7/0x340 [ 1815.159831] p9_client_create+0x7ff/0x1230 [ 1815.160728] ? p9_client_flush+0x430/0x430 [ 1815.161625] ? trace_hardirqs_on+0x5b/0x180 [ 1815.162542] ? lockdep_init_map_type+0x2c7/0x780 [ 1815.163543] ? __raw_spin_lock_init+0x36/0x110 [ 1815.164505] v9fs_session_init+0x1dd/0x1680 [ 1815.165423] ? lock_release+0x680/0x680 [ 1815.166275] ? kmem_cache_alloc_trace+0x151/0x320 [ 1815.167284] ? v9fs_show_options+0x690/0x690 [ 1815.168220] ? trace_hardirqs_on+0x5b/0x180 [ 1815.169127] ? kasan_unpoison_shadow+0x33/0x50 [ 1815.170110] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1815.171294] v9fs_mount+0x79/0x8f0 [ 1815.172035] ? v9fs_write_inode+0x60/0x60 [ 1815.172921] legacy_get_tree+0x105/0x220 [ 1815.173771] vfs_get_tree+0x8e/0x300 [ 1815.174573] path_mount+0x1429/0x2120 [ 1815.175384] ? strncpy_from_user+0x9e/0x470 [ 1815.176291] ? finish_automount+0xa90/0xa90 [ 1815.177211] ? getname_flags.part.0+0x1dd/0x4f0 [ 1815.178204] ? _copy_from_user+0xfb/0x1b0 [ 1815.179094] __x64_sys_mount+0x282/0x300 [ 1815.179943] ? copy_mnt_ns+0xa00/0xa00 [ 1815.180777] do_syscall_64+0x33/0x40 [ 1815.181561] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1815.182650] RIP: 0033:0x7f9f6e930b19 [ 1815.183440] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1815.187462] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1815.189065] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1815.190587] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1815.192092] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1815.193587] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1815.195097] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 10:37:15 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x6c00, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:37:15 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) lsetxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), &(0x7f0000000240)={0x0, 0xfb, 0x39, 0x4, 0x3f, "b4b48617c24ffb351f6852166ca05d87", "4b12e7801a486242f84175fde00fb048340106293963620c55dbcaca42009d0ea5cb0464"}, 0x39, 0x6) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) lremovexattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000100)=@random={'user.', '+.\\)\x00'}) 10:37:15 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0x14, 0xd}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:37:15 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x2, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1815.253488] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1815.255105] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1815.256968] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:37:15 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x18e, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:37:15 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 24) [ 1815.303083] 9pnet: Insufficient options for proto=fd [ 1815.334625] loop3: detected capacity change from 0 to 41948160 [ 1815.344022] FAULT_INJECTION: forcing a failure. [ 1815.344022] name failslab, interval 1, probability 0, space 0, times 0 10:37:15 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0x14, 0xe}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) [ 1815.346460] CPU: 0 PID: 10848 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1815.347994] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1815.349727] Call Trace: [ 1815.350294] dump_stack+0x107/0x167 [ 1815.351061] should_fail.cold+0x5/0xa [ 1815.351858] should_failslab+0x5/0x20 [ 1815.352658] __kmalloc_track_caller+0x79/0x370 [ 1815.353612] ? p9_client_create+0x51e/0x1230 [ 1815.354557] kmemdup_nul+0x2d/0xa0 [ 1815.355299] p9_client_create+0x51e/0x1230 [ 1815.356207] ? p9_client_flush+0x430/0x430 [ 1815.357097] ? trace_hardirqs_on+0x5b/0x180 [ 1815.358004] ? lockdep_init_map_type+0x2c7/0x780 [ 1815.359029] ? __raw_spin_lock_init+0x36/0x110 [ 1815.359994] v9fs_session_init+0x1dd/0x1680 [ 1815.360894] ? lock_release+0x680/0x680 [ 1815.361735] ? kmem_cache_alloc_trace+0x151/0x320 [ 1815.362749] ? v9fs_show_options+0x690/0x690 [ 1815.363677] ? trace_hardirqs_on+0x5b/0x180 10:37:15 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 33) [ 1815.364580] ? kasan_unpoison_shadow+0x33/0x50 [ 1815.365634] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1815.366707] v9fs_mount+0x79/0x8f0 [ 1815.367454] ? v9fs_write_inode+0x60/0x60 [ 1815.368329] legacy_get_tree+0x105/0x220 [ 1815.369180] vfs_get_tree+0x8e/0x300 [ 1815.369953] path_mount+0x1429/0x2120 [ 1815.370773] ? strncpy_from_user+0x9e/0x470 [ 1815.371665] ? finish_automount+0xa90/0xa90 [ 1815.372572] ? getname_flags.part.0+0x1dd/0x4f0 [ 1815.373536] ? _copy_from_user+0xfb/0x1b0 [ 1815.374437] __x64_sys_mount+0x282/0x300 [ 1815.375282] ? copy_mnt_ns+0xa00/0xa00 [ 1815.376108] do_syscall_64+0x33/0x40 [ 1815.376894] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1815.377989] RIP: 0033:0x7fd3b79dfb19 [ 1815.378778] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1815.382688] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1815.384298] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1815.385808] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1815.387331] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1815.388842] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1815.390355] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1815.392065] hpet: Lost 2 RTC interrupts 10:37:15 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000bd81b87afc1f961b041591112692a5d1aab19c6a9e208d1c28da156afb4ddd1c034b19e9834dac56f129ae740f48534d34c69c7c8f7a384336ebb2944c29225ff12f8b046906f15c85d62e0a33ee1e26fa8cdafd5b4230f8a3080ce94c020921c94d3d80cf8e3b0005243578f5cb037d73d389cfca1f80e0d2f968feac4f065ffe3cb0ac3a25ca5c1ff5a7d310a614982b1fd43abc07e6b5975ba7d712426b37c55d1e490df0153a78786913ed7637b1d840bfde0e1b7d339417ed280b1ddb49ee61eafedbaaa0a8d2cbc5bdccb0afa62f64ea4ff187fa6628397f9891a1f34aa8dd36d70ce1b5f09bc0043a0bd1f8bdfb33e073ebbcea086bc8e8da27d76939786776a523785c8d9f855bdebf1edf10e03337ab01cd5cf01d1029cd73f7ed80e25303ae4adcc92c32141d362f09f0ddfd8ac96f4ac935755951deec4790aad73f2a0d0ea95e61d823c36e79179362117010e45868e93f897ed1215e540cf9cb2406d5b482db"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 1815.435454] FAULT_INJECTION: forcing a failure. [ 1815.435454] name failslab, interval 1, probability 0, space 0, times 0 [ 1815.438107] CPU: 1 PID: 10853 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1815.439588] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1815.441365] Call Trace: [ 1815.441929] dump_stack+0x107/0x167 [ 1815.442722] should_fail.cold+0x5/0xa [ 1815.443534] ? create_object.isra.0+0x3a/0xa20 [ 1815.444513] should_failslab+0x5/0x20 [ 1815.445320] kmem_cache_alloc+0x5b/0x310 [ 1815.446194] create_object.isra.0+0x3a/0xa20 [ 1815.447123] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1815.448203] __kmalloc_track_caller+0x177/0x370 [ 1815.449192] ? match_number+0xaf/0x1d0 [ 1815.449640] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1815.450033] kmemdup_nul+0x2d/0xa0 [ 1815.450055] match_number+0xaf/0x1d0 [ 1815.450078] ? match_u64+0x190/0x190 [ 1815.450108] ? __kmalloc_track_caller+0x2c6/0x370 [ 1815.450132] ? memcpy+0x39/0x60 [ 1815.450161] parse_opts.part.0+0x1f3/0x340 [ 1815.450189] ? p9_fd_show_options+0x1c0/0x1c0 [ 1815.457857] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1815.458982] ? trace_hardirqs_on+0x5b/0x180 [ 1815.459905] ? kfree+0xd7/0x340 [ 1815.460616] p9_fd_create+0x98/0x4a0 [ 1815.461413] ? p9_conn_create+0x510/0x510 [ 1815.462298] ? p9_client_create+0x798/0x1230 [ 1815.463230] ? kfree+0xd7/0x340 [ 1815.463944] p9_client_create+0x7ff/0x1230 [ 1815.464857] ? p9_client_flush+0x430/0x430 [ 1815.465769] ? trace_hardirqs_on+0x5b/0x180 [ 1815.466704] ? lockdep_init_map_type+0x2c7/0x780 [ 1815.467808] ? __raw_spin_lock_init+0x36/0x110 [ 1815.468803] v9fs_session_init+0x1dd/0x1680 [ 1815.469720] ? lock_release+0x680/0x680 [ 1815.470578] ? kmem_cache_alloc_trace+0x151/0x320 [ 1815.471600] ? v9fs_show_options+0x690/0x690 [ 1815.472533] ? trace_hardirqs_on+0x5b/0x180 [ 1815.473445] ? kasan_unpoison_shadow+0x33/0x50 [ 1815.474417] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1815.475491] v9fs_mount+0x79/0x8f0 [ 1815.476241] ? v9fs_write_inode+0x60/0x60 [ 1815.477125] legacy_get_tree+0x105/0x220 [ 1815.477997] vfs_get_tree+0x8e/0x300 [ 1815.478789] path_mount+0x1429/0x2120 [ 1815.479602] ? strncpy_from_user+0x9e/0x470 [ 1815.480512] ? finish_automount+0xa90/0xa90 [ 1815.481422] ? getname_flags.part.0+0x1dd/0x4f0 [ 1815.482419] ? _copy_from_user+0xfb/0x1b0 [ 1815.483357] __x64_sys_mount+0x282/0x300 [ 1815.484221] ? copy_mnt_ns+0xa00/0xa00 [ 1815.485053] do_syscall_64+0x33/0x40 [ 1815.485851] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1815.486948] RIP: 0033:0x7f9f6e930b19 [ 1815.487730] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1815.491608] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1815.493221] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1815.494743] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1815.496256] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1815.497767] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1815.499364] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1815.585381] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1815.587005] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1815.588669] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:37:32 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 34) 10:37:32 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000180)=ANY=[]) mkdirat(r0, &(0x7f0000000000)='./file2\x00', 0xa2) chdir(&(0x7f0000000040)='./file0\x00') r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'lo\x00'}) write$binfmt_aout(r2, &(0x7f00000008c0)={{0x108, 0x1, 0x3, 0x319, 0x160, 0x80, 0x38c, 0x1}, "5bc4fcc69c39142ed5dc89bb645f65a501504c2b0cc255d2e479d550ca232c1f87a04915190fff42b674abb702031c44d6eff929c918144443436422cd176cc70ebbf4b48b36a1472869ec02e39bdd7be60a91f071a4e827e93005fae5601d9a5326801578abe79d3766236285656d32037accba27ee5307276a9ecbc71c60909258b6169b6facb42b", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x8a9) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x406e2, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r3, 0x0, 0x2a, &(0x7f0000000800)={0x80000000, {{0x2, 0x4e22, @local}}}, 0x88) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x12, 0xffffffffffffffff, 0x8000000) syz_io_uring_submit(r4, 0x0, &(0x7f00000002c0)=@IORING_OP_FALLOCATE={0x11, 0x4, 0x0, @fd_index=0x8000002, 0x0, 0x0, 0x5}, 0x80000001) r5 = socket$unix(0x1, 0x1, 0x0) r6 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000280)='/proc/zoneinfo\x00', 0x0, 0x0) r7 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000300), 0x408000, 0x0) r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000140)={'lo\x00'}) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000440)={{0x1, 0x1, 0x18, r1}, './file2/../file0\x00'}) syz_io_uring_submit(0x0, 0x0, &(0x7f00000004c0)=@IORING_OP_FILES_UPDATE={0x14, 0x4, 0x0, 0x0, 0x3f, &(0x7f0000000480)=[r0, r2, r5, r6, r2, r7, r2, r8, r3, r9], 0xa, 0x0, 0x1}, 0x40) openat(r3, &(0x7f0000000100)='./file1\x00', 0x20001, 0x41) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) 10:37:32 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x7400, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:37:32 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0x14, 0xf}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:37:32 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x3, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:37:32 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x192, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:37:32 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 25) 10:37:32 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 1831.786771] FAULT_INJECTION: forcing a failure. [ 1831.786771] name failslab, interval 1, probability 0, space 0, times 0 [ 1831.789720] CPU: 1 PID: 10879 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1831.791302] FAULT_INJECTION: forcing a failure. [ 1831.791302] name failslab, interval 1, probability 0, space 0, times 0 [ 1831.791497] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1831.791512] Call Trace: [ 1831.796473] dump_stack+0x107/0x167 [ 1831.797400] should_fail.cold+0x5/0xa [ 1831.798393] ? p9_fd_create+0x161/0x4a0 [ 1831.799413] should_failslab+0x5/0x20 [ 1831.800384] kmem_cache_alloc_trace+0x55/0x320 [ 1831.801555] p9_fd_create+0x161/0x4a0 [ 1831.802539] ? p9_conn_create+0x510/0x510 [ 1831.803589] ? p9_client_create+0x798/0x1230 [ 1831.804713] ? kfree+0xd7/0x340 [ 1831.805563] p9_client_create+0x7ff/0x1230 [ 1831.806666] ? p9_client_flush+0x430/0x430 [ 1831.807743] ? trace_hardirqs_on+0x5b/0x180 [ 1831.808850] ? lockdep_init_map_type+0x2c7/0x780 [ 1831.810068] ? __raw_spin_lock_init+0x36/0x110 [ 1831.811247] v9fs_session_init+0x1dd/0x1680 [ 1831.812435] ? lock_release+0x680/0x680 [ 1831.813285] ? kmem_cache_alloc_trace+0x151/0x320 [ 1831.814313] ? v9fs_show_options+0x690/0x690 [ 1831.815256] ? trace_hardirqs_on+0x5b/0x180 [ 1831.816166] ? kasan_unpoison_shadow+0x33/0x50 [ 1831.817138] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1831.818214] v9fs_mount+0x79/0x8f0 [ 1831.818980] ? v9fs_write_inode+0x60/0x60 [ 1831.819861] legacy_get_tree+0x105/0x220 [ 1831.820728] vfs_get_tree+0x8e/0x300 [ 1831.821515] path_mount+0x1429/0x2120 [ 1831.822336] ? strncpy_from_user+0x9e/0x470 [ 1831.823250] ? finish_automount+0xa90/0xa90 [ 1831.824162] ? getname_flags.part.0+0x1dd/0x4f0 [ 1831.825146] ? _copy_from_user+0xfb/0x1b0 [ 1831.826034] __x64_sys_mount+0x282/0x300 [ 1831.826912] ? copy_mnt_ns+0xa00/0xa00 [ 1831.827872] do_syscall_64+0x33/0x40 [ 1831.828659] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1831.829741] RIP: 0033:0x7f9f6e930b19 [ 1831.830539] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1831.834430] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1831.836035] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1831.837558] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1831.839075] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1831.840581] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1831.842089] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1831.843779] CPU: 0 PID: 10882 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1831.844999] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1831.846489] Call Trace: [ 1831.846979] dump_stack+0x107/0x167 [ 1831.847639] should_fail.cold+0x5/0xa [ 1831.848309] ? create_object.isra.0+0x3a/0xa20 [ 1831.849129] should_failslab+0x5/0x20 [ 1831.849805] kmem_cache_alloc+0x5b/0x310 [ 1831.850563] create_object.isra.0+0x3a/0xa20 [ 1831.851344] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1831.851414] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1831.852246] __kmalloc_track_caller+0x177/0x370 [ 1831.852265] ? p9_client_create+0x51e/0x1230 [ 1831.852289] kmemdup_nul+0x2d/0xa0 [ 1831.852307] p9_client_create+0x51e/0x1230 [ 1831.852340] ? p9_client_flush+0x430/0x430 [ 1831.857795] ? trace_hardirqs_on+0x5b/0x180 [ 1831.858640] ? lockdep_init_map_type+0x2c7/0x780 [ 1831.859474] ? __raw_spin_lock_init+0x36/0x110 [ 1831.860285] v9fs_session_init+0x1dd/0x1680 [ 1831.861049] ? lock_release+0x680/0x680 [ 1831.861753] ? kmem_cache_alloc_trace+0x151/0x320 [ 1831.862623] ? v9fs_show_options+0x690/0x690 [ 1831.863397] ? trace_hardirqs_on+0x5b/0x180 [ 1831.864146] ? kasan_unpoison_shadow+0x33/0x50 [ 1831.864940] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1831.865830] v9fs_mount+0x79/0x8f0 [ 1831.866477] ? v9fs_write_inode+0x60/0x60 [ 1831.867204] legacy_get_tree+0x105/0x220 [ 1831.867910] vfs_get_tree+0x8e/0x300 [ 1831.868560] path_mount+0x1429/0x2120 [ 1831.869226] ? strncpy_from_user+0x9e/0x470 [ 1831.869977] ? finish_automount+0xa90/0xa90 [ 1831.870764] ? getname_flags.part.0+0x1dd/0x4f0 [ 1831.871582] ? _copy_from_user+0xfb/0x1b0 [ 1831.872310] __x64_sys_mount+0x282/0x300 [ 1831.873018] ? copy_mnt_ns+0xa00/0xa00 [ 1831.873715] do_syscall_64+0x33/0x40 [ 1831.874389] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1831.875273] RIP: 0033:0x7fd3b79dfb19 [ 1831.875933] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1831.879188] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1831.880523] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1831.881752] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1831.883017] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1831.884254] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1831.885489] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1831.886913] hpet: Lost 1 RTC interrupts 10:37:32 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x7a00, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1831.915641] FAT-fs (loop3): bogus number of reserved sectors [ 1831.916794] FAT-fs (loop3): Can't find a valid FAT filesystem 10:37:32 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x1ea, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:37:32 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x4, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:37:32 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0x14, 0x10}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) [ 1831.949705] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1831.951359] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1831.953108] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 1831.955501] FAT-fs (loop3): bogus number of reserved sectors [ 1831.956591] FAT-fs (loop3): Can't find a valid FAT filesystem 10:37:32 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file1\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000000)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x881002, &(0x7f0000000000)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) 10:37:32 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1832.056150] loop3: detected capacity change from 0 to 41948160 [ 1832.089790] loop3: detected capacity change from 0 to 41948160 10:37:47 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 26) 10:37:47 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r0, 0x80489439, &(0x7f00000001c0)) 10:37:47 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote={0xac, 0x14, 0x11}}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:37:47 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x222, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:37:47 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 35) [ 1847.228828] loop3: detected capacity change from 0 to 41948160 [ 1847.236686] FAULT_INJECTION: forcing a failure. [ 1847.236686] name failslab, interval 1, probability 0, space 0, times 0 [ 1847.239120] CPU: 0 PID: 10926 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1847.240596] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1847.242380] Call Trace: 10:37:47 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x6, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1847.242966] dump_stack+0x107/0x167 10:37:47 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x8e01, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:37:47 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={0x0, 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 1847.243989] should_fail.cold+0x5/0xa [ 1847.244826] should_failslab+0x5/0x20 [ 1847.245647] __kmalloc_track_caller+0x79/0x370 [ 1847.246640] ? p9_client_create+0x598/0x1230 [ 1847.247579] ? kfree+0xd7/0x340 [ 1847.248294] kmemdup_nul+0x2d/0xa0 [ 1847.249057] p9_client_create+0x598/0x1230 [ 1847.250015] ? p9_client_flush+0x430/0x430 [ 1847.250936] ? trace_hardirqs_on+0x5b/0x180 [ 1847.251860] ? lockdep_init_map_type+0x2c7/0x780 [ 1847.252876] ? __raw_spin_lock_init+0x36/0x110 [ 1847.253860] v9fs_session_init+0x1dd/0x1680 [ 1847.254801] ? kmem_cache_alloc_trace+0x151/0x320 [ 1847.255827] ? v9fs_show_options+0x690/0x690 [ 1847.256778] ? trace_hardirqs_on+0x5b/0x180 [ 1847.257700] ? kasan_unpoison_shadow+0x33/0x50 [ 1847.258678] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1847.259760] v9fs_mount+0x79/0x8f0 [ 1847.260515] ? v9fs_write_inode+0x60/0x60 [ 1847.261400] legacy_get_tree+0x105/0x220 [ 1847.262271] vfs_get_tree+0x8e/0x300 [ 1847.263071] path_mount+0x1429/0x2120 [ 1847.263887] ? strncpy_from_user+0x9e/0x470 [ 1847.264813] ? finish_automount+0xa90/0xa90 [ 1847.265734] ? getname_flags.part.0+0x1dd/0x4f0 [ 1847.266739] ? _copy_from_user+0xfb/0x1b0 [ 1847.267628] __x64_sys_mount+0x282/0x300 [ 1847.268491] ? copy_mnt_ns+0xa00/0xa00 [ 1847.269331] do_syscall_64+0x33/0x40 [ 1847.270127] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1847.271220] RIP: 0033:0x7fd3b79dfb19 [ 1847.272015] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1847.275943] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1847.277577] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1847.279110] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1847.280631] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1847.282154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1847.283688] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1847.285457] hpet: Lost 2 RTC interrupts [ 1847.336517] FAULT_INJECTION: forcing a failure. [ 1847.336517] name failslab, interval 1, probability 0, space 0, times 0 [ 1847.338941] CPU: 0 PID: 10936 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1847.340416] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1847.342169] Call Trace: [ 1847.342754] dump_stack+0x107/0x167 [ 1847.343560] should_fail.cold+0x5/0xa [ 1847.344350] ? create_object.isra.0+0x3a/0xa20 [ 1847.345320] should_failslab+0x5/0x20 [ 1847.346125] kmem_cache_alloc+0x5b/0x310 [ 1847.346987] ? p9_fd_show_options+0x1c0/0x1c0 [ 1847.347917] create_object.isra.0+0x3a/0xa20 [ 1847.348846] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1847.349923] kmem_cache_alloc_trace+0x151/0x320 [ 1847.350928] p9_fd_create+0x161/0x4a0 [ 1847.351737] ? p9_conn_create+0x510/0x510 [ 1847.352622] ? p9_client_create+0x798/0x1230 [ 1847.353555] ? kfree+0xd7/0x340 [ 1847.354265] p9_client_create+0x7ff/0x1230 [ 1847.355182] ? p9_client_flush+0x430/0x430 [ 1847.356090] ? trace_hardirqs_on+0x5b/0x180 [ 1847.357019] ? lockdep_init_map_type+0x2c7/0x780 [ 1847.358028] ? __raw_spin_lock_init+0x36/0x110 [ 1847.359019] v9fs_session_init+0x1dd/0x1680 [ 1847.359939] ? lock_release+0x680/0x680 [ 1847.360796] ? kmem_cache_alloc_trace+0x151/0x320 [ 1847.361820] ? v9fs_show_options+0x690/0x690 [ 1847.362778] ? trace_hardirqs_on+0x5b/0x180 [ 1847.363694] ? kasan_unpoison_shadow+0x33/0x50 [ 1847.364664] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1847.365757] v9fs_mount+0x79/0x8f0 [ 1847.366523] ? v9fs_write_inode+0x60/0x60 [ 1847.367423] legacy_get_tree+0x105/0x220 [ 1847.368305] vfs_get_tree+0x8e/0x300 [ 1847.369101] path_mount+0x1429/0x2120 [ 1847.369916] ? strncpy_from_user+0x9e/0x470 [ 1847.370839] ? finish_automount+0xa90/0xa90 [ 1847.371758] ? getname_flags.part.0+0x1dd/0x4f0 [ 1847.372748] ? _copy_from_user+0xfb/0x1b0 [ 1847.373639] __x64_sys_mount+0x282/0x300 [ 1847.374511] ? copy_mnt_ns+0xa00/0xa00 [ 1847.375353] do_syscall_64+0x33/0x40 [ 1847.376149] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1847.377244] RIP: 0033:0x7f9f6e930b19 [ 1847.378036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1847.381978] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1847.383609] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1847.385133] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1847.386679] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1847.388199] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1847.389722] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1847.391497] hpet: Lost 3 RTC interrupts [ 1847.399341] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. 10:37:47 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x300, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:37:47 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x9601, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:37:47 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) openat(r1, &(0x7f0000000000)='./file1/file0\x00', 0x4000, 0x1) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) 10:37:47 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x7, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:37:47 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1={0xfc, 0x0}, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) [ 1847.499483] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1847.501152] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1847.502843] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:37:48 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x310, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:37:48 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1={0xfc, 0x2}, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:37:48 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) [ 1847.648317] FAT-fs (loop3): bogus number of reserved sectors [ 1847.649678] FAT-fs (loop3): Can't find a valid FAT filesystem [ 1847.667881] FAT-fs (loop3): bogus number of reserved sectors [ 1847.669208] FAT-fs (loop3): Can't find a valid FAT filesystem 10:38:06 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x8, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:38:06 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000bd81b87afc1f961b041591112692a5d1aab19c6a9e208d1c28da156afb4ddd1c034b19e9834dac56f129ae740f48534d34c69c7c8f7a384336ebb2944c29225ff12f8b046906f15c85d62e0a33ee1e26fa8cdafd5b4230f8a3080ce94c020921c94d3d80cf8e3b0005243578f5cb037d73d389cfca1f80e0d2f968feac4f065ffe3cb0ac3a25ca5c1ff5a7d310a614982b1fd43abc07e6b5975ba7d712426b37c55d1e490df0153a78786913ed7637b1d840bfde0e1b7d339417ed280b1ddb49ee61eafedbaaa0a8d2cbc5bdccb0afa62f64ea4ff187fa6628397f9891a1f34aa8dd36d70ce1b5f09bc0043a0bd1f8bdfb33e073ebbcea086bc8e8da27d76939786776a523785c8d9f855bdebf1edf10e03337ab01cd5cf01d1029cd73f7ed80e25303ae4adcc92c32141d362f09f0ddfd8ac96f4ac935755951deec4790aad73f2a0d0ea95e61d823c36e79179362117010e45868e93f897ed1215e540cf9cb2406d5b482db"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={0x0, 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:38:06 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1={0xfc, 0x14}, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:38:06 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x3c6, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1865.568140] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. 10:38:06 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xa101, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:38:06 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 27) 10:38:06 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 36) [ 1865.589970] FAULT_INJECTION: forcing a failure. [ 1865.589970] name failslab, interval 1, probability 0, space 0, times 0 [ 1865.594313] CPU: 0 PID: 10985 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1865.594536] FAULT_INJECTION: forcing a failure. [ 1865.594536] name failslab, interval 1, probability 0, space 0, times 0 [ 1865.595821] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1865.595829] Call Trace: [ 1865.595856] dump_stack+0x107/0x167 [ 1865.595884] should_fail.cold+0x5/0xa [ 1865.602040] ? p9_client_prepare_req.part.0+0x3a/0xac0 [ 1865.603172] should_failslab+0x5/0x20 [ 1865.603972] kmem_cache_alloc+0x5b/0x310 [ 1865.604845] p9_client_prepare_req.part.0+0x3a/0xac0 [ 1865.605930] p9_client_rpc+0x220/0x1370 [ 1865.606787] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1865.607908] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 1865.609108] ? pipe_poll+0x21b/0x800 [ 1865.609900] ? p9_fd_close+0x4a0/0x4a0 [ 1865.610736] ? wait_for_partner+0x3c0/0x3c0 [ 1865.611657] ? p9_fd_poll+0x1e0/0x2c0 [ 1865.612477] ? p9_fd_create+0x357/0x4a0 [ 1865.613311] ? p9_conn_create+0x510/0x510 [ 1865.614179] ? p9_client_create+0x798/0x1230 [ 1865.615107] ? kfree+0xd7/0x340 [ 1865.615818] p9_client_create+0xa76/0x1230 [ 1865.616735] ? p9_client_flush+0x430/0x430 [ 1865.617640] ? trace_hardirqs_on+0x5b/0x180 [ 1865.618532] ? lockdep_init_map_type+0x2c7/0x780 [ 1865.619532] ? __raw_spin_lock_init+0x36/0x110 [ 1865.620478] v9fs_session_init+0x1dd/0x1680 [ 1865.621421] ? lock_release+0x680/0x680 [ 1865.622300] ? kmem_cache_alloc_trace+0x151/0x320 [ 1865.623365] ? v9fs_show_options+0x690/0x690 [ 1865.624317] ? trace_hardirqs_on+0x5b/0x180 [ 1865.625225] ? kasan_unpoison_shadow+0x33/0x50 [ 1865.626173] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1865.627253] v9fs_mount+0x79/0x8f0 [ 1865.628019] ? v9fs_write_inode+0x60/0x60 [ 1865.628901] legacy_get_tree+0x105/0x220 [ 1865.629732] vfs_get_tree+0x8e/0x300 [ 1865.630534] path_mount+0x1429/0x2120 [ 1865.631334] ? strncpy_from_user+0x9e/0x470 [ 1865.632221] ? finish_automount+0xa90/0xa90 [ 1865.633134] ? getname_flags.part.0+0x1dd/0x4f0 [ 1865.634098] ? _copy_from_user+0xfb/0x1b0 [ 1865.634987] __x64_sys_mount+0x282/0x300 [ 1865.635870] ? copy_mnt_ns+0xa00/0xa00 [ 1865.636729] do_syscall_64+0x33/0x40 [ 1865.637541] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1865.638664] RIP: 0033:0x7f9f6e930b19 [ 1865.639485] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1865.643554] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1865.645178] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1865.646709] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1865.648231] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1865.649759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1865.651280] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1865.652844] CPU: 1 PID: 10987 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1865.653062] hpet: Lost 2 RTC interrupts [ 1865.654374] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1865.657152] Call Trace: [ 1865.657729] dump_stack+0x107/0x167 [ 1865.658521] should_fail.cold+0x5/0xa [ 1865.659371] ? create_object.isra.0+0x3a/0xa20 [ 1865.660367] should_failslab+0x5/0x20 [ 1865.661172] kmem_cache_alloc+0x5b/0x310 [ 1865.662030] create_object.isra.0+0x3a/0xa20 [ 1865.662980] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1865.664068] __kmalloc_track_caller+0x177/0x370 [ 1865.665052] ? p9_client_create+0x598/0x1230 [ 1865.665985] kmemdup_nul+0x2d/0xa0 [ 1865.666737] p9_client_create+0x598/0x1230 [ 1865.667638] ? p9_client_flush+0x430/0x430 [ 1865.668534] ? trace_hardirqs_on+0x5b/0x180 [ 1865.669446] ? lockdep_init_map_type+0x2c7/0x780 [ 1865.670452] ? __raw_spin_lock_init+0x36/0x110 [ 1865.671532] v9fs_session_init+0x1dd/0x1680 [ 1865.672466] ? lock_release+0x680/0x680 [ 1865.673332] ? kmem_cache_alloc_trace+0x151/0x320 [ 1865.674371] ? v9fs_show_options+0x690/0x690 10:38:06 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x109142, 0x2) r2 = openat2(r0, &(0x7f0000000000)='./file0/file0\x00', &(0x7f0000000100)={0x8042, 0x3, 0x3}, 0x18) fcntl$setlease(r2, 0x400, 0x4ffbc547af97b47) r3 = accept$inet(r1, 0x0, &(0x7f00000001c0)) ioctl$FITRIM(r3, 0xc0185879, &(0x7f0000000200)={0x9, 0x200, 0x7fffffff}) r4 = syz_io_uring_setup(0x3eb5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000340)=0x0) socket$inet_tcp(0x2, 0x1, 0x0) sendmsg$nl_generic(r4, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000280)={&(0x7f0000000500)=ANY=[@ANYBLOB="400000001c00f80027bd7000fedbdf2520000000e204a994c7f2fc2e8145a0b8ef04e76f973920ba0bca2fb85c34e538ae1b9a36056b45904b39630000000000"], 0x40}, 0x1, 0x0, 0x0, 0x8010}, 0x4000) syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x3, 0x0, @fd=r2, 0x100, 0x0, 0x1000, 0x6}, 0x6) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x12, r2, 0x0) r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x12, r4, 0x8000000) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f00000588c0)={0x0, [], 0x3, "809529ee5b9b60"}) syz_io_uring_submit(r7, r6, &(0x7f00000002c0)=@IORING_OP_FALLOCATE={0x11, 0x4, 0x0, @fd_index=0x8000002, 0x0, 0x0, 0x5}, 0x80000001) syz_io_uring_setup(0x200545a, &(0x7f0000000240)={0x0, 0x415b, 0x10, 0x2, 0x7b, 0x0, r1}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000300), &(0x7f0000000440)=0x0) syz_io_uring_submit(r7, r8, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x2, 0x0, 0x0, 0x9, &(0x7f0000000480)={0x77359400}, 0x1, 0x1, 0x1}, 0xfffffffe) r9 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x406e2, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r9, 0x0, 0x2a, &(0x7f0000000800)={0x80000000, {{0x2, 0x4e22, @local}}}, 0x88) dup2(0xffffffffffffffff, r9) [ 1865.675310] ? trace_hardirqs_on+0x5b/0x180 [ 1865.676400] ? kasan_unpoison_shadow+0x33/0x50 [ 1865.677385] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1865.678482] v9fs_mount+0x79/0x8f0 [ 1865.679269] ? v9fs_write_inode+0x60/0x60 [ 1865.680155] legacy_get_tree+0x105/0x220 [ 1865.681026] vfs_get_tree+0x8e/0x300 [ 1865.681811] path_mount+0x1429/0x2120 [ 1865.682615] ? strncpy_from_user+0x9e/0x470 [ 1865.683537] ? finish_automount+0xa90/0xa90 [ 1865.684453] ? getname_flags.part.0+0x1dd/0x4f0 [ 1865.685442] ? _copy_from_user+0xfb/0x1b0 [ 1865.686323] __x64_sys_mount+0x282/0x300 [ 1865.687322] ? copy_mnt_ns+0xa00/0xa00 [ 1865.688159] do_syscall_64+0x33/0x40 [ 1865.688964] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1865.690047] RIP: 0033:0x7fd3b79dfb19 [ 1865.690861] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1865.694773] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1865.696397] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1865.697918] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1865.699449] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1865.700983] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 10:38:06 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb7ea, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1865.702523] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 10:38:06 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x9, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1865.723594] loop3: detected capacity change from 0 to 41948160 [ 1865.754146] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1865.755959] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1865.757646] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:38:06 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:38:06 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x500, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:38:06 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 37) 10:38:06 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000bd81b87afc1f961b041591112692a5d1aab19c6a9e208d1c28da156afb4ddd1c034b19e9834dac56f129ae740f48534d34c69c7c8f7a384336ebb2944c29225ff12f8b046906f15c85d62e0a33ee1e26fa8cdafd5b4230f8a3080ce94c020921c94d3d80cf8e3b0005243578f5cb037d73d389cfca1f80e0d2f968feac4f065ffe3cb0ac3a25ca5c1ff5a7d310a614982b1fd43abc07e6b5975ba7d712426b37c55d1e490df0153a78786913ed7637b1d840bfde0e1b7d339417ed280b1ddb49ee61eafedbaaa0a8d2cbc5bdccb0afa62f64ea4ff187fa6628397f9891a1f34aa8dd36d70ce1b5f09bc0043a0bd1f8bdfb33e073ebbcea086bc8e8da27d76939786776a523785c8d9f855bdebf1edf10e03337ab01cd5cf01d1029cd73f7ed80e25303ae4adcc92c32141d362f09f0ddfd8ac96f4ac935755951deec4790aad73f2a0d0ea95e61d823c36e79179362117010e45868e93f897ed1215e540cf9cb2406d5b482db"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={0x0, 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 1865.938561] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1865.975999] FAULT_INJECTION: forcing a failure. [ 1865.975999] name failslab, interval 1, probability 0, space 0, times 0 [ 1865.978490] CPU: 1 PID: 11013 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1865.980023] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1865.981836] Call Trace: [ 1865.982424] dump_stack+0x107/0x167 [ 1865.983245] should_fail.cold+0x5/0xa [ 1865.984152] ? p9_fd_create+0x161/0x4a0 [ 1865.985019] should_failslab+0x5/0x20 [ 1865.985850] kmem_cache_alloc_trace+0x55/0x320 [ 1865.986872] p9_fd_create+0x161/0x4a0 [ 1865.987715] ? p9_conn_create+0x510/0x510 [ 1865.988627] ? p9_client_create+0x798/0x1230 [ 1865.989605] ? kfree+0xd7/0x340 [ 1865.990327] p9_client_create+0x7ff/0x1230 [ 1865.991268] ? p9_client_flush+0x430/0x430 [ 1865.992193] ? trace_hardirqs_on+0x5b/0x180 [ 1865.993152] ? lockdep_init_map_type+0x2c7/0x780 [ 1865.994166] ? __raw_spin_lock_init+0x36/0x110 [ 1865.995141] v9fs_session_init+0x1dd/0x1680 [ 1865.996057] ? lock_release+0x680/0x680 [ 1865.996898] ? kmem_cache_alloc_trace+0x151/0x320 [ 1865.997913] ? v9fs_show_options+0x690/0x690 [ 1865.998862] ? trace_hardirqs_on+0x5b/0x180 [ 1865.999910] ? kasan_unpoison_shadow+0x33/0x50 [ 1866.000884] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1866.001970] v9fs_mount+0x79/0x8f0 [ 1866.002741] ? v9fs_write_inode+0x60/0x60 [ 1866.003624] legacy_get_tree+0x105/0x220 [ 1866.004484] vfs_get_tree+0x8e/0x300 [ 1866.005274] path_mount+0x1429/0x2120 [ 1866.006081] ? strncpy_from_user+0x9e/0x470 [ 1866.007000] ? finish_automount+0xa90/0xa90 [ 1866.007923] ? getname_flags.part.0+0x1dd/0x4f0 [ 1866.008877] ? _copy_from_user+0xfb/0x1b0 [ 1866.009754] __x64_sys_mount+0x282/0x300 [ 1866.010610] ? copy_mnt_ns+0xa00/0xa00 [ 1866.011459] do_syscall_64+0x33/0x40 [ 1866.012250] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1866.013344] RIP: 0033:0x7f9f6e930b19 [ 1866.014135] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1866.018157] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1866.019780] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1866.021309] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1866.022820] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1866.024343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1866.025889] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1866.055464] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1866.057109] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1866.058786] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:38:21 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:38:21 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xa, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:38:21 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 38) 10:38:21 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x600, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:38:21 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000200), &(0x7f00000000c0)='./file2\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000080)=ANY=[@ANYRES16, @ANYRES64=0x0]) chdir(&(0x7f0000000040)='./file0\x00') lsetxattr$security_evm(&(0x7f0000000000)='.\x00', &(0x7f0000000100), &(0x7f00000001c0)=@sha1={0x1, "39a82caf6ff17849d77f43f1dd87efd47e3aa2b7"}, 0x15, 0x2) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x1013e2, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) execveat(r0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000440)=[&(0x7f0000000280)='vfat\x00', &(0x7f0000000300)='vfat\x00'], &(0x7f0000000500)=[&(0x7f0000000480)='!$\x00', &(0x7f00000004c0)='vfat\x00'], 0x100) 10:38:21 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb7eb, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:38:21 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1={0xfc, 0x1, '\x00', 0x2}, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:38:21 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 28) [ 1881.245419] FAULT_INJECTION: forcing a failure. [ 1881.245419] name failslab, interval 1, probability 0, space 0, times 0 [ 1881.247919] CPU: 0 PID: 11022 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1881.249402] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1881.251219] Call Trace: [ 1881.251784] dump_stack+0x107/0x167 [ 1881.252567] should_fail.cold+0x5/0xa [ 1881.253382] should_failslab+0x5/0x20 [ 1881.254195] __kmalloc_track_caller+0x79/0x370 [ 1881.255177] ? parse_opts.part.0+0x8e/0x340 [ 1881.256112] kstrdup+0x36/0x70 [ 1881.256812] parse_opts.part.0+0x8e/0x340 [ 1881.257698] ? p9_fd_show_options+0x1c0/0x1c0 [ 1881.258664] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1881.259790] ? quarantine_put+0x8b/0x1a0 [ 1881.260656] ? trace_hardirqs_on+0x5b/0x180 [ 1881.261582] ? kfree+0xd7/0x340 [ 1881.262292] p9_fd_create+0x98/0x4a0 [ 1881.263092] ? p9_conn_create+0x510/0x510 [ 1881.263974] ? p9_client_create+0x798/0x1230 [ 1881.264907] ? kfree+0xd7/0x340 [ 1881.265617] p9_client_create+0x7ff/0x1230 [ 1881.266523] ? p9_client_flush+0x430/0x430 [ 1881.267439] ? trace_hardirqs_on+0x5b/0x180 [ 1881.268367] ? lockdep_init_map_type+0x2c7/0x780 [ 1881.269375] ? __raw_spin_lock_init+0x36/0x110 [ 1881.270352] v9fs_session_init+0x1dd/0x1680 [ 1881.271283] ? lock_release+0x680/0x680 [ 1881.272137] ? kmem_cache_alloc_trace+0x151/0x320 [ 1881.273159] ? v9fs_show_options+0x690/0x690 [ 1881.274105] ? trace_hardirqs_on+0x5b/0x180 [ 1881.275035] ? kasan_unpoison_shadow+0x33/0x50 [ 1881.276001] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1881.277076] v9fs_mount+0x79/0x8f0 [ 1881.277841] ? v9fs_write_inode+0x60/0x60 [ 1881.278723] legacy_get_tree+0x105/0x220 [ 1881.279598] vfs_get_tree+0x8e/0x300 [ 1881.280391] path_mount+0x1429/0x2120 [ 1881.281212] ? strncpy_from_user+0x9e/0x470 [ 1881.282127] ? finish_automount+0xa90/0xa90 [ 1881.283078] ? getname_flags.part.0+0x1dd/0x4f0 [ 1881.284073] ? _copy_from_user+0xfb/0x1b0 [ 1881.284961] __x64_sys_mount+0x282/0x300 [ 1881.285836] ? copy_mnt_ns+0xa00/0xa00 [ 1881.286680] do_syscall_64+0x33/0x40 [ 1881.287482] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1881.287958] loop3: detected capacity change from 0 to 41948160 [ 1881.288569] RIP: 0033:0x7fd3b79dfb19 [ 1881.288596] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1881.290627] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1881.290682] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1881.298018] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1881.299550] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1881.300267] FAULT_INJECTION: forcing a failure. [ 1881.300267] name failslab, interval 1, probability 0, space 0, times 0 [ 1881.301068] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1881.301081] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1881.301093] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1881.301445] hpet: Lost 3 RTC interrupts [ 1881.303687] CPU: 1 PID: 11031 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1881.307141] 9pnet: Insufficient options for proto=fd [ 1881.308291] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1881.308297] Call Trace: [ 1881.308325] dump_stack+0x107/0x167 [ 1881.308351] should_fail.cold+0x5/0xa [ 1881.308373] ? p9_fcall_init+0x97/0x290 [ 1881.308396] should_failslab+0x5/0x20 [ 1881.308415] __kmalloc+0x72/0x390 [ 1881.308439] p9_fcall_init+0x97/0x290 [ 1881.308463] p9_client_prepare_req.part.0+0x8c/0xac0 [ 1881.308490] p9_client_rpc+0x220/0x1370 [ 1881.320351] FAT-fs (loop3): Unrecognized mount option "ÿÿ" or missing value [ 1881.320720] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1881.323322] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 1881.324464] ? pipe_poll+0x21b/0x800 [ 1881.325254] ? p9_fd_close+0x4a0/0x4a0 [ 1881.326083] ? wait_for_partner+0x3c0/0x3c0 [ 1881.327021] ? p9_fd_poll+0x1e0/0x2c0 [ 1881.327899] ? p9_fd_create+0x357/0x4a0 [ 1881.328752] ? p9_conn_create+0x510/0x510 [ 1881.329638] ? p9_client_create+0x798/0x1230 [ 1881.330575] ? kfree+0xd7/0x340 [ 1881.331299] p9_client_create+0xa76/0x1230 [ 1881.332207] ? p9_client_flush+0x430/0x430 [ 1881.333108] ? trace_hardirqs_on+0x5b/0x180 [ 1881.334026] ? lockdep_init_map_type+0x2c7/0x780 [ 1881.335043] ? __raw_spin_lock_init+0x36/0x110 [ 1881.336026] v9fs_session_init+0x1dd/0x1680 [ 1881.336946] ? lock_release+0x680/0x680 [ 1881.337804] ? kmem_cache_alloc_trace+0x151/0x320 [ 1881.338825] ? v9fs_show_options+0x690/0x690 [ 1881.339775] ? trace_hardirqs_on+0x5b/0x180 [ 1881.340696] ? kasan_unpoison_shadow+0x33/0x50 [ 1881.341667] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1881.342751] v9fs_mount+0x79/0x8f0 [ 1881.343592] ? v9fs_write_inode+0x60/0x60 [ 1881.344481] legacy_get_tree+0x105/0x220 [ 1881.345345] vfs_get_tree+0x8e/0x300 [ 1881.346138] path_mount+0x1429/0x2120 [ 1881.346970] ? strncpy_from_user+0x9e/0x470 [ 1881.347891] ? finish_automount+0xa90/0xa90 [ 1881.348804] ? getname_flags.part.0+0x1dd/0x4f0 [ 1881.349790] ? _copy_from_user+0xfb/0x1b0 [ 1881.350675] __x64_sys_mount+0x282/0x300 [ 1881.351544] ? copy_mnt_ns+0xa00/0xa00 [ 1881.352381] do_syscall_64+0x33/0x40 [ 1881.353179] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1881.354270] RIP: 0033:0x7f9f6e930b19 [ 1881.355073] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1881.358997] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1881.360699] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1881.362216] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1881.363757] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1881.365275] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1881.366814] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 10:38:21 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 29) [ 1881.423809] loop3: detected capacity change from 0 to 41948160 [ 1881.429596] FAT-fs (loop3): Unrecognized mount option "ÿÿ" or missing value [ 1881.437362] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1881.438917] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1881.440505] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:38:21 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x700, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:38:22 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 39) 10:38:22 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:38:22 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb7ec, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:38:22 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1={0xfc, 0x1, '\x00', 0xb}, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) [ 1881.525649] FAULT_INJECTION: forcing a failure. [ 1881.525649] name failslab, interval 1, probability 0, space 0, times 0 [ 1881.528118] CPU: 1 PID: 11047 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1881.529594] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1881.531520] Call Trace: [ 1881.532088] dump_stack+0x107/0x167 [ 1881.532864] should_fail.cold+0x5/0xa [ 1881.533677] ? create_object.isra.0+0x3a/0xa20 [ 1881.534653] should_failslab+0x5/0x20 [ 1881.535488] kmem_cache_alloc+0x5b/0x310 [ 1881.536355] ? legacy_get_tree+0x105/0x220 [ 1881.537260] ? vfs_get_tree+0x8e/0x300 [ 1881.538093] create_object.isra.0+0x3a/0xa20 [ 1881.539040] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1881.540127] __kmalloc_track_caller+0x177/0x370 [ 1881.541119] ? parse_opts.part.0+0x8e/0x340 [ 1881.542053] kstrdup+0x36/0x70 [ 1881.542739] parse_opts.part.0+0x8e/0x340 [ 1881.543635] ? p9_fd_show_options+0x1c0/0x1c0 [ 1881.544598] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1881.545711] ? quarantine_put+0x8b/0x1a0 [ 1881.546653] ? trace_hardirqs_on+0x5b/0x180 [ 1881.547607] ? kfree+0xd7/0x340 [ 1881.548319] p9_fd_create+0x98/0x4a0 [ 1881.549119] ? p9_conn_create+0x510/0x510 [ 1881.550007] ? p9_client_create+0x798/0x1230 [ 1881.550963] ? kfree+0xd7/0x340 [ 1881.551678] p9_client_create+0x7ff/0x1230 [ 1881.552594] ? p9_client_flush+0x430/0x430 [ 1881.553498] ? trace_hardirqs_on+0x5b/0x180 [ 1881.554418] ? lockdep_init_map_type+0x2c7/0x780 [ 1881.555435] ? __raw_spin_lock_init+0x36/0x110 [ 1881.556413] v9fs_session_init+0x1dd/0x1680 [ 1881.557347] ? lock_release+0x680/0x680 [ 1881.558198] ? kmem_cache_alloc_trace+0x151/0x320 [ 1881.559237] ? v9fs_show_options+0x690/0x690 [ 1881.560182] ? trace_hardirqs_on+0x5b/0x180 [ 1881.561101] ? kasan_unpoison_shadow+0x33/0x50 [ 1881.562069] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1881.563257] v9fs_mount+0x79/0x8f0 [ 1881.564014] ? v9fs_write_inode+0x60/0x60 [ 1881.564897] legacy_get_tree+0x105/0x220 [ 1881.565756] vfs_get_tree+0x8e/0x300 [ 1881.566545] path_mount+0x1429/0x2120 [ 1881.567374] ? strncpy_from_user+0x9e/0x470 [ 1881.568292] ? finish_automount+0xa90/0xa90 [ 1881.569210] ? getname_flags.part.0+0x1dd/0x4f0 [ 1881.570199] ? _copy_from_user+0xfb/0x1b0 [ 1881.571098] __x64_sys_mount+0x282/0x300 [ 1881.571961] ? copy_mnt_ns+0xa00/0xa00 [ 1881.572799] do_syscall_64+0x33/0x40 [ 1881.573590] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1881.574680] RIP: 0033:0x7fd3b79dfb19 [ 1881.575481] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1881.579502] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1881.581135] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1881.582660] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1881.584193] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1881.585713] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1881.587253] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 10:38:22 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') sendmsg$unix(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f00000001c0)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000000)=[{&(0x7f0000000440)="b3855cef9a3abd5968a1f234445ce58656b8067ee47c83e7443941ac011d657878b307ed8cad36f7ac7f062bc14db4a730a6ed9e84fde7dc61851ae1c76f0cb9213ceed5a331d1361d77a586e70e396d41bca1531c83dca0b211345ed1298f527afda406ec6e25a3d7d59bffceea5bd2981dde9cdbcd01e5354f4801f374018a2a376cd023956b7ca6742c4e62d338641f5299957c27debc57", 0x99}, {&(0x7f0000000500)="275c0624c05f31966124d3828529660aec8f021421e774b69c2f5beb5dc0dafa2adc7188212111eab7fa9cc79649fd65597e97c138309047196f7b3132bdc10b5e28369dc8c56a07892078f9e5c6a10048ecf458414a4368bec922429918c8598efdc727d108fc0ff92ec5996ef537b774a8a643881323ad3bd9724f693efde7c29d0b3f4eb8232e47fcec1d4a898d9cace1c7bc79214161c139eca31efa7ebecb", 0xa1}], 0x2, 0x0, 0x0, 0x40}, 0x2004c040) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) 10:38:22 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 1881.667178] FAULT_INJECTION: forcing a failure. [ 1881.667178] name failslab, interval 1, probability 0, space 0, times 0 [ 1881.670142] CPU: 1 PID: 11061 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1881.671757] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1881.673524] Call Trace: [ 1881.674086] dump_stack+0x107/0x167 [ 1881.674861] should_fail.cold+0x5/0xa [ 1881.675688] ? p9_fcall_init+0x97/0x290 [ 1881.676538] should_failslab+0x5/0x20 [ 1881.677348] __kmalloc+0x72/0x390 [ 1881.678091] p9_fcall_init+0x97/0x290 [ 1881.678915] p9_client_prepare_req.part.0+0x8c/0xac0 [ 1881.679995] p9_client_rpc+0x220/0x1370 [ 1881.680841] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1881.681971] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 1881.683115] ? pipe_poll+0x21b/0x800 [ 1881.683910] ? p9_fd_close+0x4a0/0x4a0 [ 1881.684741] ? wait_for_partner+0x3c0/0x3c0 [ 1881.685669] ? p9_fd_poll+0x1e0/0x2c0 [ 1881.686489] ? p9_fd_create+0x357/0x4a0 [ 1881.687476] ? p9_conn_create+0x510/0x510 [ 1881.688360] ? p9_client_create+0x798/0x1230 [ 1881.689294] ? kfree+0xd7/0x340 [ 1881.690003] p9_client_create+0xa76/0x1230 [ 1881.690925] ? p9_client_flush+0x430/0x430 [ 1881.691824] ? trace_hardirqs_on+0x5b/0x180 [ 1881.692740] ? lockdep_init_map_type+0x2c7/0x780 [ 1881.693741] ? __raw_spin_lock_init+0x36/0x110 [ 1881.694714] v9fs_session_init+0x1dd/0x1680 [ 1881.695640] ? lock_release+0x680/0x680 [ 1881.696490] ? kmem_cache_alloc_trace+0x151/0x320 [ 1881.697511] ? v9fs_show_options+0x690/0x690 [ 1881.698450] ? trace_hardirqs_on+0x5b/0x180 [ 1881.699376] ? kasan_unpoison_shadow+0x33/0x50 [ 1881.700347] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1881.701445] v9fs_mount+0x79/0x8f0 [ 1881.702195] ? v9fs_write_inode+0x60/0x60 [ 1881.703222] legacy_get_tree+0x105/0x220 [ 1881.704096] vfs_get_tree+0x8e/0x300 [ 1881.704883] path_mount+0x1429/0x2120 [ 1881.705696] ? strncpy_from_user+0x9e/0x470 [ 1881.706614] ? finish_automount+0xa90/0xa90 [ 1881.707542] ? getname_flags.part.0+0x1dd/0x4f0 [ 1881.708537] ? _copy_from_user+0xfb/0x1b0 [ 1881.709421] __x64_sys_mount+0x282/0x300 [ 1881.710282] ? copy_mnt_ns+0xa00/0xa00 [ 1881.711134] do_syscall_64+0x33/0x40 [ 1881.711930] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1881.713018] RIP: 0033:0x7f9f6e930b19 [ 1881.713809] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1881.717730] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1881.719466] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1881.720986] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1881.722510] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1881.724095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1881.725626] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1881.754620] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. 10:38:22 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x900, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:38:22 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1={0xfc, 0x1, '\x00', 0xfc}, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:38:22 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xf, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:38:22 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb7ed, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:38:22 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 30) [ 1881.815435] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1881.817008] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1881.818942] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:38:22 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f000300}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:38:22 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb7ee, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:38:22 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:38:22 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xa00, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:38:22 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x10, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:38:22 executing program 3: ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) setsockopt$inet6_IPV6_PKTINFO(r1, 0x29, 0x32, &(0x7f0000000040)={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, r0}, 0xfffffffffffffec8) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'lo\x00'}) r3 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000000)="eb3c906d6bffff2e66717400020801000470008400f801", 0x17}, {0x0, 0x0, 0x7ff}], 0x0, &(0x7f0000000100)=ANY=[@ANYRES16=r0, @ANYRESDEC=r0, @ANYRESDEC=r2]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r3, &(0x7f0000000340)=""/214, 0xd6) [ 1881.967089] loop3: detected capacity change from 0 to 3584 [ 1881.972141] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1881.975968] FAULT_INJECTION: forcing a failure. [ 1881.975968] name failslab, interval 1, probability 0, space 0, times 0 [ 1881.979945] CPU: 0 PID: 11096 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1881.981442] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1881.983239] Call Trace: [ 1881.983817] dump_stack+0x107/0x167 [ 1881.984647] should_fail.cold+0x5/0xa [ 1881.985482] should_failslab+0x5/0x20 [ 1881.986309] __kmalloc_track_caller+0x79/0x370 [ 1881.987317] ? match_number+0xaf/0x1d0 [ 1881.988173] kmemdup_nul+0x2d/0xa0 [ 1881.988947] match_number+0xaf/0x1d0 [ 1881.989755] ? match_u64+0x190/0x190 [ 1881.990563] ? __kmalloc_track_caller+0x2c6/0x370 [ 1881.991638] ? memcpy+0x39/0x60 [ 1881.992361] parse_opts.part.0+0x1f3/0x340 [ 1881.993288] ? p9_fd_show_options+0x1c0/0x1c0 [ 1881.994263] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1881.995414] ? trace_hardirqs_on+0x5b/0x180 [ 1881.996359] ? kfree+0xd7/0x340 [ 1881.997089] p9_fd_create+0x98/0x4a0 [ 1881.997902] ? p9_conn_create+0x510/0x510 [ 1881.998804] ? p9_client_create+0x798/0x1230 [ 1881.999766] ? kfree+0xd7/0x340 [ 1882.000502] p9_client_create+0x7ff/0x1230 [ 1882.001434] ? p9_client_flush+0x430/0x430 [ 1882.002355] ? trace_hardirqs_on+0x5b/0x180 [ 1882.003304] ? lockdep_init_map_type+0x2c7/0x780 [ 1882.004351] ? __raw_spin_lock_init+0x36/0x110 [ 1882.005352] v9fs_session_init+0x1dd/0x1680 [ 1882.006309] ? lock_release+0x680/0x680 [ 1882.007200] ? kmem_cache_alloc_trace+0x151/0x320 [ 1882.008249] ? v9fs_show_options+0x690/0x690 [ 1882.009220] ? trace_hardirqs_on+0x5b/0x180 [ 1882.010157] ? kasan_unpoison_shadow+0x33/0x50 [ 1882.011159] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1882.012274] v9fs_mount+0x79/0x8f0 [ 1882.013056] ? v9fs_write_inode+0x60/0x60 [ 1882.013959] legacy_get_tree+0x105/0x220 [ 1882.014845] vfs_get_tree+0x8e/0x300 [ 1882.015661] path_mount+0x1429/0x2120 [ 1882.016499] ? strncpy_from_user+0x9e/0x470 [ 1882.017440] ? finish_automount+0xa90/0xa90 [ 1882.018388] ? getname_flags.part.0+0x1dd/0x4f0 [ 1882.019410] ? _copy_from_user+0xfb/0x1b0 [ 1882.020325] __x64_sys_mount+0x282/0x300 [ 1882.021203] ? copy_mnt_ns+0xa00/0xa00 [ 1882.022069] do_syscall_64+0x33/0x40 [ 1882.022889] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1882.024008] RIP: 0033:0x7fd3b79dfb19 [ 1882.024832] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1882.028820] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1882.030475] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1882.032027] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1882.033567] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1882.035265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1882.037079] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1882.039136] hpet: Lost 3 RTC interrupts [ 1882.046691] FAT-fs (loop3): Unrecognized mount option "ÿÿ1844674407370955161500000000000000000004" or missing value [ 1882.086420] 9pnet: Insufficient options for proto=fd [ 1882.106158] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1882.107791] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1882.111146] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:38:39 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 40) 10:38:39 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:38:39 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8914, &(0x7f0000000100)={'ip_vti0\x00', 0x0}) r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) setsockopt$inet6_IPV6_PKTINFO(r2, 0x29, 0x32, &(0x7f0000000040)={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, r1}, 0xfffffffffffffec8) fchmod(r2, 0x0) faccessat2(r2, &(0x7f0000000000)='./file1\x00', 0x63, 0x1200) ioctl$FS_IOC_GET_ENCRYPTION_NONCE(r2, 0x8010661b, &(0x7f0000000200)) chdir(&(0x7f0000000040)='./file0\x00') r3 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000140)={'lo\x00'}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r4, 0x81f8943c, &(0x7f0000000440)) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc0189379, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r3}, './file0\x00'}) [ 1898.526719] FAULT_INJECTION: forcing a failure. [ 1898.526719] name failslab, interval 1, probability 0, space 0, times 0 [ 1898.529194] CPU: 0 PID: 11114 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1898.530701] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1898.532571] Call Trace: [ 1898.533146] dump_stack+0x107/0x167 [ 1898.533934] should_fail.cold+0x5/0xa [ 1898.534761] ? p9_fcall_init+0x97/0x290 [ 1898.535640] should_failslab+0x5/0x20 [ 1898.536463] __kmalloc+0x72/0x390 [ 1898.537210] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1898.538308] p9_fcall_init+0x97/0x290 [ 1898.539440] p9_client_prepare_req.part.0+0xf4/0xac0 [ 1898.541010] p9_client_rpc+0x220/0x1370 [ 1898.541875] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1898.543015] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 1898.544181] ? pipe_poll+0x21b/0x800 [ 1898.544985] ? p9_fd_close+0x4a0/0x4a0 10:38:39 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb00, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:38:39 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb7ef, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:38:39 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f000500}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:38:39 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x2e, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:38:39 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 31) [ 1898.545824] ? wait_for_partner+0x3c0/0x3c0 [ 1898.546911] ? p9_fd_poll+0x1e0/0x2c0 [ 1898.547761] ? p9_fd_create+0x357/0x4a0 [ 1898.548622] ? p9_conn_create+0x510/0x510 [ 1898.549513] ? p9_client_create+0x798/0x1230 [ 1898.550466] ? kfree+0xd7/0x340 [ 1898.551233] p9_client_create+0xa76/0x1230 [ 1898.552157] ? p9_client_flush+0x430/0x430 [ 1898.553070] ? trace_hardirqs_on+0x5b/0x180 [ 1898.554002] ? lockdep_init_map_type+0x2c7/0x780 [ 1898.555024] ? __raw_spin_lock_init+0x36/0x110 [ 1898.556022] v9fs_session_init+0x1dd/0x1680 [ 1898.556953] ? lock_release+0x680/0x680 [ 1898.557819] ? kmem_cache_alloc_trace+0x151/0x320 [ 1898.558855] ? v9fs_show_options+0x690/0x690 [ 1898.559820] ? trace_hardirqs_on+0x5b/0x180 [ 1898.560512] FAULT_INJECTION: forcing a failure. [ 1898.560512] name failslab, interval 1, probability 0, space 0, times 0 [ 1898.560760] ? kasan_unpoison_shadow+0x33/0x50 [ 1898.564095] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1898.565188] v9fs_mount+0x79/0x8f0 [ 1898.565948] ? v9fs_write_inode+0x60/0x60 [ 1898.566840] legacy_get_tree+0x105/0x220 [ 1898.567729] vfs_get_tree+0x8e/0x300 [ 1898.568527] path_mount+0x1429/0x2120 [ 1898.569351] ? strncpy_from_user+0x9e/0x470 [ 1898.570279] ? finish_automount+0xa90/0xa90 [ 1898.571217] ? getname_flags.part.0+0x1dd/0x4f0 [ 1898.572218] ? _copy_from_user+0xfb/0x1b0 [ 1898.573116] __x64_sys_mount+0x282/0x300 [ 1898.573987] ? copy_mnt_ns+0xa00/0xa00 [ 1898.574840] do_syscall_64+0x33/0x40 [ 1898.575651] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1898.576758] RIP: 0033:0x7f9f6e930b19 [ 1898.577561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1898.581541] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1898.583192] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1898.584736] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1898.586275] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1898.587824] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1898.589364] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1898.590933] CPU: 1 PID: 11124 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1898.591275] hpet: Lost 3 RTC interrupts [ 1898.592573] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1898.595309] Call Trace: [ 1898.595878] dump_stack+0x107/0x167 [ 1898.596693] should_fail.cold+0x5/0xa [ 1898.597520] ? create_object.isra.0+0x3a/0xa20 [ 1898.598505] should_failslab+0x5/0x20 [ 1898.599336] kmem_cache_alloc+0x5b/0x310 [ 1898.600217] create_object.isra.0+0x3a/0xa20 [ 1898.601160] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1898.602257] __kmalloc_track_caller+0x177/0x370 [ 1898.603267] ? match_number+0xaf/0x1d0 [ 1898.604113] kmemdup_nul+0x2d/0xa0 [ 1898.604879] match_number+0xaf/0x1d0 [ 1898.605683] ? match_u64+0x190/0x190 [ 1898.606487] ? __kmalloc_track_caller+0x2c6/0x370 [ 1898.607535] ? memcpy+0x39/0x60 [ 1898.608394] parse_opts.part.0+0x1f3/0x340 [ 1898.609385] ? p9_fd_show_options+0x1c0/0x1c0 [ 1898.610366] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1898.611647] ? trace_hardirqs_on+0x5b/0x180 [ 1898.612707] ? kfree+0xd7/0x340 [ 1898.613547] p9_fd_create+0x98/0x4a0 [ 1898.614355] ? p9_conn_create+0x510/0x510 [ 1898.614731] loop3: detected capacity change from 0 to 41948160 [ 1898.615258] ? p9_client_create+0x798/0x1230 [ 1898.615277] ? kfree+0xd7/0x340 [ 1898.615304] p9_client_create+0x7ff/0x1230 [ 1898.619097] ? p9_client_flush+0x430/0x430 [ 1898.620009] ? trace_hardirqs_on+0x5b/0x180 [ 1898.620940] ? lockdep_init_map_type+0x2c7/0x780 [ 1898.621960] ? __raw_spin_lock_init+0x36/0x110 [ 1898.622953] v9fs_session_init+0x1dd/0x1680 [ 1898.623891] ? lock_release+0x680/0x680 [ 1898.624755] ? kmem_cache_alloc_trace+0x151/0x320 [ 1898.625878] ? v9fs_show_options+0x690/0x690 [ 1898.626837] ? trace_hardirqs_on+0x5b/0x180 [ 1898.627778] ? kasan_unpoison_shadow+0x33/0x50 [ 1898.628758] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1898.629855] v9fs_mount+0x79/0x8f0 [ 1898.630620] ? v9fs_write_inode+0x60/0x60 [ 1898.631525] legacy_get_tree+0x105/0x220 [ 1898.632401] vfs_get_tree+0x8e/0x300 [ 1898.633203] path_mount+0x1429/0x2120 [ 1898.634030] ? strncpy_from_user+0x9e/0x470 [ 1898.634966] ? finish_automount+0xa90/0xa90 [ 1898.635907] ? getname_flags.part.0+0x1dd/0x4f0 [ 1898.636911] ? _copy_from_user+0xfb/0x1b0 [ 1898.637819] __x64_sys_mount+0x282/0x300 [ 1898.638694] ? copy_mnt_ns+0xa00/0xa00 [ 1898.639552] do_syscall_64+0x33/0x40 [ 1898.640371] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1898.641540] RIP: 0033:0x7fd3b79dfb19 [ 1898.642343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1898.646336] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1898.647995] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1898.649538] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1898.651056] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1898.652561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1898.654054] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1898.665295] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. 10:38:39 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xf00, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:38:39 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x48, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:38:39 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') creat(&(0x7f0000000000)='./file0\x00', 0x20) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) [ 1898.745790] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1898.747393] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1898.749129] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:38:53 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 41) 10:38:53 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) r1 = creat(&(0x7f0000000000)='./file1\x00', 0x1) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) setsockopt$inet6_IPV6_PKTINFO(r3, 0x29, 0x32, &(0x7f0000000040)={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, r2}, 0xfffffffffffffec8) fchmod(r3, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r3, 0xc018937b, &(0x7f0000000100)={{0x1, 0x1, 0x18, r1, {0xee01}}, './file1\x00'}) 10:38:53 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 32) 10:38:53 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb7f0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:38:53 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f000600}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:38:53 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x4c, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:38:53 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x1001, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:38:53 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000bd81b87afc1f961b041591112692a5d1aab19c6a9e208d1c28da156afb4ddd1c034b19e9834dac56f129ae740f48534d34c69c7c8f7a384336ebb2944c29225ff12f8b046906f15c85d62e0a33ee1e26fa8cdafd5b4230f8a3080ce94c020921c94d3d80cf8e3b0005243578f5cb037d73d389cfca1f80e0d2f968feac4f065ffe3cb0ac3a25ca5c1ff5a7d310a614982b1fd43abc07e6b5975ba7d712426b37c55d1e490df0153a78786913ed7637b1d840bfde0e1b7d339417ed280b1ddb49ee61eafedbaaa0a8d2cbc5bdccb0afa62f64ea4ff187fa6628397f9891a1f34aa8dd36d70ce1b5f09bc0043a0bd1f8bdfb33e073ebbcea086bc8e8da27d76939786776a523785c8d9f855bdebf1edf10e03337ab01cd5cf01d1029cd73f7ed80e25303ae4adcc92c32141d362f09f0ddfd8ac96f4ac935755951deec4790aad73f2a0d0ea95e61d823c36e79179362117010e45868e93f897ed1215e540cf9cb2406d5b482db"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 1912.774274] FAULT_INJECTION: forcing a failure. [ 1912.774274] name failslab, interval 1, probability 0, space 0, times 0 [ 1912.777317] CPU: 1 PID: 11152 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1912.779077] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1912.781204] Call Trace: [ 1912.782026] dump_stack+0x107/0x167 [ 1912.782960] should_fail.cold+0x5/0xa [ 1912.783968] should_failslab+0x5/0x20 [ 1912.784946] __kmalloc_track_caller+0x79/0x370 [ 1912.786124] ? match_number+0xaf/0x1d0 [ 1912.787116] ? kfree+0xd7/0x340 [ 1912.787976] kmemdup_nul+0x2d/0xa0 [ 1912.788892] match_number+0xaf/0x1d0 [ 1912.789850] ? match_u64+0x190/0x190 [ 1912.790451] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1912.790800] ? __kmalloc_track_caller+0x2c6/0x370 [ 1912.790822] ? memcpy+0x39/0x60 [ 1912.790852] parse_opts.part.0+0x1f3/0x340 [ 1912.790880] ? p9_fd_show_options+0x1c0/0x1c0 [ 1912.790910] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1912.790930] ? trace_hardirqs_on+0x5b/0x180 [ 1912.790954] ? kfree+0xd7/0x340 [ 1912.790987] p9_fd_create+0x98/0x4a0 [ 1912.800388] ? p9_conn_create+0x510/0x510 [ 1912.801261] ? p9_client_create+0x798/0x1230 [ 1912.802186] ? kfree+0xd7/0x340 [ 1912.802889] p9_client_create+0x7ff/0x1230 [ 1912.803797] ? p9_client_flush+0x430/0x430 [ 1912.804692] ? trace_hardirqs_on+0x5b/0x180 [ 1912.805600] ? lockdep_init_map_type+0x2c7/0x780 [ 1912.806600] ? __raw_spin_lock_init+0x36/0x110 [ 1912.807577] v9fs_session_init+0x1dd/0x1680 [ 1912.808486] ? lock_release+0x680/0x680 [ 1912.809339] ? kmem_cache_alloc_trace+0x151/0x320 [ 1912.810374] ? v9fs_show_options+0x690/0x690 [ 1912.811318] ? trace_hardirqs_on+0x5b/0x180 [ 1912.812225] ? kasan_unpoison_shadow+0x33/0x50 [ 1912.813289] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1912.814364] v9fs_mount+0x79/0x8f0 [ 1912.815111] ? v9fs_write_inode+0x60/0x60 [ 1912.815996] legacy_get_tree+0x105/0x220 [ 1912.816853] vfs_get_tree+0x8e/0x300 [ 1912.817635] path_mount+0x1429/0x2120 [ 1912.818441] ? strncpy_from_user+0x9e/0x470 [ 1912.819185] FAULT_INJECTION: forcing a failure. [ 1912.819185] name failslab, interval 1, probability 0, space 0, times 0 [ 1912.819360] ? finish_automount+0xa90/0xa90 [ 1912.822592] ? getname_flags.part.0+0x1dd/0x4f0 [ 1912.823577] ? _copy_from_user+0xfb/0x1b0 [ 1912.824451] __x64_sys_mount+0x282/0x300 [ 1912.825297] ? copy_mnt_ns+0xa00/0xa00 [ 1912.826128] do_syscall_64+0x33/0x40 [ 1912.826909] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1912.827989] RIP: 0033:0x7fd3b79dfb19 [ 1912.828876] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1912.832754] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1912.834352] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1912.835860] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1912.837361] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1912.838860] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1912.840368] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1912.841899] CPU: 0 PID: 11168 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1912.842017] 9pnet: Insufficient options for proto=fd [ 1912.843382] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1912.843390] Call Trace: [ 1912.843421] dump_stack+0x107/0x167 [ 1912.847544] should_fail.cold+0x5/0xa [ 1912.848366] ? create_object.isra.0+0x3a/0xa20 [ 1912.849348] should_failslab+0x5/0x20 [ 1912.850160] kmem_cache_alloc+0x5b/0x310 [ 1912.851043] create_object.isra.0+0x3a/0xa20 [ 1912.851987] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1912.853061] __kmalloc+0x16e/0x390 [ 1912.853821] p9_fcall_init+0x97/0x290 [ 1912.854635] p9_client_prepare_req.part.0+0xf4/0xac0 [ 1912.855731] p9_client_rpc+0x220/0x1370 [ 1912.856575] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1912.857148] loop3: detected capacity change from 0 to 41948160 [ 1912.857688] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 1912.860052] ? pipe_poll+0x21b/0x800 [ 1912.860838] ? p9_fd_close+0x4a0/0x4a0 [ 1912.861656] ? wait_for_partner+0x3c0/0x3c0 10:38:53 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x1003, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1912.862569] ? p9_fd_poll+0x1e0/0x2c0 [ 1912.863563] ? p9_fd_create+0x357/0x4a0 [ 1912.864406] ? p9_conn_create+0x510/0x510 [ 1912.865294] ? p9_client_create+0x798/0x1230 [ 1912.866224] ? kfree+0xd7/0x340 [ 1912.866933] p9_client_create+0xa76/0x1230 [ 1912.867845] ? p9_client_flush+0x430/0x430 [ 1912.868745] ? trace_hardirqs_on+0x5b/0x180 [ 1912.869660] ? lockdep_init_map_type+0x2c7/0x780 [ 1912.870663] ? __raw_spin_lock_init+0x36/0x110 [ 1912.871643] v9fs_session_init+0x1dd/0x1680 [ 1912.872552] ? lock_release+0x680/0x680 [ 1912.873401] ? kmem_cache_alloc_trace+0x151/0x320 [ 1912.874420] ? v9fs_show_options+0x690/0x690 [ 1912.875365] ? trace_hardirqs_on+0x5b/0x180 [ 1912.876269] ? kasan_unpoison_shadow+0x33/0x50 [ 1912.877233] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1912.878313] v9fs_mount+0x79/0x8f0 [ 1912.879066] ? v9fs_write_inode+0x60/0x60 [ 1912.879950] legacy_get_tree+0x105/0x220 [ 1912.880807] vfs_get_tree+0x8e/0x300 [ 1912.881595] path_mount+0x1429/0x2120 [ 1912.882408] ? strncpy_from_user+0x9e/0x470 [ 1912.883327] ? finish_automount+0xa90/0xa90 [ 1912.884238] ? getname_flags.part.0+0x1dd/0x4f0 [ 1912.885227] ? _copy_from_user+0xfb/0x1b0 [ 1912.886277] __x64_sys_mount+0x282/0x300 [ 1912.887258] ? copy_mnt_ns+0xa00/0xa00 [ 1912.888178] do_syscall_64+0x33/0x40 [ 1912.889091] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1912.890257] RIP: 0033:0x7f9f6e930b19 [ 1912.891096] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1912.895269] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1912.896945] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1912.898514] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1912.900091] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1912.901670] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1912.903246] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1912.905144] hpet: Lost 3 RTC interrupts 10:38:53 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x5e, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:38:53 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb7f1, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1912.998121] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1912.999737] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1913.001705] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:38:53 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="c97387251a22b1", 0x7}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000000)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) 10:38:53 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x68, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1913.119591] loop3: detected capacity change from 0 to 41948160 [ 1913.126178] FAT-fs (loop3): bogus number of reserved sectors [ 1913.127513] FAT-fs (loop3): Can't find a valid FAT filesystem 10:39:11 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 42) 10:39:11 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f000700}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:39:11 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x6c, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:39:11 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r1 = socket$netlink(0x10, 0x3, 0xc) r2 = syz_open_dev$hidraw(&(0x7f0000000000), 0x0, 0x20001) sendfile(r1, r2, &(0x7f0000000100)=0xffffffffffffffff, 0x9) r3 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r4, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r5, 0x0) stat(&(0x7f0000001cc0)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0x0, r6, 0x0) mount$9p_fd(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000000440)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cache_loose}, {@version_u}], [{@appraise}, {@func={'func', 0x3d, 'MODULE_CHECK'}}, {@uid_lt={'uid<', 0xee01}}, {@euid_eq={'euid', 0x3d, r4}}, {@euid_eq={'euid', 0x3d, r5}}, {@uid_lt={'uid<', r6}}, {@smackfshat={'smackfshat', 0x3d, 'vfat\x00'}}, {@smackfshat={'smackfshat', 0x3d, '/dev/hidraw#\x00'}}, {@subj_type={'subj_type', 0x3d, 'E'}}]}}) 10:39:11 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x1020, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:39:11 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 33) 10:39:11 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb7f2, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1931.266141] FAULT_INJECTION: forcing a failure. [ 1931.266141] name failslab, interval 1, probability 0, space 0, times 0 [ 1931.268835] CPU: 0 PID: 11199 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1931.270385] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1931.272272] Call Trace: [ 1931.272860] dump_stack+0x107/0x167 [ 1931.273656] should_fail.cold+0x5/0xa 10:39:11 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 1931.274516] ? create_object.isra.0+0x3a/0xa20 [ 1931.275723] should_failslab+0x5/0x20 [ 1931.276556] kmem_cache_alloc+0x5b/0x310 [ 1931.277465] create_object.isra.0+0x3a/0xa20 [ 1931.278425] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1931.279555] __kmalloc_track_caller+0x177/0x370 [ 1931.280160] loop3: detected capacity change from 0 to 41948160 [ 1931.280575] ? match_number+0xaf/0x1d0 [ 1931.280604] kmemdup_nul+0x2d/0xa0 [ 1931.283720] match_number+0xaf/0x1d0 [ 1931.284534] ? match_u64+0x190/0x190 [ 1931.285357] ? __kmalloc_track_caller+0x2c6/0x370 [ 1931.286414] ? memcpy+0x39/0x60 [ 1931.287147] parse_opts.part.0+0x1f3/0x340 [ 1931.288067] ? p9_fd_show_options+0x1c0/0x1c0 [ 1931.289057] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1931.290190] ? trace_hardirqs_on+0x5b/0x180 [ 1931.291184] ? kfree+0xd7/0x340 [ 1931.292055] p9_fd_create+0x98/0x4a0 [ 1931.292908] ? p9_conn_create+0x510/0x510 [ 1931.293991] ? p9_client_create+0x798/0x1230 [ 1931.294985] ? kfree+0xd7/0x340 [ 1931.295868] p9_client_create+0x7ff/0x1230 [ 1931.296797] ? p9_client_flush+0x430/0x430 [ 1931.297702] ? trace_hardirqs_on+0x5b/0x180 [ 1931.298634] ? lockdep_init_map_type+0x2c7/0x780 [ 1931.299677] ? __raw_spin_lock_init+0x36/0x110 [ 1931.300662] v9fs_session_init+0x1dd/0x1680 [ 1931.301590] ? lock_release+0x680/0x680 [ 1931.302453] ? kmem_cache_alloc_trace+0x151/0x320 [ 1931.303496] ? v9fs_show_options+0x690/0x690 [ 1931.304623] ? trace_hardirqs_on+0x5b/0x180 [ 1931.305561] ? kasan_unpoison_shadow+0x33/0x50 [ 1931.306546] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1931.307634] v9fs_mount+0x79/0x8f0 [ 1931.308404] ? v9fs_write_inode+0x60/0x60 [ 1931.309309] legacy_get_tree+0x105/0x220 [ 1931.309868] FAULT_INJECTION: forcing a failure. [ 1931.309868] name failslab, interval 1, probability 0, space 0, times 0 [ 1931.310183] vfs_get_tree+0x8e/0x300 [ 1931.310203] path_mount+0x1429/0x2120 [ 1931.310234] ? strncpy_from_user+0x9e/0x470 [ 1931.310253] ? finish_automount+0xa90/0xa90 [ 1931.316750] ? getname_flags.part.0+0x1dd/0x4f0 [ 1931.317818] ? _copy_from_user+0xfb/0x1b0 [ 1931.318737] __x64_sys_mount+0x282/0x300 [ 1931.319631] ? copy_mnt_ns+0xa00/0xa00 [ 1931.320495] do_syscall_64+0x33/0x40 [ 1931.321301] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1931.322581] RIP: 0033:0x7fd3b79dfb19 [ 1931.323537] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1931.328020] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1931.329623] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1931.331133] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1931.332649] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1931.334163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1931.335682] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1931.337232] CPU: 1 PID: 11206 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1931.337645] hpet: Lost 3 RTC interrupts [ 1931.339084] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1931.342041] Call Trace: [ 1931.342683] dump_stack+0x107/0x167 [ 1931.343578] should_fail.cold+0x5/0xa [ 1931.344499] ? radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 1931.345887] should_failslab+0x5/0x20 [ 1931.346799] kmem_cache_alloc+0x5b/0x310 [ 1931.347803] radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 1931.349143] idr_get_free+0x4b5/0x8f0 [ 1931.350069] idr_alloc_u32+0x170/0x2d0 [ 1931.351010] ? __fprop_inc_percpu_max+0x130/0x130 [ 1931.352255] ? p9_client_prepare_req.part.0+0x20a/0xac0 [ 1931.353653] ? lock_release+0x680/0x680 [ 1931.354701] idr_alloc+0xc2/0x130 [ 1931.355597] ? idr_alloc_u32+0x2d0/0x2d0 [ 1931.356574] ? rwlock_bug.part.0+0x90/0x90 [ 1931.357647] p9_client_prepare_req.part.0+0x612/0xac0 [ 1931.358911] p9_client_rpc+0x220/0x1370 [ 1931.359945] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1931.361318] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 1931.362858] ? pipe_poll+0x21b/0x800 [ 1931.363799] ? p9_fd_close+0x4a0/0x4a0 [ 1931.364706] ? wait_for_partner+0x3c0/0x3c0 [ 1931.365716] ? p9_fd_poll+0x1e0/0x2c0 [ 1931.366609] ? p9_fd_create+0x357/0x4a0 [ 1931.367554] ? p9_conn_create+0x510/0x510 [ 1931.368533] ? p9_client_create+0x798/0x1230 [ 1931.369565] ? kfree+0xd7/0x340 [ 1931.370351] p9_client_create+0xa76/0x1230 [ 1931.371360] ? p9_client_flush+0x430/0x430 [ 1931.372381] ? trace_hardirqs_on+0x5b/0x180 [ 1931.373411] ? lockdep_init_map_type+0x2c7/0x780 [ 1931.374548] ? __raw_spin_lock_init+0x36/0x110 [ 1931.375767] v9fs_session_init+0x1dd/0x1680 [ 1931.376799] ? lock_release+0x680/0x680 [ 1931.377759] ? kmem_cache_alloc_trace+0x151/0x320 [ 1931.378908] ? v9fs_show_options+0x690/0x690 [ 1931.379987] ? trace_hardirqs_on+0x5b/0x180 [ 1931.381020] ? kasan_unpoison_shadow+0x33/0x50 [ 1931.382102] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1931.383331] v9fs_mount+0x79/0x8f0 [ 1931.384206] ? v9fs_write_inode+0x60/0x60 [ 1931.385226] legacy_get_tree+0x105/0x220 [ 1931.386205] vfs_get_tree+0x8e/0x300 [ 1931.386999] path_mount+0x1429/0x2120 [ 1931.387944] ? strncpy_from_user+0x9e/0x470 [ 1931.388983] ? finish_automount+0xa90/0xa90 [ 1931.390019] ? getname_flags.part.0+0x1dd/0x4f0 [ 1931.391092] ? _copy_from_user+0xfb/0x1b0 [ 1931.391996] __x64_sys_mount+0x282/0x300 [ 1931.392982] ? copy_mnt_ns+0xa00/0xa00 [ 1931.393938] do_syscall_64+0x33/0x40 [ 1931.394733] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1931.395962] RIP: 0033:0x7f9f6e930b19 [ 1931.396869] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1931.400929] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1931.402710] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1931.404485] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1931.406221] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1931.408007] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1931.409658] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1931.422572] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. 10:39:12 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) openat(r0, &(0x7f0000000000)='./file1\x00', 0x60100, 0x0) 10:39:12 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x74, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:39:12 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x2000, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1931.528684] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1931.530255] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1931.532222] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:39:12 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 43) 10:39:12 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f000900}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:39:12 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb7f3, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:39:12 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 1931.671304] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1931.685288] FAULT_INJECTION: forcing a failure. [ 1931.685288] name failslab, interval 1, probability 0, space 0, times 0 [ 1931.687908] CPU: 0 PID: 11233 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1931.689359] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1931.691090] Call Trace: [ 1931.691655] dump_stack+0x107/0x167 [ 1931.692427] should_fail.cold+0x5/0xa [ 1931.693230] ? create_object.isra.0+0x3a/0xa20 [ 1931.694188] should_failslab+0x5/0x20 [ 1931.694992] kmem_cache_alloc+0x5b/0x310 [ 1931.695863] create_object.isra.0+0x3a/0xa20 [ 1931.696781] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1931.697850] __kmalloc+0x16e/0x390 [ 1931.698600] p9_fcall_init+0x97/0x290 [ 1931.699401] p9_client_prepare_req.part.0+0xf4/0xac0 [ 1931.700490] p9_client_rpc+0x220/0x1370 [ 1931.701330] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1931.702441] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 1931.703599] ? pipe_poll+0x21b/0x800 [ 1931.704382] ? p9_fd_close+0x4a0/0x4a0 [ 1931.705195] ? wait_for_partner+0x3c0/0x3c0 [ 1931.706101] ? p9_fd_poll+0x1e0/0x2c0 [ 1931.706904] ? p9_fd_create+0x357/0x4a0 [ 1931.707745] ? p9_conn_create+0x510/0x510 [ 1931.708608] ? p9_client_create+0x798/0x1230 [ 1931.709525] ? kfree+0xd7/0x340 [ 1931.710231] p9_client_create+0xa76/0x1230 [ 1931.711123] ? p9_client_flush+0x430/0x430 [ 1931.712020] ? trace_hardirqs_on+0x5b/0x180 [ 1931.712923] ? lockdep_init_map_type+0x2c7/0x780 [ 1931.713932] ? __raw_spin_lock_init+0x36/0x110 [ 1931.714895] v9fs_session_init+0x1dd/0x1680 [ 1931.715821] ? lock_release+0x680/0x680 [ 1931.716780] ? kmem_cache_alloc_trace+0x151/0x320 [ 1931.718001] ? v9fs_show_options+0x690/0x690 [ 1931.719089] ? trace_hardirqs_on+0x5b/0x180 [ 1931.720082] ? kasan_unpoison_shadow+0x33/0x50 [ 1931.721062] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1931.722206] v9fs_mount+0x79/0x8f0 [ 1931.722995] ? v9fs_write_inode+0x60/0x60 [ 1931.723907] legacy_get_tree+0x105/0x220 [ 1931.724779] vfs_get_tree+0x8e/0x300 [ 1931.725577] path_mount+0x1429/0x2120 [ 1931.726407] ? strncpy_from_user+0x9e/0x470 [ 1931.727338] ? finish_automount+0xa90/0xa90 [ 1931.728271] ? getname_flags.part.0+0x1dd/0x4f0 [ 1931.729262] ? _copy_from_user+0xfb/0x1b0 [ 1931.730149] __x64_sys_mount+0x282/0x300 [ 1931.731010] ? copy_mnt_ns+0xa00/0xa00 [ 1931.731860] do_syscall_64+0x33/0x40 [ 1931.732664] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1931.733768] RIP: 0033:0x7f9f6e930b19 [ 1931.734570] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1931.738501] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1931.740139] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1931.741657] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1931.743184] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1931.744723] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1931.746244] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1931.747960] hpet: Lost 2 RTC interrupts [ 1931.771307] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1931.772928] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1931.774726] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:39:33 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) getdents(0xffffffffffffff9c, &(0x7f00000001c0)=""/100, 0x64) 10:39:33 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000bd81b87afc1f961b041591112692a5d1aab19c6a9e208d1c28da156afb4ddd1c034b19e9834dac56f129ae740f48534d34c69c7c8f7a384336ebb2944c29225ff12f8b046906f15c85d62e0a33ee1e26fa8cdafd5b4230f8a3080ce94c020921c94d3d80cf8e3b0005243578f5cb037d73d389cfca1f80e0d2f968feac4f065ffe3cb0ac3a25ca5c1ff5a7d310a614982b1fd43abc07e6b5975ba7d712426b37c55d1e490df0153a78786913ed7637b1d840bfde0e1b7d339417ed280b1ddb49ee61eafedbaaa0a8d2cbc5bdccb0afa62f64ea4ff187fa6628397f9891a1f34aa8dd36d70ce1b5f09bc0043a0bd1f8bdfb33e073ebbcea086bc8e8da27d76939786776a523785c8d9f855bdebf1edf10e03337ab01cd5cf01d1029cd73f7ed80e25303ae4adcc92c32141d362f09f0ddfd8ac96f4ac935755951deec4790aad73f2a0d0ea95e61d823c36e79179362117010e45868e93f897ed1215e540cf9cb2406d5b482db"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:39:33 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 44) 10:39:33 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f000a00}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:39:33 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x7a, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:39:33 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 34) 10:39:33 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x2010, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:39:33 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb7f4, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1953.336237] loop3: detected capacity change from 0 to 41948160 [ 1953.341706] FAULT_INJECTION: forcing a failure. [ 1953.341706] name failslab, interval 1, probability 0, space 0, times 0 [ 1953.344186] CPU: 1 PID: 11260 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1953.345852] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1953.347677] Call Trace: [ 1953.348285] dump_stack+0x107/0x167 [ 1953.349097] should_fail.cold+0x5/0xa [ 1953.349977] ? create_object.isra.0+0x3a/0xa20 [ 1953.350970] should_failslab+0x5/0x20 [ 1953.351810] kmem_cache_alloc+0x5b/0x310 [ 1953.352692] create_object.isra.0+0x3a/0xa20 [ 1953.353669] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1953.354799] __kmalloc_track_caller+0x177/0x370 [ 1953.355815] ? match_number+0xaf/0x1d0 [ 1953.356661] kmemdup_nul+0x2d/0xa0 [ 1953.357428] match_number+0xaf/0x1d0 [ 1953.358270] ? match_u64+0x190/0x190 [ 1953.359071] ? __kmalloc_track_caller+0x2c6/0x370 [ 1953.360221] ? memcpy+0x39/0x60 [ 1953.360944] parse_opts.part.0+0x1f3/0x340 [ 1953.361896] ? p9_fd_show_options+0x1c0/0x1c0 [ 1953.362869] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1953.364006] ? trace_hardirqs_on+0x5b/0x180 [ 1953.364975] ? kfree+0xd7/0x340 [ 1953.365693] p9_fd_create+0x98/0x4a0 [ 1953.366490] ? p9_conn_create+0x510/0x510 [ 1953.367406] ? p9_client_create+0x798/0x1230 [ 1953.368369] ? kfree+0xd7/0x340 [ 1953.369127] p9_client_create+0x7ff/0x1230 [ 1953.370055] ? p9_client_flush+0x430/0x430 [ 1953.370965] ? trace_hardirqs_on+0x5b/0x180 [ 1953.371904] ? lockdep_init_map_type+0x2c7/0x780 [ 1953.372961] ? __raw_spin_lock_init+0x36/0x110 [ 1953.373935] v9fs_session_init+0x1dd/0x1680 [ 1953.374851] ? lock_release+0x680/0x680 [ 1953.375825] ? kmem_cache_alloc_trace+0x151/0x320 [ 1953.376901] ? v9fs_show_options+0x690/0x690 [ 1953.377858] ? trace_hardirqs_on+0x5b/0x180 [ 1953.378766] ? kasan_unpoison_shadow+0x33/0x50 [ 1953.379734] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1953.380858] v9fs_mount+0x79/0x8f0 [ 1953.381613] ? v9fs_write_inode+0x60/0x60 [ 1953.382491] legacy_get_tree+0x105/0x220 [ 1953.383347] vfs_get_tree+0x8e/0x300 [ 1953.384148] path_mount+0x1429/0x2120 [ 1953.385104] ? strncpy_from_user+0x9e/0x470 [ 1953.386199] ? finish_automount+0xa90/0xa90 [ 1953.387290] ? getname_flags.part.0+0x1dd/0x4f0 [ 1953.388479] ? _copy_from_user+0xfb/0x1b0 [ 1953.389580] __x64_sys_mount+0x282/0x300 [ 1953.390602] ? copy_mnt_ns+0xa00/0xa00 [ 1953.391752] do_syscall_64+0x33/0x40 [ 1953.392734] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1953.394037] RIP: 0033:0x7fd3b79dfb19 [ 1953.394979] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1953.399670] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1953.401650] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1953.403462] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1953.405334] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1953.407257] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1953.409125] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1953.420175] FAULT_INJECTION: forcing a failure. [ 1953.420175] name failslab, interval 1, probability 0, space 0, times 0 [ 1953.422732] CPU: 0 PID: 11257 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1953.424324] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1953.426245] Call Trace: [ 1953.426883] dump_stack+0x107/0x167 [ 1953.427729] should_fail.cold+0x5/0xa [ 1953.428603] ? radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 1953.429892] should_failslab+0x5/0x20 [ 1953.430746] kmem_cache_alloc+0x5b/0x310 [ 1953.431674] radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 1953.432960] idr_get_free+0x4b5/0x8f0 [ 1953.433831] idr_alloc_u32+0x170/0x2d0 [ 1953.434716] ? __fprop_inc_percpu_max+0x130/0x130 [ 1953.435848] ? p9_client_prepare_req.part.0+0x20a/0xac0 [ 1953.437067] ? lock_release+0x680/0x680 [ 1953.437949] idr_alloc+0xc2/0x130 [ 1953.438720] ? idr_alloc_u32+0x2d0/0x2d0 [ 1953.439608] ? rwlock_bug.part.0+0x90/0x90 [ 1953.440588] p9_client_prepare_req.part.0+0x612/0xac0 [ 1953.441752] p9_client_rpc+0x220/0x1370 [ 1953.442642] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1953.443830] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 1953.445004] ? pipe_poll+0x21b/0x800 [ 1953.445835] ? p9_fd_close+0x4a0/0x4a0 [ 1953.446696] ? wait_for_partner+0x3c0/0x3c0 [ 1953.447666] ? p9_fd_poll+0x1e0/0x2c0 [ 1953.448527] ? p9_fd_create+0x357/0x4a0 [ 1953.449418] ? p9_conn_create+0x510/0x510 [ 1953.450342] ? p9_client_create+0x798/0x1230 [ 1953.451319] ? kfree+0xd7/0x340 [ 1953.452065] p9_client_create+0xa76/0x1230 [ 1953.453017] ? p9_client_flush+0x430/0x430 [ 1953.453975] ? trace_hardirqs_on+0x5b/0x180 [ 1953.454948] ? lockdep_init_map_type+0x2c7/0x780 [ 1953.456014] ? __raw_spin_lock_init+0x36/0x110 [ 1953.457031] v9fs_session_init+0x1dd/0x1680 [ 1953.458006] ? lock_release+0x680/0x680 [ 1953.458905] ? kmem_cache_alloc_trace+0x151/0x320 [ 1953.460007] ? v9fs_show_options+0x690/0x690 [ 1953.461001] ? trace_hardirqs_on+0x5b/0x180 [ 1953.461969] ? kasan_unpoison_shadow+0x33/0x50 [ 1953.462967] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1953.464100] v9fs_mount+0x79/0x8f0 [ 1953.464901] ? v9fs_write_inode+0x60/0x60 [ 1953.465801] legacy_get_tree+0x105/0x220 [ 1953.466722] vfs_get_tree+0x8e/0x300 [ 1953.467554] path_mount+0x1429/0x2120 [ 1953.468425] ? strncpy_from_user+0x9e/0x470 [ 1953.469404] ? finish_automount+0xa90/0xa90 [ 1953.470368] ? getname_flags.part.0+0x1dd/0x4f0 [ 1953.471400] ? _copy_from_user+0xfb/0x1b0 [ 1953.472338] __x64_sys_mount+0x282/0x300 [ 1953.473252] ? copy_mnt_ns+0xa00/0xa00 [ 1953.474157] do_syscall_64+0x33/0x40 [ 1953.474982] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1953.476174] RIP: 0033:0x7f9f6e930b19 [ 1953.477022] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1953.481179] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1953.482891] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1953.484500] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1953.486113] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1953.487689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1953.489309] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1953.491260] hpet: Lost 4 RTC interrupts [ 1953.501152] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. 10:39:33 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb7f5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:39:33 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x160, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:39:34 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f000b00}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) [ 1953.598619] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1953.600578] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1953.602373] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:39:34 executing program 3: ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) setsockopt$inet6_IPV6_PKTINFO(r1, 0x29, 0x32, &(0x7f0000000040)={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, r0}, 0xfffffffffffffec8) fchmod(r1, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000000)={{0x1, 0x1, 0x18, r1, {0x3f, 0x1ff}}, './file1\x00'}) r2 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') syz_mount_image$iso9660(&(0x7f0000000100), &(0x7f00000001c0)='./file1/file0\x00', 0x4, 0x5, &(0x7f0000001580)=[{&(0x7f0000000200)="6174a99297e7840eda2eb40529071c294cd8550a56695ec375c4b1b72d5f7dac22134a5d71f03938c17d541df8119a9c2713c9ab22ed52d8baf2f979d03a454dc8a4e013ebd9a1ad307f5dc525ab0d59154b8bf3cdc130765eb273fc77a3f26aa7e7e8aff7d1d379a8a49df06707a4f2d79753012e1889c883b1a61555064fc39cdf8db37b7f19651ee58b3cd4824f6b181533f17168a09108ca7abc0fea85653819a0", 0xa3, 0x1}, {&(0x7f0000000300)="8d127e7ed5", 0x5, 0xff80000000000000}, {&(0x7f0000000440)="be82cf95a25e826f96b3a691b7b3268370740aa607784eb2ad94303e2fa0acc5499719b9fb3830877d5c8537073a8e63e7a55a79f2e29dafc54b572a26cd08881c8076e4fa87ccc920ab3423c6d00fb136259a5bca06af16a8bc1d9670dcd53a2b9a005d8413b2316178e6524feb55721b5bdb10893b3472e335d13a6460d5d69c26f4df6a4bb511a2ecd8e042235c40dadb7e9d556089089f3688ab73d2511189c1f040b0f661a4053f8e3affd8d16f8db348985bc198ea284b4137c286c589cac0107b67f69356882413ccbdff9ebeed545dce91e2c59f887889f5b514f4a1e2dcbc7832d2344f42e6c016b6a6eba71cfa73", 0xf3, 0x3}, {&(0x7f0000000540)="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", 0x1000, 0x101}, {&(0x7f0000001540)="ed0201131a2d7a06d0fc579caa0ac402e9c2b123a9c9071afb8947a8cce107b9ba1bb1c626c56458c968a7bac56c727ebc", 0x31, 0x6}], 0x80000, &(0x7f0000001600)={[{@dmode={'dmode', 0x3d, 0xff}}]}) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r2, &(0x7f0000000340)=""/214, 0xd6) 10:39:34 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x2202, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:39:34 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 35) [ 1953.701367] loop3: detected capacity change from 0 to 41948160 [ 1953.725086] FAULT_INJECTION: forcing a failure. [ 1953.725086] name failslab, interval 1, probability 0, space 0, times 0 [ 1953.727595] CPU: 0 PID: 11284 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1953.729076] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1953.730995] Call Trace: [ 1953.731611] dump_stack+0x107/0x167 [ 1953.732408] should_fail.cold+0x5/0xa [ 1953.733281] ? create_object.isra.0+0x3a/0xa20 [ 1953.734271] should_failslab+0x5/0x20 [ 1953.735158] kmem_cache_alloc+0x5b/0x310 [ 1953.736051] ? p9_fd_show_options+0x1c0/0x1c0 [ 1953.737030] create_object.isra.0+0x3a/0xa20 [ 1953.737984] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1953.739121] kmem_cache_alloc_trace+0x151/0x320 [ 1953.740188] p9_fd_create+0x161/0x4a0 [ 1953.741161] ? p9_conn_create+0x510/0x510 [ 1953.742080] ? p9_client_create+0x798/0x1230 [ 1953.743125] ? kfree+0xd7/0x340 [ 1953.743868] p9_client_create+0x7ff/0x1230 [ 1953.744777] ? p9_client_flush+0x430/0x430 [ 1953.745768] ? trace_hardirqs_on+0x5b/0x180 [ 1953.746697] ? lockdep_init_map_type+0x2c7/0x780 [ 1953.747805] ? __raw_spin_lock_init+0x36/0x110 [ 1953.748781] v9fs_session_init+0x1dd/0x1680 [ 1953.749745] ? lock_release+0x680/0x680 [ 1953.750617] ? kmem_cache_alloc_trace+0x151/0x320 [ 1953.751856] ? v9fs_show_options+0x690/0x690 [ 1953.752909] ? trace_hardirqs_on+0x5b/0x180 [ 1953.754032] ? kasan_unpoison_shadow+0x33/0x50 [ 1953.755046] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1953.756153] v9fs_mount+0x79/0x8f0 [ 1953.756956] ? v9fs_write_inode+0x60/0x60 [ 1953.757877] legacy_get_tree+0x105/0x220 [ 1953.758744] vfs_get_tree+0x8e/0x300 [ 1953.759554] path_mount+0x1429/0x2120 [ 1953.760399] ? strncpy_from_user+0x9e/0x470 [ 1953.761330] ? finish_automount+0xa90/0xa90 [ 1953.762270] ? getname_flags.part.0+0x1dd/0x4f0 [ 1953.763459] ? _copy_from_user+0xfb/0x1b0 [ 1953.764384] __x64_sys_mount+0x282/0x300 [ 1953.765310] ? copy_mnt_ns+0xa00/0xa00 [ 1953.766172] do_syscall_64+0x33/0x40 [ 1953.766987] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1953.768120] RIP: 0033:0x7fd3b79dfb19 [ 1953.768936] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1953.773008] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1953.774645] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1953.776237] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1953.777807] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1953.779382] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1953.780924] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1953.782719] hpet: Lost 3 RTC interrupts 10:39:49 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 36) 10:39:49 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x18e, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:39:49 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x406e2, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f0000000800)={0x80000000, {{0x2, 0x4e22, @local}}}, 0x88) clock_gettime(0x0, &(0x7f0000000100)={0x0, 0x0}) utimes(&(0x7f0000000000)='./file0\x00', &(0x7f0000000240)={{r3, r4/1000+60000}, {0x0, 0xea60}}) r5 = syz_io_uring_setup(0x76d4, &(0x7f0000000440)={0x0, 0xd697, 0x0, 0x1, 0x1cf}, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000000280)=0x0, &(0x7f0000000300)) ioctl$AUTOFS_DEV_IOCTL_READY(r2, 0xc0189376, &(0x7f00000006c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r5, @ANYBLOB="01000000000000002e2f666d6c653100897ea9c5dbff05cb0f102d56568e8092faa5fadbcc2a205c43f4d4abc24ae4bb03bfb518e77dbc4cbe3ec7cc7dd237fb48f22be40d58440236a7eb37be9da1ab1e3b54ac42879c142c153c1c917809c3ce3a0cd14cd1c0c91e07286f091df60a42f00d34363d30961e841060fd17cb890a8a277d3a1463ba34c65de6b6"]) pread64(r7, &(0x7f00000005c0)=""/214, 0xd6, 0x1000) creat(&(0x7f0000000540)='./file1\x00', 0x38) r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) syz_io_uring_submit(r6, 0x0, &(0x7f0000000500)=@IORING_OP_TIMEOUT={0xb, 0x1, 0x0, 0x0, 0xa, &(0x7f00000004c0)={0x0, 0x3938700}, 0x1, 0x1, 0x1, {0x0, r8}}, 0x6) ioctl$FS_IOC_GET_ENCRYPTION_KEY_STATUS(r2, 0xc080661a, &(0x7f00000001c0)={@id={0x2, 0x0, @auto="3a9c232172cc66885a2400d6ff893718"}}) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) 10:39:49 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="04002cbd7000fddbdf2575000000c401f08067000b00677cfd4589c7a40e1aae6b18247eb36f74f8f6793b7df9ae3ca9cfb2f5e87ed1ff361592201a1151eabf57ad6fd1950cd215131f67634030aa5f484986ad830a6243bac401c3ee44bff7cea60e881d5f9b616582cf28ec620ccd97d4ceb48c6727530f00050001000100000005000f004000000008000a000000000005000f000400000038010c80050003000300000003010200a207624e07c5690d555d459080990de6741a392aa42eff746330a20bec78fd393092b5f99f54b2a9f6dadb55db3c0846814e79eb43bf7bcd6295c96e7ca16288a8b27c5a225a6d718ad49f0366f969983400ba504c865cca04e4fa00a4b246fa618936f70fe77c1c3e550a5d12d4a9108e7e4216bc693107c3bd4c06e98ec9399de0e98cf205057cbbf688d8a13dc55472fc31954b846e29dbd7d8889b34ead6c83c9b533b666abd65490f2a7e693d55d91f24d5078eb3d34940c02ea1125e7176e254c6bd5531ed067817f0b3278e3dc492571b7da828e728a6fa55742efa33f430739c320b794841adba4c2875044dce9c8959eebe4a5b52d68f9868719f00280004800a000600ffffffffffff00000a000600ffffffffffff00000a000600ffffffffffff00000c01f0800a000200ee90b393fc10000046000b005cbb9f225903f92e0cffa77bd5369da32f70909f5950f26e59525d4d3c41b9e512f4a5d3b7aaaf8a0e03f2aa73274b24a04b4a689bf05844d0d2ad278696b14fb4c50000b4000d80af0000001263800a6541e18dae533feb73677b5c9d5da0ee4d7366d47dd6fa0b14ca33d3433171a533a29930fb5e0d9ff2ca710ab0c8aa4b331d58b4a7b3cac9c9b4ef9e7cdb1d3d6da7f0877a5c3ce7ff9bf9"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:39:49 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb7f6, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:39:49 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f000c00}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:39:49 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x27c5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:39:49 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 45) [ 1968.547056] FAULT_INJECTION: forcing a failure. [ 1968.547056] name failslab, interval 1, probability 0, space 0, times 0 [ 1968.548875] CPU: 0 PID: 11305 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1968.549938] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1968.551224] Call Trace: [ 1968.551634] dump_stack+0x107/0x167 [ 1968.552230] should_fail.cold+0x5/0xa [ 1968.552820] ? p9_client_prepare_req.part.0+0x3a/0xac0 [ 1968.553644] should_failslab+0x5/0x20 [ 1968.554138] kmem_cache_alloc+0x5b/0x310 [ 1968.554770] p9_client_prepare_req.part.0+0x3a/0xac0 [ 1968.555429] p9_client_rpc+0x220/0x1370 [ 1968.556068] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1968.556878] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 1968.557529] ? pipe_poll+0x21b/0x800 [ 1968.558103] ? p9_fd_close+0x4a0/0x4a0 [ 1968.558705] ? wait_for_partner+0x3c0/0x3c0 [ 1968.559370] ? p9_fd_poll+0x1e0/0x2c0 [ 1968.559977] ? p9_fd_create+0x357/0x4a0 [ 1968.560303] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1968.560601] ? p9_conn_create+0x510/0x510 [ 1968.563094] ? p9_client_create+0x798/0x1230 [ 1968.563813] ? kfree+0xd7/0x340 [ 1968.564332] p9_client_create+0xa76/0x1230 [ 1968.564998] ? p9_client_flush+0x430/0x430 [ 1968.565511] ? trace_hardirqs_on+0x5b/0x180 [ 1968.566170] ? lockdep_init_map_type+0x2c7/0x780 [ 1968.566904] ? __raw_spin_lock_init+0x36/0x110 [ 1968.567614] v9fs_session_init+0x1dd/0x1680 [ 1968.568292] ? lock_release+0x680/0x680 [ 1968.568913] ? kmem_cache_alloc_trace+0x151/0x320 [ 1968.569655] ? v9fs_show_options+0x690/0x690 [ 1968.570333] ? trace_hardirqs_on+0x5b/0x180 [ 1968.570731] FAULT_INJECTION: forcing a failure. [ 1968.570731] name failslab, interval 1, probability 0, space 0, times 0 [ 1968.570888] ? kasan_unpoison_shadow+0x33/0x50 [ 1968.573959] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1968.574742] v9fs_mount+0x79/0x8f0 [ 1968.575288] ? v9fs_write_inode+0x60/0x60 [ 1968.575926] legacy_get_tree+0x105/0x220 [ 1968.576448] vfs_get_tree+0x8e/0x300 [ 1968.576996] path_mount+0x1429/0x2120 [ 1968.577522] ? strncpy_from_user+0x9e/0x470 [ 1968.578110] ? finish_automount+0xa90/0xa90 [ 1968.578694] ? getname_flags.part.0+0x1dd/0x4f0 [ 1968.579315] ? _copy_from_user+0xfb/0x1b0 [ 1968.579864] __x64_sys_mount+0x282/0x300 [ 1968.580401] ? copy_mnt_ns+0xa00/0xa00 [ 1968.580923] do_syscall_64+0x33/0x40 [ 1968.581427] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1968.582098] RIP: 0033:0x7fd3b79dfb19 [ 1968.582579] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1968.585398] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1968.586564] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1968.587658] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1968.588764] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1968.589857] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1968.590952] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1968.592081] CPU: 1 PID: 11312 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1968.592189] hpet: Lost 1 RTC interrupts [ 1968.593721] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1968.596225] Call Trace: [ 1968.596812] dump_stack+0x107/0x167 [ 1968.597608] should_fail.cold+0x5/0xa [ 1968.598443] ? create_object.isra.0+0x3a/0xa20 [ 1968.599334] loop3: detected capacity change from 0 to 41948160 [ 1968.599445] should_failslab+0x5/0x20 [ 1968.601177] kmem_cache_alloc+0x5b/0x310 [ 1968.602072] create_object.isra.0+0x3a/0xa20 [ 1968.603030] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1968.604150] kmem_cache_alloc+0x159/0x310 [ 1968.605069] radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 1968.606255] idr_get_free+0x4b5/0x8f0 [ 1968.607108] idr_alloc_u32+0x170/0x2d0 [ 1968.607971] ? __fprop_inc_percpu_max+0x130/0x130 [ 1968.609029] ? p9_client_prepare_req.part.0+0x20a/0xac0 [ 1968.610256] ? lock_release+0x680/0x680 [ 1968.611126] idr_alloc+0xc2/0x130 [ 1968.611879] ? idr_alloc_u32+0x2d0/0x2d0 [ 1968.612767] ? rwlock_bug.part.0+0x90/0x90 [ 1968.613703] p9_client_prepare_req.part.0+0x612/0xac0 [ 1968.614835] p9_client_rpc+0x220/0x1370 [ 1968.615701] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1968.616856] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 1968.618020] ? pipe_poll+0x21b/0x800 [ 1968.618829] ? p9_fd_close+0x4a0/0x4a0 [ 1968.619671] ? wait_for_partner+0x3c0/0x3c0 [ 1968.620621] ? p9_fd_poll+0x1e0/0x2c0 [ 1968.621455] ? p9_fd_create+0x357/0x4a0 [ 1968.622319] ? p9_conn_create+0x510/0x510 [ 1968.623215] ? p9_client_create+0x798/0x1230 [ 1968.624180] ? kfree+0xd7/0x340 [ 1968.624905] p9_client_create+0xa76/0x1230 [ 1968.625887] ? p9_client_flush+0x430/0x430 [ 1968.626858] ? trace_hardirqs_on+0x5b/0x180 [ 1968.628079] ? lockdep_init_map_type+0x2c7/0x780 [ 1968.629335] ? __raw_spin_lock_init+0x36/0x110 [ 1968.630547] v9fs_session_init+0x1dd/0x1680 [ 1968.631684] ? lock_release+0x680/0x680 [ 1968.632752] ? kmem_cache_alloc_trace+0x151/0x320 [ 1968.634019] ? v9fs_show_options+0x690/0x690 [ 1968.635187] ? trace_hardirqs_on+0x5b/0x180 [ 1968.636335] ? kasan_unpoison_shadow+0x33/0x50 [ 1968.637533] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1968.638873] v9fs_mount+0x79/0x8f0 [ 1968.639809] ? v9fs_write_inode+0x60/0x60 [ 1968.640913] legacy_get_tree+0x105/0x220 [ 1968.642037] vfs_get_tree+0x8e/0x300 [ 1968.643019] path_mount+0x1429/0x2120 [ 1968.644046] ? strncpy_from_user+0x9e/0x470 [ 1968.645179] ? finish_automount+0xa90/0xa90 [ 1968.646306] ? getname_flags.part.0+0x1dd/0x4f0 [ 1968.647528] ? _copy_from_user+0xfb/0x1b0 [ 1968.648647] __x64_sys_mount+0x282/0x300 [ 1968.649710] ? copy_mnt_ns+0xa00/0xa00 [ 1968.650753] do_syscall_64+0x33/0x40 [ 1968.651733] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1968.653087] RIP: 0033:0x7f9f6e930b19 [ 1968.654069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1968.658463] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1968.660125] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1968.661664] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1968.663203] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1968.664757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1968.666297] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 10:39:49 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 37) 10:39:49 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x28c5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:39:49 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb7f7, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:39:49 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f000d00}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:39:49 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x1ea, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1968.708809] FAULT_INJECTION: forcing a failure. [ 1968.708809] name failslab, interval 1, probability 0, space 0, times 0 [ 1968.711338] CPU: 0 PID: 11324 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1968.712311] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1968.713494] Call Trace: [ 1968.713880] dump_stack+0x107/0x167 [ 1968.714411] should_fail.cold+0x5/0xa [ 1968.714967] ? create_object.isra.0+0x3a/0xa20 [ 1968.715633] should_failslab+0x5/0x20 [ 1968.716195] kmem_cache_alloc+0x5b/0x310 [ 1968.716775] create_object.isra.0+0x3a/0xa20 [ 1968.717423] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1968.718162] kmem_cache_alloc+0x159/0x310 [ 1968.718762] p9_client_prepare_req.part.0+0x3a/0xac0 [ 1968.719515] p9_client_rpc+0x220/0x1370 [ 1968.720100] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1968.720861] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 1968.721653] ? pipe_poll+0x21b/0x800 [ 1968.722200] ? p9_fd_close+0x4a0/0x4a0 [ 1968.722770] ? wait_for_partner+0x3c0/0x3c0 [ 1968.723401] ? p9_fd_poll+0x1e0/0x2c0 [ 1968.723837] ? p9_fd_create+0x357/0x4a0 [ 1968.724407] ? p9_conn_create+0x510/0x510 [ 1968.725006] ? p9_client_create+0x798/0x1230 [ 1968.725626] ? kfree+0xd7/0x340 [ 1968.726102] p9_client_create+0xa76/0x1230 [ 1968.726712] ? p9_client_flush+0x430/0x430 [ 1968.727321] ? trace_hardirqs_on+0x5b/0x180 [ 1968.727945] ? lockdep_init_map_type+0x2c7/0x780 [ 1968.728628] ? __raw_spin_lock_init+0x36/0x110 [ 1968.729288] v9fs_session_init+0x1dd/0x1680 [ 1968.729902] ? lock_release+0x680/0x680 [ 1968.730480] ? kmem_cache_alloc_trace+0x151/0x320 [ 1968.731171] ? v9fs_show_options+0x690/0x690 [ 1968.731808] ? trace_hardirqs_on+0x5b/0x180 [ 1968.732436] ? kasan_unpoison_shadow+0x33/0x50 [ 1968.733101] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1968.733827] v9fs_mount+0x79/0x8f0 [ 1968.734347] ? v9fs_write_inode+0x60/0x60 [ 1968.734943] legacy_get_tree+0x105/0x220 [ 1968.735527] vfs_get_tree+0x8e/0x300 [ 1968.736070] path_mount+0x1429/0x2120 [ 1968.736633] ? strncpy_from_user+0x9e/0x470 [ 1968.737268] ? finish_automount+0xa90/0xa90 [ 1968.737900] ? getname_flags.part.0+0x1dd/0x4f0 [ 1968.738575] ? _copy_from_user+0xfb/0x1b0 [ 1968.739173] __x64_sys_mount+0x282/0x300 [ 1968.739752] ? copy_mnt_ns+0xa00/0xa00 [ 1968.740321] do_syscall_64+0x33/0x40 [ 1968.740851] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1968.741590] RIP: 0033:0x7fd3b79dfb19 [ 1968.742117] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1968.744736] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1968.745827] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1968.746852] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1968.747875] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1968.748915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1968.749917] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1968.751095] hpet: Lost 2 RTC interrupts [ 1968.811202] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1968.813410] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1968.814343] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:39:49 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000000)=ANY=[@ANYBLOB="0100000a0100000018000000", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) r2 = accept$inet6(r1, 0x0, &(0x7f00000001c0)) bind(r2, &(0x7f0000000200)=@nfc={0x27, 0x1, 0x0, 0x2}, 0x80) unlinkat(r1, &(0x7f0000000100)='./file1\x00', 0x0) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) [ 1968.840817] loop3: detected capacity change from 0 to 41948160 10:40:04 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000bd81b87afc1f961b041591112692a5d1aab19c6a9e208d1c28da156afb4ddd1c034b19e9834dac56f129ae740f48534d34c69c7c8f7a384336ebb2944c29225ff12f8b046906f15c85d62e0a33ee1e26fa8cdafd5b4230f8a3080ce94c020921c94d3d80cf8e3b0005243578f5cb037d73d389cfca1f80e0d2f968feac4f065ffe3cb0ac3a25ca5c1ff5a7d310a614982b1fd43abc07e6b5975ba7d712426b37c55d1e490df0153a78786913ed7637b1d840bfde0e1b7d339417ed280b1ddb49ee61eafedbaaa0a8d2cbc5bdccb0afa62f64ea4ff187fa6628397f9891a1f34aa8dd36d70ce1b5f09bc0043a0bd1f8bdfb33e073ebbcea086bc8e8da27d76939786776a523785c8d9f855bdebf1edf10e03337ab01cd5cf01d1029cd73f7ed80e25303ae4adcc92c32141d362f09f0ddfd8ac96f4ac935755951deec4790aad73f2a0d0ea95e61d823c36e79179362117010e45868e93f897ed1215e540cf9cb2406d5b482db"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:40:04 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 46) 10:40:04 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f000e00}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:40:04 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x20200, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) getpeername(r1, &(0x7f00000001c0)=@l2={0x1f, 0x0, @none}, &(0x7f0000000240)=0x80) openat(r1, &(0x7f0000000100)='./file0\x00', 0x513c00, 0x8) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) 10:40:04 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x222, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:40:04 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb7f8, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:40:04 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 38) 10:40:04 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x29c5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1983.688990] FAULT_INJECTION: forcing a failure. [ 1983.688990] name failslab, interval 1, probability 0, space 0, times 0 [ 1983.691534] CPU: 1 PID: 11349 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1983.693097] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1983.694947] Call Trace: [ 1983.695543] dump_stack+0x107/0x167 [ 1983.696407] should_fail.cold+0x5/0xa [ 1983.697277] ? p9_fcall_init+0x97/0x290 [ 1983.698100] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1983.698195] should_failslab+0x5/0x20 [ 1983.701149] __kmalloc+0x72/0x390 [ 1983.701948] p9_fcall_init+0x97/0x290 [ 1983.702811] p9_client_prepare_req.part.0+0x8c/0xac0 [ 1983.703951] p9_client_rpc+0x220/0x1370 [ 1983.704825] loop3: detected capacity change from 0 to 41948160 [ 1983.704941] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1983.704973] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 1983.708813] ? pipe_poll+0x21b/0x800 [ 1983.709651] ? p9_fd_close+0x4a0/0x4a0 [ 1983.710526] ? wait_for_partner+0x3c0/0x3c0 [ 1983.711514] ? p9_fd_poll+0x1e0/0x2c0 [ 1983.712391] ? p9_fd_create+0x357/0x4a0 [ 1983.712781] FAULT_INJECTION: forcing a failure. [ 1983.712781] name failslab, interval 1, probability 0, space 0, times 0 [ 1983.713303] ? p9_conn_create+0x510/0x510 [ 1983.716940] ? p9_client_create+0x798/0x1230 [ 1983.717925] ? kfree+0xd7/0x340 [ 1983.718679] p9_client_create+0xa76/0x1230 [ 1983.719674] ? p9_client_flush+0x430/0x430 [ 1983.720657] ? trace_hardirqs_on+0x5b/0x180 [ 1983.721631] ? lockdep_init_map_type+0x2c7/0x780 [ 1983.722698] ? __raw_spin_lock_init+0x36/0x110 [ 1983.723738] v9fs_session_init+0x1dd/0x1680 [ 1983.724715] ? lock_release+0x680/0x680 [ 1983.725613] ? kmem_cache_alloc_trace+0x151/0x320 [ 1983.726690] ? v9fs_show_options+0x690/0x690 [ 1983.727680] ? trace_hardirqs_on+0x5b/0x180 [ 1983.728659] ? kasan_unpoison_shadow+0x33/0x50 [ 1983.729676] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1983.730810] v9fs_mount+0x79/0x8f0 [ 1983.731610] ? v9fs_write_inode+0x60/0x60 [ 1983.732557] legacy_get_tree+0x105/0x220 [ 1983.733466] vfs_get_tree+0x8e/0x300 [ 1983.734298] path_mount+0x1429/0x2120 [ 1983.735158] ? strncpy_from_user+0x9e/0x470 [ 1983.736135] ? finish_automount+0xa90/0xa90 [ 1983.737099] ? getname_flags.part.0+0x1dd/0x4f0 [ 1983.738142] ? _copy_from_user+0xfb/0x1b0 [ 1983.739081] __x64_sys_mount+0x282/0x300 [ 1983.739989] ? copy_mnt_ns+0xa00/0xa00 [ 1983.740882] do_syscall_64+0x33/0x40 [ 1983.741716] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1983.742867] RIP: 0033:0x7fd3b79dfb19 [ 1983.743698] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1983.747829] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1983.749543] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1983.751142] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1983.752748] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1983.754348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1983.755946] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1983.757604] CPU: 0 PID: 11360 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1983.759472] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1983.761542] Call Trace: [ 1983.762192] dump_stack+0x107/0x167 [ 1983.763080] should_fail.cold+0x5/0xa [ 1983.764006] ? radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 1983.765442] should_failslab+0x5/0x20 [ 1983.766374] kmem_cache_alloc+0x5b/0x310 [ 1983.767368] radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 1983.768758] idr_get_free+0x4b5/0x8f0 [ 1983.769700] idr_alloc_u32+0x170/0x2d0 [ 1983.770669] ? __fprop_inc_percpu_max+0x130/0x130 10:40:04 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x300, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1983.771844] ? p9_client_prepare_req.part.0+0x20a/0xac0 [ 1983.773289] ? lock_release+0x680/0x680 [ 1983.774266] idr_alloc+0xc2/0x130 [ 1983.775109] ? idr_alloc_u32+0x2d0/0x2d0 [ 1983.776108] ? rwlock_bug.part.0+0x90/0x90 [ 1983.777170] p9_client_prepare_req.part.0+0x612/0xac0 [ 1983.778427] p9_client_rpc+0x220/0x1370 [ 1983.779390] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1983.780708] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 1983.782008] ? pipe_poll+0x21b/0x800 [ 1983.782910] ? p9_fd_close+0x4a0/0x4a0 [ 1983.783978] ? wait_for_partner+0x3c0/0x3c0 [ 1983.785069] ? p9_fd_poll+0x1e0/0x2c0 [ 1983.786006] ? p9_fd_create+0x357/0x4a0 [ 1983.786972] ? p9_conn_create+0x510/0x510 [ 1983.787975] ? p9_client_create+0x798/0x1230 [ 1983.789065] ? kfree+0xd7/0x340 [ 1983.789871] p9_client_create+0xa76/0x1230 [ 1983.790894] ? p9_client_flush+0x430/0x430 [ 1983.791911] ? trace_hardirqs_on+0x5b/0x180 [ 1983.792984] ? lockdep_init_map_type+0x2c7/0x780 [ 1983.794120] ? __raw_spin_lock_init+0x36/0x110 [ 1983.795223] v9fs_session_init+0x1dd/0x1680 [ 1983.796287] ? lock_release+0x680/0x680 [ 1983.797259] ? kmem_cache_alloc_trace+0x151/0x320 [ 1983.798421] ? v9fs_show_options+0x690/0x690 [ 1983.799481] ? trace_hardirqs_on+0x5b/0x180 [ 1983.800544] ? kasan_unpoison_shadow+0x33/0x50 [ 1983.801630] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1983.802858] v9fs_mount+0x79/0x8f0 [ 1983.803721] ? v9fs_write_inode+0x60/0x60 [ 1983.804763] legacy_get_tree+0x105/0x220 [ 1983.805733] vfs_get_tree+0x8e/0x300 [ 1983.806630] path_mount+0x1429/0x2120 [ 1983.807553] ? strncpy_from_user+0x9e/0x470 [ 1983.808612] ? finish_automount+0xa90/0xa90 [ 1983.809649] ? getname_flags.part.0+0x1dd/0x4f0 [ 1983.810764] ? _copy_from_user+0xfb/0x1b0 [ 1983.811770] __x64_sys_mount+0x282/0x300 [ 1983.812827] ? copy_mnt_ns+0xa00/0xa00 [ 1983.813777] do_syscall_64+0x33/0x40 [ 1983.814666] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1983.815890] RIP: 0033:0x7f9f6e930b19 [ 1983.816819] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1983.821237] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1983.823059] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1983.824794] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1983.826513] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1983.828250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1983.829959] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1983.832263] hpet: Lost 7 RTC interrupts 10:40:04 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x2ac5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:40:04 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x310, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1983.939649] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1983.941334] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1983.943103] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:40:04 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb7f9, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:40:04 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f000f00}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:40:04 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x14) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) 10:40:04 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 47) 10:40:04 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x2bc5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:40:04 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 1984.084281] FAULT_INJECTION: forcing a failure. [ 1984.084281] name failslab, interval 1, probability 0, space 0, times 0 [ 1984.086583] CPU: 0 PID: 11383 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1984.087991] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1984.089749] Call Trace: [ 1984.090294] dump_stack+0x107/0x167 [ 1984.091058] should_fail.cold+0x5/0xa [ 1984.091844] ? create_object.isra.0+0x3a/0xa20 [ 1984.092822] should_failslab+0x5/0x20 [ 1984.093608] kmem_cache_alloc+0x5b/0x310 [ 1984.094447] create_object.isra.0+0x3a/0xa20 [ 1984.095378] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1984.096464] kmem_cache_alloc+0x159/0x310 [ 1984.097330] radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 1984.098487] idr_get_free+0x4b5/0x8f0 [ 1984.099293] idr_alloc_u32+0x170/0x2d0 [ 1984.100147] ? __fprop_inc_percpu_max+0x130/0x130 [ 1984.101162] ? p9_client_prepare_req.part.0+0x20a/0xac0 [ 1984.102440] ? lock_release+0x680/0x680 [ 1984.103451] idr_alloc+0xc2/0x130 [ 1984.104363] ? idr_alloc_u32+0x2d0/0x2d0 [ 1984.105385] ? rwlock_bug.part.0+0x90/0x90 [ 1984.106454] p9_client_prepare_req.part.0+0x612/0xac0 [ 1984.107760] p9_client_rpc+0x220/0x1370 [ 1984.108785] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1984.110116] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 1984.111462] ? pipe_poll+0x21b/0x800 [ 1984.112438] ? p9_fd_close+0x4a0/0x4a0 [ 1984.113420] ? wait_for_partner+0x3c0/0x3c0 [ 1984.114507] ? p9_fd_poll+0x1e0/0x2c0 10:40:04 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x3c6, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1984.115474] ? p9_fd_create+0x357/0x4a0 [ 1984.116566] ? p9_conn_create+0x510/0x510 [ 1984.117613] ? p9_client_create+0x798/0x1230 [ 1984.118707] ? kfree+0xd7/0x340 [ 1984.119539] p9_client_create+0xa76/0x1230 [ 1984.120643] ? p9_client_flush+0x430/0x430 [ 1984.121697] ? trace_hardirqs_on+0x5b/0x180 [ 1984.122772] ? lockdep_init_map_type+0x2c7/0x780 [ 1984.123953] ? __raw_spin_lock_init+0x36/0x110 [ 1984.125147] v9fs_session_init+0x1dd/0x1680 [ 1984.126222] ? lock_release+0x680/0x680 [ 1984.127211] ? kmem_cache_alloc_trace+0x151/0x320 [ 1984.128458] ? v9fs_show_options+0x690/0x690 [ 1984.129567] ? trace_hardirqs_on+0x5b/0x180 [ 1984.130656] ? kasan_unpoison_shadow+0x33/0x50 [ 1984.131792] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1984.133088] v9fs_mount+0x79/0x8f0 [ 1984.133965] ? v9fs_write_inode+0x60/0x60 [ 1984.134994] legacy_get_tree+0x105/0x220 [ 1984.136000] vfs_get_tree+0x8e/0x300 [ 1984.136956] path_mount+0x1429/0x2120 [ 1984.137902] ? strncpy_from_user+0x9e/0x470 [ 1984.138952] ? finish_automount+0xa90/0xa90 [ 1984.140017] ? getname_flags.part.0+0x1dd/0x4f0 [ 1984.141195] ? _copy_from_user+0xfb/0x1b0 [ 1984.142227] __x64_sys_mount+0x282/0x300 [ 1984.143229] ? copy_mnt_ns+0xa00/0xa00 [ 1984.144242] do_syscall_64+0x33/0x40 [ 1984.145130] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1984.146390] RIP: 0033:0x7f9f6e930b19 [ 1984.147303] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1984.152064] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1984.153966] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1984.155703] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1984.157476] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1984.159218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1984.161004] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1984.163145] hpet: Lost 4 RTC interrupts 10:40:04 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x2cc5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:40:04 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb7fa, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:40:04 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001100}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:40:04 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 39) [ 1984.259984] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1984.285048] FAULT_INJECTION: forcing a failure. [ 1984.285048] name failslab, interval 1, probability 0, space 0, times 0 [ 1984.287641] CPU: 0 PID: 11404 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1984.289197] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1984.291035] Call Trace: [ 1984.291616] dump_stack+0x107/0x167 [ 1984.292446] should_fail.cold+0x5/0xa [ 1984.293291] ? create_object.isra.0+0x3a/0xa20 [ 1984.294297] should_failslab+0x5/0x20 [ 1984.295134] kmem_cache_alloc+0x5b/0x310 [ 1984.296023] create_object.isra.0+0x3a/0xa20 [ 1984.297019] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1984.298171] __kmalloc+0x16e/0x390 [ 1984.298965] p9_fcall_init+0x97/0x290 [ 1984.299806] p9_client_prepare_req.part.0+0x8c/0xac0 [ 1984.300943] p9_client_rpc+0x220/0x1370 [ 1984.301816] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1984.302966] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 1984.304152] ? pipe_poll+0x21b/0x800 [ 1984.304973] ? p9_fd_close+0x4a0/0x4a0 [ 1984.305824] ? wait_for_partner+0x3c0/0x3c0 [ 1984.306770] ? p9_fd_poll+0x1e0/0x2c0 [ 1984.307609] ? p9_fd_create+0x357/0x4a0 [ 1984.308507] ? p9_conn_create+0x510/0x510 [ 1984.309417] ? p9_client_create+0x798/0x1230 [ 1984.310381] ? kfree+0xd7/0x340 [ 1984.311120] p9_client_create+0xa76/0x1230 [ 1984.312067] ? p9_client_flush+0x430/0x430 [ 1984.313038] ? trace_hardirqs_on+0x5b/0x180 [ 1984.313981] ? lockdep_init_map_type+0x2c7/0x780 [ 1984.315013] ? __raw_spin_lock_init+0x36/0x110 [ 1984.316016] v9fs_session_init+0x1dd/0x1680 [ 1984.316974] ? lock_release+0x680/0x680 [ 1984.317838] ? kmem_cache_alloc_trace+0x151/0x320 [ 1984.318887] ? v9fs_show_options+0x690/0x690 [ 1984.319837] ? trace_hardirqs_on+0x5b/0x180 [ 1984.320790] ? kasan_unpoison_shadow+0x33/0x50 [ 1984.321780] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1984.322869] v9fs_mount+0x79/0x8f0 [ 1984.323631] ? v9fs_write_inode+0x60/0x60 [ 1984.324555] legacy_get_tree+0x105/0x220 [ 1984.325431] vfs_get_tree+0x8e/0x300 [ 1984.326225] path_mount+0x1429/0x2120 [ 1984.327043] ? strncpy_from_user+0x9e/0x470 [ 1984.327964] ? finish_automount+0xa90/0xa90 [ 1984.328916] ? getname_flags.part.0+0x1dd/0x4f0 [ 1984.329910] ? _copy_from_user+0xfb/0x1b0 [ 1984.330804] __x64_sys_mount+0x282/0x300 [ 1984.331678] ? copy_mnt_ns+0xa00/0xa00 [ 1984.332572] do_syscall_64+0x33/0x40 [ 1984.333371] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1984.334464] RIP: 0033:0x7fd3b79dfb19 [ 1984.335256] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1984.339229] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1984.340874] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1984.342386] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1984.343907] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1984.345435] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1984.346957] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1984.348775] hpet: Lost 3 RTC interrupts [ 1984.395400] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1984.397227] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1984.399084] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:40:18 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 40) 10:40:18 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) newfstatat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x6000) sendmsg$nl_generic(r1, &(0x7f0000002b80)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000300)={&(0x7f0000000440)=ANY=[@ANYBLOB="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", @ANYRES32=r2, @ANYBLOB="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"], 0x2720}, 0x1, 0x0, 0x0, 0x4000000}, 0x4008000) ioctl$AUTOFS_IOC_EXPIRE(r1, 0x810c9365, &(0x7f00000059c0)={{0xc90, 0x4}, 0x100, './file0\x00'}) sendmmsg$inet6(r1, &(0x7f00000058c0)=[{{&(0x7f0000002bc0)={0xa, 0x4e20, 0x6, @local, 0x101}, 0x1c, &(0x7f0000002c40)=[{&(0x7f0000002c00)="63954114128cb975b9a64d", 0xb}], 0x1, &(0x7f0000002c80)=[@dstopts_2292={{0x20, 0x29, 0x4, {0x0, 0x0, '\x00', [@jumbo={0xc2, 0x4, 0x4}]}}}], 0x20}}, {{&(0x7f0000002cc0)={0xa, 0x4e24, 0x1, @private2={0xfc, 0x2, '\x00', 0x1}, 0x20}, 0x1c, &(0x7f0000004d00)=[{&(0x7f0000002d00)="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", 0x1000}, {&(0x7f0000003d00)="4fcf1e68412cd915462b2cf3c51c9429231d5e664e3ba57c496f690e8e79c921f9c05bd49656d904657fbaf1801dfab9626bf132d32fa2808a2d9a750864b074707a0393bc2b496f2e0ed58e0d94e8ef4deaa919c03f8224aa3d7665da1ea843c5f8eb55bdbf810add7fcdd2d3bcd04a60fc7a5186817c22293b42207f34db19e86b7b724a04f7c0045e9409d86dd1572003748c819926f740eba04043bf0a86129c2de45595b9483cfe8450d330ba0cd2c6635414a1f29592aa0244c64d211988c5c2ab4e35f8ee7ca5219db3c24d203d9b1b4a811888dc346dd07b9804b1766202a9844bf33ec34986f868bcb2ba1d449a9ce0ce71d0f812e62e7d0651ec09885a64cfad60caa74aad60bb972b61428d781a8dc24c33d5daf0302fe91ea666e674069160c8382e933a15b71777862cf9330febe58fba53444e976880cf573965202d22afc42cc447bab3aa5e002dda60d00db09d3c5a92c250053a03d3867e435d71038f8e93d1062c186760472d6caadbbff4a9e3da8970fd7f77eee48abc31f50121cc89fb8e0620fe70d15a6e635839e6afddae7b7c925397e56f6a7a2849374706775cfb0d2a4fceba9fa67effa8b4587b5da8def57478267319cd3e1ea753bdf726184dd40d1a003c3099908b68b6979540be97b7b0de3f62a3c48a477c831e26b41d9d2a06d43350e7705eaaa63b9187934f8715894db27b94d578b525d9778e29bbe868b804383c1f85c93fdcfa5abf162d8b78f67ecd3fcb54ccf32524bc90d39fdc660963a7cb8615657bb6034c09bb52e8b11131251f2b3c91f956ddd4ba15f2ac98cfe3eb6c563256bc6e189896d32d73872ef7d94b40edc07caa7f394fdd7651a1bdee43cb5697fcaa9ba2c4c03e350add406f3ba7e02a68272c06af564b82e83f092bee0094e99dec282227d4516e0985bba19606d581cededd5ccda3da271da98b67e1a57a575ac812f2500845f981a54ba1b4a9d847ea43f89409153adeb3bc75414af92fea189e1a21a44479a33b76104f3b80710bb279f7e328e199377e9c1645e717d0751cab4bf0109fc0da14de16a6147610f2f67047d31fe61d4c98c3130e9e85ac4fe14a7c882e8c2f1c517b12bb48fe8a419f51059fa6a9f50f1b081d171b800218740a8f416f3da95c7c11d4d9df3fd0388cc77d608898fcf91631380a9ae1d1e659d594f3bda22ce6eabf7efd60f2bd423bdf16d2e746f69dd4be358eb27077a22f4df5c40dfb9c114b2c91ee1e2ce9fdfee31ea133248976639d185627521f6656625a3bf194e506d52c8ea0936fcfeb22030d5544d7987e3350406f4cf407025c2fafeb0c6bdf34bae0f991a2e57801d69e2684f5e096d9cb87d2640814f006b3941eb788b2f9146824b9f5b839ddbaa749931b4370cd743142970ec00cdadf6e0bb3de92068f14b411efad2b57824a9d65e292f687fcbbe83f2de461b41d8ef19f259f4f7d8ffc420d3b3981b753ea6d899d3a8054a47cf15e9613f778981bcd07079c34e6678cc7cce65d7abf448c60f08ead67235b478782e5072ac7b02ee232030fe71be8830ea07fea852fb74a9c7eaf0b82e75e154ea2c3b73a8078878217d97191fe738216cb3c02ce7dc444965572b154e19b7977559039b9a5424e78b4e66babee76712874ce3d76538eb05fad3f2ff60686919ea40f7a0deaa126a7901ba5eb18040b0561471aba8ce2c77f06aee83aeae130d577cf3c5cf97d75ab7140ea443415a0b70cf60d0be83f592edf9bcd0dd435e154714fa8f54c227ba7cf6cbaf095dfd6faede32d15958ea9be4c6780816d2dadbd4079d153a6afdd13b057339b3c817d6134e0e28e3afb07d2ea342fb4895b43b8b84f8633b0a26b8987aa417ff9f8dff301add19368844a94c5eb307ecd1ee628dd12ce754a346137abe19e4d28fe6f259d29fa7e3ab9a69f2a0623f60468804721ae1d70327e98941807dd97b104af90605d0cb5c5c217d887b7801a860d8f8a34e35883d095394e2596e1effd3d178a4b2f6f788addce16f6156f03a7e78da3607e691f4739e886f3a0fdd122ec70501da2706dcb2cdd05be6203ece2b6d9c93bf0f98b322f121574cabbe3d6fb2d5c6766ed6946f67b58c913740ecdab793dcf631e602b4f95bc881b8c62f3da0a0de312e317c438457eb424b192881312263b5c2f221c98ead86d3774eb60a1e78db7d11bb6cba7857b39344d1431154d043498e8f77e40af9cf1a1bce2ad9ec46772ad08bf106b4ab51da3eeb24c6e29218a106ede6e47f35547a47e360de1d3f7188b3e26f895d2c61a3dd82649e3e7ae52828aae9bc9ab46c5c955a08500aa8e825b2fd5c31dec21325387323b2ef50d267455854de0901fe024eb678112d45c71915d17c85df52adcd3fe054a45c49a6f53593628b9c0011a05fc8beb2bf62d224b0498d691d56636fe22e42f373b1314d4ddf1e552aff5df2ff4025f64cca5063dbf774f76c66787261e9c7f4f7383eda01f92ac956f303f34be62843fd3ed0c0dd971eedbae42fbb81193e88478af1d5e1fcdb9ebdfd59a5a10c9969419736e5517bc04e317f18755715ecd91775f5cf42e15334052f6bc23798129d1cc5afb41a4d136d86e8f38beaf91178ff336b61aa355e28c121922d893839122681705b726036d170640bdc825eb64bb9f1470e9dee4d5d5a9821e4dd814a7c6451b8f3510c5a9a39b957af47edffcc9b963dd098ee0772fa774cc74d2812a1a21f7bbf808bd0a9874560b11a2b886673bb16f3f07a84c2995a00c7b202604ba6a62c469d294f0cf58ea083dfb01f46c7218db3fbb36176f26ee6d1396d4e8dec89c71208aa2b3fd2a37ac5f497a0fefee00885ec0900d89c5ebfe69161cda97d9bfb25c19a9707aab6645ae38664a11e3346c762c21aad761a2e3f989348058d596518ecbebfa96f09e389e46f27f705e546468e049ec17f88cbb42394859fbeedec54a5e740cae981c0a3032472da20f9bbd19a2cf20cb94f7aac421a26b229dd7489932688d270ac63ed36a1c97a449a47335da429b58f0737731b4868d4b4857e58ca0a98b5b50e2b76b610a29f5cb79b3782c8f0659408c3737d72c7dc1302b10e5c99f4bc1e5c417bb261eef543cab0829d67605fdeebbfa8a47b09a5a5e533cad66ff3d1eefafdee4a16a0aec69bde44f176e5d9b161db35dde81029ffaf5730a147e5403915842f546d103deecee10c6a5d882441c0b5b97c7cb8de44b5f92e67588ed02b4a1befc6f60619f3148120c934262307bc56c413a2392413f057f700e03b3803d98a106deb86bbb6ce96a2e7fb13da98ccfcd2da0a6564c15649123df30bfb27f80b3dadfb898cd7fdb7fe5dc0a097bdfd851c893b78600901ca9978a90aacf0e90b0bc580927e4d1bb356867eb536cfda5214e9d01b1b017b7fa8af2df26b34977c8e990821705aba54c14a2d4eade520d0630ed8bdcf64fc6bb584a636775e9794be7c8efbb71f7e646b43aab2b5ddb079cab3fb841586b41632e2d438e0b3dab841f75ab6b3a6ecf3d1b923cd5e7a10dfdb7f849304f07f8f2f414c112f9319112323ddb4abb02d8fe02ea8cadfb775ecc147771ec25d6a8e71984af70f69a281cfd504d32c896bb9f9a8ec1b182a3c01ddf22741bcc01f6b2e5a08312bb1b840367422e8f05591a453ba72673da6eabab37dac6973457dd09f5d033ae68e1392e17a7b096454c9ec352b3ecba849e7deac9f7b94f718c3137988e4d84b5e12486892fdec96a35fc92d6b935680c72f18939f0d862fc7a224a01536182430b364367401c710f047b20dad3def61f3f04b90131ea7d05e470f0aa88ae8283fb5c3d39781a2eeb910de05d276a2efc6d933d6c8a341159483f80791cc7d3362419db07c7d65c8bfdde763d71c89b7f7fb5dd38a603f7b391545cdec41e9726ca58785fc1213efbc9bb711f841a1a538569c9ea5eba9c7be713bec8a2364e92bf8f19f33367c529d1dfd2bd908aad5eb294b264adeaa7911cd2680599cce0a13282a4be492d608489e545c953fd1f28d9cfe1e2e944cd8afbcd245ab9fb290432b1a1f209dea5842268a4afcd5377cb743cd0f5e23494e2a4df8438daa1ef6e265d79592a585881ba9f3ecbdaf17d007b4d65c0acc11f086fb56da1d96cb5a5a413f767f25c94cee6e551c9b2910b0f12d963e40e97688774969fff0b939175a0f2de98bac9b7fde06355cdb4922a615b4c25d1f0ff1bbe083ba46aeed23a3c8c1d509676b118e2147da8e8647034d0db4567780878867443f769681c977be4f6479e6ebabd08a259de68feb2affde933d08966ea9d178ec28513bb82eb8f04ccd15092d9192b94622ec7f973cd94299a5c3a58ab75bf306a340dff011f96eb0a36b42710182516615aedfa416fb381ae30399c077a7c677d7cda598b65f651baec011ebe3400cf62facf0fe667f7a163ffc51863f6037c2c0a82295e3d4911f39039214315fd2a9d447913fa8c24932f433c9ccd452559786c84de4eecad98847fb5a8ef3cc67822b5f014c74d472451504bd22e8990ecacf0da22fd61f9ec4841f00b95a4dcb52537e852ecc6182ff28abcd5520a3b442e18fbe41a39470c86e2d554afb96950bb9a115e9f56deac2d1656406fd8ae93045e7ffc49e7b340071fada8957a888aef63d23d4712b7bbe9b049cf5838c3ec134988f1ad3533f846710901801989a99ba2e23b26b1e8fc970a3edac6ea7274d4e3a7e4c14604b8427563012f0701bd0fe1727fc79d9e15a0e86e5a2b08ccb66abd38b219d9957dda278ffbbe46754623ee9b5e74a5b97cba83d65fd95bb0e8e221c2724634fab6307df3f97f281fd45bfec812b30b9cfca6a5f5e70ceba61afd054a13dfda2d5616d30286c92ec9ae3fbd36d8dc6e15866766619fedbcc6c146460faa10f1527ad5f24255b0d40eb355519fa875742c6d291937d33f29868194aa70c3f3dc353f8d6ce4e62eaa8cf5e36de3d6d6973ac259eba38215cec1d906283cebcb55fc83c0257e489d03a795795628328d55f6c6196b04bb40fe01fc208f63ddd0d88857aec84903991035a45069163c83d7978e446b42fa009cd791e4400dd10d60ed7419e8a0b48cdfcc87f17ccb0c54f517e0feaaed6b7ab57b44b4794a8f174382945c3e56291834ab2694d3bcea6216c3c94e638d7a98d6d437cb37a91e4a03aa854e0a16af7905ef1216aa1a353fda5e95136ad59e6f3f598a0969fdc9314af6a7325acd060031010774eb008c82935cdb864f7009004695472b1a17c13ed3bfd07269851fd4ee8b29bb1656f5110792b5799b0ba54bb4503abdd77afee6bf8620fe633a7ae83d5423c60dbd6b4f17706483ca09b22b54040462684b32c38330bf410f9492bedc47e38ef63d043812794ed40bf7acd22df053855478259386423e070976995f1cb3273409e14fa4e9087ae16a9d9b0dd45464bd4c4e3076cae31d711abff1b369ed932cf69ead28ec0d1b8b70280f8c3a72d0e6717915f308361fffab5283e502406ba786b692a2cefe6b44a50eaf61db20be701dc4691f950e093a58640e93227f6fdaae72cfcf3200428f8ce4dc99ec79c3f5bd8edb7c4493a00a766c05a670fc696c7ce8c567cf5f9790a1b4f80ecce86cc5ad9e196518103603164a2e4f768db935c6798b67f750795348c85f7a84d66e4b7d889c2a0cbec3326c958ace6b89ac3885e92e0983bb2cc5f34a46658e57512910219c467d6e86378550d3e0f50244c1994028a1d90a9825a3af824e859e8d2a9da04ef58a8c4f411760", 0x1000}], 0x2, &(0x7f0000004d40)=[@flowinfo={{0x14, 0x29, 0xb, 0x3}}, @rthdrdstopts={{0x200, 0x29, 0x37, {0x0, 0x3c, '\x00', [@enc_lim={0x4, 0x1, 0x81}, @generic={0x8, 0xd9, "2996e7c550cc4699ca38d1a12225c8b08c3d09149dd5c07442f3bb68e16902246fcd4009b9c61334d0eb270ea3066ae9cf4f8a04679281e7ff61fb0a64876b2a25ac348ea9a7c097807028875a4840b62453757d5265aa6bb464afe7807f30bda71a2a2f4170bb65736b40c0c9e3d19324914bf8e2e6ba22b4b1e2b70b0008ea64bcd6e6cacd2cb9f37d3f8298003029e15f9a9190e30423ae58f0dfe4c48f117c9e8469f841656a97ec1865b3c87688a1d12e080b04ca28f69315364f1a78002aee8693fa4a776796cc3d299ca32fa259f5d6a78f511a763c"}, @calipso={0x7, 0x40, {0x2, 0xe, 0x7, 0x800, [0x6719, 0xc361, 0x7ff, 0x3, 0x7fff, 0x1000, 0x8]}}, @pad1, @generic={0x3, 0xa0, "1dd4e6a9f96fce4c9da65cb10757d0eaf96d197c7c7244d938b68bf30488553f9f34378dad28d659009dc7af350e336add5a087074a50717d229b67c14fb3dbd76b8d01223d4956e346e05cf98fee05a4e94a86b3dd9328a533fceab2e365adcb9d6bdec07b3243d9d7bc8e9fb8e5c379849aece0756a962e4962ca94d78639a04ebb8963e321cb7ff9f23068493880762aeb3f78f530b2a6946912ede2d8caa"}, @enc_lim={0x4, 0x1, 0x20}, @generic={0x80, 0xf, "fefbb7ead898ba903b8c08175fd45b"}, @padn={0x1, 0xa, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}]}}}, @hoplimit={{0x14, 0x29, 0x34, 0x80000000}}, @flowinfo={{0x14, 0x29, 0xb, 0x8}}], 0x248}}, {{&(0x7f0000004fc0)={0xa, 0x4e21, 0xec, @loopback, 0x7f}, 0x1c, &(0x7f0000005180)=[{&(0x7f0000005000)="18e57e5424064d2c65694da6e619d81f534b693275772b57995c237532b1c45871238f5fc6e04675bfb3919571fc1ff4e25095816e8b4762a408cbb35b3adf376cd4492c7a3c8dcff78119801536b760ad4e7de0d936b287e2990a8dcd679e7050464ccddfdf9b80819f61dda90b0a2f79118bb9493bb897ccdb0a193b431953027b1a5d6980bf41a6bb56", 0x8b}, {&(0x7f00000050c0)="30fdafe85c89679c1fb4d8f4b48a370c8c56c329bea0eaf44c2c6eba91a79909644a8ebae8437087e1de719eaa7d3b6bda02f7a14a6d4d738b11c3309c74a42a81c8d4297873191bfe04a14e956ea15b08b9c20adc14de12dc732c9d9f73ed9c04da0376001f51d99df3d4f2ea5f67be0b70a89f3261608af4944660e67a7b7e84a1b30e78938a7321c62d9058d43ae0645087ea18a65c121b5bf9f252f91dc103decead51", 0xa5}], 0x2, &(0x7f00000051c0)=[@rthdr_2292={{0x58, 0x29, 0x39, {0x3c, 0x8, 0x0, 0x1, 0x0, [@private1, @loopback, @ipv4={'\x00', '\xff\xff', @broadcast}, @rand_addr=' \x01\x00']}}}, @dstopts_2292={{0x110, 0x29, 0x4, {0x87, 0x1e, '\x00', [@ra={0x5, 0x2, 0x4}, @ra={0x5, 0x2, 0x8}, @hao={0xc9, 0x10, @empty}, @generic={0x7f, 0xbf, "baee73edebb3c64579f06eae7a4f67bb36d1e276b2b65534133f1fe352f1cf0c588ad159fd9db74ceecf92af3ec56ce032be1bc666c2a590287efbcb5c61c3086bbf677b17a2c55f504250ffdc080f33e28c9a4291042f4d1c4ad134d17b3a86302dfc2726243177187655da1220f26ac36285b00c63c9cd0bf7f7f8533788b1063b6d7718c9ca72b15eba56728dc00a5e96ff0882ff8d948327fe15c8ad4f394ed52cdd09a0ba009e6f0c2e158931f86945718792862a0b9ec64be90fc6e9"}, @ra, @pad1, @enc_lim={0x4, 0x1, 0x3}, @hao={0xc9, 0x10, @dev={0xfe, 0x80, '\x00', 0xc}}]}}}, @rthdrdstopts={{0x38, 0x29, 0x37, {0x1d, 0x3, '\x00', [@ra={0x5, 0x2, 0xff}, @jumbo={0xc2, 0x4, 0x40d}, @hao={0xc9, 0x10, @private0={0xfc, 0x0, '\x00', 0x1}}]}}}, @dstopts_2292={{0x40, 0x29, 0x4, {0x16, 0x4, '\x00', [@padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}, @hao={0xc9, 0x10, @private0}, @ra={0x5, 0x2, 0x8}, @jumbo={0xc2, 0x4, 0x1f}, @padn={0x1, 0x3, [0x0, 0x0, 0x0]}]}}}, @dstopts={{0x78, 0x29, 0x37, {0x12, 0xb, '\x00', [@padn={0x1, 0x3, [0x0, 0x0, 0x0]}, @hao={0xc9, 0x10, @ipv4={'\x00', '\xff\xff', @empty}}, @pad1, @jumbo={0xc2, 0x4, 0x9}, @calipso={0x7, 0x30, {0x2, 0xa, 0x80, 0x0, [0x6fb0, 0x0, 0x2, 0x2, 0x80]}}, @enc_lim={0x4, 0x1, 0x81}, @ra={0x5, 0x2, 0x8374}]}}}], 0x258}}, {{&(0x7f0000005440)={0xa, 0x4e22, 0x2, @empty, 0xffffffff}, 0x1c, &(0x7f00000057c0)=[{&(0x7f0000005480)="812e04e08e4cdbc5db586c65f6392d43065360d7d84fc447d96f8f63defe322da53a81a3af46db99437a5195b17e313ae3b15997510521e1b98ba3908acb593434ec44187fac858c6f24a55e1241743b463cfa1ecea342871d711f6490b8c87711cdb568bb1a28097aec0c58b4055d98b1d401ba79570d991b660a8d5ff814fd12b83a663b75390f87453b66f53add4f41b33920216b023438865c2d7300ee299dc6132a2a14dbb50456523f9704df4c95f492046d32c4530803e9b4c65e87", 0xbf}, {&(0x7f0000005540)="77e0a09ed0e2830dde4fba6ea8709d890e15ba8c02c2a578fa21f89c376d5f9a4972a26e5a27e4f99bd47eaf3c480ab6ff48f727c6d3a488035f3353a7c51ef343eb224f606ee652aff2bd3f20bd8add90c7e8f90b4341f2fa31c4467c7e43e35c6f", 0x62}, {&(0x7f00000055c0)="5f8a6b74bfb1fa48046276b6bb29e074d8c06a9e820ccaf48615f5d14b011568a792c5ee6c5d95c2512c8824cdca86e7f30487ee6fd1c4a02e92b9c9ba292c3a428f9f70acf813e0c78cda7a05a20af054e6838dc75953746ac7c65d32b2e39d7e21aded3499febe5fe7227f24e1ebd07fa209e4513e910e2cad5ba6daeca869227a0022400300b25421fa1286b3012c67376876113c493b38cecbcb36028ebaa0ea759cb3386c9c059bf34e652f977fb90bcfa71f3bb7b63de9baccab6a9dd650fd73a923a7f1a7bd4c0a358ebbae39ae78e6f3b4cebb8e30c228e8", 0xdc}, {&(0x7f00000056c0)="c97e1e3a13700e015cf76d03e8690551fffe63e36bf97ae7712b86bcd961db38b1988a9ca61d78c3f89c784fca93f84f29224408b510bbda21ac11db6186f72a2bff3d6851035a4039a9049438efee54345494dff2050e1f5544803168b319a64cc34b70ede4a8ff08a782f290a109ed7413b11e034faa2b4186010e7d2a4c7ea433cf37193f458a8e581b205eaf37d4c45609c43d7700f332f24c2c3bfed066783fa44767f792b2cc5568a77a747e2e2f87939a64b3f8cb78c421d663cea0db0aa75444c12a179ae2ed0ccf85458e0f28d507f403fcac4d", 0xd8}], 0x4, &(0x7f0000005800)=[@pktinfo={{0x24, 0x29, 0x32, {@remote}}}, @rthdr={{0x88, 0x29, 0x39, {0x3b, 0xe, 0x0, 0x7, 0x0, [@mcast2, @remote, @mcast2, @dev={0xfe, 0x80, '\x00', 0x12}, @empty, @private2={0xfc, 0x2, '\x00', 0x1}, @dev={0xfe, 0x80, '\x00', 0x21}]}}}], 0xb0}}], 0x4, 0x20040814) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) fsetxattr$trusted_overlay_nlink(r1, &(0x7f0000000000), &(0x7f0000000100)={'U+', 0x8}, 0x16, 0x2) 10:40:18 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 48) 10:40:18 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001402}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:40:18 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x500, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:40:18 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x2dc5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:40:18 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb7fb, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:40:18 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 1998.467587] FAULT_INJECTION: forcing a failure. [ 1998.467587] name failslab, interval 1, probability 0, space 0, times 0 [ 1998.469039] CPU: 1 PID: 11412 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1998.469977] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1998.470980] Call Trace: [ 1998.471301] dump_stack+0x107/0x167 [ 1998.471744] should_fail.cold+0x5/0xa [ 1998.472217] ? p9pdu_readf+0xadb/0x1d40 [ 1998.472702] should_failslab+0x5/0x20 [ 1998.473160] __kmalloc+0x72/0x390 [ 1998.473579] p9pdu_readf+0xadb/0x1d40 [ 1998.474045] ? pipe_poll+0x21b/0x800 [ 1998.474496] ? p9pdu_writef+0x100/0x100 [ 1998.474978] ? p9_fd_poll+0x1e0/0x2c0 [ 1998.475442] ? p9_fd_create+0x357/0x4a0 [ 1998.475920] ? p9_conn_create+0x510/0x510 [ 1998.476424] ? p9_client_create+0x798/0x1230 [ 1998.476951] ? kfree+0xd7/0x340 [ 1998.477351] p9_client_create+0xaee/0x1230 [ 1998.477869] ? p9_client_flush+0x430/0x430 [ 1998.478381] ? trace_hardirqs_on+0x5b/0x180 [ 1998.478905] ? lockdep_init_map_type+0x2c7/0x780 [ 1998.479474] ? __raw_spin_lock_init+0x36/0x110 [ 1998.480023] v9fs_session_init+0x1dd/0x1680 [ 1998.480551] ? lock_release+0x680/0x680 [ 1998.481033] ? kmem_cache_alloc_trace+0x151/0x320 [ 1998.481607] ? v9fs_show_options+0x690/0x690 [ 1998.482140] ? trace_hardirqs_on+0x5b/0x180 [ 1998.482652] ? kasan_unpoison_shadow+0x33/0x50 [ 1998.483203] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1998.483814] v9fs_mount+0x79/0x8f0 [ 1998.484252] ? v9fs_write_inode+0x60/0x60 [ 1998.484756] legacy_get_tree+0x105/0x220 [ 1998.485241] vfs_get_tree+0x8e/0x300 [ 1998.485776] path_mount+0x1429/0x2120 [ 1998.486236] ? strncpy_from_user+0x9e/0x470 [ 1998.486749] ? finish_automount+0xa90/0xa90 [ 1998.487261] ? getname_flags.part.0+0x1dd/0x4f0 [ 1998.487814] ? _copy_from_user+0xfb/0x1b0 [ 1998.488322] __x64_sys_mount+0x282/0x300 [ 1998.488805] ? copy_mnt_ns+0xa00/0xa00 [ 1998.489274] do_syscall_64+0x33/0x40 [ 1998.489724] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1998.490341] RIP: 0033:0x7f9f6e930b19 [ 1998.490786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1998.493005] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1998.493913] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1998.494761] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1998.495620] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1998.495640] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1998.497506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1998.498352] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 1998.499560] loop3: detected capacity change from 0 to 41948160 [ 1998.519342] FAULT_INJECTION: forcing a failure. [ 1998.519342] name failslab, interval 1, probability 0, space 0, times 0 [ 1998.522063] CPU: 0 PID: 11426 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1998.523710] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1998.525563] Call Trace: [ 1998.526129] dump_stack+0x107/0x167 [ 1998.526900] should_fail.cold+0x5/0xa [ 1998.527702] ? p9_fcall_init+0x97/0x290 [ 1998.528550] should_failslab+0x5/0x20 [ 1998.529349] __kmalloc+0x72/0x390 [ 1998.530074] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1998.531141] p9_fcall_init+0x97/0x290 10:40:19 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x600, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1998.531951] p9_client_prepare_req.part.0+0xf4/0xac0 [ 1998.533170] p9_client_rpc+0x220/0x1370 [ 1998.534016] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1998.535137] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 1998.536289] ? pipe_poll+0x21b/0x800 [ 1998.537080] ? p9_fd_close+0x4a0/0x4a0 [ 1998.537909] ? wait_for_partner+0x3c0/0x3c0 [ 1998.538840] ? p9_fd_poll+0x1e0/0x2c0 [ 1998.539658] ? p9_fd_create+0x357/0x4a0 [ 1998.540506] ? p9_conn_create+0x510/0x510 [ 1998.541393] ? p9_client_create+0x798/0x1230 [ 1998.542331] ? kfree+0xd7/0x340 [ 1998.543040] p9_client_create+0xa76/0x1230 [ 1998.543949] ? p9_client_flush+0x430/0x430 [ 1998.544849] ? trace_hardirqs_on+0x5b/0x180 [ 1998.545767] ? lockdep_init_map_type+0x2c7/0x780 [ 1998.546787] ? __raw_spin_lock_init+0x36/0x110 [ 1998.547784] v9fs_session_init+0x1dd/0x1680 [ 1998.548733] ? lock_release+0x680/0x680 [ 1998.549593] ? kmem_cache_alloc_trace+0x151/0x320 [ 1998.550633] ? v9fs_show_options+0x690/0x690 [ 1998.551587] ? trace_hardirqs_on+0x5b/0x180 [ 1998.552517] ? kasan_unpoison_shadow+0x33/0x50 [ 1998.553490] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1998.554583] v9fs_mount+0x79/0x8f0 [ 1998.555350] ? v9fs_write_inode+0x60/0x60 [ 1998.556264] legacy_get_tree+0x105/0x220 [ 1998.557146] vfs_get_tree+0x8e/0x300 [ 1998.557954] path_mount+0x1429/0x2120 [ 1998.558786] ? strncpy_from_user+0x9e/0x470 [ 1998.559722] ? finish_automount+0xa90/0xa90 [ 1998.560665] ? getname_flags.part.0+0x1dd/0x4f0 [ 1998.561657] ? _copy_from_user+0xfb/0x1b0 [ 1998.562563] __x64_sys_mount+0x282/0x300 [ 1998.563446] ? copy_mnt_ns+0xa00/0xa00 [ 1998.564312] do_syscall_64+0x33/0x40 [ 1998.565130] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1998.566251] RIP: 0033:0x7fd3b79dfb19 [ 1998.567062] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1998.571090] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1998.572767] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1998.574335] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1998.575906] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1998.577483] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1998.579057] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 10:40:19 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x2e00, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:40:19 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb7fc, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 1998.580959] hpet: Lost 3 RTC interrupts 10:40:19 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) r1 = openat(r0, &(0x7f00000001c0)='./file1\x00', 0x101000, 0x80) chdir(&(0x7f0000000200)='./file0\x00') r2 = accept$unix(r1, &(0x7f0000000700), &(0x7f0000000780)=0x6e) getsockname$unix(r2, &(0x7f00000007c0)=@abs, &(0x7f0000000840)=0x6e) r3 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) futimesat(r3, &(0x7f0000000000)='./file1\x00', &(0x7f0000000100)={{0x0, 0x2710}}) ioctl$F2FS_IOC_DEFRAGMENT(r1, 0xc010f508, &(0x7f0000000040)={0xfffffffeffffffff, 0x1f}) getdents(r0, &(0x7f0000000440)=""/224, 0xe0) fcntl$dupfd(r3, 0x406, r3) 10:40:19 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 49) 10:40:19 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 41) [ 1998.642779] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1998.643640] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1998.644576] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:40:19 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x700, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:40:19 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f00140b}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) [ 1998.689237] FAULT_INJECTION: forcing a failure. [ 1998.689237] name failslab, interval 1, probability 0, space 0, times 0 [ 1998.691675] CPU: 0 PID: 11446 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 1998.693178] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1998.694972] Call Trace: [ 1998.695548] dump_stack+0x107/0x167 [ 1998.696344] should_fail.cold+0x5/0xa [ 1998.697171] ? create_object.isra.0+0x3a/0xa20 [ 1998.698160] should_failslab+0x5/0x20 [ 1998.698992] kmem_cache_alloc+0x5b/0x310 [ 1998.699890] create_object.isra.0+0x3a/0xa20 [ 1998.700863] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1998.701985] __kmalloc+0x16e/0x390 [ 1998.702773] p9_fcall_init+0x97/0x290 [ 1998.703610] p9_client_prepare_req.part.0+0xf4/0xac0 [ 1998.704769] p9_client_rpc+0x220/0x1370 [ 1998.705669] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1998.706835] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 1998.708009] ? pipe_poll+0x21b/0x800 [ 1998.708830] FAULT_INJECTION: forcing a failure. [ 1998.708830] name failslab, interval 1, probability 0, space 0, times 0 [ 1998.711278] ? p9_fd_close+0x4a0/0x4a0 [ 1998.712168] ? wait_for_partner+0x3c0/0x3c0 [ 1998.713151] ? p9_fd_poll+0x1e0/0x2c0 [ 1998.714026] ? p9_fd_create+0x357/0x4a0 [ 1998.714914] ? p9_conn_create+0x510/0x510 [ 1998.715858] ? p9_client_create+0x798/0x1230 [ 1998.716843] ? kfree+0xd7/0x340 [ 1998.717618] p9_client_create+0xa76/0x1230 [ 1998.718602] ? p9_client_flush+0x430/0x430 [ 1998.719582] ? _raw_spin_unlock_irqrestore+0x25/0x40 [ 1998.720766] ? lockdep_init_map_type+0x2c7/0x780 [ 1998.721862] ? __raw_spin_lock_init+0x36/0x110 [ 1998.722916] v9fs_session_init+0x1dd/0x1680 [ 1998.723908] ? lock_release+0x680/0x680 [ 1998.724840] ? kmem_cache_alloc_trace+0x151/0x320 [ 1998.725950] ? v9fs_show_options+0x690/0x690 [ 1998.726974] ? trace_hardirqs_on+0x5b/0x180 [ 1998.727965] ? kasan_unpoison_shadow+0x33/0x50 [ 1998.729024] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1998.730195] v9fs_mount+0x79/0x8f0 [ 1998.731015] ? v9fs_write_inode+0x60/0x60 [ 1998.731972] legacy_get_tree+0x105/0x220 [ 1998.732918] vfs_get_tree+0x8e/0x300 [ 1998.733777] path_mount+0x1429/0x2120 [ 1998.734660] ? strncpy_from_user+0x9e/0x470 [ 1998.735653] ? finish_automount+0xa90/0xa90 [ 1998.736656] ? getname_flags.part.0+0x1dd/0x4f0 [ 1998.737729] ? _copy_from_user+0xfb/0x1b0 [ 1998.738690] __x64_sys_mount+0x282/0x300 [ 1998.739623] ? copy_mnt_ns+0xa00/0xa00 [ 1998.740542] do_syscall_64+0x33/0x40 [ 1998.741399] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1998.742578] RIP: 0033:0x7fd3b79dfb19 [ 1998.743445] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1998.747732] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1998.749483] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 1998.751092] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1998.752709] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 1998.754316] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1998.755936] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 1998.757575] CPU: 1 PID: 11452 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 1998.757899] hpet: Lost 3 RTC interrupts [ 1998.758497] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1998.758511] Call Trace: [ 1998.760777] dump_stack+0x107/0x167 [ 1998.761175] should_fail.cold+0x5/0xa [ 1998.761591] ? create_object.isra.0+0x3a/0xa20 [ 1998.762101] should_failslab+0x5/0x20 [ 1998.762545] kmem_cache_alloc+0x5b/0x310 [ 1998.763006] create_object.isra.0+0x3a/0xa20 [ 1998.763480] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1998.764028] __kmalloc+0x16e/0x390 [ 1998.764432] p9pdu_readf+0xadb/0x1d40 [ 1998.764852] ? pipe_poll+0x21b/0x800 [ 1998.765257] ? p9pdu_writef+0x100/0x100 [ 1998.765685] ? p9_fd_poll+0x1e0/0x2c0 [ 1998.766104] ? p9_fd_create+0x357/0x4a0 [ 1998.766539] ? p9_conn_create+0x510/0x510 [ 1998.766991] ? p9_client_create+0x798/0x1230 [ 1998.767475] ? kfree+0xd7/0x340 [ 1998.767838] p9_client_create+0xaee/0x1230 [ 1998.768317] ? p9_client_flush+0x430/0x430 [ 1998.768778] ? trace_hardirqs_on+0x5b/0x180 [ 1998.769250] ? lockdep_init_map_type+0x2c7/0x780 [ 1998.769765] ? __raw_spin_lock_init+0x36/0x110 [ 1998.770262] v9fs_session_init+0x1dd/0x1680 [ 1998.770735] ? lock_release+0x680/0x680 [ 1998.771178] ? kmem_cache_alloc_trace+0x151/0x320 [ 1998.771700] ? v9fs_show_options+0x690/0x690 [ 1998.772189] ? trace_hardirqs_on+0x5b/0x180 [ 1998.772658] ? kasan_unpoison_shadow+0x33/0x50 [ 1998.773159] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1998.773709] v9fs_mount+0x79/0x8f0 [ 1998.774101] ? v9fs_write_inode+0x60/0x60 [ 1998.774555] legacy_get_tree+0x105/0x220 [ 1998.774997] vfs_get_tree+0x8e/0x300 [ 1998.775403] path_mount+0x1429/0x2120 [ 1998.775825] ? strncpy_from_user+0x9e/0x470 [ 1998.776302] ? finish_automount+0xa90/0xa90 [ 1998.776771] ? getname_flags.part.0+0x1dd/0x4f0 [ 1998.777280] ? _copy_from_user+0xfb/0x1b0 [ 1998.777735] __x64_sys_mount+0x282/0x300 [ 1998.778175] ? copy_mnt_ns+0xa00/0xa00 [ 1998.778608] do_syscall_64+0x33/0x40 [ 1998.779015] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1998.779579] RIP: 0033:0x7f9f6e930b19 [ 1998.779986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1998.781982] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1998.782903] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 1998.783673] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 1998.784455] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 1998.785226] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1998.786001] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 10:40:37 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 50) 10:40:37 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000bd81b87afc1f961b041591112692a5d1aab19c6a9e208d1c28da156afb4ddd1c034b19e9834dac56f129ae740f48534d34c69c7c8f7a384336ebb2944c29225ff12f8b046906f15c85d62e0a33ee1e26fa8cdafd5b4230f8a3080ce94c020921c94d3d80cf8e3b0005243578f5cb037d73d389cfca1f80e0d2f968feac4f065ffe3cb0ac3a25ca5c1ff5a7d310a614982b1fd43abc07e6b5975ba7d712426b37c55d1e490df0153a78786913ed7637b1d840bfde0e1b7d339417ed280b1ddb49ee61eafedbaaa0a8d2cbc5bdccb0afa62f64ea4ff187fa6628397f9891a1f34aa8dd36d70ce1b5f09bc0043a0bd1f8bdfb33e073ebbcea086bc8e8da27d76939786776a523785c8d9f855bdebf1edf10e03337ab01cd5cf01d1029cd73f7ed80e25303ae4adcc92c32141d362f09f0ddfd8ac96f4ac935755951deec4790aad73f2a0d0ea95e61d823c36e79179362117010e45868e93f897ed1215e540cf9cb2406d5b482db"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:40:37 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 42) 10:40:37 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x2ec5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:40:37 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x10) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) 10:40:37 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb7fd, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:40:37 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f0014fc}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:40:37 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x900, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 2016.766585] FAULT_INJECTION: forcing a failure. [ 2016.766585] name failslab, interval 1, probability 0, space 0, times 0 [ 2016.769059] CPU: 0 PID: 11466 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2016.770547] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2016.772347] Call Trace: [ 2016.772945] dump_stack+0x107/0x167 [ 2016.773732] should_fail.cold+0x5/0xa [ 2016.774569] ? radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 2016.775815] should_failslab+0x5/0x20 [ 2016.776654] kmem_cache_alloc+0x5b/0x310 [ 2016.777541] radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 2016.778756] idr_get_free+0x4b5/0x8f0 [ 2016.779598] idr_alloc_u32+0x170/0x2d0 [ 2016.780455] ? __fprop_inc_percpu_max+0x130/0x130 [ 2016.781504] ? p9_client_prepare_req.part.0+0x20a/0xac0 [ 2016.782662] ? lock_release+0x680/0x680 [ 2016.783525] idr_alloc+0xc2/0x130 [ 2016.784294] ? idr_alloc_u32+0x2d0/0x2d0 [ 2016.785171] ? rwlock_bug.part.0+0x90/0x90 [ 2016.786105] p9_client_prepare_req.part.0+0x612/0xac0 [ 2016.787232] p9_client_rpc+0x220/0x1370 [ 2016.788095] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2016.789251] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 2016.790409] ? pipe_poll+0x21b/0x800 [ 2016.791214] ? p9_fd_close+0x4a0/0x4a0 [ 2016.792055] ? wait_for_partner+0x3c0/0x3c0 [ 2016.793002] ? p9_fd_poll+0x1e0/0x2c0 [ 2016.793836] ? p9_fd_create+0x357/0x4a0 [ 2016.794697] ? p9_conn_create+0x510/0x510 [ 2016.795592] ? p9_client_create+0x798/0x1230 [ 2016.796545] ? kfree+0xd7/0x340 [ 2016.797273] p9_client_create+0xa76/0x1230 [ 2016.798201] ? p9_client_flush+0x430/0x430 [ 2016.798236] loop3: detected capacity change from 0 to 41948160 [ 2016.799118] ? trace_hardirqs_on+0x5b/0x180 [ 2016.799141] ? lockdep_init_map_type+0x2c7/0x780 [ 2016.799175] ? __raw_spin_lock_init+0x36/0x110 [ 2016.803682] v9fs_session_init+0x1dd/0x1680 [ 2016.804631] ? lock_release+0x680/0x680 [ 2016.805506] ? kmem_cache_alloc_trace+0x151/0x320 [ 2016.806188] FAULT_INJECTION: forcing a failure. [ 2016.806188] name failslab, interval 1, probability 0, space 0, times 0 [ 2016.806572] ? v9fs_show_options+0x690/0x690 [ 2016.809928] ? trace_hardirqs_on+0x5b/0x180 [ 2016.810867] ? kasan_unpoison_shadow+0x33/0x50 [ 2016.811856] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2016.812971] v9fs_mount+0x79/0x8f0 [ 2016.813740] ? v9fs_write_inode+0x60/0x60 [ 2016.814641] legacy_get_tree+0x105/0x220 [ 2016.815524] vfs_get_tree+0x8e/0x300 [ 2016.816342] path_mount+0x1429/0x2120 [ 2016.817175] ? strncpy_from_user+0x9e/0x470 [ 2016.818110] ? finish_automount+0xa90/0xa90 [ 2016.819046] ? getname_flags.part.0+0x1dd/0x4f0 [ 2016.820056] ? _copy_from_user+0xfb/0x1b0 [ 2016.820979] __x64_sys_mount+0x282/0x300 [ 2016.821856] ? copy_mnt_ns+0xa00/0xa00 [ 2016.822715] do_syscall_64+0x33/0x40 [ 2016.823526] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2016.824646] RIP: 0033:0x7fd3b79dfb19 [ 2016.825450] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2016.829445] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2016.831093] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 2016.832648] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2016.834194] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 2016.835741] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2016.837293] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 2016.838882] CPU: 1 PID: 11473 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 2016.839392] hpet: Lost 4 RTC interrupts [ 2016.840625] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2016.843433] Call Trace: [ 2016.844016] dump_stack+0x107/0x167 [ 2016.844844] should_fail.cold+0x5/0xa [ 2016.845683] should_failslab+0x5/0x20 [ 2016.846515] __kmalloc_track_caller+0x79/0x370 [ 2016.847512] ? kasprintf+0xbb/0xf0 [ 2016.848304] ? __delete_object+0xb3/0x100 [ 2016.849225] kvasprintf+0xb5/0x150 [ 2016.849999] ? bust_spinlocks+0xe0/0xe0 [ 2016.850872] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2016.852027] kasprintf+0xbb/0xf0 [ 2016.852779] ? kvasprintf_const+0x1a0/0x1a0 [ 2016.853698] ? kmem_cache_free+0x249/0x2d0 [ 2016.854599] ? p9_client_create+0xbfa/0x1230 [ 2016.855534] p9_client_create+0xc1b/0x1230 [ 2016.856474] ? p9_client_flush+0x430/0x430 [ 2016.857378] ? trace_hardirqs_on+0x5b/0x180 [ 2016.858296] ? lockdep_init_map_type+0x2c7/0x780 [ 2016.859312] ? __raw_spin_lock_init+0x36/0x110 [ 2016.860299] v9fs_session_init+0x1dd/0x1680 [ 2016.861326] ? lock_release+0x680/0x680 [ 2016.862173] ? kmem_cache_alloc_trace+0x151/0x320 [ 2016.863190] ? v9fs_show_options+0x690/0x690 [ 2016.864128] ? trace_hardirqs_on+0x5b/0x180 [ 2016.865073] ? kasan_unpoison_shadow+0x33/0x50 [ 2016.866037] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2016.867113] v9fs_mount+0x79/0x8f0 [ 2016.867862] ? v9fs_write_inode+0x60/0x60 [ 2016.868781] legacy_get_tree+0x105/0x220 [ 2016.869643] vfs_get_tree+0x8e/0x300 [ 2016.870430] path_mount+0x1429/0x2120 [ 2016.871243] ? strncpy_from_user+0x9e/0x470 [ 2016.872158] ? finish_automount+0xa90/0xa90 [ 2016.873100] ? getname_flags.part.0+0x1dd/0x4f0 [ 2016.874082] ? _copy_from_user+0xfb/0x1b0 [ 2016.874969] __x64_sys_mount+0x282/0x300 [ 2016.875824] ? copy_mnt_ns+0xa00/0xa00 [ 2016.876816] do_syscall_64+0x33/0x40 [ 2016.877605] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2016.878691] RIP: 0033:0x7f9f6e930b19 [ 2016.879509] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2016.883419] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2016.885069] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 2016.886579] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2016.888097] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 2016.889639] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2016.891154] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 2016.894061] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 2016.933130] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2016.934719] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2016.938542] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:40:37 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x2fc5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:40:37 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb7fe, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:40:37 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 51) [ 2017.093123] FAULT_INJECTION: forcing a failure. [ 2017.093123] name failslab, interval 1, probability 0, space 0, times 0 [ 2017.095880] CPU: 1 PID: 11491 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 2017.097378] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2017.099136] Call Trace: [ 2017.099695] dump_stack+0x107/0x167 [ 2017.100495] should_fail.cold+0x5/0xa [ 2017.101308] ? create_object.isra.0+0x3a/0xa20 [ 2017.102291] should_failslab+0x5/0x20 [ 2017.103107] kmem_cache_alloc+0x5b/0x310 [ 2017.103974] create_object.isra.0+0x3a/0xa20 [ 2017.104934] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2017.106013] __kmalloc+0x16e/0x390 [ 2017.106775] p9pdu_readf+0xadb/0x1d40 [ 2017.107588] ? pipe_poll+0x21b/0x800 [ 2017.108413] ? p9pdu_writef+0x100/0x100 [ 2017.109268] ? p9_fd_poll+0x1e0/0x2c0 [ 2017.110081] ? p9_fd_create+0x357/0x4a0 [ 2017.111065] ? p9_conn_create+0x510/0x510 [ 2017.111946] ? p9_client_create+0x798/0x1230 [ 2017.112906] ? kfree+0xd7/0x340 [ 2017.113614] p9_client_create+0xaee/0x1230 [ 2017.114525] ? p9_client_flush+0x430/0x430 [ 2017.115428] ? trace_hardirqs_on+0x5b/0x180 [ 2017.116375] ? lockdep_init_map_type+0x2c7/0x780 [ 2017.117382] ? __raw_spin_lock_init+0x36/0x110 [ 2017.118349] v9fs_session_init+0x1dd/0x1680 [ 2017.119259] ? lock_release+0x680/0x680 [ 2017.120102] ? kmem_cache_alloc_trace+0x151/0x320 [ 2017.121164] ? v9fs_show_options+0x690/0x690 [ 2017.122108] ? trace_hardirqs_on+0x5b/0x180 [ 2017.123024] ? kasan_unpoison_shadow+0x33/0x50 [ 2017.123983] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2017.125084] v9fs_mount+0x79/0x8f0 [ 2017.125834] ? v9fs_write_inode+0x60/0x60 [ 2017.126821] legacy_get_tree+0x105/0x220 [ 2017.127680] vfs_get_tree+0x8e/0x300 [ 2017.128502] path_mount+0x1429/0x2120 [ 2017.129310] ? strncpy_from_user+0x9e/0x470 [ 2017.130223] ? finish_automount+0xa90/0xa90 [ 2017.131134] ? getname_flags.part.0+0x1dd/0x4f0 [ 2017.132122] ? _copy_from_user+0xfb/0x1b0 [ 2017.133024] __x64_sys_mount+0x282/0x300 [ 2017.133882] ? copy_mnt_ns+0xa00/0xa00 [ 2017.134710] do_syscall_64+0x33/0x40 [ 2017.135495] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2017.136613] RIP: 0033:0x7f9f6e930b19 [ 2017.137399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2017.141322] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2017.143081] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 2017.144626] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2017.146129] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 2017.147636] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2017.149225] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 10:40:51 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 52) 10:40:51 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xa00, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:40:51 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 43) 10:40:51 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:40:51 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f009402}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:40:51 executing program 3: ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) setsockopt$inet6_IPV6_PKTINFO(r1, 0x29, 0x32, &(0x7f0000000040)={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, r0}, 0xfffffffffffffec8) r2 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file1\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17, 0xfffffffffffffffd}, {0x0, 0x0, 0x1005000a00}], 0x0, &(0x7f0000000100)=ANY=[@ANYRES32=0x0, @ANYRESOCT=0x0, @ANYRES64=r0]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000006c0)=ANY=[@ANYBLOB="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"], 0x34}}, 0x0) write$binfmt_script(r3, &(0x7f00000001c0)={'#! ', './file1', [{0x20, 'lo\x00'}, {}, {0x20, '/.+!'}, {0x20, '/dev/vcsa\x00'}, {0x20, 'vfat\x00'}], 0xa, "cceb4d5772c5377fddf0367503ab3f3fc24e3d5c5e6cfd"}, 0x3d) getdents(r2, &(0x7f0000000340)=""/214, 0xd6) 10:40:51 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x30c5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:40:51 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb7ff, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 2030.730040] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 2030.732671] FAULT_INJECTION: forcing a failure. [ 2030.732671] name failslab, interval 1, probability 0, space 0, times 0 [ 2030.734012] CPU: 0 PID: 11498 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2030.734843] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2030.735885] Call Trace: [ 2030.736211] dump_stack+0x107/0x167 [ 2030.736669] should_fail.cold+0x5/0xa [ 2030.737140] ? radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 2030.737841] should_failslab+0x5/0x20 [ 2030.738312] kmem_cache_alloc+0x5b/0x310 [ 2030.738810] radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 2030.739496] idr_get_free+0x4b5/0x8f0 [ 2030.739968] idr_alloc_u32+0x170/0x2d0 [ 2030.740460] ? __fprop_inc_percpu_max+0x130/0x130 [ 2030.741048] ? p9_client_prepare_req.part.0+0x20a/0xac0 [ 2030.741696] ? lock_release+0x680/0x680 [ 2030.742179] idr_alloc+0xc2/0x130 [ 2030.742596] ? idr_alloc_u32+0x2d0/0x2d0 [ 2030.743081] ? rwlock_bug.part.0+0x90/0x90 [ 2030.743602] p9_client_prepare_req.part.0+0x612/0xac0 [ 2030.744233] p9_client_rpc+0x220/0x1370 [ 2030.744254] FAULT_INJECTION: forcing a failure. [ 2030.744254] name failslab, interval 1, probability 0, space 0, times 0 [ 2030.744742] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2030.744759] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 2030.744785] ? pipe_poll+0x21b/0x800 [ 2030.749448] ? p9_fd_close+0x4a0/0x4a0 [ 2030.749914] ? wait_for_partner+0x3c0/0x3c0 [ 2030.750507] ? p9_fd_poll+0x1e0/0x2c0 [ 2030.750976] ? p9_fd_create+0x357/0x4a0 [ 2030.751491] ? p9_conn_create+0x510/0x510 [ 2030.751991] ? p9_client_create+0x798/0x1230 [ 2030.752528] ? kfree+0xd7/0x340 [ 2030.752936] p9_client_create+0xa76/0x1230 [ 2030.753453] ? p9_client_flush+0x430/0x430 [ 2030.753967] ? trace_hardirqs_on+0x5b/0x180 [ 2030.754490] ? lockdep_init_map_type+0x2c7/0x780 [ 2030.755063] ? __raw_spin_lock_init+0x36/0x110 [ 2030.755623] v9fs_session_init+0x1dd/0x1680 [ 2030.756145] ? lock_release+0x680/0x680 [ 2030.756646] ? kmem_cache_alloc_trace+0x151/0x320 [ 2030.757218] ? v9fs_show_options+0x690/0x690 [ 2030.757753] ? trace_hardirqs_on+0x5b/0x180 [ 2030.758273] ? kasan_unpoison_shadow+0x33/0x50 [ 2030.758822] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2030.759433] v9fs_mount+0x79/0x8f0 [ 2030.759860] ? v9fs_write_inode+0x60/0x60 [ 2030.760367] legacy_get_tree+0x105/0x220 [ 2030.760857] vfs_get_tree+0x8e/0x300 [ 2030.761303] path_mount+0x1429/0x2120 [ 2030.761767] ? strncpy_from_user+0x9e/0x470 [ 2030.762286] ? finish_automount+0xa90/0xa90 [ 2030.762804] ? getname_flags.part.0+0x1dd/0x4f0 [ 2030.763359] ? _copy_from_user+0xfb/0x1b0 [ 2030.763862] __x64_sys_mount+0x282/0x300 [ 2030.764356] ? copy_mnt_ns+0xa00/0xa00 [ 2030.764835] do_syscall_64+0x33/0x40 [ 2030.765279] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2030.765891] RIP: 0033:0x7fd3b79dfb19 [ 2030.766338] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2030.768534] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2030.769443] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 2030.770296] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2030.771144] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 2030.771999] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2030.772853] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 2030.773744] CPU: 1 PID: 11507 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 2030.773860] hpet: Lost 2 RTC interrupts [ 2030.775458] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2030.777890] Call Trace: [ 2030.778515] dump_stack+0x107/0x167 [ 2030.779380] should_fail.cold+0x5/0xa [ 2030.780282] ? create_object.isra.0+0x3a/0xa20 [ 2030.781402] should_failslab+0x5/0x20 [ 2030.781423] kmem_cache_alloc+0x5b/0x310 [ 2030.781441] ? vsnprintf+0x4ba/0x1600 [ 2030.781465] create_object.isra.0+0x3a/0xa20 [ 2030.781483] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2030.781509] __kmalloc_track_caller+0x177/0x370 [ 2030.781529] ? kasprintf+0xbb/0xf0 [ 2030.781555] kvasprintf+0xb5/0x150 [ 2030.781576] ? bust_spinlocks+0xe0/0xe0 [ 2030.781601] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2030.790988] kasprintf+0xbb/0xf0 [ 2030.791783] ? kvasprintf_const+0x1a0/0x1a0 [ 2030.792802] ? kmem_cache_free+0x249/0x2d0 [ 2030.793804] ? p9_client_create+0xbfa/0x1230 [ 2030.794833] p9_client_create+0xc1b/0x1230 [ 2030.795833] ? p9_client_flush+0x430/0x430 [ 2030.796842] ? trace_hardirqs_on+0x5b/0x180 [ 2030.797852] ? lockdep_init_map_type+0x2c7/0x780 [ 2030.799034] ? __raw_spin_lock_init+0x36/0x110 [ 2030.800099] v9fs_session_init+0x1dd/0x1680 [ 2030.801123] ? lock_release+0x680/0x680 [ 2030.802063] ? kmem_cache_alloc_trace+0x151/0x320 [ 2030.803183] ? v9fs_show_options+0x690/0x690 [ 2030.804218] ? trace_hardirqs_on+0x5b/0x180 [ 2030.805227] ? kasan_unpoison_shadow+0x33/0x50 [ 2030.806286] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2030.807468] v9fs_mount+0x79/0x8f0 [ 2030.808290] ? v9fs_write_inode+0x60/0x60 [ 2030.809256] legacy_get_tree+0x105/0x220 [ 2030.810205] vfs_get_tree+0x8e/0x300 [ 2030.811065] path_mount+0x1429/0x2120 [ 2030.811953] ? strncpy_from_user+0x9e/0x470 [ 2030.812965] ? finish_automount+0xa90/0xa90 [ 2030.814046] ? getname_flags.part.0+0x1dd/0x4f0 [ 2030.815117] ? _copy_from_user+0xfb/0x1b0 [ 2030.816082] __x64_sys_mount+0x282/0x300 [ 2030.817121] ? copy_mnt_ns+0xa00/0xa00 [ 2030.817968] do_syscall_64+0x33/0x40 [ 2030.818750] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2030.819830] RIP: 0033:0x7f9f6e930b19 [ 2030.820632] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2030.824514] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2030.826119] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 2030.827630] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2030.829146] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 2030.830757] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2030.832265] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 10:40:51 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb00, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 2030.842553] loop3: detected capacity change from 0 to 135266304 [ 2030.857951] FAT-fs (loop3): bogus number of reserved sectors [ 2030.858625] FAT-fs (loop3): Can't find a valid FAT filesystem 10:40:51 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x31c5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 2030.876467] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2030.877580] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2030.878485] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:40:51 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb800, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:40:51 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:40:51 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x2, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x7}], 0x9483, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) 10:40:51 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="04002cbd7000fddbdf2575000000c401f08067000b00677cfd4589c7a40e1aae6b18247eb36f74f8f6793b7df9ae3ca9cfb2f5e87ed1ff361592201a1151eabf57ad6fd1950cd215131f67634030aa5f484986ad830a6243bac401c3ee44bff7cea60e881d5f9b616582cf28ec620ccd97d4ceb48c6727530f00050001000100000005000f004000000008000a000000000005000f000400000038010c80050003000300000003010200a207624e07c5690d555d459080990de6741a392aa42eff746330a20bec78fd393092b5f99f54b2a9f6dadb55db3c0846814e79eb43bf7bcd6295c96e7ca16288a8b27c5a225a6d718ad49f0366f969983400ba504c865cca04e4fa00a4b246fa618936f70fe77c1c3e550a5d12d4a9108e7e4216bc693107c3bd4c06e98ec9399de0e98cf205057cbbf688d8a13dc55472fc31954b846e29dbd7d8889b34ead6c83c9b533b666abd65490f2a7e693d55d91f24d5078eb3d34940c02ea1125e7176e254c6bd5531ed067817f0b3278e3dc492571b7da828e728a6fa55742efa33f430739c320b794841adba4c2875044dce9c8959eebe4a5b52d68f9868719f00280004800a000600ffffffffffff00000a000600ffffffffffff00000a000600ffffffffffff00000c01f0800a000200ee90b393fc10000046000b005cbb9f225903f92e0cffa77bd5369da32f70909f5950f26e59525d4d3c41b9e512f4a5d3b7aaaf8a0e03f2aa73274b24a04b4a689bf05844d0d2ad278696b14fb4c50000b4000d80af0000001263800a6541e18dae533feb73677b5c9d5da0ee4d7366d47dd6fa0b14ca33d3433171a533a29930fb5e0d9ff2ca710ab0c8aa4b331d58b4a7b3cac9c9b4ef9e7cdb1d3d6da7f0877a5c3ce7ff9bf9e936b1bcbe732bd9037f9090bfdee1d3e45c7b700e6aefa488eb013b27cd7291a7b927dc10e794490c85dff0cb49a1dd0f5514c3ce6c90d8457d79fcd2a3756ccd66b5194a5c69358e1199219e40ffdd6771943cb3fe33f442ae2ff2002c01f080050003000600000005000300020000000a000200957ccca020ad0000e4000b0049a0db966a0311d932607f2a479e651b881a56f4da7d14bde06c48822b0d353198bb85750dc9f0cca70174b813fe94ea80477bcf9dd6b03b9186edb85c476d8762dc273e83aaee35def167cc1c8faffc0e86fa311d66813cbea7e234d79e9d3acd30b5ae5a264e9576efabc94efd7a18b93eddabd9b046d12df487392f1217b77f05bd72f95130a2bda683b7a64c3d6477e3681d83c5e45e8fdae553114b304417851d9687ab3b9c6c7e91af7744d16b114820332c31b35f4358643e4137a9e6b264a14e04605648b50e27e3bb5cbbdaac70655fdff371ece3e08885f0da8d700a000800080211000000000005000100000000000a000800080211000000000005000300c9000000f800f08008000a000100008004000500050010007f0000000a0002005a9cbd08ca8e000014000c800500030008000000050003005e000000c0000b003a3801c2eefaea9df8f27b808f751948873b3fa40dd675c2f1b45ab2"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:40:51 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb801, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:40:51 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xf00, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 2031.059663] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 2031.108253] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2031.109356] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2031.110254] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:41:07 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 44) 10:41:07 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:41:07 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 53) 10:41:07 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x32c5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:41:07 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb802, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:41:07 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x2, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:41:07 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x1003, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:41:07 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) mount$9p_virtio(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x1000, &(0x7f0000000200)={'trans=virtio,', {[], [{@obj_type={'obj_type', 0x3d, '[[&}'}}, {@permit_directio}, {@fowner_lt={'fowner<', 0xee00}}, {@audit}]}}) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) [ 2047.306680] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 2047.309556] loop3: detected capacity change from 0 to 41948160 [ 2047.323172] FAULT_INJECTION: forcing a failure. [ 2047.323172] name failslab, interval 1, probability 0, space 0, times 0 [ 2047.325942] CPU: 0 PID: 11565 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 2047.327425] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2047.329200] Call Trace: [ 2047.329798] dump_stack+0x107/0x167 [ 2047.330576] should_fail.cold+0x5/0xa [ 2047.331392] ? create_object.isra.0+0x3a/0xa20 [ 2047.332366] should_failslab+0x5/0x20 [ 2047.333184] kmem_cache_alloc+0x5b/0x310 [ 2047.334051] ? lock_acquire+0x197/0x470 [ 2047.334905] create_object.isra.0+0x3a/0xa20 [ 2047.335839] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2047.336918] __kmalloc_track_caller+0x177/0x370 [ 2047.337918] ? kstrdup_const+0x53/0x80 [ 2047.338746] ? kasprintf+0xbb/0xf0 [ 2047.339511] kstrdup+0x36/0x70 [ 2047.340189] kstrdup_const+0x53/0x80 [ 2047.340997] kmem_cache_create_usercopy+0x12f/0x2f0 [ 2047.342065] p9_client_create+0xc6a/0x1230 [ 2047.342973] ? p9_client_flush+0x430/0x430 [ 2047.343865] ? trace_hardirqs_on+0x5b/0x180 [ 2047.344800] ? lockdep_init_map_type+0x2c7/0x780 [ 2047.345800] ? __raw_spin_lock_init+0x36/0x110 [ 2047.346769] v9fs_session_init+0x1dd/0x1680 [ 2047.347683] ? lock_release+0x680/0x680 [ 2047.348545] ? kmem_cache_alloc_trace+0x151/0x320 [ 2047.349558] ? v9fs_show_options+0x690/0x690 10:41:07 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb803, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 2047.350496] ? trace_hardirqs_on+0x5b/0x180 [ 2047.351597] ? kasan_unpoison_shadow+0x33/0x50 [ 2047.352569] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2047.353653] v9fs_mount+0x79/0x8f0 [ 2047.354407] ? v9fs_write_inode+0x60/0x60 [ 2047.355283] legacy_get_tree+0x105/0x220 [ 2047.356136] vfs_get_tree+0x8e/0x300 [ 2047.356931] path_mount+0x1429/0x2120 [ 2047.357741] ? strncpy_from_user+0x9e/0x470 [ 2047.358651] ? finish_automount+0xa90/0xa90 [ 2047.359569] ? getname_flags.part.0+0x1dd/0x4f0 [ 2047.360564] ? _copy_from_user+0xfb/0x1b0 [ 2047.361450] __x64_sys_mount+0x282/0x300 [ 2047.362303] ? copy_mnt_ns+0xa00/0xa00 [ 2047.363140] do_syscall_64+0x33/0x40 [ 2047.363923] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2047.365009] RIP: 0033:0x7f9f6e930b19 [ 2047.365799] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2047.369697] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2047.371307] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 2047.372820] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2047.374318] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 2047.375829] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2047.377347] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 2047.379188] hpet: Lost 3 RTC interrupts [ 2047.393195] FAULT_INJECTION: forcing a failure. [ 2047.393195] name failslab, interval 1, probability 0, space 0, times 0 [ 2047.395562] CPU: 0 PID: 11567 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2047.397049] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2047.398833] Call Trace: [ 2047.399396] dump_stack+0x107/0x167 [ 2047.400183] should_fail.cold+0x5/0xa [ 2047.401011] ? radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 2047.402240] should_failslab+0x5/0x20 [ 2047.403060] kmem_cache_alloc+0x5b/0x310 [ 2047.403940] radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 2047.405143] idr_get_free+0x4b5/0x8f0 [ 2047.405975] idr_alloc_u32+0x170/0x2d0 [ 2047.406818] ? __fprop_inc_percpu_max+0x130/0x130 [ 2047.407895] ? p9_client_prepare_req.part.0+0x20a/0xac0 [ 2047.409042] ? lock_release+0x680/0x680 [ 2047.409887] idr_alloc+0xc2/0x130 [ 2047.410619] ? idr_alloc_u32+0x2d0/0x2d0 [ 2047.411477] ? rwlock_bug.part.0+0x90/0x90 [ 2047.412388] p9_client_prepare_req.part.0+0x612/0xac0 [ 2047.413516] p9_client_rpc+0x220/0x1370 [ 2047.414371] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2047.415501] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 2047.416649] ? pipe_poll+0x21b/0x800 10:41:07 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) futimesat(r0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000100)={{}, {0x77359400}}) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) [ 2047.417439] ? p9_fd_close+0x4a0/0x4a0 [ 2047.418381] ? wait_for_partner+0x3c0/0x3c0 [ 2047.419322] ? p9_fd_poll+0x1e0/0x2c0 [ 2047.420140] ? p9_fd_create+0x357/0x4a0 [ 2047.420999] ? p9_conn_create+0x510/0x510 [ 2047.421874] ? p9_client_create+0x798/0x1230 [ 2047.422801] ? kfree+0xd7/0x340 [ 2047.423512] p9_client_create+0xa76/0x1230 [ 2047.424411] ? p9_client_flush+0x430/0x430 [ 2047.425315] ? trace_hardirqs_on+0x5b/0x180 [ 2047.426224] ? lockdep_init_map_type+0x2c7/0x780 [ 2047.427229] ? __raw_spin_lock_init+0x36/0x110 [ 2047.428207] v9fs_session_init+0x1dd/0x1680 [ 2047.429127] ? lock_release+0x680/0x680 [ 2047.429974] ? kmem_cache_alloc_trace+0x151/0x320 [ 2047.430990] ? v9fs_show_options+0x690/0x690 [ 2047.431926] ? trace_hardirqs_on+0x5b/0x180 [ 2047.432844] ? kasan_unpoison_shadow+0x33/0x50 [ 2047.433806] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2047.434883] v9fs_mount+0x79/0x8f0 [ 2047.435637] ? v9fs_write_inode+0x60/0x60 [ 2047.436526] legacy_get_tree+0x105/0x220 [ 2047.437385] vfs_get_tree+0x8e/0x300 [ 2047.438178] path_mount+0x1429/0x2120 [ 2047.438985] ? strncpy_from_user+0x9e/0x470 [ 2047.439894] ? finish_automount+0xa90/0xa90 [ 2047.440989] ? getname_flags.part.0+0x1dd/0x4f0 [ 2047.441965] ? _copy_from_user+0xfb/0x1b0 [ 2047.442844] __x64_sys_mount+0x282/0x300 [ 2047.443688] ? copy_mnt_ns+0xa00/0xa00 [ 2047.444535] do_syscall_64+0x33/0x40 [ 2047.445310] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2047.446376] RIP: 0033:0x7fd3b79dfb19 [ 2047.447169] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2047.451010] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2047.452611] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 2047.454098] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2047.455593] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 2047.457088] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2047.458579] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 2047.460486] hpet: Lost 3 RTC interrupts 10:41:08 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb804, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:41:08 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x33c5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:41:08 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0xb, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) [ 2047.560255] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2047.562212] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2047.563982] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:41:08 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x1020, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 2047.585112] loop3: detected capacity change from 0 to 41948160 10:41:08 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:41:08 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x34c5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:41:08 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 45) 10:41:08 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb805, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 2047.797549] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 2047.840760] FAULT_INJECTION: forcing a failure. [ 2047.840760] name failslab, interval 1, probability 0, space 0, times 0 [ 2047.843135] CPU: 0 PID: 11607 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2047.844589] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2047.846365] Call Trace: [ 2047.846930] dump_stack+0x107/0x167 [ 2047.847717] should_fail.cold+0x5/0xa [ 2047.848529] ? create_object.isra.0+0x3a/0xa20 [ 2047.849479] should_failslab+0x5/0x20 [ 2047.850279] kmem_cache_alloc+0x5b/0x310 [ 2047.851147] create_object.isra.0+0x3a/0xa20 [ 2047.852056] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2047.853113] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2047.853154] kmem_cache_alloc+0x159/0x310 [ 2047.854638] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2047.855502] radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 2047.855530] idr_get_free+0x4b5/0x8f0 [ 2047.855564] idr_alloc_u32+0x170/0x2d0 [ 2047.857099] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 2047.858029] ? __fprop_inc_percpu_max+0x130/0x130 [ 2047.858062] ? p9_client_prepare_req.part.0+0x20a/0xac0 [ 2047.863075] ? lock_release+0x680/0x680 [ 2047.863908] idr_alloc+0xc2/0x130 [ 2047.864639] ? idr_alloc_u32+0x2d0/0x2d0 [ 2047.865509] ? rwlock_bug.part.0+0x90/0x90 [ 2047.866396] p9_client_prepare_req.part.0+0x612/0xac0 [ 2047.867485] p9_client_rpc+0x220/0x1370 [ 2047.868324] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2047.869450] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 2047.870565] ? pipe_poll+0x21b/0x800 [ 2047.871351] ? p9_fd_close+0x4a0/0x4a0 [ 2047.872168] ? wait_for_partner+0x3c0/0x3c0 [ 2047.873081] ? p9_fd_poll+0x1e0/0x2c0 [ 2047.873899] ? p9_fd_create+0x357/0x4a0 [ 2047.874740] ? p9_conn_create+0x510/0x510 [ 2047.875608] ? p9_client_create+0x798/0x1230 [ 2047.876542] ? kfree+0xd7/0x340 [ 2047.877244] p9_client_create+0xa76/0x1230 [ 2047.878163] ? p9_client_flush+0x430/0x430 [ 2047.879047] ? trace_hardirqs_on+0x5b/0x180 [ 2047.879953] ? lockdep_init_map_type+0x2c7/0x780 [ 2047.880962] ? __raw_spin_lock_init+0x36/0x110 [ 2047.881923] v9fs_session_init+0x1dd/0x1680 [ 2047.882829] ? lock_release+0x680/0x680 [ 2047.883680] ? kmem_cache_alloc_trace+0x151/0x320 [ 2047.884712] ? v9fs_show_options+0x690/0x690 [ 2047.885642] ? trace_hardirqs_on+0x5b/0x180 [ 2047.886544] ? kasan_unpoison_shadow+0x33/0x50 [ 2047.887493] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2047.888560] v9fs_mount+0x79/0x8f0 [ 2047.889312] ? v9fs_write_inode+0x60/0x60 [ 2047.890181] legacy_get_tree+0x105/0x220 [ 2047.891044] vfs_get_tree+0x8e/0x300 [ 2047.891823] path_mount+0x1429/0x2120 [ 2047.892637] ? strncpy_from_user+0x9e/0x470 [ 2047.893540] ? finish_automount+0xa90/0xa90 [ 2047.894447] ? getname_flags.part.0+0x1dd/0x4f0 [ 2047.895417] ? _copy_from_user+0xfb/0x1b0 [ 2047.896301] __x64_sys_mount+0x282/0x300 [ 2047.897159] ? copy_mnt_ns+0xa00/0xa00 [ 2047.897984] do_syscall_64+0x33/0x40 [ 2047.898764] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2047.899847] RIP: 0033:0x7fd3b79dfb19 [ 2047.900637] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2047.904494] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2047.906088] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 2047.907586] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2047.909092] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 2047.910587] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2047.912080] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 2047.913991] hpet: Lost 4 RTC interrupts 10:41:25 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:41:25 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 46) 10:41:25 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 2065.240615] FAULT_INJECTION: forcing a failure. [ 2065.240615] name failslab, interval 1, probability 0, space 0, times 0 [ 2065.243007] CPU: 1 PID: 11618 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2065.244494] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2065.246312] Call Trace: [ 2065.246888] dump_stack+0x107/0x167 [ 2065.247546] FAULT_INJECTION: forcing a failure. [ 2065.247546] name failslab, interval 1, probability 0, space 0, times 0 [ 2065.247681] should_fail.cold+0x5/0xa [ 2065.250900] ? create_object.isra.0+0x3a/0xa20 [ 2065.251984] should_failslab+0x5/0x20 [ 2065.252823] kmem_cache_alloc+0x5b/0x310 [ 2065.253708] create_object.isra.0+0x3a/0xa20 [ 2065.254660] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2065.255765] kmem_cache_alloc+0x159/0x310 [ 2065.256689] radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 2065.257904] idr_get_free+0x4b5/0x8f0 [ 2065.258745] idr_alloc_u32+0x170/0x2d0 [ 2065.259592] ? __fprop_inc_percpu_max+0x130/0x130 [ 2065.260661] ? p9_client_prepare_req.part.0+0x20a/0xac0 [ 2065.261824] ? lock_release+0x680/0x680 [ 2065.262690] idr_alloc+0xc2/0x130 [ 2065.263444] ? idr_alloc_u32+0x2d0/0x2d0 [ 2065.264322] ? rwlock_bug.part.0+0x90/0x90 [ 2065.265263] p9_client_prepare_req.part.0+0x612/0xac0 [ 2065.266395] p9_client_rpc+0x220/0x1370 [ 2065.267332] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2065.268482] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 2065.269659] ? pipe_poll+0x21b/0x800 [ 2065.270464] ? p9_fd_close+0x4a0/0x4a0 [ 2065.271306] ? wait_for_partner+0x3c0/0x3c0 [ 2065.272253] ? p9_fd_poll+0x1e0/0x2c0 [ 2065.273095] ? p9_fd_create+0x357/0x4a0 [ 2065.273961] ? p9_conn_create+0x510/0x510 [ 2065.274860] ? p9_client_create+0x798/0x1230 [ 2065.275817] ? kfree+0xd7/0x340 [ 2065.276552] p9_client_create+0xa76/0x1230 [ 2065.277484] ? p9_client_flush+0x430/0x430 [ 2065.278405] ? trace_hardirqs_on+0x5b/0x180 [ 2065.279344] ? lockdep_init_map_type+0x2c7/0x780 [ 2065.280373] ? __raw_spin_lock_init+0x36/0x110 [ 2065.281378] v9fs_session_init+0x1dd/0x1680 [ 2065.282317] ? lock_release+0x680/0x680 [ 2065.283266] ? kmem_cache_alloc_trace+0x151/0x320 [ 2065.284309] ? v9fs_show_options+0x690/0x690 [ 2065.285289] ? trace_hardirqs_on+0x5b/0x180 [ 2065.286227] ? kasan_unpoison_shadow+0x33/0x50 [ 2065.287216] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2065.288325] v9fs_mount+0x79/0x8f0 [ 2065.289108] ? v9fs_write_inode+0x60/0x60 [ 2065.290015] legacy_get_tree+0x105/0x220 [ 2065.290898] vfs_get_tree+0x8e/0x300 [ 2065.291705] path_mount+0x1429/0x2120 [ 2065.292546] ? strncpy_from_user+0x9e/0x470 [ 2065.293485] ? finish_automount+0xa90/0xa90 [ 2065.294425] ? getname_flags.part.0+0x1dd/0x4f0 [ 2065.295435] ? _copy_from_user+0xfb/0x1b0 [ 2065.296343] __x64_sys_mount+0x282/0x300 [ 2065.297231] ? copy_mnt_ns+0xa00/0xa00 [ 2065.298087] do_syscall_64+0x33/0x40 [ 2065.298972] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2065.300084] RIP: 0033:0x7fd3b79dfb19 [ 2065.300898] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2065.304916] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2065.306570] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 2065.308125] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2065.309696] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 2065.311250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2065.312813] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 2065.314478] CPU: 0 PID: 11623 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 2065.315994] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2065.317818] Call Trace: [ 2065.318393] dump_stack+0x107/0x167 [ 2065.319186] should_fail.cold+0x5/0xa [ 2065.320011] ? create_object.isra.0+0x3a/0xa20 [ 2065.321014] should_failslab+0x5/0x20 [ 2065.321837] kmem_cache_alloc+0x5b/0x310 [ 2065.322715] ? lock_acquire+0x197/0x470 [ 2065.323580] create_object.isra.0+0x3a/0xa20 [ 2065.324547] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2065.325653] __kmalloc_track_caller+0x177/0x370 [ 2065.326667] ? kstrdup_const+0x53/0x80 [ 2065.327515] ? kasprintf+0xbb/0xf0 [ 2065.328292] kstrdup+0x36/0x70 [ 2065.329000] kstrdup_const+0x53/0x80 [ 2065.329833] kmem_cache_create_usercopy+0x12f/0x2f0 [ 2065.330921] p9_client_create+0xc6a/0x1230 [ 2065.331851] ? p9_client_flush+0x430/0x430 [ 2065.332788] ? trace_hardirqs_on+0x5b/0x180 [ 2065.332880] loop3: detected capacity change from 0 to 41948160 [ 2065.333725] ? lockdep_init_map_type+0x2c7/0x780 [ 2065.333747] ? __raw_spin_lock_init+0x36/0x110 [ 2065.333781] v9fs_session_init+0x1dd/0x1680 [ 2065.337969] ? lock_release+0x680/0x680 [ 2065.338842] ? kmem_cache_alloc_trace+0x151/0x320 [ 2065.339886] ? v9fs_show_options+0x690/0x690 [ 2065.340866] ? trace_hardirqs_on+0x5b/0x180 [ 2065.341802] ? kasan_unpoison_shadow+0x33/0x50 [ 2065.342786] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2065.343888] v9fs_mount+0x79/0x8f0 [ 2065.344672] ? v9fs_write_inode+0x60/0x60 [ 2065.345571] legacy_get_tree+0x105/0x220 [ 2065.346453] vfs_get_tree+0x8e/0x300 [ 2065.347259] path_mount+0x1429/0x2120 [ 2065.348091] ? strncpy_from_user+0x9e/0x470 [ 2065.349050] ? finish_automount+0xa90/0xa90 [ 2065.349987] ? getname_flags.part.0+0x1dd/0x4f0 [ 2065.350995] ? _copy_from_user+0xfb/0x1b0 [ 2065.351907] __x64_sys_mount+0x282/0x300 [ 2065.352798] ? copy_mnt_ns+0xa00/0xa00 [ 2065.353653] do_syscall_64+0x33/0x40 [ 2065.354462] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2065.355580] RIP: 0033:0x7f9f6e930b19 [ 2065.356386] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2065.360391] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2065.362067] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 2065.363625] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2065.365326] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 2065.367011] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2065.368576] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 2065.370369] hpet: Lost 2 RTC interrupts 10:41:25 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 54) 10:41:25 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x2000, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:41:25 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x1840400, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) 10:41:25 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb806, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:41:25 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x35c5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:41:25 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x2010, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 2065.382476] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 2065.406178] loop3: detected capacity change from 0 to 41948160 10:41:25 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x36c5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 2065.468352] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2065.470117] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2065.471790] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:41:26 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb807, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:41:26 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0xb00, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:41:26 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x2202, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:41:26 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8914, &(0x7f0000000140)={'lo\x00'}) open(&(0x7f0000001300)='./file1\x00', 0x0, 0x20) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_POLL_ADD={0x6, 0x4, 0x0, @fd=r1, 0x0, 0x0, 0x0, {0x7}, 0x1}, 0x7) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x3, 0x0, 0x3bb9, 0x2, &(0x7f0000000300)="f4759bf25953c6ca216341f0b2557bd0c290ce15d5a09a3918132540315730df52f15b3711bb665c8bfdddbcb677ab3d40881bb05641fe6db0a978b4e8dafd519e50d99283029ae81cb88760474912f141344bde5002fdd4c868ce3ca0c4c49c57a8ba56b0801cdeed1ffb1a95b07bd926606e0f8494d3bedae8a893e03bc228d0a5e78cb232c65cf70e82cd6328ec04fa0f4a14fe7a4aef3cd4ee45d24e4f70145e8ff69b42482f111af04164a74e118553b038e42d13b4309e5ac81a37cf8e1304e2da47b86c7b0a0473a2f261cf35fc2c0045783c1cca9518c50e7314ba582e2f3163da08f0c66dcdd24afcdec276e3337dd88fdcfb58a85edd229958bf9e2848103175ee6b357c09510e0bc77a9105a024e02dfe85608cbabc4b975eb6ce6bead4eac758cee8838b78c4b9369c9e987dda0582d3cb6536452328022043154b908ff95f2f3b7f8b055cca73fd1d00fec3ad248dbcdc97259f5b6219a36f1fabdb4adfaed995aaf59fd86e3bc82b59105bebf9436bd5f443f6b538c3b32c4a25f9f9469b77ac9faa273f1a5918bb9f19061aea38f17188ab346ae139617e10bdbbaabee6499072414f74300d27e86c7d3bfccf9ee6375c9d5c3477b5f42f4b6761f50906199ea4a3e26151f005194941e975f55f67320427c1cb8cc57865a1d75ed8635921c9da6cdb0958489fe1b6c62ab10a252fa4ca2311ed1ae443dc13ecf8c6963e74649453c1ad770cf8ce2001ddbe3c3ca98349f7ab54390fb8377da6bee681b3463d5e9ead92fdb794f7fb6221e9d39b26ca698f5578012f81fcc557d127ed6a4467f331dec272af0b3d2069a236aba81cca4e283577a7ecf98612769ab606775487fdfa668f0eb7947331af7af01f804813aebe1bdf0ac56ba87d4b6b92fdb5a9c861f121b36bb06ef16dd340aa50889ae45d4822dc28f5566959eff2999eecd2d98e413295b22a4b53bf45099afac0e31d58db108b14f5d1c440143892ad4fbac5247c9977c92830cd56acd671799ed9d7788d4b75418cb22deaee2876272825c32912aa8e2fb4b27d5fb12173d7dda41105ae5b21dba6980ff61555204d4d6e5fb5e4145251c2335461669d30aac451299433ad89c7aedc87e224e4b705f5a8258e4e6b4e479adeed33aaa6045fbed011d37663bc061271ed252b9385c4db8bec3836619f75e0f1f8dff9d5a9b7ca669c10520f005ccb6eaa66697ad3ac99135146577943826e668b8cb39b7ae305fdb413b8b6b2276c6e62df1c8464b8784e31973936df9941610a40fb257015d0800ffea71449b58cf4833dfd623a097fc4197063a5ed4f261357681d9d17265bc869ff2e9d95ae56996bff9b8fe948d4558e13f8b47ec7dc202bd49bff32d51925ae081b31d23a7d547bf350a61c0df14a7982a0cd66ce5a475147f10913af189aae6e5e7d8bc89033c23b1a5cdf59206d165255228b2f038e048d311124be3384cbfd12198c0846f17ebcc25ba637c463f6cd7795fe7accc725c8cc99d9176d27ac4c4f19f813c00080c492830a5d8088aa7eaf80bb05a5f328b34fdd9eabf47f561049237b83b9bc05e4d7bf6ce82b2efaf0d2ff860d54998eac4428b610551d5d49f2acb3523aa5e4314b991c2e2a435b52c14ab369bb6369c401065800de43b7c0ecb1380f1a3d2761112213da59387441dc6987f9c1ca15eddf330ee2264a1242a6da4cda49ad25ce03d3a38e7be2c66466beab4d42cacb1b798caf6a91e8044c2ed7be4433849e763f2efce77fe187a02ace9d82a86fc14e33fbf6a5a7d5a8c1a47df55c25c3a1413a8aa8ff81f228f0a1f330b514e4f30744b557a03d3ec6f263e0368100c7cf18c6c3be7479f8a947978ae3b43914482b9234d545109cdb8419ecd78b2cfab114f042c1023d3151bff7de48adc53d5f32e6055ae701918d58d9d15b629db5ea3d08702aeb1953353b259b753eb60d1d6c820869303955c32e9e5cc635eadb7cb290fc2eacb87aababb540f44e3128d88fd84ff8dbff3b16d2b67e51c5dba889955886ca338bcb7bed218b261801121d2136bbdadd40f649c750ddc652676c307e67b3e0a8f678906abce95dbb41d439d8697eb7a98b2ff67e1a18e518bba5aae8a0de4427b8c27f3d830e70ffa63dc5999cb043cd688ee02eb4738429772cacbeb16e047669c1460b6792cc1b6f7c2cbede51b104c8ebf1578e37a1864f7fe38e972efd2bf6cc51bea7e1a813a12c9b6a18f899d89a2701c47969c56108b50799d1af41c790891e7c517fbb31d27d41a21e04f2da9cec9faf3d82a6d9e088797a8ec65f7b5518e4e37b65005ff1a1431b4f2d2e5e70e5514854b1a4bb3035cae0c8283f2e9330223ac39cd692fd0fa4484c69139bd365c7fbc4ad54b44eb2ed6b12e2ad7963a9bac6527183f7b9045cd972f731bfb3e2dcc4119d0fdfd407f7f4e0a2a3050b3be71bc6d7eb1aecf61874a61ec336c653c283166f3c98602506847286ace2ece781b8c9ce81a17c256aabeff8de236b70836befbb1e8b3dcd9ed7bcaf8b9d05ddd0bd983b6d46f38c198bf2c0502bc07c03ece6b36c16c8944a2f9281df2ce78f4f57153a84e4511b9a5c1a46988e14fa1980966525db9740a2db9814e018b922c72b9316ec6dd0c9033b94c754e89d384bc2f946dbe0f574bf7c2dc70373ccc5dc41a36d38bbbdd390bd2fe5679db91c0b47c4b2e60126c0ba09df0ea2a857192de8d23865ddd078605d149e6e50ca6fb43b269a28038daf24958b0d6c50cc2425beda0d5a1af2ade4d3716dcaae0bf1029397aed420ada34265499ce24b12e81d016086dbc6edf17379fd4ad3dd5bce6985788c0cd5f668a9a870d4ca7cb172fe77c30bbe6ec139b5ded46b61ab1d03b937361b945d4a06bac332ba2b6aefe65ea5f716d3209e5aeed592968ccb944fa4219a5f8ed5b2240a803ed26847a351e6c0d6436eadeb026db4ad492a6b5bde0e6a6ffb523f8afb043a3b5f6e515193389d8e0665cb195dd93e8bdce248a79a517c9f174063997c88b5aa993dbeaae343b255c6624b5c21329dcddecbcc5fbd1c6b7845f4883aa16127ec2d115d690adab2296cc5882dc22ad20279e63dd058dea65197996d92d812320d5665fed9e8eb05bbe1cbfa81cf5243997de7083c6cd4624181e63aa26c28739ad0e81fc7f0d47ef8970dc5c2f0bf919278fb5231633172b205420bfcb8d23ba23c78660d7d082d224f1f0ae59bb1f61283709ee2786dc32517c00c21aea4c8c081e4c555d8c90ca9b9124e62a6df2dba6479df4ccbab6f4206f6a827954fcf78359c97077b6b6af8867a7acbca98b19e02082f9a66d4fd3013dccfd3f287df3a5a2c1752dc96d739f19ccf65f4a6f3331983d9c1d5ff2759ad91a299b73496ee167ae7267757e9b80c5d34efb3077b75fac4fe3baecf2966c1dd2bdfa751c51fad0ab25caf1531a5fc2946a4d5fe7c6e84bb2558828a70184f475cc8cf9dc2e7e291a05f988472bd3d056a379614a6f9613f023725abe54c97c2c06e404b7f0a9df1b4cd19ad77d0793ca40d33295758016ea13cd3389830df9933857df99fa03520526c5e4b04aa18e212845d15e7d9108c43d6c1b92fc74a52acb909303d047ed43cc3073747d07f31b3ba058215358b30efb6586b61ba7ddac0f2a40b29ca9cb08bc869cc0cf51ecde39a9b0f4c194b12f7667101e3f7055b71e375720986697eb9a199dd9808ee819d0888d05b4a9c064a1a0c14cdf2cd4fe6d51fb7d9ad5f8372c01f7af63d2ccd30fd888dc62d7ae20e37ca98f24947e21058fa33464dde41684f216ea66dd56fc82e4d5bff0f4a1965906a19852cf83cb341a81039dcdcd50db9902019777e1a60baa20e299fc92b393ab0142389fea19fe6c04cbe403720e9e57ad800abaee21fe2a1dd195dd56a5172e98426bdc40276456f5b1684695fd7ac16866104f567c6f6af50fc188672f0ab4b059d9b448675ea968f223d3f0f662bc1c775109345d37c0b4dcabbeb8610a8976979c9b7bad41fe2791ce61dabf8df8bd663f9c7429db0b2359ea2c5efe1eff9dc7f113729c99c6cd7b18892b120756e9f2332170f400c946b858cf60760320f5c02b0c8faa24cac5091dd2f615b22e418be87051cb18cb54c713d273ed03e6b8ebcfd33d5f5c54c5705fcc912ea8aa2359178c3c1aedaf1acd248560ddcce241f9eb94aa442bab52d96593b616c4227415277c8c7a1a8e89c43535fb597e2b8b879c70921b418ee39fc4019b151b0929acd30e7329152ee3bc1b805355b97b5a43ec289dac2c63367fcc76788c600871b2a23e60aa64c44ebc99b408fb75a36879fb04c523096947238deaa26d2882fbdc3dba1aebd0bff3d88847c41468cd6a7140cd254b413c78a5767ada0532a560f39f3055bc708493ad11e54bfe7cb1824064292fbc71aaa51d5d3c3175b403bfd8798f449ae26b253b1c215d588e22f9d676e85c4c84a3dd26f036032ca686a572d82e27bb4a8cec2861c0d1e18b38d45d33b61c60e5598de160eedb3063a0b7884dacb176f91d49871500ec1785b8b862d97d434a4234dfa323bc710ae75acbd278d3ae7acca8b11773260857b7957f43420c6af9dc15fc14aa2d7d275b65caff5a695391e3da6b566772328e91b4985e31412f88b8b863489a0fa6d857d055b12133151081022337647e0cd18301a0d4722609a4c4f5c7dc8a5714e48487a50ff1dcbad0cd2a4bd110209e361829d5247c17c41957e58bd7dc0a56527c164d753c3eff23756f1e1e72dd1fe123dae7dccfef57ca137635fbf3b7d2b6bfe517928fbaa58f2776ba66a5c46b3c2a645d999cb1e693444b6d591f0d27c004aa9a4aefab35840d497078e5b8971db62d1e320e43cb79a9721eba8a4c705fea38af13e9b7eff76c18b3680dcfdcea200168a89bb0494b4db68862104022e37e7faafb944a61440398fd28628422843bdd2ae6ef088dd33591b1deea794bca75f91157b3a3d783c520ed1fe71e0a710e14519ad297b8aff6b94abb130890db28b51dafea6d6c0d27c37587ddfadd63caa9ca4145cb7730cbe3db98db1a84d1040716d8410ea014334eb9fd1275b08300000f317083f80c5fb0ba1fe2bb35b94f41c6b832ef40d9483b91a7683f501fcdc66a299dc9db2b86bbdeea84fb597ff9959d9a0b3099bc8e5232cfa00cb3486a285f12a754edaee86e9a3851483193cf26309b43b7adb7534823e5a0d321908d7f1bdb1814f676c075eef6e3bfbdd9b32710bd7253f04bfe3d1f309fc63afd017c79034d097451a2112610a43f3590edefe9d227d05b2bb662f194937d98a106784611d3e086f5e7d0bffd5e75a0c90ad15ff31506c3c86021ba139fbc6ac7034a56550dd004bcdd53025dfeb24e7e11b59c9f47841ea1cd40306fcbff202693e117e72d2db7ae42076699344f05c4ce867c4324f44643e98cfb5ebed3623c66734a68e4bc087c3a3f63542a8fad1bf8db0f699ac425dbd6cb0721821539c77dd79008096277f991ab842ba70f07a7e023878b6cb2ea5c2db9e3335891ccec719a7a0fb014e56ea2463ebd26b4e137c01f2850ef5225aad9344fba58ff8e49bda45abcb317c0f5acdf100ffff7359da6caf4480a07386bd5de8461c403a0e1b4aaf3e0acca1e13b2243912f8628cfad2290f08cde2989bc85c77dbe51f7b60054b7976941e73af7713bc00a1cb3dad4ba0b335cd1974843f6849a5a5f59366f619135e36e0807d4a8edc4450101c550fa26e300cedc770d590bb101ddbac7e8f7a6e385f90df6c6845a250a", 0x1, 0x0, 0x1, {0x2}}, 0x3) r2 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) ioctl$F2FS_IOC_GET_PIN_FILE(0xffffffffffffffff, 0x8004f50e, &(0x7f0000001380)) fremovexattr(r2, &(0x7f0000001340)=ANY=[@ANYBLOB="73651bf942e1"]) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f00000001c0)=""/214, 0xd6) 10:41:26 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x37c5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:41:26 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 2065.648083] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 2065.696621] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2065.698454] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2065.700058] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:41:41 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 55) 10:41:41 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb808, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:41:41 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 47) 10:41:41 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) write$binfmt_elf64(r0, &(0x7f0000000440)={{0x7f, 0x45, 0x4c, 0x46, 0x81, 0x35, 0xec, 0x0, 0x3, 0x2, 0x3, 0x2, 0x1ed, 0x40, 0x3bc, 0x3, 0x1, 0x38, 0x1, 0x1, 0x5, 0x8}, [{0x70000000, 0x5db802f2, 0x7, 0x4, 0x922, 0x0, 0x789, 0x1d}, {0x1, 0x10000, 0x2, 0x2, 0x0, 0x4, 0x0, 0x80000000}], "a8439651a87f532eb4c4622e87ebd96e21b586dffff2d6b4ebc36d10942856e43b4db389b32db9b41cc11242356fe007a98b8f9b2588ea5278e7f394ce70bfab84d77afb8249657c4e0b473dc5705ae4e67f5b12573120634134d0ca0c806f16dbf7308a3ac55395c256878702cc0c1957e376af5b28e892193b3c72a150a0fd85f7a56a822e30efc1af8feafbd466911c22477b7a8d22220e7bf0e9e630746193780931bb2d8997218f3a25d5022cec58ed4aebe4ec12cb062aac361734d0eac2c4097132ffacc316", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x779) r1 = openat$incfs(r0, &(0x7f0000000100)='.log\x00', 0x880, 0x0) ioctl$EXT4_IOC_ALLOC_DA_BLKS(r1, 0x660c) unlinkat(r0, &(0x7f0000000000)='./file0\x00', 0x0) 10:41:41 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x3f00, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:41:41 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x2e00, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:41:41 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x38c5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:41:41 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="240000001000010000000000000000960000090005000000000000000500008048000000bd81b87afc1f961b041591112692a5d1aab19c6a9e208d1c28da156afb4ddd1c034b19e9834dac56f129ae740f48534d34c69c7c8f7a384336ebb2944c29225ff12f8b046906f15c85d62e0a33ee1e26fa8cdafd5b4230f8a3080ce94c020921c94d3d80cf8e3b0005243578f5cb037d73d389cfca1f80e0d2f968feac4f065ffe3cb0ac3a25ca5c1ff5a7d310a614982b1fd43abc07e6b5975ba7d712426b37c55d1e490df0153a78786913ed7637b1d840bfde0e1b7d339417ed280b1ddb49ee61eafedbaaa0a8d2cbc5bdccb0afa62f64ea4ff187fa6628397f9891a1f34aa8dd36d70ce1b5f09bc0043a0bd1f8bdfb33e073ebbcea086bc8e8da27d76939786776a523785c8d9f855bdebf1edf10e03337ab01cd5cf01d1029cd73f7ed80e25303ae4adcc92c32141d362f09f0ddfd8ac96f4ac935755951deec4790aad73f2a0d0ea95e61d823c36e79179362117010e45868e93f897ed1215e540cf9cb2406d5b482db"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 2081.380248] loop3: detected capacity change from 0 to 41948160 [ 2081.385631] FAULT_INJECTION: forcing a failure. [ 2081.385631] name failslab, interval 1, probability 0, space 0, times 0 [ 2081.388568] CPU: 1 PID: 11682 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 2081.390401] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2081.392819] Call Trace: [ 2081.393504] dump_stack+0x107/0x167 [ 2081.394439] should_fail.cold+0x5/0xa [ 2081.395422] ? __kmem_cache_create+0x10e/0x520 [ 2081.396634] should_failslab+0x5/0x20 [ 2081.397612] kmem_cache_alloc_node+0x55/0x330 [ 2081.398601] __kmem_cache_create+0x10e/0x520 [ 2081.399542] kmem_cache_create_usercopy+0x1db/0x2f0 [ 2081.400620] p9_client_create+0xc6a/0x1230 [ 2081.401538] ? p9_client_flush+0x430/0x430 [ 2081.402478] ? trace_hardirqs_on+0x5b/0x180 [ 2081.402919] FAULT_INJECTION: forcing a failure. [ 2081.402919] name failslab, interval 1, probability 0, space 0, times 0 [ 2081.403465] ? lockdep_init_map_type+0x2c7/0x780 [ 2081.406852] ? __raw_spin_lock_init+0x36/0x110 [ 2081.407879] v9fs_session_init+0x1dd/0x1680 [ 2081.408817] ? lock_release+0x680/0x680 [ 2081.409679] ? kmem_cache_alloc_trace+0x151/0x320 [ 2081.410701] ? v9fs_show_options+0x690/0x690 [ 2081.411643] ? trace_hardirqs_on+0x5b/0x180 [ 2081.412562] ? kasan_unpoison_shadow+0x33/0x50 [ 2081.413546] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2081.414626] v9fs_mount+0x79/0x8f0 [ 2081.415379] ? v9fs_write_inode+0x60/0x60 [ 2081.416263] legacy_get_tree+0x105/0x220 [ 2081.417147] vfs_get_tree+0x8e/0x300 [ 2081.417936] path_mount+0x1429/0x2120 [ 2081.418752] ? strncpy_from_user+0x9e/0x470 [ 2081.419674] ? finish_automount+0xa90/0xa90 [ 2081.420595] ? getname_flags.part.0+0x1dd/0x4f0 [ 2081.421590] ? _copy_from_user+0xfb/0x1b0 [ 2081.422475] __x64_sys_mount+0x282/0x300 [ 2081.423341] ? copy_mnt_ns+0xa00/0xa00 [ 2081.424180] do_syscall_64+0x33/0x40 [ 2081.424975] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2081.426069] RIP: 0033:0x7f9f6e930b19 [ 2081.426857] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2081.430988] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2081.432743] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 2081.434255] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2081.435772] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 2081.437291] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2081.438810] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 2081.440357] CPU: 0 PID: 11681 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2081.440509] kmem_cache_create(9p-fcall-cache-201) failed with error -22 [ 2081.441841] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2081.441849] Call Trace: [ 2081.441881] dump_stack+0x107/0x167 [ 2081.446324] should_fail.cold+0x5/0xa [ 2081.447168] ? radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 2081.448398] should_failslab+0x5/0x20 [ 2081.449218] kmem_cache_alloc+0x5b/0x310 [ 2081.450091] radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 2081.451279] idr_get_free+0x4b5/0x8f0 [ 2081.452100] idr_alloc_u32+0x170/0x2d0 [ 2081.452978] ? __fprop_inc_percpu_max+0x130/0x130 [ 2081.454217] ? p9_client_prepare_req.part.0+0x20a/0xac0 [ 2081.455535] ? lock_release+0x680/0x680 [ 2081.456528] idr_alloc+0xc2/0x130 [ 2081.457408] ? idr_alloc_u32+0x2d0/0x2d0 [ 2081.458409] ? rwlock_bug.part.0+0x90/0x90 [ 2081.459447] p9_client_prepare_req.part.0+0x612/0xac0 [ 2081.460591] p9_client_rpc+0x220/0x1370 [ 2081.461454] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2081.462625] ? p9_client_prepare_req.part.0+0xac0/0xac0 [ 2081.463773] ? pipe_poll+0x21b/0x800 [ 2081.464561] ? p9_fd_close+0x4a0/0x4a0 [ 2081.465411] ? wait_for_partner+0x3c0/0x3c0 [ 2081.466359] ? p9_fd_poll+0x1e0/0x2c0 [ 2081.467203] ? p9_fd_create+0x357/0x4a0 [ 2081.468077] ? p9_conn_create+0x510/0x510 [ 2081.468994] ? p9_client_create+0x798/0x1230 [ 2081.469955] ? kfree+0xd7/0x340 [ 2081.470688] p9_client_create+0xa76/0x1230 [ 2081.471625] ? p9_client_flush+0x430/0x430 [ 2081.472554] ? trace_hardirqs_on+0x5b/0x180 [ 2081.473508] ? lockdep_init_map_type+0x2c7/0x780 [ 2081.474547] ? __raw_spin_lock_init+0x36/0x110 [ 2081.475559] v9fs_session_init+0x1dd/0x1680 [ 2081.476505] ? lock_release+0x680/0x680 [ 2081.477394] ? kmem_cache_alloc_trace+0x151/0x320 [ 2081.478449] ? v9fs_show_options+0x690/0x690 [ 2081.479416] ? trace_hardirqs_on+0x5b/0x180 [ 2081.480363] ? kasan_unpoison_shadow+0x33/0x50 [ 2081.481373] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2081.482488] v9fs_mount+0x79/0x8f0 [ 2081.483267] ? v9fs_write_inode+0x60/0x60 [ 2081.484179] legacy_get_tree+0x105/0x220 [ 2081.485087] vfs_get_tree+0x8e/0x300 [ 2081.485900] path_mount+0x1429/0x2120 [ 2081.486742] ? strncpy_from_user+0x9e/0x470 [ 2081.487685] ? finish_automount+0xa90/0xa90 [ 2081.488638] ? getname_flags.part.0+0x1dd/0x4f0 [ 2081.489660] ? _copy_from_user+0xfb/0x1b0 [ 2081.490576] __x64_sys_mount+0x282/0x300 [ 2081.491463] ? copy_mnt_ns+0xa00/0xa00 [ 2081.492327] do_syscall_64+0x33/0x40 [ 2081.493154] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2081.494275] RIP: 0033:0x7fd3b79dfb19 [ 2081.495092] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2081.499131] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2081.500807] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 2081.502370] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2081.503931] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 2081.505505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2081.507070] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 2081.508681] CPU: 1 PID: 11682 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 2081.509280] hpet: Lost 6 RTC interrupts [ 2081.510535] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2081.510551] Call Trace: [ 2081.514066] dump_stack+0x107/0x167 [ 2081.514868] kmem_cache_create_usercopy.cold+0x17/0x65 [ 2081.516027] p9_client_create+0xc6a/0x1230 [ 2081.516978] ? p9_client_flush+0x430/0x430 [ 2081.517906] ? trace_hardirqs_on+0x5b/0x180 [ 2081.518852] ? lockdep_init_map_type+0x2c7/0x780 [ 2081.519895] ? __raw_spin_lock_init+0x36/0x110 [ 2081.520906] v9fs_session_init+0x1dd/0x1680 [ 2081.521852] ? lock_release+0x680/0x680 [ 2081.522735] ? kmem_cache_alloc_trace+0x151/0x320 [ 2081.523789] ? v9fs_show_options+0x690/0x690 [ 2081.524769] ? trace_hardirqs_on+0x5b/0x180 [ 2081.525719] ? kasan_unpoison_shadow+0x33/0x50 [ 2081.526712] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2081.527823] v9fs_mount+0x79/0x8f0 [ 2081.528600] ? v9fs_write_inode+0x60/0x60 [ 2081.529517] legacy_get_tree+0x105/0x220 [ 2081.530409] vfs_get_tree+0x8e/0x300 [ 2081.531289] path_mount+0x1429/0x2120 [ 2081.532132] ? strncpy_from_user+0x9e/0x470 [ 2081.533184] ? finish_automount+0xa90/0xa90 [ 2081.534112] ? getname_flags.part.0+0x1dd/0x4f0 [ 2081.535130] ? _copy_from_user+0xfb/0x1b0 [ 2081.536044] __x64_sys_mount+0x282/0x300 [ 2081.536941] ? copy_mnt_ns+0xa00/0xa00 [ 2081.537800] do_syscall_64+0x33/0x40 [ 2081.538614] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2081.539736] RIP: 0033:0x7f9f6e930b19 [ 2081.540556] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2081.544545] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2081.546187] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 2081.547760] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2081.549439] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 2081.551007] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2081.552569] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 2081.557103] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. 10:41:42 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb809, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:41:42 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:41:42 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x3f00, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:41:42 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x39c5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:41:42 executing program 3: ioctl$FS_IOC_FIEMAP(0xffffffffffffffff, 0xc020660b, &(0x7f00000001c0)={0x1, 0x4, 0x1, 0xffff, 0x4, [{0x1f, 0x4b4, 0xfffffffffffffffa, '\x00', 0x1200}, {0x8, 0x9, 0x8, '\x00', 0x3000}, {0x9, 0x662, 0x2, '\x00', 0x1809}, {0x2c9f, 0xa53, 0x2, '\x00', 0x2000}]}) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x12418, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140)}, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = memfd_create(&(0x7f0000000000)='\x00', 0x0) lseek(r2, 0x0, 0x3) fallocate(r2, 0x5a, 0x689, 0x80000000) fallocate(r1, 0x0, 0x2, 0x7) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r1, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0x2e4902, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2000003, 0x1f012, r3, 0x0) openat(0xffffffffffffffff, 0x0, 0x36400, 0xe375d1901a7fcc3b) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) syz_io_uring_setup(0x8003a75, &(0x7f0000000080)={0x0, 0xa91f, 0x10, 0x0, 0x3be}, &(0x7f0000623000/0x4000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000002c0)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r4, r5, 0x0, 0x0) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r5, &(0x7f0000000040)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x1, {0x3, r6}}, 0x7ff) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, r0, 0x0) lseek(0xffffffffffffffff, 0x0, 0x3) [ 2081.676463] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2081.678142] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2081.680040] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:41:42 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb80a, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:41:42 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x3ac5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 2081.738750] loop3: detected capacity change from 0 to 41948160 10:41:59 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 56) 10:41:59 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x4000, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:41:59 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x3bc5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:41:59 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) r1 = syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0xfffffffffffffffb, 0x9, &(0x7f0000001780)=[{&(0x7f00000001c0)="9004278ee57fd31b0e3573d52a51bfa69fd47e792035dfdf6411d7a77b57b862c1b5add8ec2943c5fe30581e24203081474ed4265567e63f1cf7f772533b564dd8c170bf857066dfb68e61b9a03efde4791e2c474391cbc55a44017f8a994374e059e8b4581aa043b34c158b6723edc11962f7eb855abc0cabe0178beeed2e7db9cf5ee0996026e0eb3b9bc63d1c4c47bb84765217cc474e12333980820a0b9c8a454319cb2198cae41b24f5fddc3ea47289b545c95fd869f1548727463520bc5901115be91bb0c0f2937abcd035a3f5470de312075e", 0xd6, 0x2}, {&(0x7f0000000300)="f3433fb952107ed842e0fa75d5bd428947ee8e2b938829e91704e279ed4548abf2034548a2", 0x25, 0x401}, {&(0x7f0000000440)}, {&(0x7f0000000480)="22634b10ef3d55b1ed634c74ce218fbd65aa959773576e4392d405eedaf1fbda83db18169cb3481c3c0b36ec36acf385eb5b2651a80326682971fffe6c91e2b458b59f46ee2ed28f01a75ee0f7fa5274c03d33c1364044e2d287f0c879fa8277aa71a846c870e03e73930171441d2df768c2ce97265da459fe2d2668b7d344a61f35cae6cc61f4555b85bf32f3ef054ece03ffd8d8e8a1741814162cf0ef93dbb05d81ff70b940cf7ad89bef5dd5c160f55476836f7feed1faf19c4b6e1a911f98b921c3550a0f5043d9632cc53d1339d6eb34bbba8f0f698a13d6b91c723ef5dc3267d94996b7a5e1cc11f865013b", 0xef, 0x40}, {&(0x7f0000000580)="9116ef6411c2d51c0371aea7b555bd75882290267a73d3b7f24bb35b8e34a34983ce61d0f51493e7902fc9123ca75f3237eaa0daf9db1817e56f66af8e32a0cb26ad3743526b7615738aacb19bf67de122ee7ed68f71b97199d888ba5524a2a8b952660480cb79cb94f61d13264817eb5e293f52892fa75a63d4b46d45f8c8ff6393c383b893f1544dcfa80eb41d5417ad398374407943042c909baa9c5bc3aef69983a4ab121b4d9160", 0xaa, 0xde7e}, {&(0x7f0000000640)="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", 0x1000, 0x4}, {&(0x7f0000001640)="e31fc692d0eb10926543ca1fec987ad3e75913fc2a739ece42b19e637ae616d4c93e424cdb260929fa3d16b7fef8041c0f0e1011bdf610f0a06d6c10123aa116eed545a741cf7c6d8e34e3e72f01bf50792b2d4b3dadb7e8b7b24fee80c0288a408b092abb68359edd6a", 0x6a, 0x4}, {&(0x7f00000016c0)="e609974217a55d84d838505227e5a0d857a13e9236e8f015f2d0", 0x1a, 0x101}, {&(0x7f0000001700)="48501324833624fb305956fe87e3e7198da4710e71ab160558ef8356c13491ff195cd4f77baa0e3e6d0848cae8bac30b134b846eb1aab9c95bb44bde9c541219c7ea20771d2be03a298b0873c6af", 0x4e, 0x7f}], 0x800000, &(0x7f0000001880)={[{}], [{@fowner_lt={'fowner<', 0xffffffffffffffff}}, {@subj_type={'subj_type', 0x3d, 'vfat\x00'}}]}) readlinkat(r1, &(0x7f00000018c0)='./file1\x00', &(0x7f0000001900)=""/179, 0xb3) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) 10:41:59 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 48) [ 2099.101480] loop3: detected capacity change from 0 to 41948160 [ 2099.127054] FAULT_INJECTION: forcing a failure. [ 2099.127054] name failslab, interval 1, probability 0, space 0, times 0 [ 2099.129986] CPU: 0 PID: 11730 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 2099.131760] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2099.133775] Call Trace: [ 2099.134335] dump_stack+0x107/0x167 [ 2099.135112] should_fail.cold+0x5/0xa [ 2099.135920] ? create_object.isra.0+0x3a/0xa20 [ 2099.136899] should_failslab+0x5/0x20 [ 2099.137702] kmem_cache_alloc+0x5b/0x310 [ 2099.138566] create_object.isra.0+0x3a/0xa20 [ 2099.139498] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2099.140577] kmem_cache_alloc_node+0x169/0x330 [ 2099.141658] __kmem_cache_create+0x10e/0x520 [ 2099.142740] kmem_cache_create_usercopy+0x1db/0x2f0 [ 2099.143809] p9_client_create+0xc6a/0x1230 [ 2099.144721] ? p9_client_flush+0x430/0x430 [ 2099.145624] ? trace_hardirqs_on+0x5b/0x180 [ 2099.146537] ? lockdep_init_map_type+0x2c7/0x780 [ 2099.147543] ? __raw_spin_lock_init+0x36/0x110 [ 2099.148511] v9fs_session_init+0x1dd/0x1680 [ 2099.149441] ? lock_release+0x680/0x680 [ 2099.150292] ? kmem_cache_alloc_trace+0x151/0x320 [ 2099.151304] ? v9fs_show_options+0x690/0x690 [ 2099.152254] ? trace_hardirqs_on+0x5b/0x180 [ 2099.153176] ? kasan_unpoison_shadow+0x33/0x50 [ 2099.154137] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2099.155213] v9fs_mount+0x79/0x8f0 [ 2099.155961] ? v9fs_write_inode+0x60/0x60 [ 2099.156847] legacy_get_tree+0x105/0x220 [ 2099.157707] vfs_get_tree+0x8e/0x300 [ 2099.158486] path_mount+0x1429/0x2120 [ 2099.159296] ? strncpy_from_user+0x9e/0x470 [ 2099.160203] ? finish_automount+0xa90/0xa90 [ 2099.161130] ? getname_flags.part.0+0x1dd/0x4f0 [ 2099.162110] ? _copy_from_user+0xfb/0x1b0 [ 2099.162987] __x64_sys_mount+0x282/0x300 [ 2099.163845] ? copy_mnt_ns+0xa00/0xa00 [ 2099.164693] do_syscall_64+0x33/0x40 [ 2099.165488] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2099.166567] RIP: 0033:0x7f9f6e930b19 [ 2099.167348] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2099.171232] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2099.172843] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 2099.174352] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2099.175844] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 2099.177365] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2099.178864] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 2099.180609] hpet: Lost 2 RTC interrupts 10:41:59 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x80fe, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:41:59 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb827, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:41:59 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 2099.206033] FAULT_INJECTION: forcing a failure. [ 2099.206033] name failslab, interval 1, probability 0, space 0, times 0 [ 2099.208448] CPU: 0 PID: 11731 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2099.209921] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2099.211689] Call Trace: [ 2099.212248] dump_stack+0x107/0x167 [ 2099.213029] should_fail.cold+0x5/0xa [ 2099.213844] ? p9pdu_readf+0xadb/0x1d40 [ 2099.214688] should_failslab+0x5/0x20 [ 2099.215497] __kmalloc+0x72/0x390 [ 2099.216244] p9pdu_readf+0xadb/0x1d40 [ 2099.217066] ? pipe_poll+0x21b/0x800 [ 2099.217861] ? p9pdu_writef+0x100/0x100 [ 2099.218707] ? p9_fd_poll+0x1e0/0x2c0 [ 2099.219526] ? p9_fd_create+0x357/0x4a0 [ 2099.220415] ? p9_conn_create+0x510/0x510 [ 2099.221299] ? p9_client_create+0x798/0x1230 [ 2099.222237] ? kfree+0xd7/0x340 [ 2099.222942] p9_client_create+0xaee/0x1230 [ 2099.223854] ? p9_client_flush+0x430/0x430 [ 2099.224762] ? trace_hardirqs_on+0x5b/0x180 [ 2099.225680] ? lockdep_init_map_type+0x2c7/0x780 [ 2099.226683] ? __raw_spin_lock_init+0x36/0x110 [ 2099.227652] v9fs_session_init+0x1dd/0x1680 [ 2099.228577] ? lock_release+0x680/0x680 [ 2099.229470] ? kmem_cache_alloc_trace+0x151/0x320 [ 2099.230491] ? v9fs_show_options+0x690/0x690 10:41:59 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x4084, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 2099.231431] ? trace_hardirqs_on+0x5b/0x180 [ 2099.232485] ? kasan_unpoison_shadow+0x33/0x50 [ 2099.233465] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2099.234540] v9fs_mount+0x79/0x8f0 [ 2099.235291] ? v9fs_write_inode+0x60/0x60 [ 2099.236167] legacy_get_tree+0x105/0x220 [ 2099.237038] vfs_get_tree+0x8e/0x300 [ 2099.237829] path_mount+0x1429/0x2120 [ 2099.238642] ? strncpy_from_user+0x9e/0x470 [ 2099.239559] ? finish_automount+0xa90/0xa90 [ 2099.240475] ? getname_flags.part.0+0x1dd/0x4f0 [ 2099.241470] ? _copy_from_user+0xfb/0x1b0 [ 2099.242348] __x64_sys_mount+0x282/0x300 [ 2099.243207] ? copy_mnt_ns+0xa00/0xa00 [ 2099.244042] do_syscall_64+0x33/0x40 [ 2099.244841] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2099.245925] RIP: 0033:0x7fd3b79dfb19 [ 2099.246713] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2099.250620] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2099.252231] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 2099.253753] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2099.255261] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 2099.256782] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2099.258291] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 2099.259993] hpet: Lost 2 RTC interrupts 10:41:59 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000000)='./file1\x00') openat(r0, &(0x7f0000000040)='./file0\x00', 0x8000, 0x8) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) pipe(&(0x7f0000000100)) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) [ 2099.308258] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. 10:41:59 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x3cc5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:41:59 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 49) 10:41:59 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb828, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:41:59 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0xc0fe, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) [ 2099.393460] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2099.395351] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2099.397022] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:41:59 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 57) 10:42:00 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x4800, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 2099.486068] FAULT_INJECTION: forcing a failure. [ 2099.486068] name failslab, interval 1, probability 0, space 0, times 0 [ 2099.489238] CPU: 1 PID: 11761 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 2099.490716] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2099.492483] Call Trace: [ 2099.493067] dump_stack+0x107/0x167 [ 2099.493850] should_fail.cold+0x5/0xa [ 2099.494669] ? create_object.isra.0+0x3a/0xa20 [ 2099.495644] should_failslab+0x5/0x20 [ 2099.496456] kmem_cache_alloc+0x5b/0x310 [ 2099.497345] create_object.isra.0+0x3a/0xa20 [ 2099.498292] kmemleak_alloc_percpu+0xa0/0x100 [ 2099.499258] pcpu_alloc+0x4e2/0x1240 [ 2099.500077] __kmem_cache_create+0x35a/0x520 [ 2099.501028] kmem_cache_create_usercopy+0x1db/0x2f0 [ 2099.502287] p9_client_create+0xc6a/0x1230 [ 2099.503200] ? p9_client_flush+0x430/0x430 [ 2099.504105] ? trace_hardirqs_on+0x5b/0x180 [ 2099.505045] ? lockdep_init_map_type+0x2c7/0x780 [ 2099.506058] ? __raw_spin_lock_init+0x36/0x110 [ 2099.507036] v9fs_session_init+0x1dd/0x1680 [ 2099.507956] ? lock_release+0x680/0x680 [ 2099.508820] ? kmem_cache_alloc_trace+0x151/0x320 [ 2099.509847] ? v9fs_show_options+0x690/0x690 [ 2099.510798] ? trace_hardirqs_on+0x5b/0x180 [ 2099.511719] ? kasan_unpoison_shadow+0x33/0x50 [ 2099.512690] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2099.513783] v9fs_mount+0x79/0x8f0 [ 2099.514545] ? v9fs_write_inode+0x60/0x60 [ 2099.515428] legacy_get_tree+0x105/0x220 [ 2099.516292] vfs_get_tree+0x8e/0x300 [ 2099.517097] path_mount+0x1429/0x2120 [ 2099.517966] ? strncpy_from_user+0x9e/0x470 [ 2099.518887] ? finish_automount+0xa90/0xa90 [ 2099.519776] ? getname_flags.part.0+0x1dd/0x4f0 [ 2099.520779] ? _copy_from_user+0xfb/0x1b0 [ 2099.521653] __x64_sys_mount+0x282/0x300 [ 2099.522520] ? copy_mnt_ns+0xa00/0xa00 [ 2099.523346] do_syscall_64+0x33/0x40 [ 2099.524147] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2099.525241] RIP: 0033:0x7f9f6e930b19 [ 2099.526036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2099.529844] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2099.531423] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 2099.533035] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2099.534522] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 2099.535999] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2099.537478] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 2099.554811] FAULT_INJECTION: forcing a failure. [ 2099.554811] name failslab, interval 1, probability 0, space 0, times 0 [ 2099.557241] CPU: 0 PID: 11765 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2099.558710] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2099.560478] Call Trace: [ 2099.561057] dump_stack+0x107/0x167 [ 2099.561828] should_fail.cold+0x5/0xa [ 2099.562636] ? p9pdu_readf+0xadb/0x1d40 [ 2099.563480] should_failslab+0x5/0x20 [ 2099.564312] __kmalloc+0x72/0x390 [ 2099.565065] p9pdu_readf+0xadb/0x1d40 [ 2099.565876] ? pipe_poll+0x21b/0x800 [ 2099.566667] ? p9pdu_writef+0x100/0x100 [ 2099.567510] ? p9_fd_poll+0x1e0/0x2c0 [ 2099.568321] ? p9_fd_create+0x357/0x4a0 [ 2099.569173] ? p9_conn_create+0x510/0x510 [ 2099.570048] ? p9_client_create+0x798/0x1230 [ 2099.570974] ? kfree+0xd7/0x340 [ 2099.571685] p9_client_create+0xaee/0x1230 [ 2099.572593] ? p9_client_flush+0x430/0x430 [ 2099.573149] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 2099.573514] ? trace_hardirqs_on+0x5b/0x180 [ 2099.573547] ? lockdep_init_map_type+0x2c7/0x780 [ 2099.577179] ? __raw_spin_lock_init+0x36/0x110 [ 2099.578159] v9fs_session_init+0x1dd/0x1680 [ 2099.579075] ? lock_release+0x680/0x680 [ 2099.579922] ? kmem_cache_alloc_trace+0x151/0x320 [ 2099.580951] ? v9fs_show_options+0x690/0x690 [ 2099.581894] ? trace_hardirqs_on+0x5b/0x180 [ 2099.582818] ? kasan_unpoison_shadow+0x33/0x50 [ 2099.583782] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2099.584869] v9fs_mount+0x79/0x8f0 [ 2099.585620] ? v9fs_write_inode+0x60/0x60 [ 2099.586495] legacy_get_tree+0x105/0x220 [ 2099.587363] vfs_get_tree+0x8e/0x300 [ 2099.588154] path_mount+0x1429/0x2120 [ 2099.588977] ? strncpy_from_user+0x9e/0x470 [ 2099.589891] ? finish_automount+0xa90/0xa90 [ 2099.590802] ? getname_flags.part.0+0x1dd/0x4f0 [ 2099.591797] ? _copy_from_user+0xfb/0x1b0 [ 2099.592678] __x64_sys_mount+0x282/0x300 [ 2099.593546] ? copy_mnt_ns+0xa00/0xa00 [ 2099.594383] do_syscall_64+0x33/0x40 [ 2099.595177] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2099.596258] RIP: 0033:0x7fd3b79dfb19 [ 2099.597061] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2099.600971] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2099.602584] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 2099.604089] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2099.605608] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 2099.607116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2099.608629] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 2099.610368] hpet: Lost 2 RTC interrupts 10:42:00 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb829, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:42:00 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:42:00 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x3dc5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:42:00 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17, 0xffffffffffffffff}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x406e2, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r1, 0x0, 0x2a, &(0x7f0000000800)={0x80000000, {{0x2, 0x4e22, @local}}}, 0x88) openat(r1, &(0x7f0000000000)='./file0\x00', 0x401, 0x102) bind(0xffffffffffffffff, &(0x7f0000000240)=@in6={0xa, 0x4e23, 0x4, @mcast1, 0x7468}, 0x80) ioctl$AUTOFS_IOC_EXPIRE(r0, 0x810c9365, &(0x7f0000000440)={{0x4, 0x634}, 0x100, './file1\x00'}) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) 10:42:00 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0xfc00, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:42:00 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x4c00, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 2099.691671] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2099.693389] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2099.695078] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:42:00 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0xfe80, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:42:00 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) setsockopt$inet6_IPV6_PKTINFO(r2, 0x29, 0x32, &(0x7f0000000040)={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, r1}, 0xfffffffffffffec8) fchmod(r2, 0x0) openat(r2, &(0x7f0000000000)='./file1\x00', 0x2303c1, 0xa1) 10:42:00 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb82a, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:42:00 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x3ec5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:42:00 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 58) [ 2099.877438] FAULT_INJECTION: forcing a failure. [ 2099.877438] name failslab, interval 1, probability 0, space 0, times 0 [ 2099.879952] CPU: 0 PID: 11798 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 2099.881432] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2099.883189] Call Trace: [ 2099.883750] dump_stack+0x107/0x167 [ 2099.884525] should_fail.cold+0x5/0xa [ 2099.885345] ? create_object.isra.0+0x3a/0xa20 [ 2099.886314] should_failslab+0x5/0x20 [ 2099.887124] kmem_cache_alloc+0x5b/0x310 [ 2099.887986] ? mark_held_locks+0x9e/0xe0 [ 2099.888875] create_object.isra.0+0x3a/0xa20 [ 2099.889815] kmemleak_alloc_percpu+0xa0/0x100 [ 2099.890772] pcpu_alloc+0x4e2/0x1240 [ 2099.891579] __kmem_cache_create+0x35a/0x520 [ 2099.892541] kmem_cache_create_usercopy+0x1db/0x2f0 [ 2099.893620] p9_client_create+0xc6a/0x1230 [ 2099.894536] ? p9_client_flush+0x430/0x430 [ 2099.895441] ? trace_hardirqs_on+0x5b/0x180 [ 2099.896360] ? lockdep_init_map_type+0x2c7/0x780 [ 2099.897384] ? __raw_spin_lock_init+0x36/0x110 [ 2099.898359] v9fs_session_init+0x1dd/0x1680 [ 2099.899274] ? lock_release+0x680/0x680 [ 2099.900131] ? kmem_cache_alloc_trace+0x151/0x320 [ 2099.901172] ? v9fs_show_options+0x690/0x690 [ 2099.902120] ? trace_hardirqs_on+0x5b/0x180 [ 2099.903040] ? kasan_unpoison_shadow+0x33/0x50 [ 2099.904007] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2099.905096] v9fs_mount+0x79/0x8f0 [ 2099.905851] ? v9fs_write_inode+0x60/0x60 [ 2099.906734] legacy_get_tree+0x105/0x220 [ 2099.907599] vfs_get_tree+0x8e/0x300 [ 2099.908389] path_mount+0x1429/0x2120 [ 2099.909213] ? strncpy_from_user+0x9e/0x470 [ 2099.910126] ? finish_automount+0xa90/0xa90 [ 2099.911051] ? getname_flags.part.0+0x1dd/0x4f0 [ 2099.912039] ? _copy_from_user+0xfb/0x1b0 [ 2099.912938] __x64_sys_mount+0x282/0x300 [ 2099.913798] ? copy_mnt_ns+0xa00/0xa00 [ 2099.914628] do_syscall_64+0x33/0x40 [ 2099.915420] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2099.916504] RIP: 0033:0x7f9f6e930b19 [ 2099.917297] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2099.921199] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2099.922805] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 2099.924398] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2099.925921] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 2099.927438] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2099.928959] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 2099.930659] hpet: Lost 2 RTC interrupts 10:42:18 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 50) 10:42:18 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x5e00, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:42:18 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:42:18 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0xfec0, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:42:18 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x406e2, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r1, 0x0, 0x2a, &(0x7f0000000800)={0x80000000, {{0x2, 0x4e22, @local}}}, 0x88) r2 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file1\x00', 0xffff, 0x1, &(0x7f0000000240)=[{&(0x7f00000001c0)="6574ce83a1d4231299f00d1a87fdc349afb080eb1d06ab4c3d65d031b406b7d0b82b650c3c3f40fd6280274069360df5a8904accc699d65d9f4d0470869b3a7c50eaf29e9648f9570296c294d243562b7c56751d202c57ef40573189b53a3b128711ed4702a1ceb473", 0x69, 0x4}], 0x31000b4, &(0x7f0000000680)={[{@numtail}, {@shortname_mixed}, {@uni_xlateno}, {@nonumtail}, {@numtail}, {@uni_xlateno}, {@shortname_mixed}, {@numtail}, {@rodir}, {@numtail}], [{@euid_gt={'euid>', 0xffffffffffffffff}}, {@euid_lt}, {@euid_lt={'euid<', 0xffffffffffffffff}}, {@smackfstransmute={'smackfstransmute', 0x3d, 'vfat\x00'}}, {@fsname={'fsname', 0x3d, 'vfat\x00'}}, {@smackfstransmute={'smackfstransmute', 0x3d, 'vfat\x00'}}]}) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc018937e, &(0x7f0000000280)={{0x1, 0x1, 0x18, r2, @in_args={0x1}}, './file1\x00'}) 10:42:18 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb82b, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:42:18 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 59) 10:42:18 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x3f00, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 2117.681968] FAULT_INJECTION: forcing a failure. [ 2117.681968] name failslab, interval 1, probability 0, space 0, times 0 [ 2117.684433] CPU: 0 PID: 11810 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 2117.685933] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2117.687709] Call Trace: [ 2117.688272] dump_stack+0x107/0x167 [ 2117.689072] should_fail.cold+0x5/0xa [ 2117.689912] should_failslab+0x5/0x20 [ 2117.690739] __kmalloc_track_caller+0x79/0x370 [ 2117.691734] ? kstrdup_const+0x53/0x80 [ 2117.692560] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2117.693738] kstrdup+0x36/0x70 [ 2117.694429] kstrdup_const+0x53/0x80 [ 2117.695237] kvasprintf_const+0x10c/0x1a0 [ 2117.696136] kobject_set_name_vargs+0x56/0x150 [ 2117.697142] kobject_init_and_add+0xc9/0x160 [ 2117.698078] ? kobject_create_and_add+0xb0/0xb0 [ 2117.699082] ? wait_for_completion_io+0x270/0x270 [ 2117.700122] ? kernfs_name_hash+0xe7/0x110 [ 2117.701057] ? kernfs_find_ns+0x256/0x380 [ 2117.701961] sysfs_slab_add+0x172/0x200 [ 2117.702538] loop3: detected capacity change from 0 to 41948160 [ 2117.702817] __kmem_cache_create+0x3db/0x520 [ 2117.702844] kmem_cache_create_usercopy+0x1db/0x2f0 [ 2117.702873] p9_client_create+0xc6a/0x1230 [ 2117.707265] ? p9_client_flush+0x430/0x430 [ 2117.708182] ? trace_hardirqs_on+0x5b/0x180 [ 2117.709131] ? lockdep_init_map_type+0x2c7/0x780 [ 2117.709155] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 2117.710130] ? __raw_spin_lock_init+0x36/0x110 [ 2117.710157] v9fs_session_init+0x1dd/0x1680 [ 2117.710182] ? lock_release+0x680/0x680 [ 2117.710221] ? kmem_cache_alloc_trace+0x151/0x320 [ 2117.710249] ? v9fs_show_options+0x690/0x690 [ 2117.716646] ? trace_hardirqs_on+0x5b/0x180 [ 2117.717575] ? kasan_unpoison_shadow+0x33/0x50 [ 2117.718541] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2117.719623] v9fs_mount+0x79/0x8f0 [ 2117.720389] ? v9fs_write_inode+0x60/0x60 [ 2117.721293] legacy_get_tree+0x105/0x220 [ 2117.722151] vfs_get_tree+0x8e/0x300 [ 2117.722956] path_mount+0x1429/0x2120 [ 2117.723785] ? strncpy_from_user+0x9e/0x470 [ 2117.724701] ? finish_automount+0xa90/0xa90 [ 2117.725625] ? getname_flags.part.0+0x1dd/0x4f0 [ 2117.726609] ? _copy_from_user+0xfb/0x1b0 [ 2117.727500] __x64_sys_mount+0x282/0x300 [ 2117.728365] ? copy_mnt_ns+0xa00/0xa00 [ 2117.729226] do_syscall_64+0x33/0x40 [ 2117.730012] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2117.731095] RIP: 0033:0x7f9f6e930b19 [ 2117.731883] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2117.735767] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2117.737374] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 2117.738890] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2117.740407] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 2117.741930] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2117.743467] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 2117.745272] hpet: Lost 3 RTC interrupts [ 2117.747967] kobject: can not set name properly! [ 2117.749257] kmem_cache_create(9p-fcall-cache-206) failed with error -12 [ 2117.750738] CPU: 0 PID: 11810 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 2117.752199] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2117.754006] Call Trace: [ 2117.754562] dump_stack+0x107/0x167 [ 2117.755337] kmem_cache_create_usercopy.cold+0x17/0x65 [ 2117.756450] p9_client_create+0xc6a/0x1230 [ 2117.757412] ? p9_client_flush+0x430/0x430 [ 2117.758311] ? trace_hardirqs_on+0x5b/0x180 [ 2117.759227] ? lockdep_init_map_type+0x2c7/0x780 [ 2117.760231] ? __raw_spin_lock_init+0x36/0x110 [ 2117.761225] v9fs_session_init+0x1dd/0x1680 [ 2117.762128] ? lock_release+0x680/0x680 [ 2117.762974] ? kmem_cache_alloc_trace+0x151/0x320 [ 2117.763983] ? v9fs_show_options+0x690/0x690 [ 2117.764921] ? trace_hardirqs_on+0x5b/0x180 [ 2117.765830] ? kasan_unpoison_shadow+0x33/0x50 [ 2117.766785] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2117.767886] v9fs_mount+0x79/0x8f0 [ 2117.768662] ? v9fs_write_inode+0x60/0x60 [ 2117.769606] legacy_get_tree+0x105/0x220 [ 2117.770512] vfs_get_tree+0x8e/0x300 [ 2117.771297] path_mount+0x1429/0x2120 [ 2117.772102] ? strncpy_from_user+0x9e/0x470 [ 2117.773025] ? finish_automount+0xa90/0xa90 [ 2117.773951] ? getname_flags.part.0+0x1dd/0x4f0 [ 2117.774937] ? _copy_from_user+0xfb/0x1b0 [ 2117.775822] __x64_sys_mount+0x282/0x300 [ 2117.776680] ? copy_mnt_ns+0xa00/0xa00 [ 2117.777507] do_syscall_64+0x33/0x40 [ 2117.778306] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2117.779385] RIP: 0033:0x7f9f6e930b19 [ 2117.780171] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2117.784140] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2117.785829] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 2117.787321] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2117.788825] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 2117.790318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2117.791593] FAULT_INJECTION: forcing a failure. [ 2117.791593] name failslab, interval 1, probability 0, space 0, times 0 [ 2117.791813] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 2117.792077] hpet: Lost 1 RTC interrupts [ 2117.794384] CPU: 1 PID: 11820 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2117.798329] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2117.800138] Call Trace: [ 2117.800710] dump_stack+0x107/0x167 [ 2117.801490] should_fail.cold+0x5/0xa [ 2117.802301] should_failslab+0x5/0x20 [ 2117.803114] __kmalloc_track_caller+0x79/0x370 [ 2117.804077] ? kasprintf+0xbb/0xf0 [ 2117.804837] ? __delete_object+0xb3/0x100 10:42:18 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x3fc5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 2117.805720] kvasprintf+0xb5/0x150 [ 2117.806650] ? bust_spinlocks+0xe0/0xe0 [ 2117.807489] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2117.808609] kasprintf+0xbb/0xf0 [ 2117.809341] ? kvasprintf_const+0x1a0/0x1a0 [ 2117.810284] ? kmem_cache_free+0x249/0x2d0 [ 2117.811704] ? p9_client_create+0xbfa/0x1230 [ 2117.812736] p9_client_create+0xc1b/0x1230 [ 2117.813643] ? p9_client_flush+0x430/0x430 [ 2117.814654] ? trace_hardirqs_on+0x5b/0x180 [ 2117.815568] ? lockdep_init_map_type+0x2c7/0x780 [ 2117.816570] ? __raw_spin_lock_init+0x36/0x110 [ 2117.817551] v9fs_session_init+0x1dd/0x1680 [ 2117.818578] ? lock_release+0x680/0x680 [ 2117.819433] ? kmem_cache_alloc_trace+0x151/0x320 [ 2117.820450] ? v9fs_show_options+0x690/0x690 [ 2117.821399] ? trace_hardirqs_on+0x5b/0x180 [ 2117.822400] ? kasan_unpoison_shadow+0x33/0x50 [ 2117.823364] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2117.824433] v9fs_mount+0x79/0x8f0 [ 2117.825195] ? v9fs_write_inode+0x60/0x60 [ 2117.826067] legacy_get_tree+0x105/0x220 [ 2117.826930] vfs_get_tree+0x8e/0x300 [ 2117.827713] path_mount+0x1429/0x2120 [ 2117.828528] ? strncpy_from_user+0x9e/0x470 [ 2117.829448] ? finish_automount+0xa90/0xa90 [ 2117.830438] ? getname_flags.part.0+0x1dd/0x4f0 [ 2117.831419] ? _copy_from_user+0xfb/0x1b0 [ 2117.832295] __x64_sys_mount+0x282/0x300 [ 2117.833183] ? copy_mnt_ns+0xa00/0xa00 [ 2117.834013] do_syscall_64+0x33/0x40 [ 2117.834813] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2117.835896] RIP: 0033:0x7fd3b79dfb19 [ 2117.836684] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2117.840558] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2117.842167] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 2117.843663] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2117.845174] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 2117.846791] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2117.848292] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 2117.905385] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2117.908201] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2117.922272] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:42:18 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0xff00, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:42:18 executing program 3: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) 10:42:18 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x4000, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:42:18 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x6001, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:42:18 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb82c, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:42:37 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 51) 10:42:37 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:42:37 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb82d, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:42:37 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x4084, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 2136.957194] FAULT_INJECTION: forcing a failure. [ 2136.957194] name failslab, interval 1, probability 0, space 0, times 0 [ 2136.959642] CPU: 1 PID: 11852 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2136.961113] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2136.962851] Call Trace: [ 2136.963408] dump_stack+0x107/0x167 [ 2136.964182] should_fail.cold+0x5/0xa [ 2136.964999] ? create_object.isra.0+0x3a/0xa20 [ 2136.965967] should_failslab+0x5/0x20 [ 2136.966772] kmem_cache_alloc+0x5b/0x310 [ 2136.967626] ? vsnprintf+0x4ba/0x1600 [ 2136.968438] create_object.isra.0+0x3a/0xa20 [ 2136.969376] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2136.970444] __kmalloc_track_caller+0x177/0x370 [ 2136.971539] ? kasprintf+0xbb/0xf0 [ 2136.972294] kvasprintf+0xb5/0x150 10:42:37 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x6800, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:42:37 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 60) 10:42:37 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x0, 0x25) mount(&(0x7f0000000000)=@filename='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)='ramfs\x00', 0x4000, &(0x7f0000000200)='vfat\x00') getdents(r0, &(0x7f0000000340)=""/214, 0xd6) 10:42:37 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 2136.973055] ? bust_spinlocks+0xe0/0xe0 [ 2136.974194] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2136.975337] kasprintf+0xbb/0xf0 [ 2136.976045] ? kvasprintf_const+0x1a0/0x1a0 [ 2136.976962] ? kmem_cache_free+0x249/0x2d0 [ 2136.977871] ? p9_client_create+0xbfa/0x1230 [ 2136.978798] p9_client_create+0xc1b/0x1230 [ 2136.979699] ? p9_client_flush+0x430/0x430 [ 2136.980586] ? trace_hardirqs_on+0x5b/0x180 [ 2136.981512] ? lockdep_init_map_type+0x2c7/0x780 [ 2136.982506] ? __raw_spin_lock_init+0x36/0x110 [ 2136.982638] FAULT_INJECTION: forcing a failure. [ 2136.982638] name failslab, interval 1, probability 0, space 0, times 0 [ 2136.983463] v9fs_session_init+0x1dd/0x1680 [ 2136.983484] ? lock_release+0x680/0x680 [ 2136.983514] ? kmem_cache_alloc_trace+0x151/0x320 [ 2136.988622] ? v9fs_show_options+0x690/0x690 [ 2136.989567] ? trace_hardirqs_on+0x5b/0x180 [ 2136.990479] ? kasan_unpoison_shadow+0x33/0x50 [ 2136.991441] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2136.992512] v9fs_mount+0x79/0x8f0 [ 2136.993273] ? v9fs_write_inode+0x60/0x60 [ 2136.994152] legacy_get_tree+0x105/0x220 [ 2136.995013] vfs_get_tree+0x8e/0x300 [ 2136.995802] path_mount+0x1429/0x2120 [ 2136.996615] ? strncpy_from_user+0x9e/0x470 [ 2136.997539] ? finish_automount+0xa90/0xa90 [ 2136.998453] ? getname_flags.part.0+0x1dd/0x4f0 [ 2136.999436] ? _copy_from_user+0xfb/0x1b0 [ 2137.000318] __x64_sys_mount+0x282/0x300 [ 2137.001186] ? copy_mnt_ns+0xa00/0xa00 [ 2137.002134] do_syscall_64+0x33/0x40 [ 2137.002922] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2137.004004] RIP: 0033:0x7fd3b79dfb19 [ 2137.004786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2137.008690] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2137.010311] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 2137.011815] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2137.013326] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 2137.014829] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2137.016334] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 2137.017995] CPU: 0 PID: 11863 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 2137.019389] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2137.021067] Call Trace: [ 2137.021606] dump_stack+0x107/0x167 [ 2137.022347] should_fail.cold+0x5/0xa [ 2137.023128] ? create_object.isra.0+0x3a/0xa20 [ 2137.023299] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 2137.024048] should_failslab+0x5/0x20 [ 2137.024068] kmem_cache_alloc+0x5b/0x310 [ 2137.024089] ? mark_held_locks+0x9e/0xe0 [ 2137.024111] create_object.isra.0+0x3a/0xa20 [ 2137.024138] kmemleak_alloc_percpu+0xa0/0x100 [ 2137.024163] pcpu_alloc+0x4e2/0x1240 [ 2137.030771] __kmem_cache_create+0x35a/0x520 [ 2137.031662] kmem_cache_create_usercopy+0x1db/0x2f0 [ 2137.032674] p9_client_create+0xc6a/0x1230 [ 2137.033583] ? p9_client_flush+0x430/0x430 [ 2137.034445] ? trace_hardirqs_on+0x5b/0x180 [ 2137.035317] ? lockdep_init_map_type+0x2c7/0x780 [ 2137.035849] loop3: detected capacity change from 0 to 41948160 [ 2137.036273] ? __raw_spin_lock_init+0x36/0x110 [ 2137.038437] v9fs_session_init+0x1dd/0x1680 [ 2137.039293] ? lock_release+0x680/0x680 [ 2137.040093] ? kmem_cache_alloc_trace+0x151/0x320 [ 2137.041060] ? v9fs_show_options+0x690/0x690 [ 2137.041939] ? trace_hardirqs_on+0x5b/0x180 [ 2137.042796] ? kasan_unpoison_shadow+0x33/0x50 [ 2137.043702] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2137.044712] v9fs_mount+0x79/0x8f0 [ 2137.045430] ? v9fs_write_inode+0x60/0x60 [ 2137.046255] legacy_get_tree+0x105/0x220 [ 2137.047060] vfs_get_tree+0x8e/0x300 [ 2137.047797] path_mount+0x1429/0x2120 [ 2137.048556] ? strncpy_from_user+0x9e/0x470 [ 2137.049422] ? finish_automount+0xa90/0xa90 [ 2137.050278] ? getname_flags.part.0+0x1dd/0x4f0 [ 2137.051199] ? _copy_from_user+0xfb/0x1b0 [ 2137.052032] __x64_sys_mount+0x282/0x300 [ 2137.052835] ? copy_mnt_ns+0xa00/0xa00 [ 2137.053627] do_syscall_64+0x33/0x40 [ 2137.054369] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2137.055378] RIP: 0033:0x7f9f6e930b19 [ 2137.056115] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2137.059766] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2137.061268] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 2137.062672] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2137.064077] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 2137.065488] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2137.066887] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 2137.068449] hpet: Lost 2 RTC interrupts [ 2137.111022] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 10:42:37 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x40c5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 2137.112698] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2137.114828] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:42:56 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 61) 10:42:56 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 52) 10:42:56 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) mount$9p_rdma(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', &(0x7f00000001c0), 0x257c5203bdb0eec0, &(0x7f0000000440)={'trans=rdma,', {'port', 0x3d, 0x4e22}, 0x2c, {[{@common=@uname={'uname', 0x3d, ',@.'}}, {@rq={'rq', 0x3d, 0x200}}, {@sq={'sq', 0x3d, 0x1}}, {@timeout={'timeout', 0x3d, 0x6}}], [{@fsname={'fsname', 0x3d, 'vfat\x00'}}, {@subj_user={'subj_user', 0x3d, '!{'}}, {@smackfstransmute={'smackfstransmute', 0x3d, '\\#'}}, {@appraise_type}, {@dont_hash}]}}) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) 10:42:56 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x41c5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:42:56 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb82e, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:42:56 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x6c00, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:42:56 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:42:56 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="04002cbd7000fddbdf2575000000c401f08067000b00677cfd4589c7a40e1aae6b18247eb36f74f8f6793b7df9ae3ca9cfb2f5e87ed1ff361592201a1151eabf57ad6fd1950cd215131f67634030aa5f484986ad830a6243bac401c3ee44bff7cea60e881d5f9b616582cf28ec620ccd97d4ceb48c6727530f00050001000100000005000f004000000008000a000000000005000f000400000038010c80050003000300000003010200a207624e07c5690d555d459080990de6741a392aa42eff746330a20bec78fd393092b5f99f54b2a9f6dadb55db3c0846814e79eb43bf7bcd6295c96e7ca16288a8b27c5a225a6d718ad49f0366f969983400ba504c865cca04e4fa00a4b246fa618936f70fe77c1c3e550a5d12d4a9108e7e4216bc693107c3bd4c06e98ec9399de0e98cf205057cbbf688d8a13dc55472fc31954b846e29dbd7d8889b34ead6c83c9b533b666abd65490f2a7e693d55d91f24d5078eb3d34940c02ea1125e7176e254c6bd5531ed067817f0b3278e3dc492571b7da828e728a6fa55742efa33f430739c320b794841adba4c2875044dce9c8959eebe4a5b52d68f9868719f00280004800a000600ffffffffffff00000a000600ffffffffffff00000a000600ffffffffffff00000c01f0800a000200ee90b393fc10000046000b005cbb9f225903f92e0cffa77bd5369da32f70909f5950f26e59525d4d3c41b9e512f4a5d3b7aaaf8a0e03f2aa73274b24a04b4a689bf05844d0d2ad278696b14fb4c50000b4000d80af0000001263800a6541e18dae533feb73677b5c9d5da0ee4d7366d47dd6fa0b14ca33d3433171a533a29930fb5e0d9ff2ca710ab0c8aa4b331d58b4a7b3cac9c9b4ef9e7cdb1d3d6da7f0877a5c3ce7ff9bf9e936b1bcbe732bd9037f9090bfdee1d3e45c7b700e6aefa488eb013b27cd7291a7b927dc10e794490c85dff0cb49a1dd0f5514c3ce6c90d8457d79fcd2a3756ccd66b5194a5c69358e1199219e40ffdd6771943cb3fe33f442ae2ff2002c01f080050003000600000005000300020000000a000200957ccca020ad0000e4000b0049a0db966a0311d932607f2a479e651b881a56f4da7d14bde06c48822b0d353198bb85750dc9f0cca70174b813fe94ea80477bcf9dd6b03b9186edb85c476d8762dc273e83aaee35def167cc1c8faffc0e86fa311d66813cbea7e234d79e9d3acd30b5ae5a264e9576efabc94efd7a18b93eddabd9b046d12df487392f1217b77f05bd72f95130a2bda683b7a64c3d6477e3681d83c5e45e8fdae553114b304417851d9687ab3b9c6c7e91af7744d16b114820332c31b35f4358643e4137a9e6b264a14e04605648b50e27e3bb5cbbdaac70655fdff371ece3e08885f0da8d700a000800080211000000000005000100000000000a000800080211000000000005000300c9000000f800f08008000a000100008004000500050010007f0000000a0002005a9cbd08ca8e000014000c800500030008000000050003005e000000c0000b003a3801c2eefaea9df8f27b808f751948873b3fa40dd675c2f1b45ab2dbcdf1903fb052565c23c23d861899509fb26a1f672416325f004d2fdd903c5fa86b4bf1e39074929e71f3a466d345a8e660cd8d401a4772051ab211e24ede74314ef8b7a2c04c8a87b4e5603f7592bc89521d454d3528dce3959d8613c413eafce02151dc1f76a1ace92831610ea0894d9f59407f66cbe556e636be5a3d01253ec1c755495e5196efdf7f155cba102e17e2cfa917e7"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 2155.882574] FAULT_INJECTION: forcing a failure. [ 2155.882574] name failslab, interval 1, probability 0, space 0, times 0 [ 2155.885585] CPU: 0 PID: 11885 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2155.887225] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 2155.887319] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2155.887336] Call Trace: [ 2155.891956] dump_stack+0x107/0x167 [ 2155.892918] should_fail.cold+0x5/0xa [ 2155.893893] ? create_object.isra.0+0x3a/0xa20 [ 2155.895032] should_failslab+0x5/0x20 [ 2155.895985] kmem_cache_alloc+0x5b/0x310 [ 2155.897008] ? vsnprintf+0x4ba/0x1600 [ 2155.897982] create_object.isra.0+0x3a/0xa20 [ 2155.898926] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2155.899993] __kmalloc_track_caller+0x177/0x370 [ 2155.900967] ? kasprintf+0xbb/0xf0 [ 2155.901730] kvasprintf+0xb5/0x150 [ 2155.902475] ? bust_spinlocks+0xe0/0xe0 [ 2155.903311] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2155.904428] kasprintf+0xbb/0xf0 [ 2155.905155] ? kvasprintf_const+0x1a0/0x1a0 [ 2155.906067] ? kmem_cache_free+0x249/0x2d0 [ 2155.906962] ? p9_client_create+0xbfa/0x1230 [ 2155.907892] p9_client_create+0xc1b/0x1230 [ 2155.908795] ? p9_client_flush+0x430/0x430 [ 2155.909700] ? trace_hardirqs_on+0x5b/0x180 [ 2155.910608] ? lockdep_init_map_type+0x2c7/0x780 [ 2155.911609] ? __raw_spin_lock_init+0x36/0x110 [ 2155.912574] v9fs_session_init+0x1dd/0x1680 [ 2155.913485] ? lock_release+0x680/0x680 [ 2155.914324] ? kmem_cache_alloc_trace+0x151/0x320 [ 2155.915328] ? v9fs_show_options+0x690/0x690 10:42:56 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb82f, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 2155.916287] ? trace_hardirqs_on+0x5b/0x180 [ 2155.917365] ? kasan_unpoison_shadow+0x33/0x50 [ 2155.918319] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2155.919390] v9fs_mount+0x79/0x8f0 [ 2155.920135] ? v9fs_write_inode+0x60/0x60 [ 2155.921002] legacy_get_tree+0x105/0x220 [ 2155.921872] vfs_get_tree+0x8e/0x300 [ 2155.922656] path_mount+0x1429/0x2120 [ 2155.923456] ? strncpy_from_user+0x9e/0x470 [ 2155.924362] ? finish_automount+0xa90/0xa90 [ 2155.925278] ? getname_flags.part.0+0x1dd/0x4f0 [ 2155.926300] ? _copy_from_user+0xfb/0x1b0 [ 2155.927184] __x64_sys_mount+0x282/0x300 [ 2155.928042] ? copy_mnt_ns+0xa00/0xa00 [ 2155.928881] do_syscall_64+0x33/0x40 [ 2155.929685] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2155.930756] RIP: 0033:0x7fd3b79dfb19 [ 2155.931544] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2155.935416] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2155.937020] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 2155.938532] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2155.940037] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 2155.941544] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2155.943041] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 2155.944830] hpet: Lost 3 RTC interrupts 10:42:56 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x7400, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 2155.957007] FAULT_INJECTION: forcing a failure. [ 2155.957007] name failslab, interval 1, probability 0, space 0, times 0 [ 2155.959686] CPU: 0 PID: 11900 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 2155.961152] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2155.962895] Call Trace: [ 2155.963450] dump_stack+0x107/0x167 [ 2155.964219] should_fail.cold+0x5/0xa [ 2155.965022] ? create_object.isra.0+0x3a/0xa20 [ 2155.966000] should_failslab+0x5/0x20 [ 2155.966798] kmem_cache_alloc+0x5b/0x310 [ 2155.967667] ? lock_release+0x680/0x680 [ 2155.968514] create_object.isra.0+0x3a/0xa20 [ 2155.969444] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2155.970526] __kmalloc_track_caller+0x177/0x370 [ 2155.971574] ? kstrdup_const+0x53/0x80 [ 2155.972405] kstrdup+0x36/0x70 [ 2155.973097] kstrdup_const+0x53/0x80 [ 2155.973904] kvasprintf_const+0x10c/0x1a0 [ 2155.974800] kobject_set_name_vargs+0x56/0x150 [ 2155.975787] kobject_init_and_add+0xc9/0x160 [ 2155.976732] ? kobject_create_and_add+0xb0/0xb0 [ 2155.977752] ? wait_for_completion_io+0x270/0x270 [ 2155.978785] ? kernfs_name_hash+0xe7/0x110 [ 2155.979698] ? kernfs_find_ns+0x256/0x380 [ 2155.980598] sysfs_slab_add+0x172/0x200 [ 2155.981466] __kmem_cache_create+0x3db/0x520 [ 2155.982416] kmem_cache_create_usercopy+0x1db/0x2f0 [ 2155.983495] p9_client_create+0xc6a/0x1230 [ 2155.984416] ? p9_client_flush+0x430/0x430 [ 2155.985335] ? trace_hardirqs_on+0x5b/0x180 [ 2155.986262] ? lockdep_init_map_type+0x2c7/0x780 [ 2155.987286] ? __raw_spin_lock_init+0x36/0x110 [ 2155.988274] v9fs_session_init+0x1dd/0x1680 [ 2155.989210] ? lock_release+0x680/0x680 [ 2155.990074] ? kmem_cache_alloc_trace+0x151/0x320 [ 2155.991258] ? v9fs_show_options+0x690/0x690 [ 2155.992401] ? trace_hardirqs_on+0x5b/0x180 [ 2155.993447] ? kasan_unpoison_shadow+0x33/0x50 [ 2155.994527] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2155.995795] v9fs_mount+0x79/0x8f0 [ 2155.996677] ? v9fs_write_inode+0x60/0x60 [ 2155.997706] legacy_get_tree+0x105/0x220 [ 2155.998730] vfs_get_tree+0x8e/0x300 [ 2155.999670] path_mount+0x1429/0x2120 [ 2156.000636] ? strncpy_from_user+0x9e/0x470 [ 2156.001722] ? finish_automount+0xa90/0xa90 [ 2156.002637] ? getname_flags.part.0+0x1dd/0x4f0 [ 2156.003659] ? _copy_from_user+0xfb/0x1b0 [ 2156.004654] __x64_sys_mount+0x282/0x300 [ 2156.005627] ? copy_mnt_ns+0xa00/0xa00 [ 2156.006544] do_syscall_64+0x33/0x40 [ 2156.007412] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2156.008595] RIP: 0033:0x7f9f6e930b19 [ 2156.009406] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2156.013315] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2156.014921] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 2156.016425] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2156.017946] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 2156.019456] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2156.020958] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 2156.022811] hpet: Lost 3 RTC interrupts [ 2156.028105] loop3: detected capacity change from 0 to 41948160 [ 2156.082326] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2156.083932] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2156.085596] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:42:56 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x42c5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:42:56 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb830, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:42:56 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0xb000000, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:42:56 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000200), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000080)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) stat(&(0x7f0000000180)='./file1/file1\x00', &(0x7f0000000240)) chdir(&(0x7f0000000040)='./file0\x00') r1 = creat(&(0x7f0000000300)='./file0\x00', 0x74) unlinkat(r1, &(0x7f0000000440)='./file1\x00', 0x0) openat(r0, &(0x7f00000001c0)='./file1\x00', 0x361080, 0x2) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) symlink(&(0x7f0000000000)='./file0\x00', &(0x7f0000000100)='./file1\x00') getdents(r0, &(0x7f0000000340)=""/214, 0xd6) 10:42:56 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb831, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:42:56 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) [ 2156.237068] loop3: detected capacity change from 0 to 41948160 [ 2156.288289] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 2156.369282] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2156.371154] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2156.373048] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:43:14 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="04002cbd7000fddbdf2575000000c401f08067000b00677cfd4589c7a40e1aae6b18247eb36f74f8f6793b7df9ae3ca9cfb2f5e87ed1ff361592201a1151eabf57ad6fd1950cd215131f67634030aa5f484986ad830a6243bac401c3ee44bff7cea60e881d5f9b616582cf28ec620ccd97d4ceb48c6727530f00050001000100000005000f004000000008000a000000000005000f000400000038010c80050003000300000003010200a207624e07c5690d555d459080990de6741a392aa42eff746330a20bec78fd393092b5f99f54b2a9f6dadb55db3c0846814e79eb43bf7bcd6295c96e7ca16288a8b27c5a225a6d718ad49f0366f969983400ba504c865cca04e4fa00a4b246fa618936f70fe77c1c3e550a5d12d4a9108e7e4216bc693107c3bd4c06e98ec9399de0e98cf205057cbbf688d8a13dc55472fc31954b846e29dbd7d8889b34ead6c83c9b533b666abd65490f2a7e693d55d91f24d5078eb3d34940c02ea1125e7176e254c6bd5531ed067817f0b3278e3dc492571b7da828e728a6fa55742efa33f430739c320b794841adba4c2875044dce9c8959eebe4a5b52d68f9868719f00280004800a000600ffffffffffff00000a000600ffffffffffff00000a000600ffffffffffff00000c01f0800a000200ee90b393fc10000046000b005cbb9f225903f92e0cffa77bd5369da32f70909f5950f26e59525d4d3c41b9e512f4a5d3b7aaaf8a0e03f2aa73274b24a04b4a689bf05844d0d2ad278696b14fb4c50000b4000d80af0000001263800a6541e18dae533feb73677b5c9d5da0ee4d7366d47dd6fa0b14ca33d3433171a533a29930fb5e0d9ff2ca710ab0c8aa4b331d58b4a7b3cac9c9b4ef9e7cdb1d3d6da7f0877a5c3ce7ff9bf9e936b1bcbe732bd9037f9090bfdee1d3e45c7b700e6aefa488eb013b27cd7291a7b927dc10e794490c85dff0cb49a1dd0f5514c3ce6c90d8457d79fcd2a3756ccd66b5194a5c69358e1199219e40ffdd6771943cb3fe33f442ae2ff2002c01f080050003000600000005000300020000000a000200957ccca020ad0000e4000b0049a0db966a0311d932607f2a479e651b881a56f4da7d14bde06c48822b0d353198bb85750dc9f0cca70174b813fe94ea80477bcf9dd6b03b9186edb85c476d8762dc273e83aaee35def167cc1c8faffc0e86fa311d66813cbea7e234d79e9d3acd30b5ae5a264e9576efabc94efd7a18b93eddabd9b046d12df487392f1217b77f05bd72f95130a2bda683b7a64c3d6477e3681d83c5e45e8fdae553114b304417851d9687ab3b9c6c7e91af7744d16b114820332c31b35f4358643e4137a9e6b264a14e04605648b50e27e3bb5cbbdaac70655fdff371ece3e08885f0da8d700a000800080211000000000005000100000000000a000800080211000000000005000300c9000000f800f08008000a000100008004000500050010007f0000000a0002005a9cbd08ca8e000014000c800500030008000000050003005e000000c0000b003a3801c2eefaea9df8f27b808f751948873b3fa40dd675c2f1b45ab2dbcdf1903fb052565c23c23d861899509fb26a1f672416325f004d2fdd903c5fa86b4bf1e39074929e71f3a466d345a8e660cd8d401a4772051ab211e24ede74314ef8b7a2c04c8a87b4e5603f7592bc89521d454d3528dce3959d8613c413eafce02151dc1f76a1ace92831610ea0894d9f59407f66cbe556e636be5a3d01253ec1c755495e5196efdf7f155cba102e17e2cfa917e7"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:43:14 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x7a00, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:43:14 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) mkdirat(r0, &(0x7f0000000280)='./file0\x00', 0x42) chdir(&(0x7f0000000040)='./file0\x00') r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x406e2, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r1, 0x0, 0x2a, &(0x7f0000000800)={0x80000000, {{0x2, 0x4e22, @local}}}, 0x88) r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x406e2, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f0000000800)={0x80000000, {{0x2, 0x4e22, @local}}}, 0x88) ioctl$sock_inet_SIOCGIFDSTADDR(r1, 0x8917, &(0x7f0000000300)={'macvtap0\x00', {0x2, 0x0, @local}}) renameat2(r1, &(0x7f0000000200)='./file1\x00', r2, &(0x7f0000000240)='./file3\x00', 0x1) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) setxattr(&(0x7f0000000000)='./file2\x00', &(0x7f0000000100)=@known='system.sockprotoname\x00', &(0x7f00000001c0)='\x00', 0x1, 0x2) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) 10:43:14 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 62) 10:43:14 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x43c5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:43:14 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 53) 10:43:14 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb832, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:43:14 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x3f000000, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) [ 2173.725075] loop3: detected capacity change from 0 to 41948160 [ 2173.727184] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 2173.735105] FAULT_INJECTION: forcing a failure. [ 2173.735105] name failslab, interval 1, probability 0, space 0, times 0 [ 2173.737591] CPU: 1 PID: 11950 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2173.739039] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2173.740777] Call Trace: [ 2173.741345] dump_stack+0x107/0x167 [ 2173.742111] should_fail.cold+0x5/0xa [ 2173.742929] ? create_object.isra.0+0x3a/0xa20 [ 2173.743888] should_failslab+0x5/0x20 [ 2173.744694] kmem_cache_alloc+0x5b/0x310 [ 2173.745556] ? lock_acquire+0x197/0x470 [ 2173.746397] create_object.isra.0+0x3a/0xa20 [ 2173.747322] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2173.748403] __kmalloc_track_caller+0x177/0x370 [ 2173.749397] ? kstrdup_const+0x53/0x80 [ 2173.750211] ? kasprintf+0xbb/0xf0 [ 2173.750972] kstrdup+0x36/0x70 [ 2173.751648] kstrdup_const+0x53/0x80 [ 2173.752532] kmem_cache_create_usercopy+0x12f/0x2f0 [ 2173.753599] p9_client_create+0xc6a/0x1230 [ 2173.754502] ? p9_client_flush+0x430/0x430 [ 2173.755404] ? trace_hardirqs_on+0x5b/0x180 [ 2173.756329] ? lockdep_init_map_type+0x2c7/0x780 [ 2173.757355] ? __raw_spin_lock_init+0x36/0x110 [ 2173.758321] v9fs_session_init+0x1dd/0x1680 [ 2173.759231] ? lock_release+0x680/0x680 [ 2173.760074] ? kmem_cache_alloc_trace+0x151/0x320 [ 2173.761088] ? v9fs_show_options+0x690/0x690 [ 2173.762038] ? trace_hardirqs_on+0x5b/0x180 [ 2173.762955] ? kasan_unpoison_shadow+0x33/0x50 [ 2173.763920] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2173.764994] v9fs_mount+0x79/0x8f0 [ 2173.765769] ? v9fs_write_inode+0x60/0x60 [ 2173.766652] legacy_get_tree+0x105/0x220 [ 2173.767515] vfs_get_tree+0x8e/0x300 [ 2173.768393] path_mount+0x1429/0x2120 [ 2173.769215] ? strncpy_from_user+0x9e/0x470 [ 2173.770157] ? finish_automount+0xa90/0xa90 [ 2173.771060] ? getname_flags.part.0+0x1dd/0x4f0 [ 2173.772057] ? _copy_from_user+0xfb/0x1b0 [ 2173.772944] __x64_sys_mount+0x282/0x300 [ 2173.773808] ? copy_mnt_ns+0xa00/0xa00 [ 2173.774648] do_syscall_64+0x33/0x40 [ 2173.775445] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2173.776525] RIP: 0033:0x7fd3b79dfb19 [ 2173.777321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2173.781207] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2173.782847] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 2173.784442] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2173.786011] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 2173.787515] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2173.789020] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 2173.797792] FAULT_INJECTION: forcing a failure. [ 2173.797792] name failslab, interval 1, probability 0, space 0, times 0 [ 2173.800453] CPU: 0 PID: 11951 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 2173.801924] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2173.803666] Call Trace: [ 2173.804236] dump_stack+0x107/0x167 [ 2173.805014] should_fail.cold+0x5/0xa [ 2173.805839] ? create_object.isra.0+0x3a/0xa20 [ 2173.806813] should_failslab+0x5/0x20 [ 2173.807620] kmem_cache_alloc+0x5b/0x310 [ 2173.808741] create_object.isra.0+0x3a/0xa20 [ 2173.809723] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2173.811035] __kmalloc_track_caller+0x177/0x370 [ 2173.812111] ? kstrdup_const+0x53/0x80 [ 2173.812965] kstrdup+0x36/0x70 [ 2173.813671] kstrdup_const+0x53/0x80 [ 2173.814473] __kernfs_new_node+0x9d/0x860 [ 2173.815367] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 2173.816391] ? lock_acquire+0x197/0x470 [ 2173.817254] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2173.818368] ? lock_release+0x680/0x680 [ 2173.819212] ? find_held_lock+0x2c/0x110 [ 2173.820086] kernfs_new_node+0x18d/0x250 [ 2173.820955] kernfs_create_dir_ns+0x49/0x160 [ 2173.822092] sysfs_create_dir_ns+0x127/0x290 [ 2173.823074] ? sysfs_create_mount_point+0xb0/0xb0 [ 2173.824098] ? kobject_namespace+0x70/0x1a0 [ 2173.825018] ? kobject_namespace+0x89/0x1a0 [ 2173.825967] kobject_add_internal+0x25e/0xa30 [ 2173.826940] kobject_init_and_add+0x101/0x160 [ 2173.827902] ? kobject_create_and_add+0xb0/0xb0 [ 2173.828918] ? wait_for_completion_io+0x270/0x270 [ 2173.830177] ? kernfs_name_hash+0xe7/0x110 [ 2173.831084] ? kernfs_find_ns+0x256/0x380 [ 2173.832167] sysfs_slab_add+0x172/0x200 [ 2173.833033] __kmem_cache_create+0x3db/0x520 [ 2173.834222] kmem_cache_create_usercopy+0x1db/0x2f0 [ 2173.835515] p9_client_create+0xc6a/0x1230 [ 2173.836438] ? p9_client_flush+0x430/0x430 [ 2173.837558] ? trace_hardirqs_on+0x5b/0x180 [ 2173.838480] ? lockdep_init_map_type+0x2c7/0x780 [ 2173.839748] ? __raw_spin_lock_init+0x36/0x110 [ 2173.840728] v9fs_session_init+0x1dd/0x1680 [ 2173.841863] ? lock_release+0x680/0x680 [ 2173.842826] ? kmem_cache_alloc_trace+0x151/0x320 [ 2173.843968] ? v9fs_show_options+0x690/0x690 [ 2173.845026] ? trace_hardirqs_on+0x5b/0x180 [ 2173.846071] ? kasan_unpoison_shadow+0x33/0x50 [ 2173.847209] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2173.848510] v9fs_mount+0x79/0x8f0 [ 2173.849442] ? v9fs_write_inode+0x60/0x60 [ 2173.850504] legacy_get_tree+0x105/0x220 [ 2173.851476] vfs_get_tree+0x8e/0x300 [ 2173.852368] path_mount+0x1429/0x2120 [ 2173.853303] ? strncpy_from_user+0x9e/0x470 [ 2173.854336] ? finish_automount+0xa90/0xa90 [ 2173.855367] ? getname_flags.part.0+0x1dd/0x4f0 [ 2173.856470] ? _copy_from_user+0xfb/0x1b0 [ 2173.857493] __x64_sys_mount+0x282/0x300 [ 2173.858466] ? copy_mnt_ns+0xa00/0xa00 [ 2173.859409] do_syscall_64+0x33/0x40 [ 2173.860299] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2173.861536] RIP: 0033:0x7f9f6e930b19 [ 2173.862422] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2173.866771] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2173.868580] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 2173.870293] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2173.871996] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 2173.873704] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2173.875396] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 2173.877395] hpet: Lost 4 RTC interrupts [ 2173.890592] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2173.892430] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2173.896127] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:43:14 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x44c5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:43:14 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x8e01, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:43:14 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb833, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:43:14 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x125142, 0x100) r2 = signalfd(r1, &(0x7f0000000000)={[0x5]}, 0x8) ioctl$TIOCGPTLCK(r2, 0x80045439, &(0x7f0000000100)) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) 10:43:14 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0x40000000, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:43:14 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x45c5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:43:31 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x9ac9, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:43:31 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:43:31 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x46c5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:43:31 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xb834, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:43:31 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 63) 10:43:31 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0xfc000000, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:43:31 executing program 3: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) r1 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000100), 0x541540, 0x0) r2 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) r3 = syz_io_uring_setup(0x3eb5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000340)=0x0) r6 = socket$inet_tcp(0x2, 0x1, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000280)={&(0x7f0000000500)=ANY=[@ANYBLOB="400000001c00f804a994c7f2fc2e8145a0b8ef04e76f973920baf3d07e72b6f98f3069590635e538ae1b9a36054c45904b39630000000000"], 0x40}, 0x1, 0x0, 0x0, 0x8010}, 0x4000) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r6, 0x0, 0x0, 0x0, 0x40000022}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x12, r3, 0x8000000) syz_io_uring_submit(r7, r5, &(0x7f00000002c0)=@IORING_OP_FALLOCATE={0x11, 0x4, 0x0, @fd_index=0x8000002, 0x0, 0x0, 0x5}, 0x80000001) syz_io_uring_submit(0x0, r5, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r2}}, 0x2) ioctl$EVIOCGABS20(r1, 0x80184560, &(0x7f00000001c0)=""/233) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) getdents(r0, &(0x7f0000000340)=""/214, 0xd6) [ 2191.450179] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. [ 2191.471136] FAULT_INJECTION: forcing a failure. [ 2191.471136] name failslab, interval 1, probability 0, space 0, times 0 [ 2191.474141] CPU: 1 PID: 11997 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 2191.475943] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2191.478110] Call Trace: [ 2191.478810] dump_stack+0x107/0x167 [ 2191.479774] should_fail.cold+0x5/0xa [ 2191.480767] should_failslab+0x5/0x20 10:43:31 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 54) [ 2191.481825] __kmalloc_track_caller+0x79/0x370 [ 2191.483242] ? kstrdup_const+0x53/0x80 [ 2191.483536] loop3: detected capacity change from 0 to 41948160 [ 2191.484357] kstrdup+0x36/0x70 [ 2191.484399] kstrdup_const+0x53/0x80 [ 2191.487594] __kernfs_new_node+0x9d/0x860 [ 2191.488712] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 2191.490033] ? lock_acquire+0x197/0x470 [ 2191.491089] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2191.492485] ? lock_release+0x680/0x680 [ 2191.493797] ? find_held_lock+0x2c/0x110 [ 2191.494899] kernfs_new_node+0x18d/0x250 [ 2191.496042] kernfs_create_dir_ns+0x49/0x160 [ 2191.497259] sysfs_create_dir_ns+0x127/0x290 [ 2191.498479] ? sysfs_create_mount_point+0xb0/0xb0 [ 2191.499691] ? rwlock_bug.part.0+0x90/0x90 [ 2191.500860] ? do_raw_spin_unlock+0x4f/0x220 [ 2191.502159] kobject_add_internal+0x25e/0xa30 [ 2191.503455] kobject_init_and_add+0x101/0x160 [ 2191.504675] ? kobject_create_and_add+0xb0/0xb0 [ 2191.505980] ? wait_for_completion_io+0x270/0x270 [ 2191.507287] ? kernfs_name_hash+0xe7/0x110 [ 2191.508456] ? kernfs_find_ns+0x256/0x380 [ 2191.509633] sysfs_slab_add+0x172/0x200 [ 2191.510716] __kmem_cache_create+0x3db/0x520 [ 2191.511907] kmem_cache_create_usercopy+0x1db/0x2f0 [ 2191.513301] p9_client_create+0xc6a/0x1230 [ 2191.514498] ? p9_client_flush+0x430/0x430 [ 2191.515673] ? trace_hardirqs_on+0x5b/0x180 [ 2191.516862] ? lockdep_init_map_type+0x2c7/0x780 [ 2191.518300] ? __raw_spin_lock_init+0x36/0x110 [ 2191.519581] v9fs_session_init+0x1dd/0x1680 [ 2191.520775] ? lock_release+0x680/0x680 [ 2191.521911] ? kmem_cache_alloc_trace+0x151/0x320 [ 2191.523237] ? v9fs_show_options+0x690/0x690 [ 2191.524476] ? trace_hardirqs_on+0x5b/0x180 [ 2191.525608] ? kasan_unpoison_shadow+0x33/0x50 [ 2191.526589] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2191.527664] v9fs_mount+0x79/0x8f0 [ 2191.528418] ? v9fs_write_inode+0x60/0x60 [ 2191.529308] legacy_get_tree+0x105/0x220 [ 2191.530175] vfs_get_tree+0x8e/0x300 [ 2191.530969] path_mount+0x1429/0x2120 [ 2191.531785] ? strncpy_from_user+0x9e/0x470 [ 2191.532692] ? finish_automount+0xa90/0xa90 [ 2191.533729] ? getname_flags.part.0+0x1dd/0x4f0 [ 2191.534717] ? _copy_from_user+0xfb/0x1b0 [ 2191.535611] __x64_sys_mount+0x282/0x300 [ 2191.536470] ? copy_mnt_ns+0xa00/0xa00 [ 2191.537315] do_syscall_64+0x33/0x40 [ 2191.538104] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2191.539199] RIP: 0033:0x7f9f6e930b19 [ 2191.540002] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2191.543894] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2191.545519] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 2191.547043] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2191.548573] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 2191.550202] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2191.551722] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 2191.554303] kobject_add_internal failed for 9p-fcall-cache-214 (error: -12 parent: slab) [ 2191.556308] kmem_cache_create(9p-fcall-cache-214) failed with error -12 [ 2191.556559] FAULT_INJECTION: forcing a failure. [ 2191.556559] name failslab, interval 1, probability 0, space 0, times 0 [ 2191.557789] CPU: 1 PID: 11997 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 2191.557801] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2191.557807] Call Trace: [ 2191.557836] dump_stack+0x107/0x167 [ 2191.564282] kmem_cache_create_usercopy.cold+0x17/0x65 [ 2191.565531] p9_client_create+0xc6a/0x1230 [ 2191.566448] ? p9_client_flush+0x430/0x430 [ 2191.567345] ? trace_hardirqs_on+0x5b/0x180 [ 2191.568270] ? lockdep_init_map_type+0x2c7/0x780 [ 2191.569336] ? __raw_spin_lock_init+0x36/0x110 [ 2191.570344] v9fs_session_init+0x1dd/0x1680 [ 2191.571270] ? lock_release+0x680/0x680 [ 2191.572123] ? kmem_cache_alloc_trace+0x151/0x320 [ 2191.573146] ? v9fs_show_options+0x690/0x690 [ 2191.574101] ? trace_hardirqs_on+0x5b/0x180 [ 2191.575013] ? kasan_unpoison_shadow+0x33/0x50 [ 2191.575987] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2191.577055] v9fs_mount+0x79/0x8f0 [ 2191.577819] ? v9fs_write_inode+0x60/0x60 [ 2191.578698] legacy_get_tree+0x105/0x220 [ 2191.579565] vfs_get_tree+0x8e/0x300 [ 2191.580456] path_mount+0x1429/0x2120 [ 2191.581265] ? strncpy_from_user+0x9e/0x470 [ 2191.582186] ? finish_automount+0xa90/0xa90 [ 2191.583098] ? getname_flags.part.0+0x1dd/0x4f0 [ 2191.584084] ? _copy_from_user+0xfb/0x1b0 [ 2191.584962] __x64_sys_mount+0x282/0x300 [ 2191.585843] ? copy_mnt_ns+0xa00/0xa00 [ 2191.586676] do_syscall_64+0x33/0x40 [ 2191.587462] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2191.588545] RIP: 0033:0x7f9f6e930b19 [ 2191.589342] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2191.593246] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2191.594876] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 2191.596476] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2191.598001] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 2191.599518] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2191.601022] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 2191.602571] CPU: 0 PID: 12004 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2191.603775] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2191.605192] Call Trace: [ 2191.605658] dump_stack+0x107/0x167 [ 2191.606276] should_fail.cold+0x5/0xa [ 2191.606929] ? create_object.isra.0+0x3a/0xa20 [ 2191.607707] should_failslab+0x5/0x20 [ 2191.608353] kmem_cache_alloc+0x5b/0x310 [ 2191.609043] create_object.isra.0+0x3a/0xa20 [ 2191.609799] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2191.610669] kmem_cache_alloc+0x159/0x310 [ 2191.611381] kmem_cache_create_usercopy+0x190/0x2f0 [ 2191.612272] p9_client_create+0xc6a/0x1230 [ 2191.612994] ? p9_client_flush+0x430/0x430 [ 2191.613735] ? trace_hardirqs_on+0x5b/0x180 [ 2191.614490] ? lockdep_init_map_type+0x2c7/0x780 [ 2191.615287] ? __raw_spin_lock_init+0x36/0x110 [ 2191.616073] v9fs_session_init+0x1dd/0x1680 [ 2191.616810] ? lock_release+0x680/0x680 [ 2191.617498] ? kmem_cache_alloc_trace+0x151/0x320 [ 2191.618319] ? v9fs_show_options+0x690/0x690 [ 2191.619082] ? trace_hardirqs_on+0x5b/0x180 [ 2191.619823] ? kasan_unpoison_shadow+0x33/0x50 [ 2191.620595] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2191.621453] v9fs_mount+0x79/0x8f0 [ 2191.622056] ? v9fs_write_inode+0x60/0x60 [ 2191.622759] legacy_get_tree+0x105/0x220 [ 2191.623437] vfs_get_tree+0x8e/0x300 [ 2191.624058] path_mount+0x1429/0x2120 [ 2191.624710] ? strncpy_from_user+0x9e/0x470 [ 2191.625441] ? finish_automount+0xa90/0xa90 [ 2191.626168] ? getname_flags.part.0+0x1dd/0x4f0 [ 2191.626968] ? _copy_from_user+0xfb/0x1b0 [ 2191.627664] __x64_sys_mount+0x282/0x300 [ 2191.628342] ? copy_mnt_ns+0xa00/0xa00 [ 2191.629004] do_syscall_64+0x33/0x40 [ 2191.629639] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2191.630495] RIP: 0033:0x7fd3b79dfb19 [ 2191.631112] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2191.634138] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2191.635434] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 2191.636562] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2191.637762] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 2191.638951] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2191.640131] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 2191.641439] hpet: Lost 1 RTC interrupts 10:43:32 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x9bc9, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 2191.684304] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2191.686172] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2191.692161] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 10:43:32 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xc603, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:43:32 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x47c5, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:43:32 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 64) 10:43:32 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0xfdfdffff, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) [ 2191.780930] FAULT_INJECTION: forcing a failure. [ 2191.780930] name failslab, interval 1, probability 0, space 0, times 0 [ 2191.782677] CPU: 0 PID: 12020 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 2191.783743] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2191.784939] Call Trace: [ 2191.785339] dump_stack+0x107/0x167 [ 2191.785874] should_fail.cold+0x5/0xa [ 2191.786446] ? __kernfs_new_node+0xd4/0x860 [ 2191.787078] should_failslab+0x5/0x20 [ 2191.787655] kmem_cache_alloc+0x5b/0x310 [ 2191.788255] __kernfs_new_node+0xd4/0x860 [ 2191.788874] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 2191.789590] ? lock_acquire+0x197/0x470 [ 2191.790175] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2191.790945] ? lock_release+0x680/0x680 [ 2191.791525] ? find_held_lock+0x2c/0x110 [ 2191.792099] kernfs_new_node+0x18d/0x250 [ 2191.792696] kernfs_create_dir_ns+0x49/0x160 [ 2191.793321] sysfs_create_dir_ns+0x127/0x290 [ 2191.793958] ? sysfs_create_mount_point+0xb0/0xb0 [ 2191.794628] ? rwlock_bug.part.0+0x90/0x90 [ 2191.795219] ? do_raw_spin_unlock+0x4f/0x220 [ 2191.795870] kobject_add_internal+0x25e/0xa30 [ 2191.796526] kobject_init_and_add+0x101/0x160 [ 2191.797177] ? kobject_create_and_add+0xb0/0xb0 [ 2191.797843] ? wait_for_completion_io+0x270/0x270 [ 2191.798546] ? kernfs_name_hash+0xe7/0x110 [ 2191.799142] ? kernfs_find_ns+0x256/0x380 [ 2191.799725] sysfs_slab_add+0x172/0x200 [ 2191.800306] __kmem_cache_create+0x3db/0x520 [ 2191.800925] kmem_cache_create_usercopy+0x1db/0x2f0 [ 2191.801661] p9_client_create+0xc6a/0x1230 [ 2191.802289] ? p9_client_flush+0x430/0x430 [ 2191.802891] ? trace_hardirqs_on+0x5b/0x180 [ 2191.803513] ? lockdep_init_map_type+0x2c7/0x780 [ 2191.804179] ? __raw_spin_lock_init+0x36/0x110 [ 2191.804848] v9fs_session_init+0x1dd/0x1680 [ 2191.805486] ? lock_release+0x680/0x680 [ 2191.806071] ? kmem_cache_alloc_trace+0x151/0x320 [ 2191.806755] ? v9fs_show_options+0x690/0x690 [ 2191.807396] ? trace_hardirqs_on+0x5b/0x180 [ 2191.807999] ? kasan_unpoison_shadow+0x33/0x50 [ 2191.808653] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2191.809396] v9fs_mount+0x79/0x8f0 [ 2191.809903] ? v9fs_write_inode+0x60/0x60 [ 2191.810503] legacy_get_tree+0x105/0x220 [ 2191.811130] vfs_get_tree+0x8e/0x300 [ 2191.811646] path_mount+0x1429/0x2120 [ 2191.812213] ? strncpy_from_user+0x9e/0x470 [ 2191.812815] ? finish_automount+0xa90/0xa90 [ 2191.813461] ? getname_flags.part.0+0x1dd/0x4f0 [ 2191.814137] ? _copy_from_user+0xfb/0x1b0 [ 2191.814726] __x64_sys_mount+0x282/0x300 [ 2191.815308] ? copy_mnt_ns+0xa00/0xa00 [ 2191.815885] do_syscall_64+0x33/0x40 [ 2191.816413] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2191.817131] RIP: 0033:0x7f9f6e930b19 [ 2191.817656] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2191.820217] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2191.821319] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 2191.822341] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2191.823362] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 2191.824387] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2191.825427] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 2191.826576] hpet: Lost 2 RTC interrupts [ 2191.827284] kobject_add_internal failed for 9p-fcall-cache-216 (error: -12 parent: slab) [ 2191.828502] kmem_cache_create(9p-fcall-cache-216) failed with error -12 [ 2191.829526] CPU: 0 PID: 12020 Comm: syz-executor.5 Not tainted 5.10.234 #1 [ 2191.830560] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2191.831750] Call Trace: [ 2191.832126] dump_stack+0x107/0x167 [ 2191.832657] kmem_cache_create_usercopy.cold+0x17/0x65 [ 2191.833415] p9_client_create+0xc6a/0x1230 [ 2191.834024] ? p9_client_flush+0x430/0x430 [ 2191.834632] ? trace_hardirqs_on+0x5b/0x180 [ 2191.835244] ? lockdep_init_map_type+0x2c7/0x780 [ 2191.835914] ? __raw_spin_lock_init+0x36/0x110 [ 2191.836570] v9fs_session_init+0x1dd/0x1680 [ 2191.837190] ? lock_release+0x680/0x680 [ 2191.837764] ? kmem_cache_alloc_trace+0x151/0x320 [ 2191.838442] ? v9fs_show_options+0x690/0x690 [ 2191.839073] ? trace_hardirqs_on+0x5b/0x180 [ 2191.839678] ? kasan_unpoison_shadow+0x33/0x50 [ 2191.840324] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2191.841044] v9fs_mount+0x79/0x8f0 [ 2191.841554] ? v9fs_write_inode+0x60/0x60 [ 2191.842139] legacy_get_tree+0x105/0x220 [ 2191.842712] vfs_get_tree+0x8e/0x300 [ 2191.843249] path_mount+0x1429/0x2120 [ 2191.843806] ? strncpy_from_user+0x9e/0x470 [ 2191.844427] ? finish_automount+0xa90/0xa90 [ 2191.845038] ? getname_flags.part.0+0x1dd/0x4f0 [ 2191.845701] ? _copy_from_user+0xfb/0x1b0 [ 2191.846287] __x64_sys_mount+0x282/0x300 [ 2191.846858] ? copy_mnt_ns+0xa00/0xa00 [ 2191.847410] do_syscall_64+0x33/0x40 [ 2191.847937] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2191.848663] RIP: 0033:0x7f9f6e930b19 [ 2191.849182] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2191.851792] RSP: 002b:00007f9f6bea6188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2191.852865] RAX: ffffffffffffffda RBX: 00007f9f6ea43f60 RCX: 00007f9f6e930b19 [ 2191.853865] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2191.854860] RBP: 00007f9f6bea61d0 R08: 0000000020000680 R09: 0000000000000000 [ 2191.855870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2191.856869] R13: 00007ffeeafe60ff R14: 00007f9f6bea6300 R15: 0000000000022000 [ 2191.857976] hpet: Lost 1 RTC interrupts 10:43:32 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x9cc9, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:43:32 executing program 6: r0 = syz_io_uring_setup(0x0, 0x0, &(0x7f0000fef000/0x11000)=nil, &(0x7f0000ff9000/0x4000)=nil, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl$FIOCLEX(r1, 0x5451) sendmsg$nl_generic(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000018c0)=ANY=[@ANYBLOB="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"], 0x24}}, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$CDROMREADALL(0xffffffffffffffff, 0x5318, &(0x7f0000001a80)) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), r3) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001500)=ANY=[@ANYRES32=r0], 0x30}}, 0x20040010) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000380)={&(0x7f0000002ac0)=ANY=[@ANYBLOB="080500988400014637b5e6a174b7b2b317b4044a94da343dd489e684a04f4ca90665864272f2fedc47a9342fef8ad1fc88337e6391545bf80b8ea61a907e1120dcdd2930f3eace765860d93659a6dc77d049d1d90bf956808d12c853d595ab7ea7e76402b517c198dc7ffbdbb38ab65f84f5242824efb291f523ece2d8e79434f9fe77da5ead57c5f16fed9a43b14e466358a6b4c3a1a8361e8199db7e4116e6031e72ada1c25a85ea221f56", @ANYRES16=r4, @ANYBLOB="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"], 0x508}, 0x1, 0x0, 0x0, 0x40000}, 0x48804) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'wlan1\x00', 0x0}) r6 = openat$full(0xffffffffffffff9c, &(0x7f00000003c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(0xffffffffffffffff, 0x4018f50b, &(0x7f0000000400)={0x1, 0x40, 0x4}) sendmsg$NL80211_CMD_LEAVE_MESH(r6, &(0x7f0000000440)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="280026bd704a460300", @ANYRES32=r5, @ANYRES16=r4], 0x28}, 0x1, 0x0, 0x0, 0x408c0}, 0x8054) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000240)={0x1f, 0x0, @fixed}, &(0x7f0000000280)=0xe, 0x80000) syz_80211_join_ibss(&(0x7f0000000180)='wlan1\x00', &(0x7f00000001c0)=@default_ibss_ssid, 0x6, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) 10:43:32 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xea01, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:43:32 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x4800, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 2191.887630] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.6'. 10:43:32 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0xfe800000, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:43:32 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) (fail_nth: 55) 10:43:32 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x20000000) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @remote}, @private1, @ipv4={'\x00', '\xff\xff', @loopback=0x7f001400}, 0xfec00000, 0x0, 0x0, 0x0, 0x0, 0x400036, r2}) 10:43:32 executing program 7: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x9dc9, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) 10:43:32 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0xeab7, &(0x7f0000000380)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@version_u}]}}) [ 2191.983835] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2191.984876] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2191.985897] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 2192.022484] FAULT_INJECTION: forcing a failure. [ 2192.022484] name failslab, interval 1, probability 0, space 0, times 0 [ 2192.023937] CPU: 0 PID: 12046 Comm: syz-executor.1 Not tainted 5.10.234 #1 [ 2192.024826] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2192.025857] Call Trace: [ 2192.026187] dump_stack+0x107/0x167 [ 2192.026640] should_fail.cold+0x5/0xa [ 2192.027118] ? create_object.isra.0+0x3a/0xa20 [ 2192.027697] should_failslab+0x5/0x20 [ 2192.028190] kmem_cache_alloc+0x5b/0x310 [ 2192.028711] create_object.isra.0+0x3a/0xa20 [ 2192.029260] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2192.029903] kmem_cache_alloc+0x159/0x310 [ 2192.030433] kmem_cache_create_usercopy+0x190/0x2f0 [ 2192.031060] p9_client_create+0xc6a/0x1230 [ 2192.031592] ? p9_client_flush+0x430/0x430 [ 2192.032119] ? trace_hardirqs_on+0x5b/0x180 [ 2192.032685] ? lockdep_init_map_type+0x2c7/0x780 [ 2192.033292] ? __raw_spin_lock_init+0x36/0x110 [ 2192.033908] v9fs_session_init+0x1dd/0x1680 [ 2192.034445] ? lock_release+0x680/0x680 [ 2192.034945] ? kmem_cache_alloc_trace+0x151/0x320 [ 2192.035545] ? v9fs_show_options+0x690/0x690 [ 2192.036094] ? trace_hardirqs_on+0x5b/0x180 [ 2192.036626] ? kasan_unpoison_shadow+0x33/0x50 [ 2192.037190] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2192.037850] v9fs_mount+0x79/0x8f0 [ 2192.038298] ? v9fs_write_inode+0x60/0x60 [ 2192.038815] legacy_get_tree+0x105/0x220 [ 2192.039323] vfs_get_tree+0x8e/0x300 [ 2192.039784] path_mount+0x1429/0x2120 [ 2192.040264] ? strncpy_from_user+0x9e/0x470 [ 2192.040800] ? finish_automount+0xa90/0xa90 [ 2192.041383] ? getname_flags.part.0+0x1dd/0x4f0 [ 2192.041987] ? _copy_from_user+0xfb/0x1b0 [ 2192.042513] __x64_sys_mount+0x282/0x300 [ 2192.043012] ? copy_mnt_ns+0xa00/0xa00 [ 2192.043510] do_syscall_64+0x33/0x40 [ 2192.043975] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 2192.044605] RIP: 0033:0x7fd3b79dfb19 [ 2192.045062] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2192.047358] RSP: 002b:00007fd3b4f55188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 2192.048288] RAX: ffffffffffffffda RBX: 00007fd3b7af2f60 RCX: 00007fd3b79dfb19 [ 2192.049161] RDX: 00000000200000c0 RSI: 0000000020000380 RDI: 0000000000000000 [ 2192.050064] RBP: 00007fd3b4f551d0 R08: 0000000020000680 R09: 0000000000000000 [ 2192.050942] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2192.051823] R13: 00007ffff0f39bcf R14: 00007fd3b4f55300 R15: 0000000000022000 [ 2192.052798] hpet: Lost 1 RTC interrupts [ 2207.170559] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak) BUG: memory leak unreferenced object 0xffff88800cba81c0 (size 32): comm "syz-executor.5", pid 11997, jiffies 4296858335 (age 24.042s) hex dump (first 32 bytes): 39 70 2d 66 63 61 6c 6c 2d 63 61 63 68 65 2d 32 9p-fcall-cache-2 31 34 00 0c 80 88 ff ff 00 00 00 00 00 00 00 00 14.............. backtrace: [<00000000d97a35c0>] kstrdup+0x36/0x70 [<0000000065d84f2d>] kstrdup_const+0x53/0x80 [<000000004f9cea0b>] kvasprintf_const+0x10c/0x1a0 [<000000007b6113b1>] kobject_set_name_vargs+0x56/0x150 [<00000000e3eceff5>] kobject_init_and_add+0xc9/0x160 [<0000000093ecf216>] sysfs_slab_add+0x172/0x200 [<00000000a10e2c5e>] __kmem_cache_create+0x3db/0x520 [<00000000f7929cfd>] kmem_cache_create_usercopy+0x1db/0x2f0 [<0000000060aa5b41>] p9_client_create+0xc6a/0x1230 [<00000000ddb8e417>] v9fs_session_init+0x1dd/0x1680 [<00000000e40655aa>] v9fs_mount+0x79/0x8f0 [<0000000034501bc0>] legacy_get_tree+0x105/0x220 [<000000002df6d471>] vfs_get_tree+0x8e/0x300 [<00000000b01578af>] path_mount+0x1429/0x2120 [<000000003a70fbc3>] __x64_sys_mount+0x282/0x300 [<000000007f7b143e>] do_syscall_64+0x33/0x40 BUG: memory leak unreferenced object 0xffff888008a35ac0 (size 32): comm "syz-executor.5", pid 12020, jiffies 4296858645 (age 23.733s) hex dump (first 32 bytes): 39 70 2d 66 63 61 6c 6c 2d 63 61 63 68 65 2d 32 9p-fcall-cache-2 31 36 00 08 80 88 ff ff 00 00 00 00 00 00 00 00 16.............. backtrace: [<00000000d97a35c0>] kstrdup+0x36/0x70 [<0000000065d84f2d>] kstrdup_const+0x53/0x80 [<000000004f9cea0b>] kvasprintf_const+0x10c/0x1a0 [<000000007b6113b1>] kobject_set_name_vargs+0x56/0x150 [<00000000e3eceff5>] kobject_init_and_add+0xc9/0x160 [<0000000093ecf216>] sysfs_slab_add+0x172/0x200 [<00000000a10e2c5e>] __kmem_cache_create+0x3db/0x520 [<00000000f7929cfd>] kmem_cache_create_usercopy+0x1db/0x2f0 [<0000000060aa5b41>] p9_client_create+0xc6a/0x1230 [<00000000ddb8e417>] v9fs_session_init+0x1dd/0x1680 [<00000000e40655aa>] v9fs_mount+0x79/0x8f0 [<0000000034501bc0>] legacy_get_tree+0x105/0x220 [<000000002df6d471>] vfs_get_tree+0x8e/0x300 [<00000000b01578af>] path_mount+0x1429/0x2120 [<000000003a70fbc3>] __x64_sys_mount+0x282/0x300 [<000000007f7b143e>] do_syscall_64+0x33/0x40 BUG: leak checking failed VM DIAGNOSIS: 10:43:56 Registers: info registers vcpu 0 RAX=ffffffff83e7e9b0 RBX=0000000000000000 RCX=ffffffff83e6658c RDX=0000000000000000 RSI=0000000000000000 RDI=ffffffff83e7efb8 RBP=0000000000000000 RSP=ffffffff84e07e38 R8 =0000000000000001 R9 =ffff88806ce3c12b R10=ffffed100d9c7825 R11=0000000000000001 R12=0000000000000000 R13=ffffffff85678508 R14=0000000000000000 R15=dffffc0000000000 RIP=ffffffff83e7e9be RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f1b33669a88 CR3=000000000d43e000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=77c0df2f1d6075e037049a445e58746c XMM02=5df8b28fcfccc70c74693ae027dbb391 XMM03=957351ab7e22ad55b3aaa4e51aaed666 XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=0d0c0f0e09080b0a0504070601000302 XMM07=0e0d0c0f0a09080b0605040702010003 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=ffffffff83e7e9b0 RBX=0000000000000001 RCX=ffffffff83e6658c RDX=0000000000000000 RSI=0000000000000000 RDI=ffffffff83e7efb8 RBP=0000000000000001 RSP=ffff888008987e70 R8 =0000000000000001 R9 =ffff88806cf3c12b R10=ffffed100d9e7825 R11=0000000000000001 R12=0000000000000001 R13=ffffffff85678508 R14=0000000000000000 R15=dffffc0000000000 RIP=ffffffff83e7e9be RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ffd35010f88 CR3=0000000017076000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=000000000000000041853fce40000000 XMM03=0000ff00000000000000000000000000 XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000